Lucene search
K

378 matches found

Positive Technologies
Positive Technologies
added 2025/12/08 12:0 a.m.7 views

PT-2025-49463

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists within the ext4 filesystem code, specifically in the ext4 fc record modified inode function. The issue arises because krealloc may return NULL, potentially preventin...

7.8CVSS6.8AI score0.00465EPSS
Exploits2References896
Microsoft CVE
Microsoft CVE
added 2025/12/06 9:1 a.m.4 views

nvme: nvme-fc: Ensure ->ioerr_work is cancelled in nvme_fc_delete_ctrl()

...

6.6CVSS7AI score0.00171EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/12/05 12:25 a.m.3 views

SUSE CVE-2025-40261

In the Linux kernel, the following vulnerability has been resolved: nvme: nvme-fc: Ensure -ioerrwork is cancelled in nvmefcdeletectrl nvmefcdeleteassocation waits for pending I/O to complete before returning, and an error can cause -ioerrwork to be queued after cancelworksync had been called. Mov...

5.5CVSS6.4AI score0.00171EPSS
Exploits0References21
OSV
OSV
added 2025/12/04 4:16 p.m.11 views

AZL-71366 CVE-2025-40261 affecting package kernel for versions less than 6.6.119.3-1

In the Linux kernel, the following vulnerability has been resolved: nvme: nvme-fc: Ensure -ioerrwork is cancelled in nvmefcdeletectrl nvmefcdeleteassocation waits for pending I/O to complete before returning, and an error can cause -ioerrwork to be queued after cancelworksync had been called. Mov...

5.8AI score0.00171EPSS
Exploits0References1
OSV
OSV
added 2025/12/04 4:16 p.m.2 views

UBUNTU-CVE-2025-40261

In the Linux kernel, the following vulnerability has been resolved: nvme: nvme-fc: Ensure -ioerrwork is cancelled in nvmefcdeletectrl nvmefcdeleteassocation waits for pending I/O to complete before returning, and an error can cause -ioerrwork to be queued after cancelworksync had been called. Mov...

5.8AI score0.00171EPSS
Exploits0References33
EUVD
EUVD
added 2025/11/24 10:42 p.m.4 views

EUVD-2025-199191

Malicious code in arc-cli-fc npm...

6.6AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/24 10:42 p.m.8 views

Malicious code in arc-cli-fc (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6214b07e01a7c332d90dc0c32f225b76b8a3a8733256c42038ba1a6494a1794 The package arc-cli-fc was found to contain malicious code. Source: ghsa-malware 2b66690547df94d6cac227e7ed304d7408b2344131612b96fd60575122bf7cbe Any...

6.9AI score
Exploits0References4
OSV
OSV
added 2025/11/24 10:42 p.m.3 views

MAL-2025-191064 Malicious code in arc-cli-fc (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6214b07e01a7c332d90dc0c32f225b76b8a3a8733256c42038ba1a6494a1794 The package arc-cli-fc was found to contain malicious code. Source: ghsa-malware 2b66690547df94d6cac227e7ed304d7408b2344131612b96fd60575122bf7cbe Any...

6.8AI score
Exploits0References4
Snyk
Snyk
added 2025/11/24 4:24 p.m.2 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

9.8CVSS6.8AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.15 views

TencentOS Server 4: kernel (TSSA-2025:0429)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0429 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

8.8CVSS6.8AI score0.0099EPSS
Exploits0References30
SUSE CVE
SUSE CVE
added 2025/11/14 12:24 a.m.3 views

SUSE CVE-2025-40171

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: move lsop put work to nvmetfclsreqop It's possible for more than one async command to be in flight from nvmetfcsendlsreq. For each command, a tgtport reference is taken. In the current code, only one put work item is...

5.3CVSS6.1AI score0.00171EPSS
Exploits0References20
RedhatCVE
RedhatCVE
added 2025/11/13 2:3 p.m.3 views

CVE-2025-40171

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: move lsop put work to nvmetfclsreqop It’s possible for more than one async command to be in flight from nvmetfcsendlsreq. For each command, a tgtport reference is taken. In the current code, only one put work item is...

5.5CVSS5.9AI score0.00171EPSS
Exploits0References4
NVD
NVD
added 2025/11/12 11:15 a.m.8 views

CVE-2025-40171

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: move lsop put work to nvmetfclsreqop It’s possible for more than one async command to be in flight from nvmetfcsendlsreq. For each command, a tgtport reference is taken. In the current code, only one put work item is...

0.00171EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/11/12 10:46 a.m.10 views

CVE-2025-40171 nvmet-fc: move lsop put work to nvmet_fc_ls_req_op

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: move lsop put work to nvmetfclsreqop It’s possible for more than one async command to be in flight from nvmetfcsendlsreq. For each command, a tgtport reference is taken. In the current code, only one put work item is...

0.00171EPSS
Exploits0References6
CVE
CVE
added 2025/11/12 10:46 a.m.14 views

CVE-2025-40171

CVE-2025-40171: In the Linux kernel nvmet-fc driver, multiple async commands could leak references due to queuing only a single put_work item in __nvmet_fc_send_ls_req. The fix moves the work item to the nvmet_fc_ls_req_op struct (which tracks all resources for the command), preventing reference ...

5.8AI score0.00171EPSS
Exploits0References6
OSV
OSV
added 2025/11/12 10:46 a.m.4 views

CVE-2025-40171 nvmet-fc: move lsop put work to nvmet_fc_ls_req_op

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: move lsop put work to nvmetfclsreqop It’s possible for more than one async command to be in flight from nvmetfcsendlsreq. For each command, a tgtport reference is taken. In the current code, only one put work item is...

6.1AI score0.00171EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2025/11/12 10:46 a.m.5 views

CVE-2025-40171

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: move lsop put work to nvmetfclsreqop It’s possible for more than one async command to be in flight from nvmetfcsendlsreq. For each command, a tgtport reference is taken. In the current code, only one put work item is...

5.1AI score0.00171EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/06 12:0 a.m.4 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990494)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990494 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: libfc: Fix potential NULL pointer dereference in fclportptpsetup fclportptpsetup did not...

5.5CVSS5.9AI score0.00249EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.9 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990041)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990041 advisory. In the Linux kernel, the following vulnerability has been resolved: nvme-fc: do not wait in vain when unloading module The module exit path has race between deleting...

4.4CVSS6.1AI score0.00218EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989724)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989724 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: filter out EXT4FCREPLAY from on-disk superblock field sstate The EXT4FCREPLAY bit in...

5.5CVSS6.1AI score0.00268EPSS
Exploits0References4
Rows per page
Query Builder