Lucene search
+L

61 matches found

astralinux
astralinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: cpufreq: governor: Using the kobject release method to free dbsdata The struct dbsdata contains a struct govattrset, and the struct govattrset contains a kobject. Since every kobject must have a release method, and we cannot...

5.5CVSS6.2AI score0.00249EPSS
Exploits0References2
susecve
susecve
added 2026/05/29 1:15 a.m.17 views

SUSE CVE-2026-46164

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix double free in createspaceinfosubgroup error path When kobjectinitandadd fails, the call chain is: createspaceinfosubgroup - btrfssysfsaddspaceinfotype - kobjectinitandadd - failure - kobjectput&subgroup-kobj -...

5.5CVSS5.8AI score0.00136EPSS
Exploits0References3
nvd
nvd
added 2026/05/28 10:16 a.m.10 views

CVE-2026-46164

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix double free in createspaceinfosubgroup error path When kobjectinitandadd fails, the call chain is: createspaceinfosubgroup - btrfssysfsaddspaceinfotype - kobjectinitandadd - failure - kobjectput&subgroup-kobj -...

7CVSS0.00136EPSS
Exploits0References6
euvd
euvd
added 2026/05/28 9:36 a.m.10 views

EUVD-2026-32791

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix double free in createspaceinfosubgroup error path When kobjectinitandadd fails, the call chain is: createspaceinfosubgroup - btrfssysfsaddspaceinfotype - kobjectinitandadd - failure - kobjectput&subgroup-kobj -...

5.8AI score0.00136EPSS
Exploits0References5
cvelist
cvelist
added 2026/05/28 9:35 a.m.39 views

CVE-2026-46129 btrfs: fix double free in create_space_info() error path

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix double free in createspaceinfo error path When kobjectinitandadd fails, the call chain is: createspaceinfo - btrfssysfsaddspaceinfotype - kobjectinitandadd - failure - kobjectput&spaceinfo-kobj - spaceinforelease -...

7.8CVSS0.00139EPSS
Exploits0References6
attackerkb
attackerkb
added 2026/05/28 9:35 a.m.8 views

CVE-2026-46129

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix double free in createspaceinfo error path When kobjectinitandadd fails, the call chain is: createspaceinfo - btrfssysfsaddspaceinfotype - kobjectinitandadd - failure - kobjectputinfo-kobj - spaceinforelease -...

7.8CVSS5.7AI score0.00139EPSS
Exploits0References7Affected Software1
osv
osv
added 2026/05/28 9:35 a.m.2 views

CVE-2026-46129 btrfs: fix double free in create_space_info() error path

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix double free in createspaceinfo error path When kobjectinitandadd fails, the call chain is: createspaceinfo - btrfssysfsaddspaceinfotype - kobjectinitandadd - failure - kobjectput&spaceinfo-kobj - spaceinforelease -...

7.8CVSS6.5AI score0.00139EPSS
Exploits0References9
ptsecurity
ptsecurity
added 2026/05/28 12:0 a.m.23 views

PT-2026-44287

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A double free issue exists in the Linux kernel within the create space info sub group function. When kobject init and add fails, the execution flow triggers kobject put&sub group-kobj,...

9.1CVSS5.9AI score0.00514EPSS
Exploits9References292
astralinux
astralinux
added 2026/05/20 5:53 a.m.1 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: usb: typec: altmode should keep reference to parent The altmode device release refers to its parent device, but without keeping a reference to it. When registering the altmode, get a reference to the parent and put it in the...

7.8CVSS6.4AI score0.00244EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: cpufreq: schedutil: Use kobject release method to free sugovtunables The struct sugovtunables is protected by the kobject, so we cannot free it directly. Otherwise, we would receive a call trace like this: ODEBUG: free active...

5.5CVSS5.9AI score0.00251EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: Firmware: dmi-sysfs: Fixed a null-ptr-deref issue in dmisysfsregisterhandle. KASAN reported a null-ptr-deref error: KASAN: Null-ptr-deref in the range 0x0000000000000008-0x000000000000000f. CPU: 0; PID: 1373; Comm: modprobe...

5.5CVSS6AI score0.00135EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.14 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: dax: Fixed the issue where daxmappingrelease was called after the free operation. A test using CONFIGDEBUGKOBJECTRELEASE to remove a device-related dax region e.g., using modprobe -r daxhmem results in the following output:...

7.8CVSS5.9AI score0.00139EPSS
Exploits0References1
astralinux
astralinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: EDAC/mc: Fixed the error path ordering in edacmcalloc. When the mci-pvtinfo allocation in edacmcalloc fails, the error path will call putdevice, which will ultimately call the device’s release function. However, the initializatio...

5.5CVSS5.8AI score0.00115EPSS
Exploits0References1
osv
osv
added 2026/05/08 2:16 p.m.13 views

UBUNTU-CVE-2026-43328

In the Linux kernel, the following vulnerability has been resolved: cpufreq: governor: fix double free in cpufreqdbsgovernorinit error path When kobjectinitandadd fails, cpufreqdbsgovernorinit calls kobjectput&dbsdata-attrset.kobj. The kobject release callback cpufreqdbsdatarelease calls...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References10
nessus
nessus
added 2026/01/27 12:0 a.m.4 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005170)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005170 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: typec: altmode should keep reference to parent The altmode device release refers to its pare...

7.8CVSS6.7AI score0.00244EPSS
Exploits0References3
nessus
nessus
added 2026/01/27 12:0 a.m.4 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005020)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005020 advisory. In the Linux kernel, the following vulnerability has been resolved: cpufreq: governor: Use kobject release method to free dbsdata The struct dbsdata embeds a struct...

5.5CVSS5.8AI score0.00249EPSS
Exploits0References4
susecve
susecve
added 2026/01/24 12:25 a.m.6 views

SUSE CVE-2025-71152

In the Linux kernel, the following vulnerability has been resolved: net: dsa: properly keep track of conduit reference Problem description ------------------- DSA has a mumbo-jumbo of reference handling of the conduit net device and its kobject which, sadly, is just wrong and doesn't make sense...

7.8CVSS5.4AI score0.0012EPSS
Exploits0References3
osv
osv
added 2026/01/23 3:16 p.m.7 views

AZL-77319 CVE-2025-71152 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: net: dsa: properly keep track of conduit reference Problem description ------------------- DSA has a mumbo-jumbo of reference handling of the conduit net device and its kobject which, sadly, is just wrong and doesn't make sense...

7.8CVSS5.7AI score0.0012EPSS
Exploits0References1
osv
osv
added 2026/01/23 3:16 p.m.7 views

UBUNTU-CVE-2025-71152

In the Linux kernel, the following vulnerability has been resolved: net: dsa: properly keep track of conduit reference Problem description ------------------- DSA has a mumbo-jumbo of reference handling of the conduit net device and its kobject which, sadly, is just wrong and doesn't make sense...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References10
attackerkb
attackerkb
added 2026/01/23 2:25 p.m.4 views

CVE-2025-71152

In the Linux kernel, the following vulnerability has been resolved: net: dsa: properly keep track of conduit reference Problem description ------------------- DSA has a mumbo-jumbo of reference handling of the conduit net device and its kobject which, sadly, is just wrong and doesn't make sense...

5.4AI score0.0012EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder