Lucene search
K

33 matches found

EUVD
EUVD
added 2026/06/24 6:32 p.m.4 views

EUVD-2026-38868

In the Linux kernel, the following vulnerability has been resolved: netfilter: nat: use kfreercu to release ops Florian Westphal says: "Historically this is not an issue, even for normal base hooks: the data path doesn't use the original nfhookops that are used to register the callbacks. However,...

5.8AI score0.00123EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/06/24 4:29 p.m.26 views

CVE-2026-53000 netfilter: nat: use kfree_rcu to release ops

In the Linux kernel, the following vulnerability has been resolved: netfilter: nat: use kfreercu to release ops Florian Westphal says: "Historically this is not an issue, even for normal base hooks: the data path doesn't use the original nfhookops that are used to register the callbacks. However,...

7.8CVSS0.00123EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.8 views

PT-2026-51894

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the netfilter component of the Linux kernel, specifically within the Network Address Translation NAT subsystem. The issue stems from improper memory management when...

7.8CVSS5.8AI score0.00123EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/04/27 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-31665

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netfilter: nftct: fix use-after-free in timeout object destroy nftcttimeoutobjdestroy frees the timeout object with kfree immediately after nfctuntimeout, witho...

7.8CVSS5.8AI score0.00117EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/24 2:45 p.m.31 views

CVE-2026-31665 netfilter: nft_ct: fix use-after-free in timeout object destroy

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftct: fix use-after-free in timeout object destroy nftcttimeoutobjdestroy frees the timeout object with kfree immediately after nfctuntimeout, without waiting for an RCU grace period. Concurrent packet processing on...

7.8CVSS0.00117EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/04/24 2:45 p.m.5 views

CVE-2026-31665

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftct: fix use-after-free in timeout object destroy nftcttimeoutobjdestroy frees the timeout object with kfree immediately after nfctuntimeout, without waiting for an RCU grace period. Concurrent packet processing on...

5.6AI score0.00117EPSS
Exploits0References9Affected Software1
CVE
CVE
added 2026/04/24 2:45 p.m.16 views

CVE-2026-31665

CVE-2026-31665 affects the Linux kernel netfilter nf_conntrack timeout destruction. The issue is a use-after-free where nft_ct_timeout_obj_destroy() frees the timeout object with kfree() immediately after nf_ct_untimeout(), potentially leaving RCU-protected references active. The documented fix d...

7.8CVSS5.6AI score0.00117EPSS
Exploits0References8Affected Software1
RedHat Linux
RedHat Linux
added 2026/03/09 5:3 p.m.5 views

kernel: drm/xe: Make dma-fences compliant with the safe access rules

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Make dma-fences compliant with the safe access rules Xe can free some of the data pointed to by the dma-fences it exports. Most notably the timeline name can get freed if userspace closes the associated submit queue. At t...

7.8CVSS5.7AI score0.00154EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/12 3:8 p.m.6 views

kernel: Bluetooth: Fix potential use-after-free when clear keys

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix potential use-after-free when clear keys Similar to commit c5d2b6fa26b5 "Bluetooth: Fix use-after-free in hciremoveltk/hciremoveirk". We can not access k after kfreercu call...

7.8CVSS6.8AI score0.00139EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/10/16 11:24 p.m.7 views

SUSE CVE-2025-39978

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: Fix potential use after free in otx2tcaddflow This code calls kfreercunewnode, rcu and then dereferences "newnode" and then dereferences it on the next line. Two lines later, we take a mutex so I don't think this is...

7.8CVSS6.8AI score0.00182EPSS
Exploits0References24
Cvelist
Cvelist
added 2025/10/15 7:55 a.m.7 views

CVE-2025-39978 octeontx2-pf: Fix potential use after free in otx2_tc_add_flow()

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: Fix potential use after free in otx2tcaddflow This code calls kfreercunewnode, rcu and then dereferences "newnode" and then dereferences it on the next line. Two lines later, we take a mutex so I don't think this is...

