Lucene search
K

56 matches found

NVD
NVD
added 2026/06/25 9:16 a.m.6 views

CVE-2026-53273

In the Linux kernel, the following vulnerability has been resolved: tee: optee: prevent use-after-free when the client exits before the supplicant Commit 70b0d6b0a199 "tee: optee: Fix supplicant wait loop" made the client wait as killable so it can be interrupted during shutdown or after a...

7.8CVSS0.00126EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2026/06/25 8:39 a.m.6 views

CVE-2026-53273

In the Linux kernel, the following vulnerability has been resolved: tee: optee: prevent use-after-free when the client exits before the supplicant Commit 70b0d6b0a199 "tee: optee: Fix supplicant wait loop" made the client wait as killable so it can be interrupted during shutdown or after a...

7.8CVSS5.6AI score0.00126EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/18 5:20 p.m.18 views

CVE-2026-48986 pam_usb: Infinite loop DoS in process-tree walk when parent process exits during authentication

pamusb provides hardware authentication for Linux using removable media. In pamusb 0.9.1 and earlier, usbgetprocessparentid can cause an infinite loop DoS because it does not initialize ppid on failure. In pusblocallogin, the same variable is reused as input and output in a process-tree while loo...

4.7CVSS0.00104EPSS
Exploits0References2
CVE
CVE
added 2026/06/08 12:58 p.m.26 views

CVE-2026-49232

CVE-2026-49232—Routinator exits on any error when accepting incoming HTTP or RTR connections, including recoverable ones like running out of file descriptors. An attacker could trigger this by opening a large number of connections to the HTTP/RTR server, affecting availability for untrusted netwo...

8.7CVSS5.5AI score0.00333EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: bpf: Fixed the exception exit lock checking for subprogs. The processbpfexitfull function passes checklock = !curframe to checkresourceleak, which results in a false negative when bpfthrow is called from a static subprog. This...

5.5CVSS5.8AI score0.001EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/13 3:33 a.m.13 views

SUSE CVE-2026-43469

In the Linux kernel, the following vulnerability has been resolved: xprtrdma: Decrement rereceiving on the early exit paths In the event that rpcrdmapostrecvs fails to create a work request due to memory allocation failure, say or otherwise exits early, we should decrement ep-rereceiving before...

5.5CVSS5.7AI score0.0038EPSS
Exploits0References11
ATTACKERKB
ATTACKERKB
added 2026/05/08 2:22 p.m.7 views

CVE-2026-43469

In the Linux kernel, the following vulnerability has been resolved: xprtrdma: Decrement rereceiving on the early exit paths In the event that rpcrdmapostrecvs fails to create a work request due to memory allocation failure, say or otherwise exits early, we should decrement ep-rereceiving before...

5.7AI score0.0038EPSS
Exploits0References8Affected Software1
SUSE CVE
SUSE CVE
added 2026/05/07 2:17 a.m.8 views

SUSE CVE-2026-43179

In the Linux kernel, the following vulnerability has been resolved: erofs: fix incorrect early exits for invalid metabox-enabled images Crafted EROFS images with metadata compression enabled can trigger incorrect early returns, leading to folio reference leaks. However, this does not cause system...

5.8AI score0.00126EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/07 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-43179

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - erofs: fix incorrect early exits for invalid metabox-enabled images Crafted EROFS images with metadata compression enabled can trigger incorrect early returns,...

5.5CVSS6.2AI score0.00126EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/05/06 11:27 a.m.7 views

CVE-2026-43179

In the Linux kernel, the following vulnerability has been resolved: erofs: fix incorrect early exits for invalid metabox-enabled images Crafted EROFS images with metadata compression enabled can trigger incorrect early returns, leading to folio reference leaks. However, this does not cause system...

5.5CVSS5.7AI score0.00126EPSS
Exploits0
CVE
CVE
added 2026/05/06 11:27 a.m.14 views

CVE-2026-43154

The CVE-2026-43154 issue affects the Linux kernel EROFS filesystem, where crafted EROFS images with valid volume labels trigger incorrect early exits in volume label handling, leading to folio reference leaks. Affected component is the EROFS implementation in the kernel; root cause is improper co...

5.5CVSS5.8AI score0.00126EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/05/06 11:27 a.m.6 views

CVE-2026-43154

In the Linux kernel, the following vulnerability has been resolved: erofs: fix incorrect early exits in volume label handling Crafted EROFS images containing valid volume labels can trigger incorrect early returns, leading to folio reference leaks. However, this does not cause system crashes or...

5.5CVSS5.7AI score0.00126EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.12 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the KVM x86 architecture’s failure to handle the -EBUSY error when checking nested events,...

5.5CVSS5.8AI score0.00119EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.9 views

PT-2026-37519

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description Crafted EROFS images with metadata compression enabled can trigger incorrect early returns, which leads to folio reference leaks. Folio reference leaks occur when the system fails to...

5.5CVSS5.8AI score0.00126EPSS
Exploits0References5
OSV
OSV
added 2026/04/24 3:16 p.m.7 views

DEBIAN-CVE-2026-31663

In the Linux kernel, the following vulnerability has been resolved: xfrm: hold dev ref until after transportfinish NFHOOK After async crypto completes, xfrminputresume calls devput immediately on re-entry before the skb reaches transportfinish. The skb-dev pointer is then used inside NFHOOK and i...

7.8CVSS5.2AI score0.00208EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/24 2:45 p.m.33 views

CVE-2026-31663 xfrm: hold dev ref until after transport_finish NF_HOOK

In the Linux kernel, the following vulnerability has been resolved: xfrm: hold dev ref until after transportfinish NFHOOK After async crypto completes, xfrminputresume calls devput immediately on re-entry before the skb reaches transportfinish. The skb-dev pointer is then used inside NFHOOK and i...

7.8CVSS0.00208EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/04/24 2:45 p.m.6 views

CVE-2026-31663

In the Linux kernel, the following vulnerability has been resolved: xfrm: hold dev ref until after transportfinish NFHOOK After async crypto completes, xfrminputresume calls devput immediately on re-entry before the skb reaches transportfinish. The skb-dev pointer is then used inside NFHOOK and i...

7.8CVSS5.2AI score0.00208EPSS
Exploits0
EUVD
EUVD
added 2026/04/22 3:31 p.m.6 views

EUVD-2026-24917

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix exception exit lock checking for subprogs processbpfexitfull passes checklock = !curframe to checkresourceleak, which is false in cases when bpfthrow is called from a static subprog. This makes checkresourceleak to skip...

5.6AI score0.001EPSS
Exploits0References4
NVD
NVD
added 2026/04/22 2:16 p.m.4 views

CVE-2026-31526

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix exception exit lock checking for subprogs processbpfexitfull passes checklock = !curframe to checkresourceleak, which is false in cases when bpfthrow is called from a static subprog. This makes checkresourceleak to skip...

5.5CVSS0.001EPSS
Exploits0References3
CVE
CVE
added 2026/04/22 1:54 p.m.15 views

CVE-2026-31526

Summary: CVE-2026-31526 concerns the Linux kernel BPF verifier. A defect in exception exits for BPF subprograms allowed ORC unwinding to proceed without releasing user-held locks, risking resource leaks and instability. The root cause: process_bpf_exit_full() could set check_lock=false for except...

5.5CVSS5.6AI score0.001EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder