Lucene search
K

208 matches found

CNNVD
CNNVD
added 2026/04/06 12:0 a.m.9 views

Rizin 安全漏洞

Rizin is a free open-source reverse-engineering framework developed by the Rizin organization. It is used for analyzing binary files, disassembling code, debugging programs, as a forensics tool, and as a command-line hexadecimal editor capable of opening disk files. Rizin has a security...

6.2CVSS5.8AI score0.00149EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/04/06 12:0 a.m.3 views

CVE-2026-31053

A double free vulnerability exists in librz/bin/format/le/le.c in the function leloadfixuprecord. When processing malformed or circular LE fixup chains, relocation entries may be freed multiple times during error handling. A specially crafted LE binary can trigger heap corruption and cause the...

5.8AI score0.00149EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/04/06 12:0 a.m.5 views

PT-2026-30615

A double free vulnerability exists in librz/bin/format/le/le.c in the function le load fixup record. When processing malformed or circular LE fixup chains, relocation entries may be freed multiple times during error handling. A specially crafted LE binary can trigger heap corruption and cause the...

5.8AI score0.00149EPSS
Exploits1References3
CVE
CVE
added 2026/04/06 12:0 a.m.10 views

CVE-2026-31053

The CVE-2026-31053 vulnerability affects librz, specifically the le_load_fixup_record() function in librz/bin/format/le/le.c. It is a double-free issue that can cause heap corruption when processing malformed or circular LE fixup chains, potentially leading to denial-of-service via a crash. The i...

6.2CVSS5.8AI score0.00149EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2026/04/06 12:0 a.m.32 views

CVE-2026-31053

A double free vulnerability exists in librz/bin/format/le/le.c in the function leloadfixuprecord. When processing malformed or circular LE fixup chains, relocation entries may be freed multiple times during error handling. A specially crafted LE binary can trigger heap corruption and cause the...

0.00149EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2026/03/19 12:30 a.m.4 views

SUSE CVE-2025-71270

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Enable exception fixup for specific ADE subcode This patch allows the LoongArch BPF JIT to handle recoverable memory access errors generated by BPFPROBEMEM instructions. When a BPF program performs memory access...

5.6AI score0.00121EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/18 6:31 p.m.3 views

EUVD-2025-208844

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Enable exception fixup for specific ADE subcode This patch allows the LoongArch BPF JIT to handle recoverable memory access errors generated by BPFPROBEMEM instructions. When a BPF program performs memory access...

5.7AI score0.00121EPSS
Exploits0References6
NVD
NVD
added 2026/03/18 6:16 p.m.4 views

CVE-2025-71270

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Enable exception fixup for specific ADE subcode This patch allows the LoongArch BPF JIT to handle recoverable memory access errors generated by BPFPROBEMEM instructions. When a BPF program performs memory access...

5.5CVSS0.00121EPSS
Exploits0References4
OSV
OSV
added 2026/03/18 6:16 p.m.9 views

UBUNTU-CVE-2025-71270

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Enable exception fixup for specific ADE subcode This patch allows the LoongArch BPF JIT to handle recoverable memory access errors generated by BPFPROBEMEM instructions. When a BPF program performs memory access...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/03/18 5:40 p.m.22 views

CVE-2025-71270 LoongArch: Enable exception fixup for specific ADE subcode

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Enable exception fixup for specific ADE subcode This patch allows the LoongArch BPF JIT to handle recoverable memory access errors generated by BPFPROBEMEM instructions. When a BPF program performs memory access...

0.00121EPSS
Exploits0References4
OSV
OSV
added 2026/03/18 5:40 p.m.6 views

CVE-2025-71270 LoongArch: Enable exception fixup for specific ADE subcode

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Enable exception fixup for specific ADE subcode This patch allows the LoongArch BPF JIT to handle recoverable memory access errors generated by BPFPROBEMEM instructions. When a BPF program performs memory access...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References7
CVE
CVE
added 2026/03/18 5:40 p.m.10 views

CVE-2025-71270

CVE-2025-71270 concerns LoongArch Linux kernel: the fix enables exception handling for BPF memory accesses in JIT-compiled code. Specifically, do_ade() now handles EX_TYPE_BPF memory access exceptions during BPF_PROBE_MEM* operations by invoking the common fixup routine, stabilizing recoverable m...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/02/14 4:27 p.m.7 views

CVE-2026-23194 rust_binder: correctly handle FDA objects of length zero

In the Linux kernel, the following vulnerability has been resolved: rustbinder: correctly handle FDA objects of length zero Fix a bug where an empty FDA fd array object with 0 fds would cause an out-of-bounds error. The previous implementation used skip == 0 to mean "this is a pointer fixup", but...

7.8CVSS5.5AI score0.00112EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/02/14 4:27 p.m.32 views

CVE-2026-23194 rust_binder: correctly handle FDA objects of length zero

In the Linux kernel, the following vulnerability has been resolved: rustbinder: correctly handle FDA objects of length zero Fix a bug where an empty FDA fd array object with 0 fds would cause an out-of-bounds error. The previous implementation used skip == 0 to mean "this is a pointer fixup", but...

0.00112EPSS
Exploits0References2
CVE
CVE
added 2026/02/14 4:27 p.m.44 views

CVE-2026-23194

CVE-2026-23194 relates to the Linux kernel rust_binder handling of FDA objects of length zero. The issue was a out-of-bounds write when an empty fd-array (FDA) with 0 fds was processed, caused by treating skip == 0 as a special “pointer fixup.” The fix replaces this zero-special-case pattern (ori...

7.8CVSS5.5AI score0.00112EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/14 4:27 p.m.6 views

CVE-2026-23194

In the Linux kernel, the following vulnerability has been resolved: rustbinder: correctly handle FDA objects of length zero Fix a bug where an empty FDA fd array object with 0 fds would cause an out-of-bounds error. The previous implementation used skip == 0 to mean "this is a pointer fixup", but...

5.4AI score0.00112EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.3 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005154)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005154 advisory. In the Linux kernel, the following vulnerability has been resolved: btrfs: wait for fixup workers before stopping cleaner kthread during umount During unmount, at...

5.5CVSS6.8AI score0.0029EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-22033)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-22033 advisory. - In the Linux kernel, the following vulnerability has been resolved: arm64: Don't call NULL in...

5.5CVSS6AI score0.00176EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001235)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001235 advisory. The cpreportfixup function in drivers/hid/hid-cypress.c in the Linux kernel 3.2 and 4.x before 4.9.4 allows physically proximate attackers to cause a denial of servi...

6.6CVSS7.4AI score0.00454EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001914)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001914 advisory. The reportfixup functions in the HID subsystem in the Linux kernel before 3.16.2 might allow physically proximate attackers to cause a denial of service out-of-bound...

4.7CVSS6.9AI score0.00397EPSS
Exploits0References22
Rows per page
Query Builder