Lucene search
K

45 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/27 12:0 a.m.13 views

SUSE SLES15: cluster-md-kmp-default / dlm-kmp-default / gfs2-kmp-default / etc (SUSE-SU-2026:2658-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2658-1 advisory. The SUSE Linux Enterprise 15 SP5 kernel was updated to fix various security issues The following security issues were fixed: -...

9.8CVSS6.9AI score0.0055EPSS
Exploits8References92
OSV
OSV
added 2026/06/25 11:55 a.m.4 views

SUSE-SU-2026:2630-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues The following security issues were fixed: - CVE-2025-10263: arm64: errata: Mitigate TLBI errata on various Arm CPUs bsc1266290. - CVE-2025-68324: scsi: imm: Fix use-after-free bug caused by unfinished delayed wo...

9.8CVSS7AI score0.0055EPSS
Exploits8References63
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: Fixed the signedness in the thislen calculation. When importing and using buffers, buf-len is considered unsigned. However, buf-len is converted to a signed integer during commit operations. This can lead to...

5.5CVSS5.3AI score0.0012EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: Check whether the target buffer list is still of the legacy type during recycling. There is a gap between the time the buffer is acquired and the time it potentially gets recycled. If the bufferlist is empty, someon...

7.8CVSS5.8AI score0.0013EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/08 8:47 p.m.16 views

CVE-2026-43366

A flaw was found in the Linux kernel. A vulnerability exists in the iouring/kbuf component related to buffer recycling. There is a time gap where a buffer list, if empty, could be incorrectly upgraded to a ring-provided type. The legacy recycling mechanism fails to properly check the buffer list'...

7.8CVSS6AI score0.0013EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/08 3:31 p.m.10 views

EUVD-2026-28672

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: check if target buffer list is still legacy on recycle There's a gap between when the buffer was grabbed and when it potentially gets recycled, where if the list is empty, someone could've upgraded it to a ring...

5.9AI score0.0013EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2026/05/08 3:16 p.m.11 views

CVE-2026-43366

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: check if target buffer list is still legacy on recycle There's a gap between when the buffer was grabbed and when it potentially gets recycled, where if the list is empty, someone could've upgraded it to a ring...

7.8CVSS5.9AI score0.0013EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/08 2:21 p.m.37 views

CVE-2026-43366 io_uring/kbuf: check if target buffer list is still legacy on recycle

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: check if target buffer list is still legacy on recycle There's a gap between when the buffer was grabbed and when it potentially gets recycled, where if the list is empty, someone could've upgraded it to a ring...

7.8CVSS0.0013EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/08 2:21 p.m.7 views

CVE-2026-43366

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: check if target buffer list is still legacy on recycle There's a gap between when the buffer was grabbed and when it potentially gets recycled, where if the list is empty, someone could've upgraded it to a ring...

5.9AI score0.0013EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2026/05/08 2:21 p.m.34 views

CVE-2026-43366

Summary: CVE-2026-43366 affects the Linux kernel’s io_uring/kbuf recycling path. A gap existed between when a buffer was grabbed and when it could be recycled; if the target list is empty, it could be upgraded to a ring-provided type without proper validation. The issue arises from missing checks...

7.8CVSS5.9AI score0.0013EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2026/05/08 2:21 p.m.2 views

CVE-2026-43366 io_uring/kbuf: check if target buffer list is still legacy on recycle

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: check if target buffer list is still legacy on recycle There's a gap between when the buffer was grabbed and when it potentially gets recycled, where if the list is empty, someone could've upgraded it to a ring...

7.8CVSS6.2AI score0.0013EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2026/05/08 2:21 p.m.9 views

CVE-2026-43366

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: check if target buffer list is still legacy on recycle There's a gap between when the buffer was grabbed and when it potentially gets recycled, where if the list is empty, someone could've upgraded it to a ring...

7.8CVSS5.8AI score0.0013EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/08 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-43366

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iouring/kbuf: check if target buffer list is still legacy on recycle There's a gap between when the buffer was grabbed and when it potentially gets recycled,...

7.8CVSS6.5AI score0.0013EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2026/03/10 12:0 a.m.4 views

The vulnerability of the io_uring/kbuf component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the iouring/kbuf component in Linux operating systems is related to the copying of buffers without checking the input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.8AI score0.00135EPSS
Exploits0References8Affected Software3
SUSE Linux
SUSE Linux
added 2025/12/23 4:28 p.m.6 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-50253: bpf: make sure skb-len != 0 when redirecting to a tunneling device bsc1249912. CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in...

8.7CVSS8.5AI score0.00338EPSS
Exploits1References326
OSV
OSV
added 2025/12/19 5:38 p.m.7 views

OPENSUSE-SU-2025:20172-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2022-50253: bpf: make sure skb-len != 0 when redirecting to a tunneling device bsc1249912. - CVE-2025-37916: pdscore: remove write-after-free of clientid bsc1243474. -...

7.8CVSS6.8AI score0.00241EPSS
Exploits1References219
Tenable Nessus
Tenable Nessus
added 2025/09/17 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2025-39822

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iouring/kbuf: fix signedness in thislen calculation When importing and using buffers, buf-len is considered unsigned. However, buf-len is converted to signed in...

5.5CVSS6.3AI score0.0012EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/09/16 11:23 p.m.4 views

SUSE CVE-2025-39822

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: fix signedness in thislen calculation When importing and using buffers, buf-len is considered unsigned. However, buf-len is converted to signed int when committing. This can lead to unexpected behavior if the buffer...

5.5CVSS6.7AI score0.0012EPSS
Exploits0References10
OSV
OSV
added 2025/09/16 1:15 p.m.7 views

DEBIAN-CVE-2025-39822

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: fix signedness in thislen calculation When importing and using buffers, buf-len is considered unsigned. However, buf-len is converted to signed int when committing. This can lead to unexpected behavior if the buffer...

5.5CVSS5.5AI score0.0012EPSS
Exploits0References1
NVD
NVD
added 2025/09/16 1:15 p.m.8 views

CVE-2025-39822

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: fix signedness in thislen calculation When importing and using buffers, buf-len is considered unsigned. However, buf-len is converted to signed int when committing. This can lead to unexpected behavior if the buffer...

5.5CVSS0.0012EPSS
Exploits0References2
Rows per page
Query Builder