CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added last week•2 views

UBUNTU-CVE-2026-46159

5.7AI score0.00024EPSS

Exploits0References8

CVE•added last week•9 views

CVE-2026-46159

The CVE concerns the Linux kernel's btrfs_ioctl_space_info() where a TOCTOU race between two passes over block group RAID type lists can leak kernel data to userspace. The first pass counts entries to determine alloc_size, then the second pass fills the buffer; releasing groups_sem between passes...

5.8AI score0.00024EPSS

EUVD•added last week•5 views

EUVD-2026-32786

5.8AI score0.00024EPSS

Cvelist•added last week•21 views

CVE-2026-46159 btrfs: fix btrfs_ioctl_space_info() slot_count TOCTOU which can lead to info-leak

0.00024EPSS

CVE•added last week•9 views

CVE-2026-46139

CVE-2026-46139 relates to the Linux kernel Samba SMB ACL handling. A kmalloc’ed security descriptor buffer left the 2-byte reserved field uninitialized, because the code wrote fields with le16() but did not touch the reserved Sbz2 slot. If this field contained non-zero slab garbage, Samba could r...

5.9AI score0.00024EPSS

SUSE CVE•added 2026/05/27 3:29 a.m.•2 views

SUSE CVE-2024-43822

In the Linux kernel, the following vulnerability has been resolved: ASoc: PCM6240: Return directly after a failed devmkzalloc in pcmdevicei2cprobe The value “-ENOMEM” was assigned to the local variable “ret” in one if branch after a devmkzalloc call failed at the beginning. This error code will...

5.5CVSS5.9AI score0.00035EPSS

Exploits0References3

AstraLinux•added 2026/05/20 5:53 a.m.•7 views

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: clk: imx: clk-imxrt1050 – a memory leak was fixed in imxrt1050clocksprobe. Use devmofiomap instead of ofiomap to automatically handle the unused ioremap regions. If any errors occur, the memory allocated by kzalloc may leak;...

5.5CVSS5.8AI score0.00022EPSS

5.5CVSS6.3AI score0.00007EPSS

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Error handling was added in xhcimapurbfordma. Currently, xhcimapurbfordma creates a temporary buffer and copies the SG list to the new linear buffer. However, if kzallocnode fails, the subsequent call to sgpcopytobuffe...

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: drm/tegra: Fixed a possible null pointer derefrence issue. In tegracrtcreset, new memory is allocated using kzalloc, but no checks are performed. Before calling drmatomichelpercrtcreset, the state of the memory allocation should ...

5.5CVSS6.2AI score0.00066EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: igb: Do not free qvector unless a new one was allocated. Avoid potential use-after-free conditions under memory pressure. If kzalloc fails, qvector will be freed, but it will remain in the original adapter-qvectorvidx array...

7.8CVSS6.2AI score0.00016EPSS

5.5CVSS6.2AI score0.00016EPSS

Astra Linux - уязвимость в linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: media: mtk-vcodec: There is a potential null pointer dereference issue in the SCP code. The return value of devmkzalloc needs to be checked to avoid NULL pointer dereferences. This is similar to the CVE-2022-3113 vulnerability...

Exploits3References2

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: nvme: fixed memory allocation in nvmeprreadkeys nvmeprreadkeys takes numkeys from userspace and uses it to calculate the allocation size for rse via structsize. The upper limit is PRKEYSMAX 64K. A malicious or buggy userspace...

7.1CVSS5.8AI score0.00018EPSS

Exploits0References1

5.5CVSS6.2AI score0.00016EPSS

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Added a NULL pointer check for kzalloc Why & How Check the return pointer of kzalloc before using it...

5.5CVSS6.5AI score0.00037EPSS

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: wifi: cfg80211: tests: Fixed a potential NULL dereference in testcfg80211ParseColocatedAp. kunitkzalloc may return NULL. Dereferencing it without a NULL check may lead to a NULL dereference. Added a NULL check for ies...

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: checked for a null return from devmkzalloc in dpuwritebackinit. Due to the possible failure of devmkzalloc, dpuwbconn might be NULL, causing a null pointer derefrence later. Therefore, it might be better to check thi...

5.5CVSS5.7AI score0.00017EPSS