CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

25 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: mm: thp: Deny THP for files on anonymous inodes The filethpenabled function incorrectly allows THP for files on anonymous inodes e.g., guestmemfd and secretmem. These files are created using allocfilepseudo, which does not cal...

5.5CVSS5.8AI score0.00021EPSS

Exploits0References1

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: KVM: Disallowed toggling KVMMEMGUESTMEMFD on an existing memslot. Rejected attempts to disable KVMMEMGUESTMEMFD on a memslot that was initially created with a guestmemfd binding. KVM does not support toggling KVMMEMGUESTMEMFD ...

6AI score0.00021EPSS

Exploits0References1

SUSE CVE•added 2026/03/25 4:55 p.m.•4 views

SUSE CVE-2026-23375

In the Linux kernel, the following vulnerability has been resolved: mm: thp: deny THP for files on anonymous inodes filethpenabled incorrectly allows THP for files on anonymous inodes e.g. guestmemfd and secretmem. These files are created via allocfilepseudo, which does not call getwriteaccess an...

5.5CVSS5.7AI score0.00021EPSS

Exploits0References5

EUVD•added 2026/03/25 12:30 p.m.•2 views

EUVD-2026-15365

5.7AI score0.00021EPSS

Exploits0References5

NVD•added 2026/03/25 11:16 a.m.•2 views

CVE-2026-23375

5.5CVSS0.00021EPSS

Exploits0References4

CVE•added 2026/03/25 10:27 a.m.•10 views

CVE-2026-23375

CVE-2026-23375 (Linux kernel THP for anonymous inodes) – concrete details in connected docs : The issue arises from file_thp_enabled() incorrectly allowing/thp collapse for anonymous inodes created via alloc_file_pseudo() (e.g., guest_memfd, secretmem), enabling khugepaged/MADV_COLLAPSE exploits ...

5.5CVSS5.7AI score0.00021EPSS

Exploits0References4Affected Software1

ATTACKERKB•added 2026/03/25 10:27 a.m.•1 views

CVE-2026-23375

5.6AI score0.00021EPSS

Exploits0References5Affected Software1

OSV•added 2026/03/25 10:27 a.m.•2 views

CVE-2026-23375 mm: thp: deny THP for files on anonymous inodes

5.5CVSS5.7AI score0.00021EPSS

Exploits0References7

Tenable Nessus•added 2026/03/25 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2026-23375

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mm: thp: deny THP for files on anonymous inodes filethpenabled incorrectly allows THP for files on anonymous inodes e.g. guestmemfd and secretmem. These files a...

5.5CVSS6.1AI score0.00021EPSS

Exploits0References2

SUSE CVE•added 2026/01/15 12:25 a.m.•2 views

SUSE CVE-2025-68810

In the Linux kernel, the following vulnerability has been resolved: KVM: Disallow toggling KVMMEMGUESTMEMFD on an existing memslot Reject attempts to disable KVMMEMGUESTMEMFD on a memslot that was initially created with a guestmemfd binding, as KVM doesn't support toggling KVMMEMGUESTMEMFD on...

5.5CVSS6.4AI score0.00021EPSS

Exploits0References19

NVD•added 2026/01/13 4:16 p.m.•2 views

CVE-2025-68810

0.00021EPSS

Exploits0References3

UbuntuCve•added 2026/01/13 4:16 p.m.•1 views

CVE-2025-68810

5.9AI score0.00021EPSS

Exploits0References24

Cvelist•added 2026/01/13 3:29 p.m.•18 views

CVE-2025-68810 KVM: Disallow toggling KVM_MEM_GUEST_MEMFD on an existing memslot

0.00021EPSS

Exploits0References3

Positive Technologies•added 2026/01/13 12:0 a.m.•3 views

PT-2026-2542

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.18.0-rc6-115d5de2eef3-next-kasan Description The Linux kernel contains a flaw within the KVM subsystem. Specifically, it fails to prevent disabling the KVM MEM GUEST MEMFD flag on a memslot that was initially...

6.5AI score0.00021EPSS

Exploits0

EUVD•added 2025/12/07 12:30 a.m.•3 views

EUVD-2025-201581

In the Linux kernel, the following vulnerability has been resolved: KVM: guestmemfd: Remove bindings on memslot deletion when gmem is dying When unbinding a memslot from a guestmemfd instance, remove the bindings even if the guestmemfd file is dying, i.e. even if its file refcount has gone to zer...

6.1AI score0.00024EPSS

Exploits0References4

OSV•added 2025/12/06 10:15 p.m.•3 views

DEBIAN-CVE-2025-40274

5.4AI score0.00024EPSS

Exploits0References1

OSV•added 2025/12/06 10:15 p.m.•0 views

UBUNTU-CVE-2025-40274

5.7AI score0.00024EPSS

Exploits0References11

Cvelist•added 2025/12/06 9:50 p.m.•13 views

CVE-2025-40274 KVM: guest_memfd: Remove bindings on memslot deletion when gmem is dying

0.00024EPSS

Exploits0References3

CVE•added 2025/12/06 9:50 p.m.•19 views

CVE-2025-40274

CVE-2025-40274: Linux kernel KVM guest_memfd memslot binding uses-after-free when gmem dies. The fix removes bindings on memslot deletion even if the guest_memfd file is dying, preventing writes to freed memory (KASAN). Upstream/SUSE advisories (e.g., SUSE-SU-2026:20220-1) indicate the kernel has...

6.2AI score0.00024EPSS

Exploits0References3

Debian CVE•added 2025/12/06 9:50 p.m.•2 views

CVE-2025-40274

5.3AI score0.00024EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by