Lucene search
K

505 matches found

UbuntuCve
UbuntuCve
added 2026/04/01 9:16 a.m.6 views

CVE-2026-23407

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix missing bounds check on DEFAULT table in verifydfa The verifydfa function only checks DEFAULTTABLE bounds when the state is not differentially encoded. When the verification loop traverses the differential encoding...

7.8CVSS5.7AI score0.00181EPSS
Exploits0References15
RedHat Linux
RedHat Linux
added 2026/03/30 10:58 a.m.4 views

kernel: net/sched: cls_u32: use skb_header_pointer_careful()

In the Linux kernel, the following vulnerability has been resolved: net/sched: clsu32: use skbheaderpointercareful skbheaderpointer does not fully validate negative @offset values. Use skbheaderpointercareful instead. GangMin Kim provided a report and a repro fooling u32classify: BUG: KASAN:...

7.1CVSS5.7AI score0.00117EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/03/25 11:16 a.m.10 views

CVE-2026-23327

In the Linux kernel, the following vulnerability has been resolved: cxl/mbox: validate payload size before accessing contents in cxlpayloadfromuserallowed cxlpayloadfromuserallowed casts and dereferences the input payload without first verifying its size. When a raw mailbox command is sent with a...

7.1CVSS5.7AI score0.00124EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/03/25 5:33 a.m.11 views

kernel: bpf: Don't use tnum_range on array range checking for poke descriptors

In the Linux kernel, the following vulnerability has been resolved: bpf: Don't use tnumrange on array range checking for poke descriptors Hsin-Wei reported a KASAN splat triggered by their BPF runtime fuzzer which is based on a customized syzkaller: BUG: KASAN: slab-out-of-bounds in...

7.1CVSS6.1AI score0.0021EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/03/22 12:24 a.m.7 views

SUSE CVE-2026-23273

In the Linux kernel, the following vulnerability has been resolved: macvlan: observe an RCU grace period in macvlancommonnewlink error path valis reported that a race condition still happens after my prior patch. macvlancommonnewlink might have made @dev visible before detecting an error, and its...

6.4CVSS5.7AI score0.00119EPSS
Exploits0References22
Redos
Redos
added 2026/03/17 12:0 a.m.5 views

ROS-20260317-73-0035

A vulnerability in the kasanfindvmarea function mm/kasan/report.c of the kasan component of the Linux kernel is related to mutual blocking of execution threads. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

5.5CVSS6AI score0.00137EPSS
Exploits0
EUVD
EUVD
added 2026/03/05 9:30 p.m.6 views

EUVD-2025-208323

A stack buffer overflow vulnerability exists in the Wincor Nixdorf wnBios64.sys kernel driver version 1.2.0.0 in the IOCTL handler for code 0x80102058. The vulnerability is caused by missing bounds checking on the user-controlled Options parameter before copying data into a 40-byte stack buffer...

6.2AI score0.00233EPSS
Exploits1References2
CVE
CVE
added 2026/03/05 12:0 a.m.12 views

CVE-2025-70616

CVE-2025-70616 affects the Wincor Nixdorf wnBios64.sys kernel driver (version 1.2.0.0) in the IOCTL handler for code 0x80102058. The issue is a stack buffer overflow caused by missing bounds checking on the user-controlled Options parameter before copying into a 40-byte stack buffer Src[40] via m...

7.8CVSS6.2AI score0.00233EPSS
Exploits1References1Affected Software1
RedHat Linux
RedHat Linux
added 2026/02/26 4:25 a.m.4 views

kernel: RDMA/core: Fix "KASAN: slab-use-after-free Read in ib_register_device" problem

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Fix "KASAN: slab-use-after-free Read in ibregisterdevice" problem Call Trace: dumpstack lib/dumpstack.c:94 inline dumpstacklvl+0x116/0x1f0 lib/dumpstack.c:120 printaddressdescription mm/kasan/report.c:408 inline...

7.8CVSS5.7AI score0.00161EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/02/16 6:38 a.m.6 views

CVE-2026-23204

In the Linux kernel, the following vulnerability has been resolved: net/sched: clsu32: use skbheaderpointercareful skbheaderpointer does not fully validate negative @offset values. Use skbheaderpointercareful instead. GangMin Kim provided a report and a repro fooling u32classify: BUG: KASAN:...

7.3CVSS5.1AI score0.00117EPSS
Exploits0References4
OSV
OSV
added 2026/02/14 4:15 p.m.4 views

AZL-77724 CVE-2025-71202 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: iommu/sva: invalidate stale IOTLB entries for kernel address space Introduce a new IOMMU interface to flush IOTLB paging cache entries for the CPU kernel address space. This interface is invoked from the x86 architecture code tha...

5.5CVSS5.6AI score0.00108EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/02/14 4:15 p.m.5 views

CVE-2025-71202

In the Linux kernel, the following vulnerability has been resolved: iommu/sva: invalidate stale IOTLB entries for kernel address space Introduce a new IOMMU interface to flush IOTLB paging cache entries for the CPU kernel address space. This interface is invoked from the x86 architecture code tha...

5.5CVSS5.8AI score0.00108EPSS
Exploits0References4
OSV
OSV
added 2026/02/14 4:15 p.m.7 views

UBUNTU-CVE-2025-71202

In the Linux kernel, the following vulnerability has been resolved: iommu/sva: invalidate stale IOTLB entries for kernel address space Introduce a new IOMMU interface to flush IOTLB paging cache entries for the CPU kernel address space. This interface is invoked from the x86 architecture code tha...

5.5CVSS5.7AI score0.00108EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/02/14 3:36 p.m.5 views

CVE-2025-71202

In the Linux kernel, the following vulnerability has been resolved: iommu/sva: invalidate stale IOTLB entries for kernel address space Introduce a new IOMMU interface to flush IOTLB paging cache entries for the CPU kernel address space. This interface is invoked from the x86 architecture code tha...

5.3AI score0.00108EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/02/14 3:36 p.m.19 views

CVE-2025-71202

CVE-2025-71202 affects the Linux kernel IOMMU SVA coherency. A new IOMMU interface flushes IOTLB paging cache entries for the CPU kernel address space, invoked from x86 code before freeing and reusing kernel page tables. The issue allows an unprivileged local user to trigger stale IOTLB translati...

5.5CVSS5.3AI score0.00108EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/02/14 3:36 p.m.6 views

CVE-2025-71202 iommu/sva: invalidate stale IOTLB entries for kernel address space

In the Linux kernel, the following vulnerability has been resolved: iommu/sva: invalidate stale IOTLB entries for kernel address space Introduce a new IOMMU interface to flush IOTLB paging cache entries for the CPU kernel address space. This interface is invoked from the x86 architecture code tha...

5.5CVSS5.4AI score0.00108EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/02/13 2:16 p.m.3 views

CVE-2026-23112

In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: add bounds checks in nvmettcpbuildpduiovec nvmettcpbuildpduiovec could walk past cmd-req.sg when a PDU length or offset exceeds sgcnt and then use bogus sg-length/offset values, leading to copytoiter GPF/KASAN. Guard...

9.8CVSS5.7AI score0.00399EPSS
Exploits0References24
OSV
OSV
added 2026/02/13 1:14 p.m.8 views

OESA-2026-1338 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: md/dm-raid: don't call mdreapsyncthread directly Currently mdreapsyncthread is called from raidmessage directly without holding 'reconfigmutex', this is definite...

7.8CVSS5.7AI score0.00331EPSS
Exploits3References14
RedHat Linux
RedHat Linux
added 2026/02/11 11:58 a.m.6 views

kernel: RDMA/core: Fix "KASAN: slab-use-after-free Read in ib_register_device" problem

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Fix "KASAN: slab-use-after-free Read in ibregisterdevice" problem Call Trace: dumpstack lib/dumpstack.c:94 inline dumpstacklvl+0x116/0x1f0 lib/dumpstack.c:120 printaddressdescription mm/kasan/report.c:408 inline...

7.8CVSS5.7AI score0.00161EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/02 4:6 a.m.6 views

kernel: RDMA/core: Fix "KASAN: slab-use-after-free Read in ib_register_device" problem

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Fix "KASAN: slab-use-after-free Read in ibregisterdevice" problem Call Trace: dumpstack lib/dumpstack.c:94 inline dumpstacklvl+0x116/0x1f0 lib/dumpstack.c:120 printaddressdescription mm/kasan/report.c:408 inline...

7.8CVSS5.7AI score0.00161EPSS
Exploits0References5
Rows per page
Query Builder