Lucene search
K

23700 matches found

OSV
OSV
added 2026/05/08 2:16 p.m.9 views

UBUNTU-CVE-2025-71299

In the Linux kernel, the following vulnerability has been resolved: spi: cadence-quadspi: Parse DT for flashes with the rest of the DT parsing The recent refactoring of where runtime PM is enabled done in commit f1eb4e792bb1 "spi: spi-cadence-quadspi: Enable pm runtime earlier to avoid imbalance"...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References6
CVE
CVE
added 2026/05/08 1:11 p.m.17 views

CVE-2025-71299

CVE-2025-71299 affects the Linux kernel driver spi_cadence_quadspi. The root cause is a runtime PM interaction during probe: a pm_runtime_disable in error paths could lead to duplicate clock disables when PM is active, especially with missing/broken DT descriptions for flash devices. The document...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the ufshcdaddcommandTrace function in the scsi UFS core component. This function does not check whether...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.11 views

PT-2026-38924

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the spi: cadence-quadspi driver where a runtime PM Power Management disable operation in the probe function error paths can trigger duplicate clock disables. This occu...

5.5CVSS5.4AI score0.00121EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2026/05/08 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2025-71299

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - spi: cadence-quadspi: Parse DT for flashes with the rest of the DT parsing The recent refactoring of where runtime PM is enabled done in commit f1eb4e792bb1 spi...

5.5CVSS6.2AI score0.00121EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/07 2:7 p.m.10 views

CVE-2026-43275

A flaw was found in the Linux kernel's Universal Flash Storage UFS core driver. A race condition can occur during system suspend when the runtime power management RPM level is set to zero. This allows the driver to attempt to access the host controller after the system has entered a deep power-do...

5.5CVSS5.8AI score0.00091EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.12 views

PT-2026-37615

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists in the UFS core driver when the runtime power management level is set to UFS PM LVL 0. In this state, the device power mode and link state remain active, but the...

4.7CVSS5.4AI score0.00091EPSS
Exploits0
Snyk
Snyk
added 2026/05/05 9:34 p.m.7 views

Directory Traversal

Overview getgrav/grav is a Modern, Crazy Fast, Ridiculously Easy and Amazingly Powerful Flat-File CMS. Affected versions of this package are vulnerable to Directory Traversal via the FormFlash process when the sessionid parameter mapped to form-flash-id in POST requests is not properly sanitized...

9.3CVSS6.3AI score0.00521EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.12 views

PT-2026-37274

Name of the Vulnerable Software and Affected Versions Grav versions prior to 2.0.0-beta.2 Description A path traversal issue exists within the FormFlash core component. An unauthenticated attacker can manipulate the session id passed via the form-flash-id parameter in POST requests to traverse th...

9.3CVSS5.9AI score0.00521EPSS
Exploits1References9
AstraLinux
AstraLinux
added 2026/05/03 11:59 p.m.3 views

Astra Linux - уязвимость в linux

In the Linux kernel 5.0.21, mounting a crafted f2fs filesystem image can lead to a slab-out-of-bounds read access in f2fsbuildsegmentmanager in fs/f2fs/segment.c. This issue is related to initminmaxmtime in fs/f2fs/segment.c because the second argument to getsegentry is not validated...

7.8CVSS6.7AI score0.02014EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/05/01 8:33 p.m.7 views

CVE-2026-31715

A flaw was found in the Linux kernel's Flash-Friendly File System f2fs. A use-after-free vulnerability exists due to incorrect handling of page counts during concurrent write operations and unmounting. This can lead to a NULL pointer dereference, causing the system to panic and resulting in a...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/01 8:33 p.m.5 views

CVE-2026-31714

A flaw was found in the Linux kernel's F2FS Flash-Friendly File System component. This vulnerability, a memory leak, occurs within the f2fsrename function. A local attacker could exploit this by repeatedly performing file rename operations, leading to a gradual consumption of system memory. Over...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/01 7:59 p.m.6 views

CVE-2026-31702

A flaw was found in the Linux kernel's F2FS Flash-Friendly File System component. A use-after-free vulnerability exists in the f2fscompresswriteendio function. This flaw is caused by a race condition during the compressed writeback completion path, where the system attempts to access memory that...

7.8CVSS5.8AI score0.00119EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the improper memory release in the fscryptsetupfilename function within f2fsrename. This could le...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.5 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013330)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013330 advisory. In the Linux kernel, the following vulnerability has been resolved: powerpc/rtasflash: allow user copy to flash block cache objects With hardened usercopy enabled...

7.8CVSS6.2AI score0.00153EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1050a Security Update: kernel (UTSA-2026-007000)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007000 advisory. In the Linux kernel, the following vulnerability has been resolved: powerpc/rtasflash: allow user copy to flash block cache objects With hardened usercopy enabled...

7.8CVSS6.2AI score0.00153EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.9 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007485)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007485 advisory. In the Linux kernel, the following vulnerability has been resolved: mtd: maps: pxa2xx-flash: fix memory leak in probe Free 'info' upon remapping error to avoid a...

5.5CVSS5.8AI score0.00149EPSS
Exploits0References4
Redos
Redos
added 2026/04/14 12:0 a.m.5 views

ROS-20260414-73-0061

A vulnerability in the f2fsdecompresscluster function of the fs/f2fs/compress.c module of the F2FS file system of the Linux kernel is related to insufficient resource locking. Exploitation of the vulnerability may allow an intruder to affect the integrity and availability of protected information...

7.8CVSS5.8AI score0.00142EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2026/04/09 12:0 a.m.3 views

Vulnerability Detection with Interprocedural Context in Multiple Languages: Assessing Effectiveness and Cost of Modern LLMs

Large Language Models LLMs have been a promising way for automated vulnerability detection. However, most prior studies have explored the use of LLMs to detect vulnerabilities only within single functions, disregarding those related to interprocedural dependencies. These studies overlook...

5.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/08 12:0 a.m.6 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006714)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006714 advisory. In the Linux kernel, the following vulnerability has been resolved: powerpc/rtasflash: allow user copy to flash block cache objects With hardened usercopy enabled...

7.8CVSS5.8AI score0.00153EPSS
Exploits0References4
Rows per page
Query Builder