27998 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-43376
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: fix use-after-free by using callrcu for oplockinfo ksmbd currently frees oplockinfo immediately using kfree, even though it is accessed under RCU read-si...
Linux kernel ๅฎๅ จๆผๆด
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper setting or clearing of CR8 write interception when AVIC is activated. This vulnerability...
Linux kernel ๅฎๅ จๆผๆด
The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the functions netshapernlgetdoit and netshapernlcapgetdoit. These functions incorrectly call nlmsgfree...
CVE-2026-33839 Win32k Elevation of Privilege Vulnerability
...
SUSE-SU-2026:21616-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues The following security issues were fixed: Dirty Frag fixes: - CVE-2026-43500: supported.conf: drop rxrpc completely bsc1264450 - CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags bsc1264449...
SUSE CVE-2025-71301
In the Linux kernel, the following vulnerability has been resolved: drm/tests: shmem: Hold reservation lock around vmap/vunmap Acquire and release the GEM object's reservation lock around vmap and vunmap operations. The tests use vmaplocked, which led to errors such as show below. 122.292030...
SUSE CVE-2026-43190
In the Linux kernel, the following vulnerability has been resolved: netfilter: xttcpmss: check remaining length before reading optlen Quoting reporter: In net/netfilter/xttcpmss.c lines 53-68, the TCP option parser reads opi+1 directly without validating the remaining option length. If the last...
SUSE CVE-2026-43215
In the Linux kernel, the following vulnerability has been resolved: cifs: Fix locking usage for tcon fields We used to use the cifstcpseslock to protect a lot of objects that are not just the server, ses or tcon lists. We later introduced srvlock, seslock and tclock to protect fields within the...
SUSE CVE-2026-43352
In the Linux kernel, the following vulnerability has been resolved: i3c: mipi-i3c-hci: Correct RINGCTRLABORT handling in DMA dequeue The logic used to abort the DMA ring contains several flaws: 1. The driver unconditionally issues a ring abort even when the ring has already stopped. 2. The...
RHEL 8 : kernel (RHSA-2026:16195)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:16195 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Dirty Frag is a new universal Local...
ROS-20260512-73-0026
A vulnerability in the kernel of the Oracle VM VirtualBox virtualization software tool is related to a flaw in the data protection mechanism. Exploitation of the vulnerability could allow an attacker to bypass existing security mechanisms...
RHEL 9 : kernel (RHSA-2026:16312)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:16312 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Dirty Frag is a new universal Local...
RHEL 9 : kernel (RHSA-2026:16328)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:16328 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Dirty Frag is a new universal Local...
RHEL 9 : kernel (RHSA-2026:16202)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:16202 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Dirty Frag is a new universal Local...
ROS-20260512-73-0025
A vulnerability in the kernel of the Oracle VM VirtualBox virtualization software tool is related to a flaw in the data protection mechanism. Exploitation of the vulnerability may allow an attacker to bypass existing security mechanisms...
Nutanix AHV : Multiple Vulnerabilities (NXSA-AHV-11.0.1.1)
The version of AHV installed on the remote host is prior to AHV-11.0.1.1. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AHV-11.0.1.1 advisory. - LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics...
RHEL 8 : kernel (RHSA-2026:16204)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:16204 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Dirty Frag is a new universal Local...
CVE-2026-3609
Wellbia's XIGNCODE3 xhunter1.sys kernel driver Privilege Escalation Vulnerability provides access to IRPMJREITS command interface, which allows any user process to request a PROCESSALLACCESS. Cross reference to KVE 2023-5589 https://krcert.or.kr...
CVE-2026-43500
Summary: CVE-2026-43500 affects the Linux kernel RXRPC path for DATA/RESPONSE packets. The issue occurs when skb fragments are externally owned (e.g., via splice() or frag lists) and the code path decrypts in place, binding frag pages into the AEAD/skcipher SGL. The fix extends the gate to unshar...
MiracleLinux 9 : kernel-5.14.0-611.49.2.el9_7 (AXSA:2026-598:32)
The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-598:32 advisory. kernel: crypto: algifaead - Revert to operating out-of-place CVE-2026-31431 Tenable has extracted the preceding description block directly from the MiracleLin...