Lucene search
K

140 matches found

OSV
OSV
added 2026/06/25 12:36 p.m.2 views

SUSE-SU-2026:2632-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2025-10263: arm64: errata: Mitigate TLBI errata on various Arm CPUs bsc1266290. - CVE-2025-68324: scsi: imm: Fix use-after-free bug caused by unfinished delayed work...

9.8CVSS6.4AI score0.00463EPSS
Exploits0References64
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.8 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: aio: Fixed a use-after-free issue due to missing POLFREE handling. signalfdpoll and binderpoll are special because they use a waitqueue whose lifetime is the current task, rather than the struct file as is normally the case. This...

7.8CVSS6.2AI score0.00252EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: fs/eventpoll: Fixed an infinite busy loop after the timeout has expired. After the commit 0a65bc27bd64 “eventpoll: Sets the epoll timeout if it’s in the future”, the following program would immediately enter a busy loop in the...

5.5CVSS5.3AI score0.00137EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/02 3:27 p.m.11 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: eventpoll: Deferring the epfree function in eventpoll.c to a RCU callback during a grace period. In certain situations, epfree in eventpoll.c will free the epi-ep structure while it is still being used by another concurrent threa...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/01 1:57 p.m.13 views

CVE-2026-46242

A flaw was found in the Linux kernel's eventpoll mechanism. A Use-After-Free UAF vulnerability, where the system attempts to access memory after it has been freed, can occur during the removal of a file. A local attacker could exploit this race condition to corrupt memory, potentially leading to...

7.8CVSS5.9AI score0.00123EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/05/31 1:32 a.m.28 views

SUSE CVE-2026-46242

In the Linux kernel, the following vulnerability has been resolved: eventpoll: fix epremove struct eventpoll / struct file UAF epremove via epremovefile cleared file-fep under file-flock but then kept using @file inside the critical section isfileepoll, hlistdelrcu through the head, spinunlock. A...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References3
NVD
NVD
added 2026/05/30 1:16 p.m.20 views

CVE-2026-46242

In the Linux kernel, the following vulnerability has been resolved: eventpoll: fix epremove struct eventpoll / struct file UAF epremove via epremovefile cleared file-fep under file-flock but then kept using @file inside the critical section isfileepoll, hlistdelrcu through the head, spinunlock. A...

7.8CVSS0.00123EPSS
Exploits0References5
OSV
OSV
added 2026/05/30 1:16 p.m.4 views

UBUNTU-CVE-2026-46242

In the Linux kernel, the following vulnerability has been resolved: eventpoll: fix epremove struct eventpoll / struct file UAF epremove via epremovefile cleared file-fep under file-flock but then kept using @file inside the critical section isfileepoll, hlistdelrcu through the head, spinunlock. A...

7.8CVSS5.7AI score0.00123EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/30 12:13 p.m.13 views

CVE-2026-46242

In the Linux kernel, the following vulnerability has been resolved: eventpoll: fix epremove struct eventpoll / struct file UAF epremove via epremovefile cleared file-fep under file-flock but then kept using @file inside the critical section isfileepoll, hlistdelrcu through the head, spinunlock. A...

7.8CVSS5.7AI score0.00123EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/05/30 12:13 p.m.49 views

CVE-2026-46242 eventpoll: fix ep_remove struct eventpoll / struct file UAF

In the Linux kernel, the following vulnerability has been resolved: eventpoll: fix epremove struct eventpoll / struct file UAF epremove via epremovefile cleared file-fep under file-flock but then kept using @file inside the critical section isfileepoll, hlistdelrcu through the head, spinunlock. A...

7.8CVSS0.00123EPSS
Exploits0References5
CVE
CVE
added 2026/05/30 12:13 p.m.384 views

CVE-2026-46242

Summary (CVE-2026-46242) : The Linux kernel contains a fix for a UAF in eventpoll related to ep_remove. The bug arose when ep_remove_file() cleared file->f_ep under file->f_lock but continued using @file inside the critical section, allowing a concurrent path to reach freed memory via f_op-...

7.8CVSS5.8AI score0.00123EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/05/30 12:0 a.m.32 views

Linux Distros Unpatched Vulnerability : CVE-2026-46242

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - eventpoll: fix epremove struct eventpoll / struct file UAF epremove via epremovefile cleared file-fep under file-flock but then kept using @file inside the...

7.8CVSS5.8AI score0.00123EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/30 12:0 a.m.20 views

PT-2026-45095

Name of the Vulnerable Software and Affected Versions Linux kernel versions 6.4 through 7.0.10 Description A race condition in the eventpoll subsystem allows a local unprivileged user to gain root privileges. The issue occurs in the ep remove function via ep remove file, which clears file-f ep...

7.8CVSS6AI score0.00127EPSS
Exploits0References374
CNNVD
CNNVD
added 2026/05/30 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the epremove function in eventpoll. This function continues to use @file after clearing file-fep,...

5.8AI score0.00123EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/07 2:19 a.m.12 views

SUSE CVE-2026-43074

In the Linux kernel, the following vulnerability has been resolved: eventpoll: defer struct eventpoll free to RCU grace period In certain situations, epfree in eventpoll.c will kfree the epi-ep eventpoll struct while it still being used by another concurrent thread. Defer the kfree to an RCU...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2026/05/06 1:50 p.m.8 views

CVE-2026-43074

A flaw was found in the Linux kernel's eventpoll component. In certain situations, the epfree function in eventpoll.c can prematurely free the eventpoll data structure while it is still being used by another concurrent thread. This use-after-free UAF vulnerability could allow a local attacker to...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/06 12:30 p.m.6 views

EUVD-2026-27558

In the Linux kernel, the following vulnerability has been resolved: eventpoll: defer struct eventpoll free to RCU grace period In certain situations, epfree in eventpoll.c will kfree the epi-ep eventpoll struct while it still being used by another concurrent thread. Defer the kfree to an RCU...

5.8AI score0.00129EPSS
Exploits0References6
NVD
NVD
added 2026/05/06 10:16 a.m.12 views

CVE-2026-43074

In the Linux kernel, the following vulnerability has been resolved: eventpoll: defer struct eventpoll free to RCU grace period In certain situations, epfree in eventpoll.c will kfree the epi-ep eventpoll struct while it still being used by another concurrent thread. Defer the kfree to an RCU...

7.8CVSS0.00129EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2026/05/06 7:21 a.m.6 views

CVE-2026-43074

In the Linux kernel, the following vulnerability has been resolved: eventpoll: defer struct eventpoll free to RCU grace period In certain situations, epfree in eventpoll.c will kfree the epi-ep eventpoll struct while it still being used by another concurrent thread. Defer the kfree to an RCU...

7.8CVSS5.7AI score0.00129EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/06 7:21 a.m.5 views

CVE-2026-43074

In the Linux kernel, the following vulnerability has been resolved: eventpoll: defer struct eventpoll free to RCU grace period In certain situations, epfree in eventpoll.c will kfree the epi-ep eventpoll struct while it still being used by another concurrent thread. Defer the kfree to an RCU...

5.7AI score0.00129EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder