Lucene search
K

11 matches found

Debian CVE
Debian CVE
added 2026/05/08 2:21 p.m.8 views

CVE-2026-43366

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: check if target buffer list is still legacy on recycle There's a gap between when the buffer was grabbed and when it potentially gets recycled, where if the list is empty, someone could've upgraded it to a ring...

7.8CVSS5.8AI score0.0013EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-38002

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: iouring/fdinfo: grab ctx-uringlock around iouringshowfdinfo Not everything requires locking ...

5.5CVSS5.9AI score0.00175EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2022-2327

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iouring use workflags to determine which identity need to grab from the calling process to make sure it is consistent with the calling process when executing...

7.8CVSS6.2AI score0.00261EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-21836

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iouring/kbuf: reallocate buf lists on upgrade IORINGREGISTERPBUFRING can reuse an old struct iobufferlist if it was created for legacy selected buffer and has...

5.5CVSS6.8AI score0.00215EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.6 views

The vulnerability of the io_ring_buffer_select() function in the io_uring component of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the ioringbufferselect function in the iouring component of the Linux operating system is related to the dereferencing of a NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00224EPSS
Exploits0References15Affected Software6
0day.today
0day.today
added 2025/02/22 12:0 a.m.549 views

Linux io_uring Use-After-Free Exploit

The Linux kernel suffers from a use-after-free of struct ioevfd because ioeventfddosignal frees an object when the refcount reaches zero without waiting for the required grace period. Summary UAF of struct ioevfd because ioeventfddosignal frees an object when the refcount reaches zero without...

6.9AI score0.00219EPSS
Exploits2
Packet Storm
Packet Storm
added 2025/02/21 12:0 a.m.662 views

Linux io_uring Use-After-Free

The Linux kernel suffers from a use-after-free of struct ioevfd because ioeventfddosignal frees an object when the refcount reaches zero without waiting for the required grace period. Summary UAF of struct ioevfd because ioeventfddosignal frees an object when the refcount reaches zero without...

6.5AI score0.00219EPSS
Exploits2
BDU FSTEC
BDU FSTEC
added 2024/05/16 12:0 a.m.9 views

The vulnerability of the function io_files_update_with_index_alloc() in the fs/io_uring.c module of the io_uring component of the Linux operating system allows a attacker to cause a service failure.

The vulnerability of the iofilesupdatewithindexalloc function in the fs/iouring.c module of the iouring component of the Linux operating system is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00206EPSS
Exploits0References8Affected Software1
Oracle linux
Oracle linux
added 2023/06/02 12:0 a.m.30 views

virt:kvm_utils2 security update

hivex libguestfs libguestfs-winsupport libiscsi libnbd libtpms libvirt libvirt-dbus libvirt-python nbdkit netcf perl-Sys-Virt qemu-kvm 6.1.1-6-el8 - CVE-2023-1544 is not applicable to Oracle QEMU 6.1.1 Karl Heubaum Orabug: 35305727 CVE-2023-1544 - virtio-gpu: do not byteswap padding Paolo Bonzini...

6.3CVSS6.7AI score0.00309EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/02/08 12:0 a.m.5 views

The vulnerability of the io_prep_async_work() function in the io_uring subsystem of the Linux operating system allows a hacker to increase their privileges.

The vulnerability of the ioprepasyncwork function in the iouring subsystem of the Linux operating system is related to the use of previously freed memory. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS6.5AI score0.00269EPSS
Exploits0References8Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/05/20 12:0 a.m.5 views

The vulnerability of the asynchronous input/output interface io_uring in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the asynchronous input/output interface iouring in Linux operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

7.8CVSS7.2AI score0.0044EPSS
Exploits0References15Affected Software2
Rows per page
Query Builder