Lucene search
K

303 matches found

OSV
OSV
added 2026/05/12 8:59 a.m.9 views

SUSE-SU-2026:21636-1 Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and Micro 6.1 kernel was updated to fix the following security issues: - CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags bsc1264449. - CVE-2026-43500: rxrpc: unshare DATA/RESPONSE packets when paged frags are present bsc1264450...

8.8CVSS6.1AI score0.93235EPSS
Exploits33References5
SUSE CVE
SUSE CVE
added 2026/05/09 2:41 a.m.9 views

SUSE CVE-2026-43199

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix "scheduling while atomic" in IPsec MAC address query Fix a "scheduling while atomic" bug in mlx5eipsecinitmacs by replacing mlx5querymacaddress with etheraddrcopy to get the local MAC address directly from...

7.5CVSS5.8AI score0.00441EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/09 1:35 a.m.10 views

CVE-2026-43467

A flaw was found in the Linux kernel's mlx5core driver. A local user or process can trigger a system crash by attempting to move a network device to switchdev mode when the device does not support IPsec. This occurs because the kernel incorrectly tries to clean up IPsec resources that do not exis...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References4
Amazon
Amazon
added 2026/05/09 12:0 a.m.20 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: fbcon: Set fbdisplayi-mode to NULL when the mode is released CVE-2025-40323 In the Linux kernel, the following vulnerability has been resolved: netfilter: nftct: add seqadj extension for natted connections...

9.1CVSS6AI score0.00514EPSS
Exploits2
OSV
OSV
added 2026/05/08 3:16 p.m.5 views

UBUNTU-CVE-2026-43467

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix crash when moving to switchdev mode When moving to switchdev mode when the device doesn't support IPsec, we try to clean up the IPsec resources anyway which causes the crash below, fix that by correctly checking for...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2026/05/08 3:16 p.m.10 views

CVE-2026-43467

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix crash when moving to switchdev mode When moving to switchdev mode when the device doesn't support IPsec, we try to clean up the IPsec resources anyway which causes the crash below, fix that by correctly checking for...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References6
GithubExploit
GithubExploit
added 2026/05/08 7:24 a.m.110 views

Exploit for Write-what-where Condition in Linux Linux_Kernel

Dirty Frag mitigation script This script: 1. Block...

7.8CVSS6AI score0.93235EPSS
Exploits31
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the net mlx5 component failing to properly check IPsec support when switching to the switchdev...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/06 7:53 p.m.9 views

CVE-2026-43167

A flaw was found in the Linux kernel's xfrm subsystem, which handles IPsec Internet Protocol Security transformations. This vulnerability is caused by a reference count leak in xfrmstate objects when a network device is unregistered. An attacker with local access and privileges to configure netwo...

5.5CVSS5.8AI score0.00127EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/06 11:28 a.m.28 views

CVE-2026-43199 net/mlx5e: Fix "scheduling while atomic" in IPsec MAC address query

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix "scheduling while atomic" in IPsec MAC address query Fix a "scheduling while atomic" bug in mlx5eipsecinitmacs by replacing mlx5querymacaddress with etheraddrcopy to get the local MAC address directly from...

7.5CVSS0.00441EPSS
Exploits0References4
CVE
CVE
added 2026/05/06 11:28 a.m.18 views

CVE-2026-43199

CVE-2026-43199 affects the Linux kernel net/mlx5e component. A scheduling-while-atomic bug occurred when mlx5e_ipsec_init_macs() queried hardware MAC via mlx5_query_mac_address() from an atomic context (mlx5e_ipsec_handle_event/workqueue), which can sleep. The fix uses the MAC address already pre...

7.5CVSS5.8AI score0.00441EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/05/06 11:27 a.m.23 views

CVE-2026-43167 xfrm: always flush state and policy upon NETDEV_UNREGISTER event

In the Linux kernel, the following vulnerability has been resolved: xfrm: always flush state and policy upon NETDEVUNREGISTER event syzbot is reporting that "struct xfrmstate" refcount is leaking. unregisternetdevice: waiting for netdevsim0 to become free. Usage count = 2 reftracker:...

0.00127EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.9 views

PT-2026-37539

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A scheduling while atomic bug exists in the mlx5e ipsec init macs function. The issue occurs because the mlx5 query mac address function queries hardware via mlx5 cmd exec, which can...

7.5CVSS6.2AI score0.00441EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the IPsec MAC address query in net mlx5e calling a sleep function within atomic context,...

7.5CVSS5.8AI score0.00441EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/29 12:0 a.m.10 views

PT-2026-38907

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the RxRPC module regarding the handling of fragmented packets and socket buffer data copying. The DATA-packet handler in rxrpc input call event and the RESPONSE handle...

7.8CVSS7.5AI score0.92766EPSS
Exploits20
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.9 views

PT-2026-35015

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A Use-After-Free issue exists in the xfrm component of the Linux kernel. After asynchronous crypto completes, the xfrm input resume function calls dev put immediately upon re-entry befor...

7.8CVSS5.7AI score0.00208EPSS
Exploits0References17
RedhatCVE
RedhatCVE
added 2026/04/22 8:4 p.m.8 views

CVE-2026-31516

A flaw was found in the Linux kernel's XFRM IP eXtensible FRamework subsystem. A race condition can occur during the teardown of a network namespace, where a work item attempts to access memory that has already been freed. This can lead to a use-after-free vulnerability, potentially causing syste...

7.8CVSS5.7AI score0.00099EPSS
Exploits0References4
NVD
NVD
added 2026/04/22 2:16 p.m.5 views

CVE-2026-31517

In the Linux kernel, the following vulnerability has been resolved: xfrm: iptfs: fix skbput panic on non-linear skb during reassembly In iptfsreassemcont, IP-TFS attempts to append data to the new inner packet 'newskb' that is being reassembled. First a zero-copy approach is tried if it succeeds...

5.5CVSS0.00121EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/22 1:54 p.m.32 views

CVE-2026-31515 af_key: validate families in pfkey_send_migrate()

In the Linux kernel, the following vulnerability has been resolved: afkey: validate families in pfkeysendmigrate syzbot was able to trigger a crash in skbput 1 Issue is that pfkeysendmigrate does not check old/new families, and that setipsecrequest @family argument was truncated, thus possibly...

0.00123EPSS
Exploits0References8
GithubExploit
GithubExploit
added 2026/04/22 12:13 p.m.132 views

Exploit for Race Condition in Microsoft

🔴 CVE-2026-33827: Windows TCP/IP Remote Code Execution RCE...

8.1CVSS5.8AI score0.00837EPSS
Exploits1
Rows per page
Query Builder