Lucene search
K

29 matches found

Cvelist
Cvelist
added 2026/06/24 4:30 p.m.30 views

CVE-2026-53081 bpf: Enforce regsafe base id consistency for BPF_ADD_CONST scalars

In the Linux kernel, the following vulnerability has been resolved: bpf: Enforce regsafe base id consistency for BPFADDCONST scalars When regsafe compares two scalar registers that both carry BPFADDCONST, checkscalarids maps their full compound id aka base | BPFADDCONST flag as one idmap entry...

7.8CVSS0.00116EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/24 4:30 p.m.6 views

EUVD-2026-38949

In the Linux kernel, the following vulnerability has been resolved: bpf: Enforce regsafe base id consistency for BPFADDCONST scalars When regsafe compares two scalar registers that both carry BPFADDCONST, checkscalarids maps their full compound id aka base | BPFADDCONST flag as one idmap entry...

5.8AI score0.00116EPSS
Exploits0References4
CVE
CVE
added 2026/06/24 4:30 p.m.11 views

CVE-2026-53081

The CVE-2026-53081 issue affects the Linux kernel BPF verifier: when two scalar registers carry BPF_ADD_CONST, id mapping could become inconsistent because the compound id (base | ADD_CONST) was mapped without validating the underlying base IDs. This could allow two verifier states where one deri...

7.8CVSS5.8AI score0.00116EPSS
Exploits0References7
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.5 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: nfsd: never defer requests during idmap lookup During the decoding of v4 request compound arguments, certain operations e.g., SETATTR can trigger idmap lookup upcalls. When the responses to these upcalls are delayed beyond the...

5.5CVSS6.1AI score0.00123EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.10 views

PT-2026-51975

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Berkeley Packet Filter BPF verifier within the regsafe function. The issue occurs when comparing two scalar registers that both carry BPF ADD CONST values; the check...

7.8CVSS5.8AI score0.00116EPSS
Exploits0References9
EUVD
EUVD
added 2026/05/27 3:33 p.m.13 views

EUVD-2026-32268

In the Linux kernel, the following vulnerability has been resolved: nfsd: never defer requests during idmap lookup During v4 request compound arg decoding, some ops e.g. SETATTR can trigger idmap lookup upcalls. When those upcall responses get delayed beyond the allowed time limit, cachecheck wil...

5.7AI score0.00123EPSS
Exploits0References9
CVE
CVE
added 2026/05/27 12:18 p.m.31 views

CVE-2026-45983

In CVE-2026-45983, the Linux kernel NFS server (nfsd) vulnerability stems from idmap lookup upcalls during v4 request decoding: if upcall responses are delayed beyond the time limit, cache_check() postpones the request and it gets dropped, causing NFSD4_SLOT_INUSE to block subsequent SEQUENCE ope...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 7 : realmd-0.16.1-5.el7 (AXSA:2015-654:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2015-654:01 advisory. realmd is a DBus system service which manages discovery and enrollment in realms and domains like Active Directory or IPA. The control center uses realmd as t...

5CVSS5.8AI score0.02915EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.2 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002069)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002069 advisory. kernel/ptrace.c in the Linux kernel through 4.4.1 mishandles uid and gid mappings, which allows local users to gain privileges by establishing a user namespace,...

7CVSS7.2AI score0.00398EPSS
Exploits0References28
Debian CVE
Debian CVE
added 2025/12/30 12:11 p.m.4 views

CVE-2023-54222

In the Linux kernel, the following vulnerability has been resolved: hte: tegra-194: Fix off by one in tegrahtemaptolineid The "mapsz" is the number of elements in the "m" array so the comparison needs to be changed to = to prevent an out of bounds read...

5.2AI score0.00168EPSS
Exploits0
OSV
OSV
added 2025/12/16 1:57 p.m.3 views

CVE-2025-68212 fs: Fix uninitialized 'offp' in statmount_string()

In the Linux kernel, the following vulnerability has been resolved: fs: Fix uninitialized 'offp' in statmountstring In statmountstring, most flags assign an output offset pointer offp which is later updated with the string offset. However, the STATMOUNTMNTUIDMAP and STATMOUNTMNTGIDMAP cases...

6.3AI score0.00155EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/10/01 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not properly handling the APICID mapping for disabled CPUs, which could lead to null pointer dereferencing...

5.9AI score0.00127EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/09/16 12:0 a.m.5 views

PT-2025-38033

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability exists in the Linux kernel related to the ath11k driver, specifically concerning SKB Socket Kernel Buffer corruption within the REO Receive Early Output destination rin...

6.5AI score0.00145EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/09/06 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-39717

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: opentreeattr: do not allow id- mapping changes without OPENTREECLONE As described in commit...

7.8CVSS5.2AI score0.00141EPSS
Exploits0References2
CVE
CVE
added 2025/09/05 5:21 p.m.30 views

CVE-2025-39717

CVE-2025-39717 concerns the Linux kernel and is described as resolved. The issue centers on open_tree_attr(2) and id-mapping changes: a bug in a previous commit allowed bypassing the restriction by calling open_tree_attr(2) without OPEN_TREE_CLONE, potentially enabling detached mounts to alter id...

7.8CVSS5.8AI score0.00141EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2025/09/05 12:0 a.m.29 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an unrestricted id mapping change that could lead to elevation of privilege...

7.8CVSS6.1AI score0.00141EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/07/09 10:42 a.m.5 views

CVE-2025-38247

In the Linux kernel, the following vulnerability has been resolved: userns and mntidmap leak in opentreeattr2 Once wantmountsetattr has returned a positive, it does require finishmountkattr to release -mntuserns. Failing domountsetattr does not change that. As the result, we can end up leaking...

5.5CVSS5.5AI score0.0012EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/06/19 3:38 a.m.6 views

SUSE CVE-2022-50230

In the Linux kernel, the following vulnerability has been resolved: arm64: set UXN on swapper page tables This issue was fixed upstream by accident in c3cee924bd85 "arm64: head: cover entire kernel image in initial ID map" as part of a large refactoring of the arm64 boot flow. This simple fix is...

5.5CVSS6.4AI score0.00171EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/11/20 3:48 a.m.4 views

SUSE CVE-2024-53071

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Be stricter about IO mapping flags The current panthordevicemmapio implementation has two issues: 1. For mapping DRMPANTHORUSERFLUSHIDMMIOOFFSET, panthordevicemmapio bails if VMWRITE is set, but does not clear...

7.8CVSS7.4AI score0.00195EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/10/21 3:46 p.m.11 views

SUSE CVE-2024-47737

In the Linux kernel, the following vulnerability has been resolved: nfsd: call cacheput if xdrreservespace returns NULL If not enough buffer space available, but idmaplookup has triggered lookupfn which calls cacheget and returns successfully. Then we missed to call cacheput here which pairs with...

3.3CVSS6.7AI score0.00277EPSS
Exploits0References21
Rows per page
Query Builder