Lucene search
+L

30 matches found

redhatcve
redhatcve
added 2026/06/25 6:18 p.m.7 views

CVE-2026-52966

A flaw was found in the Linux kernel's Direct Rendering Manager DRM subsystem. A logical error in the 'change handle' logic, specifically related to the replacement of IDR ID allocator pointers, could lead to a kernel warning or system panic. This issue could allow a local attacker to trigger a...

5.5CVSS5.8AI score0.00134EPSS
Exploits0References4
euvd
euvd
added 2026/06/24 6:32 p.m.8 views

EUVD-2026-38834

In the Linux kernel, the following vulnerability has been resolved: drm: Replace old pointer to new idr Commit 5e28b7b94408 introduced a logical error by failing to replace the newly generated IDR pointer to old id's pointer at the correct location within the "change handle" logic; this resulted ...

5.8AI score0.00134EPSS
Exploits0References4
nvd
nvd
added 2026/06/24 8:16 a.m.27 views

CVE-2026-52923

In the Linux kernel, the following vulnerability has been resolved: ipc: limit nextid allocation to the valid ID range The checkpoint/restore sysctl path can request the next SysV IPC id through ids-nextid. ipcidralloc currently forwards that request to idralloc with an open-ended upper bound. If...

7.8CVSS0.00127EPSS
Exploits0References11
attackerkb
attackerkb
added 2026/06/24 7:14 a.m.5 views

CVE-2026-52923

In the Linux kernel, the following vulnerability has been resolved: ipc: limit nextid allocation to the valid ID range The checkpoint/restore sysctl path can request the next SysV IPC id through ids-nextid. ipcidralloc currently forwards that request to idralloc with an open-ended upper bound. If...

7.8CVSS5.6AI score0.00127EPSS
Exploits0References9Affected Software1
ptsecurity
ptsecurity
added 2026/06/24 12:0 a.m.14 views

PT-2026-51716

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the checkpoint/restore sysctl path where the ipc idr alloc function forwards requests to idr alloc with an open-ended upper bound. When the valid SysV IPC id space is...

7.8CVSS5.7AI score0.00149EPSS
Exploits0References442
astralinux
astralinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: ICE: Avoid crashes due to unnecessary IDA frees. In the “remove path”, there is an attempt to free the auxidx IDA, regardless of whether it was allocated or not. This could potentially cause a crash when unloading the driver on...

5.5CVSS5.8AI score0.00196EPSS
Exploits0References2
cve
cve
added 2025/12/30 12:11 p.m.15 views

CVE-2023-54206

CVE-2023-54206 affects the Linux kernel net/sched flower filter initialization. The root cause is a race where idr initialization was moved too early in fl_change(), allowing concurrent access to a filter still being initialized, risking a NULL pointer dereference. The published mitigations descr...

5.9AI score0.00155EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2025/12/24 1:16 p.m.6 views

CVE-2023-54147

In the Linux kernel, the following vulnerability has been resolved: media: platform: mtk-mdp3: Add missing check and free for idaalloc Add the check for the return value of the idaalloc in order to avoid NULL pointer dereference. Moreover, free allocated "ctx-id" if mdpm2mopen fails later in orde...

5.7AI score0.00168EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2025/09/17 2:56 p.m.3 views

CVE-2023-53363 PCI: Fix use-after-free in pci_bus_release_domain_nr()

In the Linux kernel, the following vulnerability has been resolved: PCI: Fix use-after-free in pcibusreleasedomainnr Commit c14f7ccc9f5d "PCI: Assign PCI domain IDs by idaalloc" introduced a use-after-free bug in the bus removal cleanup. The issue was found with kfence: 19.293351 BUG: KFENCE:...

6.6AI score0.00176EPSS
Exploits0References5
osv
osv
added 2025/03/06 5:15 p.m.3 views

DEBIAN-CVE-2024-58078

In the Linux kernel, the following vulnerability has been resolved: misc: miscminoralloc to use ida for all dynamic/misc dynamic minors miscminoralloc was allocating id using ida for minor only in case of MISCDYNAMICMINOR but miscminorfree was always freeing ids using idafree causing a mismatch a...

5.5CVSS5.6AI score0.00172EPSS
Exploits0References1
redhat
redhat
added 2024/11/12 9:11 a.m.5 views

kernel: dax: Fix dax_mapping_release() use after free

A use-after-free vulnerability was found in the Linux kernel's device-dax subsystem during mapping object cleanup. When removing a dax region provider, the child daxmapping objects attempt to free their ID allocator after the parent devdax object has already been released. This causes idafree to...

7.8CVSS7.2AI score0.00139EPSS
Exploits0References5
susecve
susecve
added 2024/08/27 2:24 a.m.4 views

SUSE CVE-2024-43892

In the Linux kernel, the following vulnerability has been resolved: memcg: protect concurrent access to memcgroupidr Commit 73f576c04b94 "mm: memcontrol: fix cgroup creation failure after many small jobs" decoupled the memcg IDs from the CSS ID space to fix the cgroup creation failures. It...

4.7CVSS6.5AI score0.00229EPSS
Exploits0References17
osv
osv
added 2024/08/26 11:15 a.m.14 views

AZL-48662 CVE-2024-43892 affecting package kernel for versions less than 5.15.167.1-1

In the Linux kernel, the following vulnerability has been resolved: memcg: protect concurrent access to memcgroupidr Commit 73f576c04b94 "mm: memcontrol: fix cgroup creation failure after many small jobs" decoupled the memcg IDs from the CSS ID space to fix the cgroup creation failures. It...

4.7CVSS6.4AI score0.00229EPSS
Exploits0References1
ubuntu
ubuntu
added 2024/04/19 1:32 p.m.80 views

USN-6740-1: Linux kernel vulnerabilities

Wei Chen discovered that a race condition existed in the TIPC protocol implementation in the Linux kernel, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service system crash. CVE-2023-1382 It was discovered that the virtio network...

7.8CVSS7.5AI score0.01377EPSS
Exploits4
osv
osv
added 2024/03/04 10:16 p.m.10 views

USN-6653-4 linux-gke vulnerabilities

It was discovered that a race condition existed in the ATM Asynchronous Transfer Mode subsystem of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-51780 It was...

7.8CVSS6.7AI score0.01999EPSS
Exploits0References6
ubuntu
ubuntu
added 2024/02/29 2:24 p.m.108 views

USN-6653-3: Linux kernel (Low Latency) vulnerabilities

It was discovered that a race condition existed in the ATM Asynchronous Transfer Mode subsystem of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-51780 It was...

7.8CVSS7AI score0.01999EPSS
Exploits0
osv
osv
added 2024/02/29 2:24 p.m.10 views

USN-6653-3 linux-lowlatency vulnerabilities

It was discovered that a race condition existed in the ATM Asynchronous Transfer Mode subsystem of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-51780 It was...

7.8CVSS6.7AI score0.01999EPSS
Exploits0References6
osv
osv
added 2024/02/29 2:24 p.m.19 views

USN-6651-3 linux-starfive-6.5 vulnerabilities

It was discovered that a race condition existed in the ATM Asynchronous Transfer Mode subsystem of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-51780 It was...

7.8CVSS6.8AI score0.12836EPSS
Exploits9References7
ubuntu
ubuntu
added 2024/02/29 2:24 p.m.50 views

USN-6651-3: Linux kernel (StarFive) vulnerabilities

It was discovered that a race condition existed in the ATM Asynchronous Transfer Mode subsystem of the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-51780 It was...

7.8CVSS7.2AI score0.12836EPSS
Exploits9
openvas
openvas
added 2024/02/29 12:0 a.m.39 views

Ubuntu: Security Advisory (USN-6648-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.9AI score0.01999EPSS
Exploits0References2
Rows per page
Query Builder