Lucene search
+L

757 matches found

Cvelist
Cvelist
added 2026/05/28 2:13 p.m.32 views

CVE-2026-41565 CryptX versions before 0.088_001 for Perl have a stack buffer overflow in four AEAD decrypt_verify helpers

CryptX versions before 0.088001 for Perl have a stack buffer overflow in four AEAD decryptverify helpers. The gcmdecryptverify, ccmdecryptverify, chacha20poly1305decryptverify and eaxdecryptverify XS routines copied the caller-supplied authentication tag into a fixed 144-byte stack buffer...

0.00469EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/28 2:13 p.m.13 views

CVE-2026-41565 CryptX versions before 0.088_001 for Perl have a stack buffer overflow in four AEAD decrypt_verify helpers

CryptX versions before 0.088001 for Perl have a stack buffer overflow in four AEAD decryptverify helpers. The gcmdecryptverify, ccmdecryptverify, chacha20poly1305decryptverify and eaxdecryptverify XS routines copied the caller-supplied authentication tag into a fixed 144-byte stack buffer...

6.1AI score0.00469EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/05/28 9:35 a.m.10 views

CVE-2026-46104

In the Linux kernel, the following vulnerability has been resolved: selinux: use sk blob accessor in socket permission helpers SELinux socket state lives in the composite LSM socket blob. sockhasperm and nlmsgsockhasextendedperms currently dereference sk-sksecurity directly, which assumes the...

5.5CVSS5.7AI score0.00121EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/05/28 3:54 a.m.15 views

SUSE CVE-2026-46007

In the Linux kernel, the following vulnerability has been resolved: hwmon: powerz Avoid cacheline sharing for DMA buffer Depending on the architecture the transfer buffer may share a cacheline with the following mutex. As the buffer may be used for DMA, that is problematic. Use the high-level DMA...

4.7CVSS5.8AI score0.00122EPSS
Exploits0References3
Snyk
Snyk
added 2026/05/27 5:41 p.m.10 views

Incorrect Authorization

Overview twig/twig is a flexible, fast, and secure template language for PHP. Affected versions of this package are vulnerable to Incorrect Authorization via the deprecated twigarraysome, twigarrayevery, and twigcheckarrowinsandbox helper functions. An attacker can bypass the sandbox callback...

9.1CVSS5.8AI score0.0027EPSS
Exploits0References2
NVD
NVD
added 2026/05/27 2:17 p.m.12 views

CVE-2026-46007

In the Linux kernel, the following vulnerability has been resolved: hwmon: powerz Avoid cacheline sharing for DMA buffer Depending on the architecture the transfer buffer may share a cacheline with the following mutex. As the buffer may be used for DMA, that is problematic. Use the high-level DMA...

5.5CVSS0.00122EPSS
Exploits0References4
OSV
OSV
added 2026/05/27 2:17 p.m.7 views

UBUNTU-CVE-2026-46007

In the Linux kernel, the following vulnerability has been resolved: hwmon: powerz Avoid cacheline sharing for DMA buffer Depending on the architecture the transfer buffer may share a cacheline with the following mutex. As the buffer may be used for DMA, that is problematic. Use the high-level DMA...

5.5CVSS5.6AI score0.00122EPSS
Exploits0References7
OSV
OSV
added 2026/05/27 2:17 p.m.8 views

UBUNTU-CVE-2026-46063

In the Linux kernel, the following vulnerability has been resolved: x86/shstk: Prevent deadlock during shstk sigreturn During sigreturn the shadow stack signal frame is popped. The kernel does this by reading the shadow stack using normal read accesses. When it can't assume the memory is shadow...

5.5CVSS5.8AI score0.00094EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/05/27 12:57 p.m.9 views

CVE-2026-46063

In the Linux kernel, the following vulnerability has been resolved: x86/shstk: Prevent deadlock during shstk sigreturn During sigreturn the shadow stack signal frame is popped. The kernel does this by reading the shadow stack using normal read accesses. When it can't assume the memory is shadow...

5.8AI score0.00094EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2026/05/27 12:56 p.m.12 views

EUVD-2026-32304

In the Linux kernel, the following vulnerability has been resolved: hwmon: powerz Avoid cacheline sharing for DMA buffer Depending on the architecture the transfer buffer may share a cacheline with the following mutex. As the buffer may be used for DMA, that is problematic. Use the high-level DMA...

