Lucene search
+L

96 matches found

redhatcve
redhatcve
added 2026/05/28 12:34 a.m.13 views

CVE-2026-45936

A flaw was found in the Linux kernel's goldfish power supply driver. A race condition during driver removal or initialization can lead to a use-after-free vulnerability. This allows an interrupt to access a freed or uninitialized power supply handle, which can cause the system to crash, resulting...

7.8CVSS5.8AI score0.00126EPSS
Exploits0References4
osv
osv
added 2026/05/27 12:17 p.m.3 views

CVE-2026-45936 power: supply: goldfish: Fix use-after-free in power_supply_changed()

In the Linux kernel, the following vulnerability has been resolved: power: supply: goldfish: Fix use-after-free in powersupplychanged Using the devm variant for requesting IRQ before the devm variant for allocating/registering the powersupply handle, means that the powersupply handle will be...

7.8CVSS6.5AI score0.00126EPSS
Exploits0References11
debiancve
debiancve
added 2026/05/27 12:17 p.m.11 views

CVE-2026-45936

In the Linux kernel, the following vulnerability has been resolved: power: supply: goldfish: Fix use-after-free in powersupplychanged Using the devm variant for requesting IRQ before the devm variant for allocating/registering the powersupply handle, means that the powersupply handle will be...

7.8CVSS5.7AI score0.00126EPSS
Exploits0
cve
cve
added 2026/05/27 12:17 p.m.46 views

CVE-2026-45936

The CVE-2026-45936 entry concerns a race in the Linux kernel power_supply_changed() handling for Goldfish power supplies. The issue arises when using devm_ allocations for IRQs before the power_supply handle is allocated/registered, creating a window where an interrupt fires after the power_suppl...

7.8CVSS5.8AI score0.00126EPSS
Exploits0References8Affected Software1
ubuntucve
ubuntucve
added 2026/05/27 12:0 a.m.10 views

CVE-2026-45936

In the Linux kernel, the following vulnerability has been resolved: power: supply: goldfish: Fix use-after-free in powersupplychanged Using the devm variant for requesting IRQ before the devm variant for allocating/registering the powersupply handle, means that the powersupply handle will be...

7.8CVSS6.6AI score0.00126EPSS
Exploits0References10
cnnvd
cnnvd
added 2026/05/27 12:0 a.m.13 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the fact that IRQ requests in power/supply/goldfish are registered before powersupply is allocate...

5.8AI score0.00126EPSS
Exploits0References8
astralinux
astralinux
added 2026/05/20 5:53 a.m.10 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: In tty: goldfish, use ttyportdestroy to destroy the port. In goldfishttyprobe, the port initialized through ttyportinit should be destroyed in error paths. In goldfishttyremove, qtty-port also should be destroyed; otherwise,...

5.5CVSS6.2AI score0.00246EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: tty: goldfish: Fix freeirq on remove Pass the correct devid to freeirq to avoid this error when the driver is unbound. WARNING: CPU: 0, PID: 30, at kernel/irq/manage.c:1895 – freeirq Trying to free an already freed IRQ 65. Call...

7.8CVSS6.2AI score0.0026EPSS
Exploits0References2
nessus
nessus
added 2025/12/11 12:0 a.m.6 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991184)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991184 advisory. In the Linux kernel, the following vulnerability has been resolved: tty: goldfish: Use ttyportdestroy to destroy port In goldfishttyprobe, the port initialized throu...

5.5CVSS5.7AI score0.00246EPSS
Exploits0References4
euvd
euvd
added 2025/11/12 3:4 a.m.5 views

EUVD-2025-117273

Malicious code in legal-plum-goldfish npm...

6.6AI score
Exploits0
euvd
euvd
added 2025/11/12 3:4 a.m.3 views

EUVD-2025-117336

Malicious code in handicapped-crimson-goldfish npm...

6.6AI score
Exploits0
euvd
euvd
added 2025/11/12 3:4 a.m.3 views

EUVD-2025-117108

Malicious code in scornful-lime-goldfish npm...

6.6AI score
Exploits0
osv
osv
added 2025/11/11 10:56 p.m.4 views

MAL-2025-131861 Malicious code in absent_goldfish_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d022e4d5962c610622f7a6aa4443dd1ccfc7e1b972c2fb19cbf8eea5b0addb5b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
ossf
ossf
added 2025/11/11 10:56 p.m.5 views

Malicious code in mighty_goldfish_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2adf5a80867c1110ec24c679f8b095e8b449186df7c8f8688122ce9d0cdff49 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
osv
osv
added 2025/11/11 8:46 p.m.3 views

MAL-2025-125575 Malicious code in compatible_goldfish_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1b2b6d9b7008b15357dad44c51f9c5e096c3c2ef792155208ac5adadd6299657 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
euvd
euvd
added 2025/11/11 8:46 p.m.1 views

EUVD-2025-102699

Malicious code in reducedgoldfishz3n npm...

6.6AI score
Exploits0
euvd
euvd
added 2025/11/11 8:46 p.m.3 views

EUVD-2025-98433

Malicious code in grumpygoldfishz3n npm...

6.6AI score
Exploits0
ossf
ossf
added 2025/11/11 8:46 p.m.5 views

Malicious code in commercial_goldfish_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 59e62be4bce3ee22ffe3dec82496b2503987eacef79b1ce9af4170732aea1005 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
euvd
euvd
added 2025/11/11 8:46 p.m.2 views

EUVD-2025-100330

Malicious code in commercialgoldfishz3n npm...

6.6AI score
Exploits0
osv
osv
added 2025/11/11 8:46 p.m.2 views

MAL-2025-126969 Malicious code in grumpy_goldfish_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1dd466a447c5ca9a6b61d5949701f4f1cb2cc5797c379e8a6f052884db73ab7c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
Rows per page
Query Builder