Lucene search
K

450 matches found

UbuntuCve
UbuntuCve
added 2026/05/08 2:16 p.m.11 views

CVE-2026-43289

In the Linux kernel, the following vulnerability has been resolved: kexec: derive purgatory entry from symbol kexecloadpurgatory derives image-start by locating eentry inside an SHFEXECINSTR section. If the purgatory object contains multiple executable sections with overlapping shaddr, the...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.10 views

PT-2026-39133

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the handling of unshare fs within the unshare2 system call. When CLONE NEWNS is present in the flags and current-fs has not been shared, copy mnt ns receives current-f...

8.8CVSS5.8AI score0.00426EPSS
Exploits0References421
RedHat Linux
RedHat Linux
added 2026/05/07 5:26 p.m.21 views

kernel: sctp: avoid NULL dereference when chunk data buffer is missing

In the Linux kernel, the following vulnerability has been resolved: sctp: avoid NULL dereference when chunk data buffer is missing chunk-skb pointer is dereferenced in the if-block where it's supposed to be NULL only. chunk-skb can only be NULL if chunk-headskb is not. Check for fraglist instead...

6AI score0.00184EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/06 12:30 p.m.7 views

EUVD-2026-27740

In the Linux kernel, the following vulnerability has been resolved: net: usb: kaweth: remove TX queue manipulation in kawethsetrxmode kawethsetrxmode, the ndosetrxmode callback, calls netifstopqueue and netifwakequeue. These are TX queue flow control functions unrelated to RX multicast...

5.7AI score0.00129EPSS
Exploits0References9
EUVD
EUVD
added 2026/05/06 12:30 p.m.22 views

EUVD-2026-27592

In the Linux kernel, the following vulnerability has been resolved: xfrm: Wait for RCU readers during policy netns exit xfrmpolicyfini frees the policybydst hash tables after flushing the policy work items and deleting all policies, but it does not wait for concurrent RCU readers to leave their...

5.8AI score0.00128EPSS
Exploits0References6
CVE
CVE
added 2026/05/06 11:28 a.m.23 views

CVE-2026-43256

CVE-2026-43256 is a Linux kernel vulnerability in the media subsystem (Qualcomm CAMSS VM) where the vfe_isr_reg_update() function may perform an out-of-bounds access. The code loops with MSM_VFE_IMAGE_MASTERS_NUM(7) but accesses vfe->line[] defined as struct vfe_line lineVFE_LINE_NUM_MAX . Whe...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/05/06 11:28 a.m.54 views

CVE-2026-43256 media: qcom: camss: vfe: Fix out-of-bounds access in vfe_isr_reg_update()

In the Linux kernel, the following vulnerability has been resolved: media: qcom: camss: vfe: Fix out-of-bounds access in vfeisrregupdate vfeisr iterates using MSMVFEIMAGEMASTERSNUM7 as the loop bound and passes the index to vfeisrregupdate. However, vfe-line array is defined with VFELINENUMMAX4:...

7.8CVSS0.00129EPSS
Exploits0References6
CVE
CVE
added 2026/05/06 11:27 a.m.20 views

CVE-2026-43168

CVE-2026-43168 concerns the Linux kernel OCFS2 reflink preserve cleanup issue. Multiple connected sources confirm a bug in the cleanup of preserved xattr entries: the last pointer should be shifted by one unit after an array entry cleanup, and the first entry may not be cleaned when xh_count is 1...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References8Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.11 views

PT-2026-37622

In the Linux kernel, the following vulnerability has been resolved: RDMA/ionic: Fix potential NULL pointer dereference in ionic query port The function ionic query port calls ib device get netdev without checking the return value which could lead to NULL pointer dereference, Fix it by checking th...

