Lucene search
K

74037 matches found

UbuntuCve
UbuntuCve
added 2026/03/25 11:16 a.m.7 views

CVE-2026-23344

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Fix use-after-free on error path In the error path of sevtsminitlocked, the code dereferences 't' after it has been freed with kfree. The prerr statement attempts to access t-tioen and t-tioinitdone after the memory...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/03/25 11:16 a.m.9 views

CVE-2026-23358

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix error handling in slot reset If the device has not recovered after slot reset is called, it goes to out label for error handling. There it could make decision based on uninitialized hive pointer and could result i...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References5
OSV
OSV
added 2026/03/25 11:16 a.m.1 views

UBUNTU-CVE-2026-23333

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

5.7AI score0.00024EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/03/25 11:16 a.m.11 views

CVE-2026-23359

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix stack-out-of-bounds write in devmap getupperifindexes iterates over all upper devices and writes their indices into an array without checking bounds. Also the callers assume that the max number of upper devices is...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References8
OSV
OSV
added 2026/03/25 11:16 a.m.5 views

UBUNTU-CVE-2026-23285

In the Linux kernel, the following vulnerability has been resolved: drbd: fix null-pointer dereference on local read error In drbdrequestendio, READCOMPLETEDWITHERROR is passed to reqmod with a NULL peerdevice: reqmodreq, what, NULL, &m; The READCOMPLETEDWITHERROR handler then unconditionally...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References8
OSV
OSV
added 2026/03/25 11:16 a.m.6 views

UBUNTU-CVE-2026-23386

In the Linux kernel, the following vulnerability has been resolved: gve: fix incorrect buffer cleanup in gvetxcleanpendingpackets for QPL In DQ-QPL mode, gvetxcleanpendingpackets incorrectly uses the RDA buffer cleanup path. It iterates numbufs times and attempts to unmap entries in the dma array...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References8
OSV
OSV
added 2026/03/25 11:16 a.m.5 views

UBUNTU-CVE-2026-23317

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Return the correct value in vmwtranslateptr functions Before the referenced fixes these functions used a lookup function that returned a pointer. This was changed to another lookup function that returned an error code...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References9
OSV
OSV
added 2026/03/25 11:16 a.m.6 views

UBUNTU-CVE-2026-23339

In the Linux kernel, the following vulnerability has been resolved: nfc: nci: free skb on ncitransceive early error paths ncitransceive takes ownership of the skb passed by the caller, but the -EPROTO, -EINVAL, and -EBUSY error paths return without freeing it. Due to issues clearing NCIDATAEXCHAN...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References9
OSV
OSV
added 2026/03/25 11:16 a.m.3 views

UBUNTU-CVE-2026-23359

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix stack-out-of-bounds write in devmap getupperifindexes iterates over all upper devices and writes their indices into an array without checking bounds. Also the callers assume that the max number of upper devices is...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References9
OSV
OSV
added 2026/03/25 11:16 a.m.3 views

UBUNTU-CVE-2026-23328

In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fix NULL pointer dereference of mgmtchann mgmtchann may be set to NULL if the firmware returns an unexpected error in aie2sendmgmtmsgwait. This can later lead to a NULL pointer dereference in aie2hwstop. Fix this b...

5.5CVSS5.7AI score0.00107EPSS
Exploits0References5
OSV
OSV
added 2026/03/25 10:33 a.m.2 views

CVE-2026-23392 netfilter: nf_tables: release flowtable after rcu grace period on error

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: release flowtable after rcu grace period on error Call synchronizercu after unregistering the hooks from error path, since a hook that already refers to this flowtable can be already registered, exposing this...

7.8CVSS5.7AI score0.00119EPSS
Exploits0References9
CVE
CVE
added 2026/03/25 10:33 a.m.39 views

CVE-2026-23392

The CVE-2026-23392 vulnerability affects the Linux kernel nf_tables flowtable handling. Root cause: during error paths, a hook may still reference a flowtable, exposing it to the packet path and nfnetlink control plane. The fix inserts synchronize_rcu() after unregistering hooks (rcu grace period...

7.8CVSS5.6AI score0.00119EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/03/25 10:33 a.m.26 views

CVE-2026-23392 netfilter: nf_tables: release flowtable after rcu grace period on error

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: release flowtable after rcu grace period on error Call synchronizercu after unregistering the hooks from error path, since a hook that already refers to this flowtable can be already registered, exposing this...

7.8CVSS0.00119EPSS
Exploits0References6
CVE
CVE
added 2026/03/25 10:28 a.m.18 views

CVE-2026-23389

CVE-2026-23389 (Linux kernel ice component) : The issue is a memory leak in ice_set_ringparam() where tx_rings and xdp_rings are allocated before rx_rings. If rx_rings allocation fails, the code jumps to a done path that leaks both tx_rings and xdp_rings; if a per-Rx ring setup fails, code may ju...

5.5CVSS5.7AI score0.00117EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/03/25 10:28 a.m.28 views

CVE-2026-23389 ice: Fix memory leak in ice_set_ringparam()

In the Linux kernel, the following vulnerability has been resolved: ice: Fix memory leak in icesetringparam In icesetringparam, txrings and xdprings are allocated before rxrings. If the allocation of rxrings fails, the code jumps to the done label leaking both txrings and xdprings. Furthermore, i...

0.00117EPSS
Exploits0References6
OSV
OSV
added 2026/03/25 10:28 a.m.3 views

CVE-2026-23389 ice: Fix memory leak in ice_set_ringparam()

In the Linux kernel, the following vulnerability has been resolved: ice: Fix memory leak in icesetringparam In icesetringparam, txrings and xdprings are allocated before rxrings. If the allocation of rxrings fails, the code jumps to the done label leaking both txrings and xdprings. Furthermore, i...

5.5CVSS5.8AI score0.00117EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/03/25 10:28 a.m.2 views

CVE-2026-23389

In the Linux kernel, the following vulnerability has been resolved: ice: Fix memory leak in icesetringparam In icesetringparam, txrings and xdprings are allocated before rxrings. If the allocation of rxrings fails, the code jumps to the done label leaking both txrings and xdprings. Furthermore, i...

5.5CVSS5.7AI score0.00117EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/03/25 10:27 a.m.25 views

CVE-2026-23378 net/sched: act_ife: Fix metalist update behavior

In the Linux kernel, the following vulnerability has been resolved: net/sched: actife: Fix metalist update behavior Whenever an ife action replace changes the metalist, instead of replacing the old data on the metalist, the current ife code is appending the new metadata. Aside from being...

7.8CVSS0.00129EPSS
Exploits0References6
OSV
OSV
added 2026/03/25 10:27 a.m.6 views

CVE-2026-23377 ice: change XDP RxQ frag_size from DMA write length to xdp.frame_sz

In the Linux kernel, the following vulnerability has been resolved: ice: change XDP RxQ fragsize from DMA write length to xdp.framesz The only user of fragsize field in XDP RxQ info is bpfxdpfragsincreasetail. It clearly expects whole buff size instead of DMA write size. Different assumptions in...

5.5CVSS5.8AI score0.001EPSS
Exploits0References5
OSV
OSV
added 2026/03/25 10:27 a.m.2 views

CVE-2026-23378 net/sched: act_ife: Fix metalist update behavior

In the Linux kernel, the following vulnerability has been resolved: net/sched: actife: Fix metalist update behavior Whenever an ife action replace changes the metalist, instead of replacing the old data on the metalist, the current ife code is appending the new metadata. Aside from being...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References9
Rows per page
Query Builder