Lucene search
K

56 matches found

Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.7 views

PT-2026-51864

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the netfilter module where the nft ct expect obj eval function allocates an expectation and may call nf ct expect related, but fails to drop its local reference. This...

5.5CVSS5.9AI score0.00128EPSS
Exploits0References21
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.18 views

Linux Distros Unpatched Vulnerability : CVE-2026-46053

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: rds: fix MR cleanup on copy error rdsrdmamap hands sg/pages ownership to the transport after getmr succeeds. If copying the generated cookie back to user...

7.8CVSS6AI score0.00129EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/05/08 2:21 p.m.9 views

CVE-2026-43363

In the Linux kernel, the following vulnerability has been resolved: x86/apic: Disable x2apic on resume if the kernel expects so When resuming from s2ram, firmware may re-enable x2apic mode, which may have been disabled by the kernel during boot either because it doesn't support IRQ remapping or f...

5.5CVSS5.6AI score0.00123EPSS
Exploits0
OSV
OSV
added 2026/05/08 2:21 p.m.1 views

CVE-2026-43363 x86/apic: Disable x2apic on resume if the kernel expects so

In the Linux kernel, the following vulnerability has been resolved: x86/apic: Disable x2apic on resume if the kernel expects so When resuming from s2ram, firmware may re-enable x2apic mode, which may have been disabled by the kernel during boot either because it doesn't support IRQ remapping or f...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References11
ATTACKERKB
ATTACKERKB
added 2026/05/06 7:40 a.m.8 views

CVE-2026-43116

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: ensure safe access to master conntrack Holding reference on the expectation is not sufficient, the master conntrack object can just go away, making exp-master invalid. To access exp-master safely: - Grab the...

7.8CVSS5.5AI score0.00096EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2026/05/06 7:40 a.m.1 views

CVE-2026-43116 netfilter: ctnetlink: ensure safe access to master conntrack

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: ensure safe access to master conntrack Holding reference on the expectation is not sufficient, the master conntrack object can just go away, making exp-master invalid. To access exp-master safely: - Grab the...

7.8CVSS5.5AI score0.00096EPSS
Exploits0References9
EUVD
EUVD
added 2026/05/01 2:15 p.m.7 views

EUVD-2026-26625

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: zero expect NAT fields when CTAEXPECTNAT absent ctnetlinkallocexpect allocates expectations from a non-zeroing slab cache via nfctexpectalloc. When CTAEXPECTNAT is not present in the netlink message, savedad...

5.8AI score0.00129EPSS
Exploits0References8
OSV
OSV
added 2026/03/09 11:40 a.m.15 views

CLSA-2026-1773043650 kernel: Fix of 10 CVEs

ACPICA: Add AMLNOOPERANDRESOLVE flag to Timer CVE-2023-53395 - net: ppp: Add bound checking for skb data on pppsynctxmung CVE-2025-37749 - ata: ahci: Match EMMAXSLOTS with SATAPMPMAXPORTS CVE-2022-50315 - ext2: Check block size validity during mount CVE-2023-53569 - gfs2: Fix possible data races...

7.8CVSS5.8AI score0.00296EPSS
Exploits2References1
NVD
NVD
added 2026/01/13 4:16 p.m.12 views

CVE-2025-71072

In the Linux kernel, the following vulnerability has been resolved: shmem: fix recovery on rename failures mapletree insertions can fail if we are seriously short on memory; simpleoffsetrename does not recover well if it runs into that. The same goes for simpleoffsetrenameexchange. Moreover,...

5.5CVSS0.00121EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/11/23 9:31 p.m.6 views

CVE-2025-47913

A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSHAGENTSUCCESS 0x06 message to requests expecting typed replies e.g., List, Sign. The unmarshal layer produces an unexpected message type, which the client code does not handle,...

7.5CVSS6.5AI score0.00632EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-2117

Malware in sbrugna...

7.5CVSS7.5AI score0.00834EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.5 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-403670)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-403670 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: use helper function to calculate expect ID Delete expectation path is missi...

5.5CVSS6.2AI score0.00239EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2025/09/13 1:2 a.m.4 views

netfilter: ctnetlink: remove refcounting in expectation dumpers

...

5.5CVSS7AI score0.00154EPSS
Exploits0
OSV
OSV
added 2025/09/11 5:15 p.m.7 views

AZL-70828 CVE-2025-39764 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: remove refcounting in expectation dumpers Same pattern as previous patch: do not keep the expectation object alive via refcount, only store a cookie value and then use that as the skip hint for dump...

5.5CVSS5.6AI score0.00154EPSS
Exploits0References1
OSV
OSV
added 2025/09/11 5:15 p.m.5 views

DEBIAN-CVE-2025-39764

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: remove refcounting in expectation dumpers Same pattern as previous patch: do not keep the expectation object alive via refcount, only store a cookie value and then use that as the skip hint for dump...

5.5CVSS5.2AI score0.00154EPSS
Exploits0References1
OSV
OSV
added 2025/09/11 5:15 p.m.6 views

AZL-67160 CVE-2025-39764 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: remove refcounting in expectation dumpers Same pattern as previous patch: do not keep the expectation object alive via refcount, only store a cookie value and then use that as the skip hint for dump...

5.5CVSS5.6AI score0.00154EPSS
Exploits0References1
NVD
NVD
added 2025/09/11 5:15 p.m.7 views

CVE-2025-39764

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: remove refcounting in expectation dumpers Same pattern as previous patch: do not keep the expectation object alive via refcount, only store a cookie value and then use that as the skip hint for dump...

5.5CVSS0.00154EPSS
Exploits0References9
OSV
OSV
added 2025/09/11 5:15 p.m.8 views

UBUNTU-CVE-2025-39764

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: remove refcounting in expectation dumpers Same pattern as previous patch: do not keep the expectation object alive via refcount, only store a cookie value and then use that as the skip hint for dump...

5.5CVSS5.7AI score0.00154EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/09/11 4:52 p.m.13 views

CVE-2025-39764 netfilter: ctnetlink: remove refcounting in expectation dumpers

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: remove refcounting in expectation dumpers Same pattern as previous patch: do not keep the expectation object alive via refcount, only store a cookie value and then use that as the skip hint for dump...

0.00154EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2025/09/11 4:52 p.m.4 views

CVE-2025-39764

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: remove refcounting in expectation dumpers Same pattern as previous patch: do not keep the expectation object alive via refcount, only store a cookie value and then use that as the skip hint for dump...

5.5CVSS5.5AI score0.00154EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder