Lucene search
+L

75 matches found

RedhatCVE
RedhatCVE
added 2026/06/29 9:15 a.m.5 views

CVE-2026-53286

A flaw was found in the Linux kernel. Specifically, a double free and use-after-free vulnerability exists in the idpf driver's auxiliary device error paths. This flaw occurs when auxiliarydeviceadd fails, leading to improper memory handling where memory is freed twice or accessed after being free...

7.8CVSS6AI score0.00126EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/26 7:40 p.m.7 views

EUVD-2026-39891

In the Linux kernel, the following vulnerability has been resolved: idpf: fix double free and use-after-free in aux device error paths When auxiliarydeviceadd fails in idpfplugvportauxdev or idpfplugcoreauxdev, the errauxdevadd label calls auxiliarydeviceuninit and falls through to errauxdevinit...

5.8AI score0.00126EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.4 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: idpf: fixed a memory leak in idpfvportrel Released vport-rxptypelkup in idpfvportrel to prevent memory leakage during a reset. Reported by kmemleak: Unreferenced object 0xff450acac838a000 size 4096: comm "kworker/u258:5", pid 773...

5.5CVSS5.8AI score0.00147EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: idpf: fixed the issue where the aux device is unplugged when RDMA is not supported by the vport. If the vport flags do not contain VIRTCHNL2VPORTENABLERDMA, the driver does not allocate vdevinfo for this vport. This results in a...

5.2AI score0.00145EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: idpf: Detaching and closing netdevs while handling a reset Protect the reset path from callbacks by setting the netdevs to detached state and closing any netdevs in UP state until the reset handling is completed. During a reset,...

5.5CVSS6AI score0.00115EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: idpf: checked for errors when calling registernetdev in init. The current init logic ignores the error code from registernetdev. This could lead to a WARNON message when attempting to unregister the device, if such an attempt...

5.5CVSS5.7AI score0.00175EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/04/24 9:44 p.m.6 views

CVE-2026-31647

A flaw was found in the Linux kernel's idpf driver. This vulnerability arises from improper nesting of spinlocks during asynchronous Virtual Channel VC handling. An attacker could potentially trigger an invalid wait context, leading to a system crash or denial of service. Mitigation To reduce...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/04/24 2:45 p.m.3 views

CVE-2026-31647

In the Linux kernel, the following vulnerability has been resolved: idpf: fix PREEMPTRT raw/bh spinlock nesting for async VC handling Switch from using the completion's raw spinlock to a local lock in the idpfvcxn struct. The conversion is safe because complete/all are called outside the lock and...

5.3AI score0.00122EPSS
Exploits0References5Affected Software1
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the idpf driver’s use of a raw spinlock during asynchronous VC processing, leading to an...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/02/05 12:25 a.m.5 views

SUSE CVE-2026-23042

In the Linux kernel, the following vulnerability has been resolved: idpf: fix aux device unplugging when rdma is not supported by vport If vport flags do not contain VIRTCHNL2VPORTENABLERDMA, driver does not allocate vdevinfo for this vport. This leads to kernel NULL pointer dereference in...

4.4CVSS5.2AI score0.00145EPSS
Exploits0References7
NVD
NVD
added 2026/02/04 4:16 p.m.7 views

CVE-2026-23042

In the Linux kernel, the following vulnerability has been resolved: idpf: fix aux device unplugging when rdma is not supported by vport If vport flags do not contain VIRTCHNL2VPORTENABLERDMA, driver does not allocate vdevinfo for this vport. This leads to kernel NULL pointer dereference in...

0.00145EPSS
Exploits0References2
OSV
OSV
added 2026/02/04 4:16 p.m.5 views

UBUNTU-CVE-2026-23042

In the Linux kernel, the following vulnerability has been resolved: idpf: fix aux device unplugging when rdma is not supported by vport If vport flags do not contain VIRTCHNL2VPORTENABLERDMA, driver does not allocate vdevinfo for this vport. This leads to kernel NULL pointer dereference in...

5.7AI score0.00145EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/02/04 4:16 p.m.5 views

CVE-2026-23042

In the Linux kernel, the following vulnerability has been resolved: idpf: fix aux device unplugging when rdma is not supported by vport If vport flags do not contain VIRTCHNL2VPORTENABLERDMA, driver does not allocate vdevinfo for this vport. This leads to kernel NULL pointer dereference in...

5.7AI score0.00145EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/02/04 4:0 p.m.33 views

CVE-2026-23042 idpf: fix aux device unplugging when rdma is not supported by vport

In the Linux kernel, the following vulnerability has been resolved: idpf: fix aux device unplugging when rdma is not supported by vport If vport flags do not contain VIRTCHNL2VPORTENABLERDMA, driver does not allocate vdevinfo for this vport. This leads to kernel NULL pointer dereference in...

0.00145EPSS
Exploits0References2
NVD
NVD
added 2026/01/31 12:16 p.m.17 views

CVE-2026-23017

In the Linux kernel, the following vulnerability has been resolved: idpf: fix error handling in the inittask on load If the inittask fails during a driver load, we end up without vports and netdevs, effectively failing the entire process. In that state a subsequent reset will result in a crash as...

5.5CVSS0.00132EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/01/31 11:39 a.m.3 views

CVE-2026-23023

In the Linux kernel, the following vulnerability has been resolved: idpf: fix memory leak in idpfvportrel Free vport-rxptypelkup in idpfvportrel to avoid leaking memory during a reset. Reported by kmemleak: unreferenced object 0xff450acac838a000 size 4096: comm "kworker/u258:5", pid 7732, jiffies...

5.7AI score0.00147EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/01/31 11:39 a.m.24 views

CVE-2026-23023

CVE-2026-23023 concerns the Linux kernel, where a memory leak was fixed in the idpf driver. The vulnerability arises from not freeing vport->rx_ptype_lkup in idpf_vport_rel(), leading to leaked memory during a reset. The fix frees the memory as part of idpf_vport_rel(), preventing the unrefere...

5.5CVSS5.8AI score0.00147EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/01/31 11:39 a.m.39 views

CVE-2026-23017 idpf: fix error handling in the init_task on load

In the Linux kernel, the following vulnerability has been resolved: idpf: fix error handling in the inittask on load If the inittask fails during a driver load, we end up without vports and netdevs, effectively failing the entire process. In that state a subsequent reset will result in a crash as...

0.00132EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/01/28 12:25 a.m.8 views

SUSE CVE-2026-22981

In the Linux kernel, the following vulnerability has been resolved: idpf: detach and close netdevs while handling a reset Protect the reset path from callbacks by setting the netdevs to detached state and close any netdevs in UP state until the reset handling has completed. During a reset, the...

4.4CVSS5.7AI score0.00115EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2026/01/27 12:27 a.m.5 views

SUSE CVE-2026-22985

In the Linux kernel, the following vulnerability has been resolved: idpf: Fix RSS LUT NULL pointer crash on early ethtool operations The RSS LUT is not initialized until the interface comes up, causing the following NULL pointer crash when ethtool operations like rxhash on/off are performed befor...

4.7CVSS5.7AI score0.00115EPSS
Exploits0References20
Rows per page
Query Builder