Lucene search
K

163 matches found

OSV
OSV
added 2026/03/18 6:16 p.m.6 views

UBUNTU-CVE-2026-23261

In the Linux kernel, the following vulnerability has been resolved: nvme-fc: release admin tagset if init fails nvmefabrics creates an NVMe/FC controller in following path: nvmfdevwrite - nvmfcreatectrl - nvmefccreatectrl - nvmefcinitctrl nvmefcinitctrl allocates the admin blk-mq resources right...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References17
OSV
OSV
added 2026/02/14 4:1 p.m.7 views

CVE-2026-23162 drm/xe/nvm: Fix double-free on aux add failure

In the Linux kernel, the following vulnerability has been resolved: drm/xe/nvm: Fix double-free on aux add failure After a successful auxiliarydeviceinit, auxdev-dev.release xenvmreleasedev is responsible for the kfreenvm. When there is failure with auxiliarydeviceadd, driver will call...

7.8CVSS5.3AI score0.00113EPSS
Exploits0References5
CVE
CVE
added 2026/02/14 3:9 p.m.32 views

CVE-2026-23117

The CVE-2026-23117 entry concerns the Linux kernel Intel ice network driver. The issue arises during devlink-reload: ice_devlink_reinit_down() did not call ice_deinit_hw() while ice_devlink_reinit_up() calls ice_init_hw(), causing ice_init_hw() to fail with -EBUSY if control queues remain initial...

5.5CVSS5.2AI score0.001EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/02/14 3:9 p.m.33 views

CVE-2026-23117 ice: add missing ice_deinit_hw() in devlink reinit path

In the Linux kernel, the following vulnerability has been resolved: ice: add missing icedeinithw in devlink reinit path devlink-reload results in iceinithw failed error, and then removing the ice driver causes a NULL pointer dereference. +0.102213 ice 0000:ca:00.0: iceinithw failed: -16...

0.001EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/14 12:0 a.m.9 views

PT-2026-8157

In the Linux kernel, the following vulnerability has been resolved: drm/xe/nvm: Fix double-free on aux add failure After a successful auxiliary device init, aux dev-dev.release xe nvm release dev is responsible for the kfreenvm. When there is failure with auxiliary device add, driver will call...

5.2AI score0.00113EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/02/02 4:6 a.m.4 views

kernel: Linux kernel: RDMA/rxe use-after-free vulnerability leading to potential arbitrary code execution

A flaw was found in the Linux kernel's Remote Direct Memory Access RDMA subsystem, specifically within the rxe component. This use-after-free vulnerability occurs in the rxecreatecq function. When the rxecqfrominit function fails, the subsequent call to rxecleanup attempts to free memory resource...

7.8CVSS6.1AI score0.00179EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.6 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-38227)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38227 advisory. - In the Linux kernel, the following vulnerability has been resolved: media: vidtv: Terminating the subsequent...

7.8CVSS5.3AI score0.00149EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.7 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004334)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004334 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: fcoe: Fix transport not deattached when fcoeifinit fails fcoeinit calls...

5.5CVSS5.8AI score0.00149EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/01/14 12:29 a.m.2 views

kernel: RDMA/rxe: Fix mr->map double free

A double-free vulnerability was found in the Linux kernel RDMA RXE soft-RoCE driver's memory region handling. A local user with access to RDMA userspace verbs can register a memory region with parameters that cause initialization to fail, triggering error handling code that frees the mr-map...

7.8CVSS7.3AI score0.00151EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/14 12:26 a.m.2 views

kernel: RDMA/rxe: Fix mr->map double free

A double-free vulnerability was found in the Linux kernel RDMA RXE soft-RoCE driver's memory region handling. A local user with access to RDMA userspace verbs can register a memory region with parameters that cause initialization to fail, triggering error handling code that frees the mr-map...

7.8CVSS7.3AI score0.00151EPSS
Exploits0References5
OSV
OSV
added 2025/12/30 1:15 p.m.8 views

UBUNTU-CVE-2022-50825

In the Linux kernel, the following vulnerability has been resolved: usb: typec: wusb3801: fix fwnode refcount leak in wusb3801probe I got the following report while doing fault injection test: OF: ERROR: memory leak, expected refcount 1 instead of 4, ofnodeget/ofnodeput unbalanced - destroy cset...

5.7AI score0.00222EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/12/30 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992400)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992400 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: fcoe: Fix transport not deattached when fcoeifinit fails fcoeinit calls...

5.5CVSS5.8AI score0.00149EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/30 12:0 a.m.2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992329)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992329 advisory. In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix memory leak in ocfs2stackglueinit ocfs2tableheader should be free in ocfs2stackglueini...

5.5CVSS5.8AI score0.00149EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/30 12:0 a.m.6 views

PT-2025-53968

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.0-rc1-00190-g39508d23b672 Description The Linux kernel contains an issue in the ipr init function within the SCSI subsystem. Specifically, ipr init does not call unregister reboot notifier when pci register...

7.8CVSS7.2AI score0.00462EPSS
Exploits2References912
SUSE CVE
SUSE CVE
added 2025/12/25 1:3 a.m.5 views

SUSE CVE-2022-50780

In the Linux kernel, the following vulnerability has been resolved: net: fix UAF issue in nfqnlnfhookdrop when opsinit failed When the opsinit interface is invoked to initialize the net, but ops-init fails, data is released. However, the ptr pointer in net-gen is invalid. In this case, when...

6.5CVSS6.5AI score0.0018EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/25 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2022-50702

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - vdpasim: fix possible memory leak in vdpasimnetinit and vdpasimblkinit Inject fault while probing module, if deviceregister fails in vdpasimnetinit or...

6AI score0.00168EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/12/24 1:16 p.m.7 views

CVE-2023-54084

In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-digi00x: prevent potential use after free This code was supposed to return an error code if initstream failed, but it instead freed dg00x-rxstream and returned success. This potentially leads to a use after free...

5.9AI score0.0018EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/12/24 1:15 p.m.5 views

CVE-2022-50727

In the Linux kernel, the following vulnerability has been resolved: scsi: efct: Fix possible memleak in efctdeviceinit In efctdeviceinit, when efctscsiregfctransport fails, efctscsitgtdriverexit is not called to release memory for efctscsitgtdriverinit and causes memleak: unreferenced object...

5.7AI score0.00206EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/12/24 1:6 p.m.33 views

CVE-2023-54084 ALSA: firewire-digi00x: prevent potential use after free

In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-digi00x: prevent potential use after free This code was supposed to return an error code if initstream failed, but it instead freed dg00x-rxstream and returned success. This potentially leads to a use after free...

0.0018EPSS
Exploits0References6
OSV
OSV
added 2025/12/24 1:6 p.m.4 views

CVE-2022-50780 net: fix UAF issue in nfqnl_nf_hook_drop() when ops_init() failed

In the Linux kernel, the following vulnerability has been resolved: net: fix UAF issue in nfqnlnfhookdrop when opsinit failed When the opsinit interface is invoked to initialize the net, but ops-init fails, data is released. However, the ptr pointer in net-gen is invalid. In this case, when...

6.4AI score0.0018EPSS
Exploits0References9
Rows per page
Query Builder