5.7AI score0.00112EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/05/05 1:20 p.m.14 views

kernel: nvme: avoid double free special payload

In the Linux kernel, the following vulnerability has been resolved: nvme: avoid double free special payload If a discard request needs to be retried, and that retry may fail before a new special payload is added, a double free will result. Clear the RQFSPECIALLOAD when the request is cleaned...

7.8CVSS6.3AI score0.00248EPSS
Exploits0References5
OSV
OSV
added 2026/05/01 2:15 p.m.2 views

CVE-2026-43036 net: use skb_header_pointer() for TCPv4 GSO frag_off check

In the Linux kernel, the following vulnerability has been resolved: net: use skbheaderpointer for TCPv4 GSO fragoff check Syzbot reported a KMSAN uninit-value warning in gsofeaturescheck called from netifskbfeatures 1. gsofeaturescheck reads iph-fragoff to decide whether to clear mangleidfeatures...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.6 views

PT-2026-36373

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the vxlan na create function where ND options are processed based on lengths provided within the options. A malformed option can cause the parser to advance beyond the...

5.5CVSS5.3AI score0.00123EPSS
Exploits0
EUVD
EUVD
added 2026/04/24 2:42 p.m.9 views

EUVD-2026-25520

In the Linux kernel, the following vulnerability has been resolved: i2c: s3c24xx: check the size of the SMBUS message before using it The first byte of an i2c SMBUS message is the size, and it should be verified to ensure that it is in the range of 0..I2CSMBUSBLOCKMAX before processing it. This i...

5.4AI score0.00131EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/04/20 9:18 p.m.16 views

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.8CVSS6AI score0.00171EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/08 12:0 a.m.4 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006688)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006688 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: ses: Fix possible descptr out-of-bounds accesses Sanitize possible descptr out-of-bounds...

7.1CVSS5.8AI score0.0014EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/07 12:0 a.m.3 views

SUSE SLES15 Security Update : kernel RT (Live Patch 5 for SUSE Linux Enterprise 15 SP7) (SUSE-SU-2026:1185-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1185-1 advisory. This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.7.19 fixes various security issues The following security issues were fixed: -...

7.8CVSS6.8AI score0.00344EPSS
Exploits7References25
Cvelist
Cvelist
added 2026/04/03 3:15 p.m.25 views

CVE-2026-23434 mtd: rawnand: serialize lock/unlock against other NAND operations

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: serialize lock/unlock against other NAND operations nandlock and nandunlock call into chip-ops.lockarea/unlockarea without holding the NAND device lock. On controllers that implement SETFEATURES via multiple low-lev...

7.1CVSS0.00126EPSS
Exploits0References8
OSV
OSV
added 2026/04/01 8:36 a.m.2 views

CVE-2026-23401 KVM: x86/mmu: Drop/zap existing present SPTE even when creating an MMIO SPTE

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Drop/zap existing present SPTE even when creating an MMIO SPTE When installing an emulated MMIO SPTE, do so after dropping/zapping the existing SPTE if it's shadow-present. While commit a54aa15c6bda3 was right about...

8.1CVSS5.8AI score0.00184EPSS
Exploits0References31
CVE
CVE
added 2026/03/25 10:27 a.m.24 views

CVE-2026-23363

The CVE-2026-23363 issue affects the Linux kernel wifi driver stack, specifically the mt7925 component of the mt76 driver. A missing frame-length check in mt7925_mac_write_txwi_80211() could allow out-of-bounds access to management fields, potentially impacting system stability. The vulnerability...

7.1CVSS5.6AI score0.00125EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/03/25 10:27 a.m.21 views

CVE-2026-23324 can: usb: etas_es58x: correctly anchor the urb in the read bulk callback

In the Linux kernel, the following vulnerability has been resolved: can: usb: etases58x: correctly anchor the urb in the read bulk callback When submitting an urb, that is using the anchor pattern, it needs to be anchored before submitting it otherwise it could be leaked if usbkillanchoredurbs is...

0.00123EPSS
Exploits0References7
Rows per page
Query Builder