Lucene search
+L

33 matches found

OSV
OSV
added 6 days ago2 views

CVE-2026-10664 Out-of-bounds write in nRF70 Wi-Fi driver power-save event handler (unbounded TWT flow count)

The nRF70 Wi-Fi driver's power-save event handler nrfwifieventprocgetpowersaveinfo in drivers/wifi/nrfwifi/src/wifimgmt.c copied TWT Target Wake Time flow entries from an nrfwifiumaceventpowersaveinfo event into the fixed-size twtflowsWIFIMAXTWTFLOWS 8-element array of a caller-supplied struct...

5CVSS6.1AI score0.00148EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an issue with the WMT event length verification in the btmtk module. This vulnerability may lead ...

5.8AI score0.00131EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.11 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Tracing: Ring-buffer: A fix was made to check the length of events before using them. Check the length of events before adding them for accessing the next index in rbreaddatabuffer. Since this function is used to validate possibl...

5.5CVSS6AI score0.00127EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: Tracing: Consider the NULL character when validating the event length. strlen returns the length of a string excluding the null byte. If the string length equals the maximum buffer length, there will be no space left in the buffe...

7.8CVSS6.4AI score0.00249EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: Ring-buffer: Do not attempt to read beyond the “commit” boundary. When iterating over the ring buffer while the ring buffer is active, the writer can corrupt the reader’s data. There are mechanisms to detect and handle this issue...

7.1CVSS6.3AI score0.0023EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/07 2:17 a.m.10 views

SUSE CVE-2026-43210

In the Linux kernel, the following vulnerability has been resolved: tracing: ring-buffer: Fix to check event length before using Check the event length before adding it for accessing next index in rbreaddatabuffer. Since this function is used for validating possibly broken ring buffers, the lengt...

5.7AI score0.00127EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/06 12:30 p.m.7 views

EUVD-2026-27769

In the Linux kernel, the following vulnerability has been resolved: tracing: ring-buffer: Fix to check event length before using Check the event length before adding it for accessing next index in rbreaddatabuffer. Since this function is used for validating possibly broken ring buffers, the lengt...

5.7AI score0.00127EPSS
Exploits0References5
NVD
NVD
added 2026/05/06 12:16 p.m.16 views

CVE-2026-43210

In the Linux kernel, the following vulnerability has been resolved: tracing: ring-buffer: Fix to check event length before using Check the event length before adding it for accessing next index in rbreaddatabuffer. Since this function is used for validating possibly broken ring buffers, the lengt...

5.5CVSS0.00127EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/05/06 11:28 a.m.13 views

CVE-2026-43210

In the Linux kernel, the following vulnerability has been resolved: tracing: ring-buffer: Fix to check event length before using Check the event length before adding it for accessing next index in rbreaddatabuffer. Since this function is used for validating possibly broken ring buffers, the lengt...

5.5CVSS5.7AI score0.00127EPSS
Exploits0
CVE
CVE
added 2026/05/06 11:28 a.m.14 views

CVE-2026-43210

The CVE-2026-43210 entry concerns the Linux kernel tracing ring-buffer subsystem. The root cause is inadequate validation of event length in rb_read_data_buffer(), which can cause an invalid memory access if an event’s length is corrupted, potentially at boot time. The published fix is to check t...

5.5CVSS5.7AI score0.00127EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/05/06 11:28 a.m.33 views

CVE-2026-43210 tracing: ring-buffer: Fix to check event length before using

In the Linux kernel, the following vulnerability has been resolved: tracing: ring-buffer: Fix to check event length before using Check the event length before adding it for accessing next index in rbreaddatabuffer. Since this function is used for validating possibly broken ring buffers, the lengt...

0.00127EPSS
Exploits0References4
OSV
OSV
added 2026/05/06 11:28 a.m.2 views

CVE-2026-43210 tracing: ring-buffer: Fix to check event length before using

In the Linux kernel, the following vulnerability has been resolved: tracing: ring-buffer: Fix to check event length before using Check the event length before adding it for accessing next index in rbreaddatabuffer. Since this function is used for validating possibly broken ring buffers, the lengt...

5.5CVSS5.9AI score0.00127EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the ring-buffer not checking the length of events, potentially leading to out-of-bound access...

5.5CVSS5.8AI score0.00127EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.9 views

PT-2026-37550

In the Linux kernel, the following vulnerability has been resolved: tracing: ring-buffer: Fix to check event length before using Check the event length before adding it for accessing next index in rb read data buffer. Since this function is used for validating possibly broken ring buffers, the...

5.7AI score0.00127EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/01 2:14 p.m.16 views

EUVD-2026-26584

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: move wake reason storage into validated event handlers hcistorewakereason is called from hcieventpacket immediately after stripping the HCI event header but before hcieventfunc enforces the per-event minimum...

5.8AI score0.00205EPSS
Exploits0References2
OSV
OSV
added 2026/05/01 2:14 p.m.4 views

CVE-2026-31771 Bluetooth: hci_event: move wake reason storage into validated event handlers

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: move wake reason storage into validated event handlers hcistorewakereason is called from hcieventpacket immediately after stripping the HCI event header but before hcieventfunc enforces the per-event minimum...

8.1CVSS5.8AI score0.00205EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2024/12/12 8:0 a.m.5 views

tracing: Consider the NULL character when validating the event length

...

7.8CVSS6.7AI score0.00249EPSS
Exploits0
OSV
OSV
added 2024/11/05 6:15 p.m.8 views

AZL-52306 CVE-2024-50131 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: tracing: Consider the NULL character when validating the event length strlen returns a string length excluding the null byte. If the string length equals to the maximum buffer length, the buffer will have no space for the NULL...

7.8CVSS7AI score0.00249EPSS
Exploits0References1
NVD
NVD
added 2024/11/05 6:15 p.m.10 views

CVE-2024-50131

In the Linux kernel, the following vulnerability has been resolved: tracing: Consider the NULL character when validating the event length strlen returns a string length excluding the null byte. If the string length equals to the maximum buffer length, the buffer will have no space for the NULL...

7.8CVSS0.00249EPSS
Exploits0References10
OSV
OSV
added 2024/11/05 6:15 p.m.8 views

AZL-52329 CVE-2024-50131 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: tracing: Consider the NULL character when validating the event length strlen returns a string length excluding the null byte. If the string length equals to the maximum buffer length, the buffer will have no space for the NULL...

7.8CVSS7AI score0.00249EPSS
Exploits0References1
Rows per page
Query Builder