Lucene search
K

28164 matches found

OSV
OSV
added 2026/06/24 5:17 p.m.3 views

UBUNTU-CVE-2026-52988

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: join hook list via splicelistrcu in commit phase Publish new hooks in the list into the basechain/flowtable using splicelistrcu to ensure netlink dump list traversal via rcu is safe while concurrent ruleset...

7.1CVSS5.6AI score0.00122EPSS
Exploits0References3
OSV
OSV
added 2026/06/24 5:17 p.m.2 views

UBUNTU-CVE-2026-52971

In the Linux kernel, the following vulnerability has been resolved: net: ena: PHC: Fix potential use-after-free in gettimestamp Move the phc-active check and resp pointer assignment to after acquiring the spinlock. Previously, phc-active was checked without holding the lock, and resp was cached...

7.8CVSS5.6AI score0.00133EPSS
Exploits0References3
OSV
OSV
added 2026/06/24 5:17 p.m.3 views

UBUNTU-CVE-2026-52990

In the Linux kernel, the following vulnerability has been resolved: fsnotify: fix inode reference leak in fsnotifyrecalcmask fsnotifyrecalcmask fails to handle the return value of fsnotifyrecalcmask, which may return an inode pointer that needs to be released via fsnotifydropobject when the...

5.6AI score0.00175EPSS
Exploits0References3
OSV
OSV
added 2026/06/24 5:17 p.m.2 views

UBUNTU-CVE-2026-52985

In the Linux kernel, the following vulnerability has been resolved: netdevsim: zero initialize struct iphdr in dummy skbuff Syzbot reports a KMSAN uninit-value originating from nsimdevtrapskbbuild, with the allocation also being performed in the same function. Fix this by calling skbputzero inste...

5.6AI score0.00176EPSS
Exploits0References3
OSV
OSV
added 2026/06/24 5:17 p.m.2 views

UBUNTU-CVE-2026-53028

In the Linux kernel, the following vulnerability has been resolved: usb: typec: Fix error pointer dereference The variable tps-partner is checked for an error pointer and then if it is, it sends an error message but does not return and then immediately dereferenced a few lines below: tps-partner ...

5.6AI score0.00166EPSS
Exploits0References3
OSV
OSV
added 2026/06/24 5:17 p.m.2 views

UBUNTU-CVE-2026-53090

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix ldabs,ind failure path analysis in subprogs Usage of ldabs,ind instructions got extended into subprogs some time ago via commit 09b28d76eac4 "bpf: Add abnormal return checks.". These are only allowed in subprograms when...

8.5CVSS5.8AI score0.00123EPSS
Exploits0References3
OSV
OSV
added 2026/06/24 5:17 p.m.2 views

UBUNTU-CVE-2026-52958

In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds access in osdmapdecode When decoding osdstate and osdweight from an incoming osdmap in osdmapdecode, both are decoded for each osd, i.e., map-maxosd times. The cephdecodeneed check only accoun...

9.1CVSS5.6AI score0.00544EPSS
Exploits0References3
OSV
OSV
added 2026/06/24 5:17 p.m.2 views

UBUNTU-CVE-2026-53037

In the Linux kernel, the following vulnerability has been resolved: HID: usbhid: fix deadlock in hidpostreset You can build a USB device that includes a HID component and a storage or UAS component. The components can be reset only together. That means that hidprereset and hidpostreset are in the...

4.1CVSS5.6AI score0.00176EPSS
Exploits0References3
OSV
OSV
added 2026/06/24 5:17 p.m.3 views

UBUNTU-CVE-2026-53020

In the Linux kernel, the following vulnerability has been resolved: um: Fix potential race condition in TLB sync During the TLB sync, we need to traverse and modify the page table, so we should hold the page table lock. Since full SMP support for threads within the same process is still missing,...

7.8CVSS5.7AI score0.0012EPSS
Exploits0References3
OSV
OSV
added 2026/06/24 5:17 p.m.3 views

UBUNTU-CVE-2026-52960

In the Linux kernel, the following vulnerability has been resolved: ceph: put folios not suitable for writeback The batch holds references to the folios see filemapgetfolios, foliobatchrelease, so we need to folioput the folios we remove. Tested on v6.18...

