Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

483 matches found

AstraLinux
AstraLinuxadded 4 days ago3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: hfsplus: Do not use BUGON in hfspluscreateattributesfile. When the volume header contains erroneous values that do not reflect the actual state of the filesystem, hfsplusfillsuper assumes that the attributes file has not yet been...

5.5CVSS6.6AI score0.00148EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2026/06/09 2:20 a.m.6 views

SUSE CVE-2026-46299

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix held lock freed on hfsplusfillsuper hfsplusfillsuper calls hfsfindinit to initialize a search structure, which acquires tree-treelock. If the subsequent call to hfspluscatbuildkey fails, the function jumps to the...

5.5CVSS5.5AI score0.00113EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2026/06/09 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-46299

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hfsplus: fix held lock freed on hfsplusfillsuper hfsplusfillsuper calls hfsfindinit to initialize a search structure, which acquires tree-treelock. If the...

7CVSS5.9AI score0.00113EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/06/08 7:3 p.m.10 views

CVE-2026-46299

A flaw was found in the hfsplus filesystem component of the Linux kernel. An issue exists in the hfsplusfillsuper function where a lock is not properly released during an error handling path. This can occur when certain conditions cause hfspluscatbuildkey to fail during filesystem initialization....

7CVSS5.5AI score0.00113EPSS
Exploits0References4
NVD
NVDadded 2026/06/08 5:16 p.m.8 views

CVE-2026-46299

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix held lock freed on hfsplusfillsuper hfsplusfillsuper calls hfsfindinit to initialize a search structure, which acquires tree-treelock. If the subsequent call to hfspluscatbuildkey fails, the function jumps to the...

7CVSS0.00113EPSS
Exploits0References8
OSV
OSVadded 2026/06/08 5:16 p.m.5 views

UBUNTU-CVE-2026-46299

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix held lock freed on hfsplusfillsuper hfsplusfillsuper calls hfsfindinit to initialize a search structure, which acquires tree-treelock. If the subsequent call to hfspluscatbuildkey fails, the function jumps to the...

7CVSS5.4AI score0.00113EPSS
Exploits0References8
ATTACKERKB
ATTACKERKBadded 2026/06/08 3:46 p.m.4 views

CVE-2026-46299

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix held lock freed on hfsplusfillsuper hfsplusfillsuper calls hfsfindinit to initialize a search structure, which acquires tree-treelock. If the subsequent call to hfspluscatbuildkey fails, the function jumps to the...

7CVSS5.4AI score0.00113EPSS
Exploits0References9Affected Software1
EUVD
EUVDadded 2026/06/08 3:46 p.m.8 views

EUVD-2026-35165

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix held lock freed on hfsplusfillsuper hfsplusfillsuper calls hfsfindinit to initialize a search structure, which acquires tree-treelock. If the subsequent call to hfspluscatbuildkey fails, the function jumps to the...

5.5AI score0.00113EPSS
Exploits0References5
CVE
CVEadded 2026/06/08 3:46 p.m.21 views

CVE-2026-46299

CVE-2026-46299 (Linux kernel) affects the hfsplus filesystem during mount. hfsplus_fill_super() calls hfs_find_init() to initialize a search structure, which grabs tree->tree_lock. If hfsplus_cat_build_key() fails, control jumps to out_put_root without releasing the lock, causing a later clean...

7CVSS5.5AI score0.00113EPSS
Exploits0References8
Cvelist
Cvelistadded 2026/06/08 3:46 p.m.37 views

CVE-2026-46299 hfsplus: fix held lock freed on hfsplus_fill_super()

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix held lock freed on hfsplusfillsuper hfsplusfillsuper calls hfsfindinit to initialize a search structure, which acquires tree-treelock. If the subsequent call to hfspluscatbuildkey fails, the function jumps to the...

7CVSS0.00113EPSS
Exploits0References8
CNNVD
CNNVDadded 2026/06/08 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper lock release in the hfsplusfillsuper function. This could lead to the release of already...

7CVSS5.4AI score0.00113EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2026/05/29 1:15 a.m.11 views

SUSE CVE-2026-46169

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix uninit-value by validating catalog record size Syzbot reported a KMSAN uninit-value issue in hfsplusstrcasecmp. The root cause is that hfsbrecread doesn't validate that the on-disk record size matches the expected si...

6.5CVSS5.8AI score0.00136EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/05/29 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2026-46169

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hfsplus: fix uninit-value by validating catalog record size Syzbot reported a KMSAN uninit-value issue in hfsplusstrcasecmp. The root cause is that hfsbrecread...

5.5CVSS6.8AI score0.00136EPSS
Exploits0References3
NVD
NVDadded 2026/05/28 10:16 a.m.7 views

CVE-2026-46169

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix uninit-value by validating catalog record size Syzbot reported a KMSAN uninit-value issue in hfsplusstrcasecmp. The root cause is that hfsbrecread doesn't validate that the on-disk record size matches the expected si...

5.5CVSS0.00136EPSS
Exploits0References8
OSV
OSVadded 2026/05/28 10:16 a.m.7 views

UBUNTU-CVE-2026-46169

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix uninit-value by validating catalog record size Syzbot reported a KMSAN uninit-value issue in hfsplusstrcasecmp. The root cause is that hfsbrecread doesn't validate that the on-disk record size matches the expected si...

5.5CVSS5.8AI score0.00136EPSS
Exploits0References8
ATTACKERKB
ATTACKERKBadded 2026/05/28 9:36 a.m.9 views

CVE-2026-46169

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix uninit-value by validating catalog record size Syzbot reported a KMSAN uninit-value issue in hfsplusstrcasecmp. The root cause is that hfsbrecread doesn't validate that the on-disk record size matches the expected si...

5.5CVSS5.8AI score0.00136EPSS
Exploits0References9Affected Software1
EUVD
EUVDadded 2026/05/28 9:36 a.m.12 views

EUVD-2026-32796

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix uninit-value by validating catalog record size Syzbot reported a KMSAN uninit-value issue in hfsplusstrcasecmp. The root cause is that hfsbrecread doesn't validate that the on-disk record size matches the expected si...

5.8AI score0.00136EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/05/28 9:36 a.m.28 views

CVE-2026-46169 hfsplus: fix uninit-value by validating catalog record size

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix uninit-value by validating catalog record size Syzbot reported a KMSAN uninit-value issue in hfsplusstrcasecmp. The root cause is that hfsbrecread doesn't validate that the on-disk record size matches the expected si...

0.00136EPSS
Exploits0References8
Debian CVE
Debian CVEadded 2026/05/28 9:36 a.m.11 views

CVE-2026-46169

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix uninit-value by validating catalog record size Syzbot reported a KMSAN uninit-value issue in hfsplusstrcasecmp. The root cause is that hfsbrecread doesn't validate that the on-disk record size matches the expected si...

5.5CVSS5.8AI score0.00136EPSS
Exploits0
CVE
CVEadded 2026/05/28 9:36 a.m.18 views

CVE-2026-46169

The CVE-2026-46169 case concerns the Linux kernel HFS Plus (HFS+) filesystem. The root cause is that hfs_brec_read() validates only that entrylength fits a buffer but does not confirm that the on-disk catalog record size matches the expected type, allowing partial reads on corrupted filesystems. ...

5.5CVSS5.8AI score0.00136EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder