Lucene search
+L

436 matches found

ATTACKERKB
ATTACKERKB
added 2026/01/21 6:57 a.m.3 views

CVE-2026-22976

In the Linux kernel, the following vulnerability has been resolved: net/sched: schqfq: Fix NULL deref when deactivating inactive aggregate in qfqreset qfqclass-leafqdisc-q.qlen 0 does not imply that the class itself is active. Two qfqclass objects may point to the same leafqdisc. This happens whe...

5.3AI score0.00118EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2026/01/21 6:57 a.m.44 views

CVE-2026-22976

CVE-2026-22976 affects the Linux kernel’s net/sched sch_qfq, where two qfq_class objects can reference the same leaf_qdisc. In certain teardown paths (e.g., when a qdisc is pending destruction via tc_new_tfilter and another qdisc is root-attached), a shared leaf_qdisc may have q.qlen > 0 while...

5.5CVSS5.3AI score0.00118EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2026/01/19 12:12 p.m.17 views

CLSA-2026-1768824748 kernel: Fix of 7 CVEs

fs/proc: fix uaf in procreaddirde CVE-2025-40271 - fs: fix UAF/GPF bug in nilfsmdtdestroy CVE-2022-2978 - Bluetooth: L2CAP: fix "bad unlock balance" in l2capdisconnectrsp CVE-2023-53297 - net: sched: sfb: fix null pointer access issue when sfbinit fails CVE-2022-50356 - ALSA: usb-audio: Fix size...

7.8CVSS6.9AI score0.00519EPSS
Exploits3References1
RedHat Linux
RedHat Linux
added 2026/01/19 1:18 a.m.5 views

kernel: net_sched: hfsc: Fix a potential UAF in hfsc_dequeue() too

In the Linux kernel, the following vulnerability has been resolved: netsched: hfsc: Fix a potential UAF in hfscdequeue too Similarly to the previous patch, we need to safe guard hfscdequeue too. But for this one, we don't have a reliable reproducer...

7.8CVSS5.7AI score0.00179EPSS
Exploits0References5
Redos
Redos
added 2026/01/19 12:0 a.m.9 views

ROS-20260119-7309

A vulnerability in the net/sched/schsfq.c component of the Linux operating system kernel is related to unchecked array indexing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS7.9AI score0.00229EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/12/30 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992580)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992580 advisory. In the Linux kernel, the following vulnerability has been resolved: sched/fair: Don't balance task to its current running CPU We've run into the case that the balanc...

7.8CVSS5.9AI score0.00155EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/12/22 5:42 p.m.10 views

kernel: net: sched: sfb: fix null pointer access issue when sfb_init() fails

A null pointer dereference exists in the linux kernel, such that when sfbinit fails qdisc is NULL, and it will cause gpf issue, leading to damage to the availability of the system...

5.5CVSS7.3AI score0.00191EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/04 12:50 p.m.11 views

kernel: net: sched: sfb: fix null pointer access issue when sfb_init() fails

A null pointer dereference exists in the linux kernel, such that when sfbinit fails qdisc is NULL, and it will cause gpf issue, leading to damage to the availability of the system...

5.5CVSS7.3AI score0.00191EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/12 3:8 p.m.8 views

kernel: net: sched: sfb: fix null pointer access issue when sfb_init() fails

A null pointer dereference exists in the linux kernel, such that when sfbinit fails qdisc is NULL, and it will cause gpf issue, leading to damage to the availability of the system...

5.5CVSS7.3AI score0.00191EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/12 2:44 a.m.5 views

kernel: net_sched: hfsc: Fix a UAF vulnerability in class handling

In the Linux kernel, the following vulnerability has been resolved: netsched: hfsc: Fix a UAF vulnerability in class handling This patch fixes a Use-After-Free vulnerability in the HFSC qdisc class handling. The issue occurs due to a time-of-check/time-of-use condition in hfscchangeclass when...

7.8CVSS6.7AI score0.00174EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/11/12 12:0 a.m.3 views

RHEL 7 : kernel (RHSA-2025:21063)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:21063 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: HID: core: fix...

7.8CVSS7.1AI score0.0025EPSS
Exploits0References14
EUVD
EUVD
added 2025/11/11 3:19 p.m.3 views

EUVD-2025-92050

Malicious code in fairhummingbirdz3n npm...

6.6AI score
Exploits0
RedHat Linux
RedHat Linux
added 2025/11/11 9:13 a.m.3 views

kernel: sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue()

A flaw was found in the HFSC queueing discipline implementation in the Linux kernel. When a packet is enqueued and the child qdisc's peek function is called before properly updating the HFSC queue's length and backlog counters, a race condition can occur. In some cases, the peek operation may...

7.8CVSS7AI score0.00179EPSS
Exploits0References5
EUVD
EUVD
added 2025/11/11 7:31 a.m.1 views

EUVD-2025-79264

Malicious code in fairwormz3n npm...

6.6AI score
Exploits0
OSV
OSV
added 2025/11/11 7:31 a.m.0 views

MAL-2025-102502 Malicious code in fair_worm_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31fe0176745583688bb263a9d98c6c481209217cedb83610d0b0fa97572bffd0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/11/11 7:26 a.m.3 views

EUVD-2025-81948

Malicious code in fairwoodpeckerreplicateautomation npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/11 5:18 a.m.2 views

EUVD-2025-64138

Malicious code in faircranerequirement npm...

6.6AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/11 5:18 a.m.2 views

Malicious code in fair_crane_requirement (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 16b9ac4c993b205e6d165d9a9114000c80c5ffc1aa19061153e0dbfaac415274 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/11 5:18 a.m.2 views

MAL-2025-94416 Malicious code in fair_crane_requirement (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 16b9ac4c993b205e6d165d9a9114000c80c5ffc1aa19061153e0dbfaac415274 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSV
OSV
added 2025/11/11 5:18 a.m.1 views

MAL-2025-94419 Malicious code in fair_tortoise_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 165d6a8900d44329e810d6fe2dcd6f4c68fc8d55e5e39b2d2b3d44c99f22ed1c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
Rows per page
Query Builder