Lucene search
+L

761 matches found

OSV
OSV
added 2026/07/02 3:24 p.m.10 views

USN-8492-2 linux-aws-6.8, linux-gcp-6.8, linux-gke, linux-gkeop, linux-ibm-6.8, linux-nvidia-lowlatency, linux-oracle-6.8 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; -...

9.8CVSS6.4AI score0.00686EPSS
Exploits4References300
OSV
OSV
added 2026/06/26 8:17 p.m.7 views

UBUNTU-CVE-2026-53280

In the Linux kernel, the following vulnerability has been resolved: iommu: Fix NULL group-domain dereference in pcidevresetiommudone Local sashiko review pointed it out that group-domain could be NULL when a default domain fails to allocate during the first probe, which can crash at...

5.5CVSS5.7AI score0.00107EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/26 12:25 p.m.9 views

CVE-2026-53120

A flaw was found in the Linux kernel's PCI Peripheral Component Interconnect subsystem. A Use-After-Free UAF vulnerability exists where a driver, during its probing process, accesses a memory region after it has been freed. This improper handling of memory can lead to system instability, memory...

5.5CVSS5.7AI score0.00157EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/24 4:30 p.m.6 views

EUVD-2026-38988

In the Linux kernel, the following vulnerability has been resolved: PCI: use generic driveroverride infrastructure When a driver is probed through driverattach, the bus' match callback is called without the device lock held, thus accessing the driveroverride field without a lock, which can cause ...

5.7AI score0.00157EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/06/24 4:30 p.m.6 views

CVE-2026-53120

In the Linux kernel, the following vulnerability has been resolved: PCI: use generic driveroverride infrastructure When a driver is probed through driverattach, the bus' match callback is called without the device lock held, thus accessing the driveroverride field without a lock, which can cause ...

5.7AI score0.00157EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.12 views

PT-2026-52014

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A Use-After-Free UAF issue exists in the PCI subsystem. When a driver is probed via the driver attach function, the bus match callback is executed without holding the device lock. This...

5.9AI score0.00157EPSS
Exploits0References15
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.15 views

PT-2026-47790

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak occurs in the drm/nouveau component when aperture remove conflicting pci devices fails during the probe process. The error path returns immediately without releasing the nv...

9.8CVSS5.2AI score0.93235EPSS
Exploits31References334
OSV
OSV
added 2026/06/03 3:50 p.m.5 views

CVE-2026-46268 PCI/P2PDMA: Fix p2pmem_alloc_mmap() warning condition

In the Linux kernel, the following vulnerability has been resolved: PCI/P2PDMA: Fix p2pmemallocmmap warning condition Commit b7e282378773 has already changed the initial page refcount of p2pdma page from one to zero, however, in p2pmemallocmmap it uses "VMWARNONONCEPAGE!pagerefcountpage" to asser...

5.5CVSS5.9AI score0.00113EPSS
Exploits0References6
CVE
CVE
added 2026/06/03 3:49 p.m.32 views

CVE-2025-71313

Summary (CVE-2025-71313) : In the Linux kernel PCI endpoint driver, there is a missing NULL check after alloc_workqueue(), which can return NULL on memory allocation failure. If a NULL workqueue pointer is later passed to queue_work() in epf_ntb_epc_init(), this can cause a NULL pointer dereferen...

5.5CVSS5.8AI score0.00107EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.18 views

Linux Distros Unpatched Vulnerability : CVE-2026-45880

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PCI/P2PDMA: Release per-CPU pgmap ref when vminsertpage fails When vminsertpage fails in p2pmemallocmmap, p2pmemallocmmap doesn't invoke percpurefput to free th...

5.5CVSS6.2AI score0.00155EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/28 2:12 a.m.13 views

CVE-2026-45904

A flaw was found in the Linux kernel's PowerPC Enhanced Error Handling EEH driver. This issue involves a recursive locking mechanism where the system attempts to acquire a Peripheral Component Interconnect PCI bus lock multiple times. This can lead to a system deadlock, causing unresponsiveness a...

5.5CVSS5.8AI score0.00156EPSS
Exploits0References4
OSV
OSV
added 2026/05/27 2:17 p.m.47 views

UBUNTU-CVE-2026-45880

In the Linux kernel, the following vulnerability has been resolved: PCI/P2PDMA: Release per-CPU pgmap ref when vminsertpage fails When vminsertpage fails in p2pmemallocmmap, p2pmemallocmmap doesn't invoke percpurefput to free the per-CPU ref of pgmap acquired after genpoolallocowner, and...

5.5CVSS5.7AI score0.00155EPSS
Exploits0References11
OSV
OSV
added 2026/05/27 2:16 p.m.9 views

UBUNTU-CVE-2026-45865

In the Linux kernel, the following vulnerability has been resolved: mctp i2c: initialise event handler read bytes Set a 0xff value for i2c reads of an mctp-i2c device. Otherwise reads will return "val" from the i2c bus driver. For i2c-aspeed and i2c-npcm7xx that is a stack uninitialised u8. Teste...

5.5CVSS5.7AI score0.00156EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2026/05/27 12:58 p.m.13 views

CVE-2026-46092

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: check for PCI upstream bridge existence pciupstreambridge returns NULL if the device is on a root bus. If 8821CE is installed in the system with such a PCI topology, the probing routine will crash. This has probably...

5.5CVSS5.7AI score0.00136EPSS
Exploits0
EUVD
EUVD
added 2026/05/27 12:58 p.m.14 views

EUVD-2026-32475

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: check for PCI upstream bridge existence pciupstreambridge returns NULL if the device is on a root bus. If 8821CE is installed in the system with such a PCI topology, the probing routine will crash. This has probably...

5.8AI score0.00136EPSS
Exploits0References1
CVE
CVE
added 2026/05/27 12:16 p.m.27 views

CVE-2026-45880

CVE-2026-45880 – Linux kernel PCI/P2PDMA issue : When vm_insert_page() fails during p2pmem_alloc_mmap(), the code does not release the per-CPU ref for pgmap acquired after gen_pool_alloc_owner(), causing memunmap_pages() to hang when removing a PCI device. The patch fixes this by adding the missi...

5.5CVSS5.8AI score0.00155EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/05/27 12:16 p.m.48 views

CVE-2026-45880 PCI/P2PDMA: Release per-CPU pgmap ref when vm_insert_page() fails

In the Linux kernel, the following vulnerability has been resolved: PCI/P2PDMA: Release per-CPU pgmap ref when vminsertpage fails When vminsertpage fails in p2pmemallocmmap, p2pmemallocmmap doesn't invoke percpurefput to free the per-CPU ref of pgmap acquired after genpoolallocowner, and...

0.00155EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/27 12:15 p.m.46 views

CVE-2026-45865 mctp i2c: initialise event handler read bytes

In the Linux kernel, the following vulnerability has been resolved: mctp i2c: initialise event handler read bytes Set a 0xff value for i2c reads of an mctp-i2c device. Otherwise reads will return "val" from the i2c bus driver. For i2c-aspeed and i2c-npcm7xx that is a stack uninitialised u8. Teste...

0.00156EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2026/05/27 12:0 a.m.13 views

CVE-2026-45880

In the Linux kernel, the following vulnerability has been resolved: PCI/P2PDMA: Release per-CPU pgmap ref when vminsertpage fails When vminsertpage fails in p2pmemallocmmap, p2pmemallocmmap doesn't invoke percpurefput to free the per-CPU ref of pgmap acquired after genpoolallocowner, and...

5.5CVSS6.1AI score0.00155EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2026/05/27 12:0 a.m.16 views

CVE-2026-45904

In the Linux kernel, the following vulnerability has been resolved: powerpc/eeh: fix recursive pcilockrescanremove locking in EEH event handling The recent commit 1010b4c012b0 "powerpc/eeh: Make EEH driver device hotplug safe" restructured the EEH driver to improve synchronization with the PCI...

5.5CVSS6.1AI score0.00156EPSS
Exploits0References10
Rows per page
Query Builder