CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added 5 days ago•6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Check debugtrapenable before writing dbgevfile. In an interrupt context, the operation writedbgevfile will be executed via a work queue. This will cause the execution of writedbgevfile after debugtrapdisable, which ma...

5.5CVSS5.3AI score0.00261EPSS

ATTACKERKB•added 2026/06/08 3:46 p.m.•7 views

CVE-2026-46290

In the Linux kernel, the following vulnerability has been resolved: x86/efi: Fix graceful fault handling after FPU softirq changes Since commit d02198550423 "x86/fpu: Improve crypto performance by making kernel-mode FPU reliably usable in softirqs", kernelfpubegin calls fpregslock which uses...

5.4AI score0.00166EPSS

Exploits0References4Affected Software1

Positive Technologies•added 2026/06/08 12:0 a.m.•9 views

PT-2026-47362

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the x86 EFI implementation where the graceful page fault handler efi crash gracefully on page fault incorrectly identifies the system state. Due to changes in FPU...

9.1CVSS5.3AI score0.00457EPSS

Exploits1References63

Positive Technologies•added 2026/05/28 12:0 a.m.•19 views

PT-2026-44260

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A data race exists in the Multipath TCP MPTCP implementation. The mptcp pm add timer helper function, which operates as a timer callback in softirq context, fails to properly hold the...

9.8CVSS5.8AI score0.00552EPSS

Exploits0References294

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: The spinlock is used as a lock for protecting the context list. Previously, a mutex was added to protect the encoder and decoder context lists from unexpected changes originating from the SCP IP block. Th...

5.8AI score0.00171EPSS

Cvelist•added 2026/05/08 1:11 p.m.•32 views

CVE-2026-43311 soc/tegra: pmc: Fix unsafe generic_handle_irq() call

In the Linux kernel, the following vulnerability has been resolved: soc/tegra: pmc: Fix unsafe generichandleirq call Currently, when resuming from system suspend on Tegra platforms, the following warning is observed: WARNING: CPU: 0 PID: 14459 at kernel/irq/irqdesc.c:666 Call trace:...

0.00121EPSS

Exploits0References3

RedhatCVE•added 2026/05/06 10:3 p.m.•20 views

CVE-2026-43216

A flaw was found in the Linux kernel's networking subsystem. Specifically, the skbmaytxtimestamp function can attempt to acquire a lock in an Interrupt Request IRQ context, which is an inappropriate execution environment for this operation. This can occur when certain network drivers process...

5.5CVSS5.9AI score0.00126EPSS

ATTACKERKB•added 2026/05/06 11:28 a.m.•6 views

CVE-2026-43216

In the Linux kernel, the following vulnerability has been resolved: net: Drop the lock in skbmaytxtimestamp skbmaytxtimestamp may acquire sock::skcallbacklock. The lock must not be taken in IRQ context, only softirq is okay. A few drivers receive the timestamp via a dedicated interrupt and comple...

5.7AI score0.00126EPSS

Exploits0References4Affected Software1

CNNVD•added 2026/05/06 12:0 a.m.•5 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the skbmaytxtimestamp function’s use of a lock within the IRQ context, potentially leading to a...

5.5CVSS5.8AI score0.00126EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•24 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: ntbnetdev: Use devkfreeskbany in interrupt context. TX/RX callback handlers ntbnetdevtxhandler, ntbnetdevrxhandler can be called in interrupt context via the DMA framework after the respective DMA operations are completed...

5.5CVSS5.4AI score0.00145EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: drm/vgem-fence: Fixed potential deadlock issues upon release. A timer that automatically releases a vgem fence after 10 seconds is now implemented. This is achieved by calling timerdeletesync from fence-ops.release, which is...

5.5AI score0.00165EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•8 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: scsi: qla2xxx: Fix scheduling while atomic The driver makes a call to the midlayer function fcremoteportdelete, which can put the thread in a sleep state. The thread that originates the call is in an interrupt context. The...

5.5CVSS5.9AI score0.00246EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: ptdma: In ptcoreexecutecmd, it is necessary to use a spinlock. The interrupt handler ptcoreirqhandler of the ptdma driver can be called from the interrupt context. The code flow within this function may lead to ptcoreexecutecmd,...

5.5CVSS5.6AI score0.00132EPSS

Tenable Nessus•added 2026/04/25 12:0 a.m.•11 views

Linux Distros Unpatched Vulnerability : CVE-2026-31563

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: macb: Use devconsumeskbany to free TX SKBs The napiconsumeskb function is not intended to be called in an IRQ disabled context. However, after commit...

7.5CVSS5.8AI score0.00479EPSS

RedhatCVE•added 2026/04/24 5:45 p.m.•4 views

CVE-2026-31563

A flaw was found in the Linux kernel's macb Ethernet driver. The napiconsumeskb function, which is used for freeing network packet buffers SKBs, was incorrectly called in an interrupt-disabled context. This improper handling of network packet freeing can lead to a kernel warning and system...

7.5CVSS5.3AI score0.00479EPSS

OSV•added 2026/04/24 3:16 p.m.•3 views

DEBIAN-CVE-2026-31563

In the Linux kernel, the following vulnerability has been resolved: net: macb: Use devconsumeskbany to free TX SKBs The napiconsumeskb function is not intended to be called in an IRQ disabled context. However, after commit 6bc8a5098bf4 "net: macb: Fix txptrlock locking", the freeing of TX SKBs is...

7.5CVSS5.2AI score0.00479EPSS

Cvelist•added 2026/04/24 2:35 p.m.•26 views

CVE-2026-31563 net: macb: Use dev_consume_skb_any() to free TX SKBs

7.5CVSS0.00479EPSS

Exploits0References6

Tenable Nessus•added 2026/04/21 12:0 a.m.•6 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-006950)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006950 advisory. In the Linux kernel, the following vulnerability has been resolved: ntbnetdev: Use devkfreeskbany in interrupt context TX/RX callback handlers ntbnetdevtxhandler,...

5.5CVSS5.9AI score0.00145EPSS

Tenable Nessus•added 2026/04/21 12:0 a.m.•2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011028)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011028 advisory. In the Linux kernel, the following vulnerability has been resolved: ntbnetdev: Use devkfreeskbany in interrupt context TX/RX callback handlers ntbnetdevtxhandler,...

5.5CVSS5.7AI score0.00145EPSS