CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 6 days ago•6 views

CVE-2026-46385 iskorotkov/avro: CPU Exhaustion in Avro Decoder

8.7CVSS5.8AI score0.00042EPSS

UbuntuCve•added 2026/05/27 12:0 a.m.•3 views

CVE-2026-45973

RDMA/mlx5: Fix UMR hang in LAG error state unload...

5.8AI score0.00023EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•8 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: drm/i915/reset: Fixed the use of the pointer offset in errorstateread. This fix addresses the issue where, when there is no i915gpucoredump but the buf offset is non-zero, a kernel page fault may occur. This issue occurs when...

5.5CVSS6.1AI score0.0008EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fixed the response length checking for UD request packets. According to the IBA specification: If a UD request packet is detected with an invalid length, the request shall be considered invalid, and it shall be silently...

5.5CVSS5.7AI score0.00033EPSS

OSV•added 2026/05/18 4:33 p.m.•4 views

GHSA-W8J3-PQ8G-8M7W iskorotkov/avro: CPU Exhaustion in Decoder

CPU Exhaustion in Avro Decoder via Unbounded Block-Count Iteration Summary The Avro array and map decoders looped over an attacker-controlled block-count value without checking the underlying reader's error state inside the loop body. Reader.ReadBlockHeader returns the count as a Go int, which is...

8.7CVSS5.9AI score0.00042EPSS

Positive Technologies•added 2026/05/18 12:0 a.m.•7 views

PT-2026-41800

Name of the Vulnerable Software and Affected Versions iskorotkov/avro versions prior to 2.33.0 github.com/hamba/avro/v2 versions prior to 2.32.0 Description Remote, unauthenticated denial-of-service occurs due to CPU exhaustion in the Avro array and map decoders. The issue arises because the...

8.7CVSS7AI score0.00042EPSS

Exploits0References4

SUSE CVE•added 2026/05/07 2:17 a.m.•5 views

SUSE CVE-2026-43151

In the Linux kernel, the following vulnerability has been resolved: Revert "media: iris: Add sanity check for stop streaming" This reverts commit ad699fa78b59241c9d71a8cafb51525f3dab04d4. Revert the check that skipped stopstreaming when the instance was in IRISINSTERROR, as it caused multiple...

5.5CVSS5.8AI score0.00013EPSS

EUVD•added 2026/05/06 12:30 p.m.•1 views

EUVD-2026-27714

5.8AI score0.00013EPSS

Exploits0References4

NVD•added 2026/05/06 12:16 p.m.•1 views

CVE-2026-43151

5.5CVSS0.00013EPSS

ATTACKERKB•added 2026/05/06 11:28 a.m.•3 views

CVE-2026-43226

In the Linux kernel, the following vulnerability has been resolved: net/rds: No shortcut out of RDSCONNERROR RDS connections carry a state "rdsconnpath::cpstate" and transitions from one state to another and are conditional upon an expected state: "rdsconnpathtransition." There is one exception t...

5.8AI score0.00068EPSS

Exploits0References9Affected Software1

Cvelist•added 2026/05/06 11:27 a.m.•20 views

CVE-2026-43151 Revert "media: iris: Add sanity check for stop streaming"

0.00013EPSS

ATTACKERKB•added 2026/05/06 11:27 a.m.•4 views

CVE-2026-43151

5.5CVSS5.7AI score0.00013EPSS

Exploits0References4Affected Software1

CVE•added 2026/05/06 11:27 a.m.•5 views

CVE-2026-43151

CVE-2026-43151 : Linux kernel issue resolved by reverting the Iris video driver stop streaming sanity check. The revert re-enabled stop_streaming when the IRIS_INST_ERROR path, correcting prior regressions where buffers were not returned to vb2 and teardown could fail, leaving firmware in an inco...

5.5CVSS5.8AI score0.00013EPSS

Exploits0References3Affected Software1

CNNVD•added 2026/05/06 12:0 a.m.•5 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from bypassing the RDSCONNERROR state during the handling of RDS connection status. This may lead to abnorma...

7.5CVSS5.8AI score0.00068EPSS

Positive Technologies•added 2026/05/06 12:0 a.m.•4 views

PT-2026-37491

In the Linux kernel, the following vulnerability has been resolved: Revert "media: iris: Add sanity check for stop streaming" This reverts commit ad699fa78b59241c9d71a8cafb51525f3dab04d4. Revert the check that skipped stop streaming when the instance was in IRIS INST ERROR, as it caused multiple...

5.8AI score0.00013EPSS

Exploits0References4

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: i2c: imx: preserve error state in block data length handler When a block read returns an invalid length, zero or I2CSMBUSBLOCKMAX, the length handler sets the state to IMXI2CSTATEFAILED. However, i2cimxmasterisr unconditionally...

5.5CVSS5.6AI score0.00019EPSS

AstraLinux•added 2026/03/06 9:4 p.m.•6 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: media: iris: Add sanity check for stop streaming Add sanity check in irisvb2stopstreaming. If inst-state is already IRISINSTERROR, we should skip the streamoff operation because it would still send packets to the firmware. In...

5.6AI score0.00027EPSS

SUSE CVE•added 2026/02/16 12:25 a.m.•5 views

SUSE CVE-2026-23197

5.5CVSS5.2AI score0.00019EPSS