5.8AI score0.00122EPSS
Exploits0References4
OSV
OSV
added 2026/05/27 12:56 p.m.2 views

CVE-2026-46007 hwmon: (powerz) Avoid cacheline sharing for DMA buffer

In the Linux kernel, the following vulnerability has been resolved: hwmon: powerz Avoid cacheline sharing for DMA buffer Depending on the architecture the transfer buffer may share a cacheline with the following mutex. As the buffer may be used for DMA, that is problematic. Use the high-level DMA...

5.5CVSS6AI score0.00122EPSS
Exploits0References7
CVE
CVE
added 2026/05/27 12:56 p.m.27 views

CVE-2026-46007

CVE-2026-46007 targets the Linux kernel hwmon: powerz code, where a DMA transfer buffer may accidentally share a cacheline with a mutex, enabling a cacheline sharing risk for DMA. The issue is mitigated by using the high‑level DMA helpers to ensure no cacheline sharing occurs, and by removing the...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References4Affected Software1
Microsoft CVE
Microsoft CVE
added 2026/05/27 8:1 a.m.39 views

net: skbuff: propagate shared-frag marker through frag-transfer helpers

...

8.8CVSS5.2AI score0.00135EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.14 views

Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50286)

The remote Oracle Linux 10 / 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-50286 advisory. - net: skbuff: propagate shared-frag marker through frag-transfer helpers Hyunwoo Kim Orabug: 39420559 CVE-2026-46300 Tenable has extracted the preceding...

7.8CVSS5.8AI score0.03663EPSS
Exploits11References2
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.41 views

Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50287)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-50287 advisory. - net: skbuff: propagate shared-frag marker through frag-transfer helpers Hyunwoo Kim Orabug: 39420565 CVE-2026-46300 Tenable has extracted the preceding...

7.8CVSS5.8AI score0.03663EPSS
Exploits11References2
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.12 views

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2026-50288)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-50288 advisory. - net: skbuff: propagate shared-frag marker through frag-transfer helpers Hyunwoo Kim Orabug: 39420568 CVE-2026-46300 Tenable has extracted the preceding...

7.8CVSS5.8AI score0.03663EPSS
Exploits11References2
RedHat Linux
RedHat Linux
added 2026/05/26 6:6 a.m.4 views

kernel: net: skbuff: propagate shared-frag marker through frag-transfer helpers

A flaw was found in the Linux kernel's networking skbuff component. When skbtrycoalesce attaches paged fragments, it can lose the SKBFLSHAREDFRAG marker. This can lead to the Encapsulating Security Payload ESP input decrypting data in place over page-cache backed fragments, potentially resulting ...

8.8CVSS6.4AI score0.00135EPSS
Exploits7References6
Tenable Nessus
Tenable Nessus
added 2026/05/26 12:0 a.m.29 views

SUSE SLES12 Security Update : openssh (SUSE-SU-2026:2025-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2025-1 advisory. This update for openssh fixes the following issues Tenable has extracted the preceding description block directly from the SUSE security...

8.1CVSS5.9AI score0.00419EPSS
Exploits0References7
Oracle linux
Oracle linux
added 2026/05/25 12:0 a.m.16 views

Unbreakable Enterprise kernel security update: Fragnesia

6.12.0-202.76.4.4 - net: skbuff: propagate shared-frag marker through frag-transfer helpers Hyunwoo Kim Orabug: 39420559 CVE-2026-46300 - net: skbuff: preserve shared-frag marker during coalescing William Bowling Orabug: 39420559...

7.8CVSS6AI score0.03663EPSS
Exploits11
NVD
NVD
added 2026/05/23 12:17 p.m.29 views

CVE-2026-46300

In the Linux kernel, the following vulnerability has been resolved: net: skbuff: preserve shared-frag marker during coalescing skbtrycoalesce can attach paged frags from @from to @to. If @from has SKBFLSHAREDFRAG set, the resulting @to skb can contain the same externally-owned or page-cache-backe...

7.8CVSS0.03663EPSS
Exploits11References50
Rows per page
Query Builder