Lucene search
K

446 matches found

CVE
CVE
added 2026/04/22 4:8 p.m.22 views

CVE-2026-35352

CVE-2026-35352 affects the mkfifo utility in uutils coreutils. A TOCTOU race exists: the tool creates a FIFO and then performs a path-based chmod. A local attacker with write access to the parent directory can replace the newly created FIFO with a symbolic link between the two operations, causing...

7CVSS5.9AI score0.00147EPSS
Exploits1References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/22 4:8 p.m.4 views

CVE-2026-35352

A Time-of-Check to Time-of-Use TOCTOU race condition exists in the mkfifo utility of uutils coreutils. The utility creates a FIFO and then performs a path-based chmod to set permissions. A local attacker with write access to the parent directory can swap the newly created FIFO for a symbolic link...

7CVSS5.9AI score0.00147EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/04/22 4:7 p.m.4 views

CVE-2026-35341 uutils coreutils mkfifo Unauthorized Permission Change on Existing Files

A vulnerability in uutils coreutils mkfifo allows for the unauthorized modification of permissions on existing files. When mkfifo fails to create a FIFO because a file already exists at the target path, it fails to terminate the operation for that path and continues to execute a follow-up...

7.1CVSS5.9AI score0.00165EPSS
Exploits1References1
CVE
CVE
added 2026/04/22 4:7 p.m.20 views

CVE-2026-35341

The CVE-2026-35341 entry concerns uutils coreutils mkfifo. The vulnerability arises when mkfifo tries to create a FIFO but a file already exists at the target path; the operation for that path does not terminate and a follow-up set_permissions call executes, changing the existing file’s permissio...

7.1CVSS5.9AI score0.00165EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/04/22 4:7 p.m.39 views

CVE-2026-35341 uutils coreutils mkfifo Unauthorized Permission Change on Existing Files

A vulnerability in uutils coreutils mkfifo allows for the unauthorized modification of permissions on existing files. When mkfifo fails to create a FIFO because a file already exists at the target path, it fails to terminate the operation for that path and continues to execute a follow-up...

7.1CVSS0.00165EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.5 views

PT-2026-34488

Name of the Vulnerable Software and Affected Versions uutils coreutils affected versions not specified Description A Time-of-Check to Time-of-Use TOCTOU race condition exists in the mkfifo utility. This occurs when the utility creates a FIFO and subsequently performs a path-based chmod to set...

7CVSS5.5AI score0.00147EPSS
Exploits1References15
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-012961)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-012961 advisory. In the Linux kernel, the following vulnerability has been resolved: serial: sc16is7xx: convert from raw to noinc regmap functions for FIFO The SC16IS7XX IC supports ...

5.5CVSS6.3AI score0.00289EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1050a Security Update: kernel (UTSA-2026-006890)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006890 advisory. In the Linux kernel, the following vulnerability has been resolved: serial: 8250: fix panic due to PSLVERR When the PSLVERRRESPEN parameter is set to 1, the device...

5.5CVSS5.6AI score0.00157EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/08 12:0 a.m.5 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006746)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006746 advisory. In the Linux kernel, the following vulnerability has been resolved: serial: 8250: fix panic due to PSLVERR When the PSLVERRRESPEN parameter is set to 1, the device...

5.5CVSS5.8AI score0.00157EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/08 12:0 a.m.8 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006732)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006732 advisory. In the Linux kernel, the following vulnerability has been resolved: serial: sc16is7xx: convert from raw to noinc regmap functions for FIFO The SC16IS7XX IC supports ...

5.5CVSS6.7AI score0.00289EPSS
Exploits0References3
Redos
Redos
added 2026/03/17 12:0 a.m.8 views

ROS-20260317-73-0023

A vulnerability in the fxls8962affifoflush function of the iio component of the Linux operating system kernel is related to memory utilization after it has been freed. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

7.8CVSS5.7AI score0.00151EPSS
Exploits0
Redos
Redos
added 2026/02/03 12:0 a.m.8 views

ROS-20260203-73-0036

A vulnerability in the stlsm6dsxreadfifo function of the stlsm6dsxbuffer.c component of the Linux kernel is related to the execution of a loop with an unreachable exit condition. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS5.7AI score0.00127EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: iio: imu: stlsm6dsx: fixed a possible lock-up in stlsm6dsxreadfifo This issue prevents stlsm6dsxreadfifo from falling into an infinite loop in the case where patternlen is equal to zero, and when the device’s FIFO is not empty...

5.5CVSS6.3AI score0.00127EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: serial: 8250: Fix for panic due to PSLVERR When the PSLVERRRESPEN parameter is set to 1, the device generates an error response if an attempt is made to read an empty RBR Receive Buffer Register while the FIFO is enabled. In...

5.5CVSS6.4AI score0.00157EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-37969)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-37969 advisory. - In the Linux kernel, the following vulnerability has been resolved: iio: imu: stlsm6dsx: fix possible lockup...

5.5CVSS6.7AI score0.00127EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-37970)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-37970 advisory. - In the Linux kernel, the following vulnerability has been resolved: iio: imu: stlsm6dsx: fix possible lockup...

5.5CVSS6.7AI score0.00127EPSS
Exploits0References2
EUVD
EUVD
added 2025/12/30 3:30 p.m.5 views

EUVD-2023-60403

In the Linux kernel, the following vulnerability has been resolved: mlx5: fix skb leak while fifo resync and push During ptp resync operation SKBs were poped from the fifo but were never freed neither by napiconsume nor by devkfreeskbany. Add call to napiconsumeskb to properly free SKBs. Another...

6AI score0.00166EPSS
Exploits0References4
NVD
NVD
added 2025/12/30 1:16 p.m.9 views

CVE-2023-54238

In the Linux kernel, the following vulnerability has been resolved: mlx5: fix skb leak while fifo resync and push During ptp resync operation SKBs were poped from the fifo but were never freed neither by napiconsume nor by devkfreeskbany. Add call to napiconsumeskb to properly free SKBs. Another...

0.00166EPSS
Exploits0References3
OSV
OSV
added 2025/12/30 1:16 p.m.11 views

UBUNTU-CVE-2022-50876

In the Linux kernel, the following vulnerability has been resolved: usb: musb: Fix musbgadget.c rxstate overflow bug The usb function device call musbgadgetqueue adds the passed request to musbep::reqlist,If the request-length musbep-packetsz and isbuffermappedreq return false,the rxstate will co...

5.8AI score0.00196EPSS
Exploits0References12
UbuntuCve
UbuntuCve
added 2025/12/30 1:16 p.m.4 views

CVE-2023-54238

In the Linux kernel, the following vulnerability has been resolved: mlx5: fix skb leak while fifo resync and push During ptp resync operation SKBs were poped from the fifo but were never freed neither by napiconsume nor by devkfreeskbany. Add call to napiconsumeskb to properly free SKBs. Another...

5.7AI score0.00166EPSS
Exploits0References5
Rows per page
Query Builder