0.00182EPSS
Exploits0References5
CVE
CVE
added 2025/10/15 7:55 a.m.12 views

CVE-2025-39978

CVE-2025-39978 concerns the Linux kernel’s octeontx2-pf driver. The issue is a potential use-after-free in otx2_tc_add_flow(), where code frees a node with kfree_rcu(new_node, rcu) and then dereferences new_node on subsequent lines, after which a mutex is taken. The fix reorders operations so tha...

6.5AI score0.00182EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/09/18 4:59 p.m.5 views

CVE-2023-53386

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix potential use-after-free when clear keys Similar to commit c5d2b6fa26b5 "Bluetooth: Fix use-after-free in hciremoveltk/hciremoveirk". We can not access k after kfreercu call. Mitigation To mitigate these...

7.1CVSS5.7AI score0.00139EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/09/18 1:33 p.m.6 views

CVE-2023-53386 Bluetooth: Fix potential use-after-free when clear keys

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix potential use-after-free when clear keys Similar to commit c5d2b6fa26b5 "Bluetooth: Fix use-after-free in hciremoveltk/hciremoveirk". We can not access k after kfreercu call...

0.00139EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/09/04 3:32 p.m.5 views

CVE-2025-38703 drm/xe: Make dma-fences compliant with the safe access rules

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Make dma-fences compliant with the safe access rules Xe can free some of the data pointed to by the dma-fences it exports. Most notably the timeline name can get freed if userspace closes the associated submit queue. At t...

0.00154EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/07/29 11:23 p.m.3 views

SUSE CVE-2025-38453

In the Linux kernel, the following vulnerability has been resolved: iouring/msgring: ensure iokiocb freeing is deferred for RCU syzbot reports that defer/local taskwork adding via msgring can hit a request that has been freed: CPU: 1 UID: 0 PID: 19356 Comm: iou-wrk-19354 Not tainted...

7.8CVSS6.5AI score0.00146EPSS
Exploits0References18
RedhatCVE
RedhatCVE
added 2024/11/21 7:14 p.m.18 views

CVE-2024-50212

In the Linux kernel, the following vulnerability has been resolved: lib: alloctagmoduleunload must wait for pending kfreercu calls Ben Greear reports following splat: ------------ cut here ------------ net/netfilter/nfnatcore.c:1114 module nfnat func:nfnatregisterfn has 256 allocated at module...

5.5CVSS6.8AI score0.00197EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/11/10 3:49 a.m.4 views

SUSE CVE-2024-50212

In the Linux kernel, the following vulnerability has been resolved: lib: alloctagmoduleunload must wait for pending kfreercu calls Ben Greear reports following splat: ------------ cut here ------------ net/netfilter/nfnatcore.c:1114 module nfnat func:nfnatregisterfn has 256 allocated at module...

5.5CVSS6.5AI score0.00197EPSS
Exploits0References5
NVD
NVD
added 2024/11/09 11:15 a.m.8 views

CVE-2024-50212

In the Linux kernel, the following vulnerability has been resolved: lib: alloctagmoduleunload must wait for pending kfreercu calls Ben Greear reports following splat: ------------ cut here ------------ net/netfilter/nfnatcore.c:1114 module nfnat func:nfnatregisterfn has 256 allocated at module...

5.5CVSS0.00197EPSS
Exploits0References2
OSV
OSV
added 2024/11/09 11:15 a.m.5 views

UBUNTU-CVE-2024-50212

In the Linux kernel, the following vulnerability has been resolved: lib: alloctagmoduleunload must wait for pending kfreercu calls Ben Greear reports following splat: ------------ cut here ------------ net/netfilter/nfnatcore.c:1114 module nfnat func:nfnatregisterfn has 256 allocated at module...

5.5CVSS5.7AI score0.00197EPSS
Exploits0References8
Rows per page
Query Builder