7.5CVSS5.6AI score0.00359EPSS
Exploits0References3
OSV
OSV
added 2026/06/24 5:17 p.m.2 views

UBUNTU-CVE-2026-53043

In the Linux kernel, the following vulnerability has been resolved: ocfs2/dlm: validate qrnumregions in dlmmatchregions Patch series "ocfs2/dlm: fix two bugs in dlmmatchregions". In dlmmatchregions, the qrnumregions field from a DLMQUERYREGION network message is used to drive loops over the...

9.1CVSS5.8AI score0.00521EPSS
Exploits0References3
OSV
OSV
added 2026/06/24 5:17 p.m.2 views

UBUNTU-CVE-2026-53075

In the Linux kernel, the following vulnerability has been resolved: ppp: require CAPNETADMIN in target netns for unattached ioctls /dev/ppp open is currently authorized against file-fcred-userns, while unattached administrative ioctls operate on current-nsproxy-netns. As a result, a local...

8.8CVSS5.6AI score0.00182EPSS
Exploits1References3
OSV
OSV
added 2026/06/24 5:17 p.m.2 views

UBUNTU-CVE-2026-53092

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix linked reg delta tracking when srcreg == dstreg Consider the case of rX += rX where srcreg and dstreg are pointers to the same bpfregstate in adjustregminmaxvals. The latter first modifies the dstreg in-place, and later ...

7.8CVSS5.4AI score0.00123EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/06/24 4:30 p.m.5 views

CVE-2026-53130

In the Linux kernel, the following vulnerability has been resolved: fs/omfs: reject ssysblocksize smaller than OMFSDIRSTART omfsfillsuper rejects oversized ssysblocksize values PAGESIZE, but it does not reject values smaller than OMFSDIRSTART 0x1b8 = 440. Later, omfsmakeempty uses sbi-ssysblocksi...

7.8CVSS5.6AI score0.0013EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/24 4:30 p.m.3 views

CVE-2026-53125

In the Linux kernel, the following vulnerability has been resolved: md: fix arraystate=clear sysfs deadlock When "clear" is written to arraystate, mdattrstore breaks sysfs active protection so the array can delete itself from its own sysfs store method. However, mdattrstore currently drops the...

5.7AI score0.00169EPSS
Exploits0
CVE
CVE
added 2026/06/24 4:30 p.m.9 views

CVE-2026-53106

CVE-2026-53106 affects the Linux kernel BPF storage deletion flow. The issue arises when local storage is freed via kfree_rcu(), call_rcu(), or call_rcu_tasks_trace() in NMI or reentrant contexts, which can lead to a deadlock. The documented mitigation in NMI is to return an error from bpf_xxx_st...

5.8AI score0.00145EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/24 4:30 p.m.3 views

EUVD-2026-38952

In the Linux kernel, the following vulnerability has been resolved: bpf: return VMA snapshot from taskvma iterator Holding the per-VMA lock across the BPF program body creates a lock ordering problem when helpers acquire locks that depend on mmaplock: vmlock - irwsem - mmaplock - vmlock Snapshot...

5.7AI score0.00156EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/24 4:30 p.m.3 views

EUVD-2026-38939

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: Add missing chan lock in l2capecredreconfrsp l2capecredreconfrsp calls l2capchandel without holding l2capchanlock. Every other l2capchandel caller in the file acquires the lock first. A remote BLE device can sen...

5.8AI score0.00146EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/06/24 4:30 p.m.27 views

CVE-2026-53055 crypto: hisilicon/sec2 - prevent req used-after-free for sec

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/sec2 - prevent req used-after-free for sec During packet transmission, if the system is under heavy load, the hardware might complete processing the packet and free the request memory req before the transmission...

9.8CVSS0.00435EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/06/24 4:29 p.m.3 views

CVE-2026-53040

In the Linux kernel, the following vulnerability has been resolved: ocfs2: validate bgbits during freefrag scan BUG A crafted filesystem can trigger an out-of-bounds bitmap walk when OCFS2IOCINFO is issued with OCFS2INFOFLNONCOHERENT. BUG: KASAN: use-after-free in instrumentatomicread...

7.1CVSS5.7AI score0.00122EPSS
Exploits0
Rows per page
Query Builder