CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD-2026-32309

CVE•added 2026/05/27 12:56 p.m.•12 views

CVE-2026-46011

Summary (CVE-2026-46011, Linux kernel, media: mtk-jpeg): A use-after-free in the mtk-jpeg driver arises when the release path frees the context (ctx) without cancelling pending/running work in ctx->jpeg_work, creating a race with the workqueue accessing freed memory. The race occurs during clo...

7.8CVSS5.7AI score0.00013EPSS

EUVD-2026-32308

In the Linux kernel, the following vulnerability has been resolved: media: mtk-jpeg: fix use-after-free in release path due to uncancelled work The mtkjpegrelease function frees the context structure ctx without first cancelling any pending or running work in ctx-jpegwork. This creates a race...

5.7AI score0.00013EPSS

EUVD•added 2026/05/27 12:56 p.m.•5 views

EUVD-2026-32307

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix error handling in rxgkextracttoken Fix a missing bit of error handling in rxgkextracttoken: in the event that rxgkdecryptskb returns -ENOMEM, it should just return that rather than continuing on for anything else, it...

5.8AI score0.00053EPSS

Exploits0References3

CVE•added 2026/05/27 12:56 p.m.•14 views

CVE-2026-46010

CVE-2026-46010 affects the Linux kernel's rxrpc component. The root cause is missing error handling in rxgk_extract_token(): if rxgk_decrypt_skb() returns -ENOMEM, the function should return that error instead of proceeding, which can lead to an abort. Several advisories state the vulnerability c...

8.1CVSS5.8AI score0.00053EPSS

Exploits0References3

EUVD-2026-32306

In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-ntb: Remove duplicate resource teardown epfntbepcdestroy duplicates the teardown that the caller is supposed to do later. This leads to an oops when .allowlink fails or when .droplink is performed. Remove t...

5.8AI score0.00032EPSS

Cvelist•added 2026/05/27 12:56 p.m.•37 views

CVE-2026-46009 PCI: endpoint: pci-epf-ntb: Remove duplicate resource teardown

0.00032EPSS

Exploits0References7

CVE•added 2026/05/27 12:56 p.m.•13 views

CVE-2026-46008

CVE-2026-46008 (Linux kernel) : A race between damos_walk() and kdamond_fn() exit could cause a deadlock because registration of a new damos_walk() request and the termination of the damon context could race when the kdamond is finishing. The fix adds a new damon_ctx field, walk_control_obsolete,...

5.7AI score0.00024EPSS

Exploits0References2

Cvelist•added 2026/05/27 12:56 p.m.•36 views

CVE-2026-46008 mm/damon/core: fix damos_walk() vs kdamond_fn() exit race

In the Linux kernel, the following vulnerability has been resolved: mm/damon/core: fix damoswalk vs kdamondfn exit race When kdamondfn main loop is finished, the function cancels remaining damoswalk request and unset the damonctx-kdamond so that API callers and API functions themselves can show t...

0.00024EPSS

Exploits0References2

EUVD•added 2026/05/27 12:56 p.m.•7 views

EUVD-2026-32305

5.7AI score0.00024EPSS

Exploits0References2

EUVD•added 2026/05/27 12:56 p.m.•8 views

EUVD-2026-32304

In the Linux kernel, the following vulnerability has been resolved: hwmon: powerz Avoid cacheline sharing for DMA buffer Depending on the architecture the transfer buffer may share a cacheline with the following mutex. As the buffer may be used for DMA, that is problematic. Use the high-level DMA...

5.8AI score0.00023EPSS

Exploits0References4

EUVD-2026-32303

In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: fix u32 overflow in pushbuf reloc bounds check nouveaugempushbufrelocapply validates each relocation with if r-relocbooffset + 4 nvbo-bo.base.size but relocbooffset is u32 uapi/drm/nouveaudrm.h and the integer litera...

5.8AI score0.00013EPSS

CVE•added 2026/05/27 12:56 p.m.•9 views

CVE-2026-46005

The vulnerability CVE-2026-46005 affects the Linux kernel, specifically the XFS code path in xfs_alloc_buftarg(). In the error path, the DAX device reference may not be dropped, causing a resource leak. The fix adds a call to fs_put_dax() to drop the DAX reference, mitigating the leak. References...

EUVD-2026-32302

In the Linux kernel, the following vulnerability has been resolved: xfs: fix a resource leak in xfsallocbuftarg In the error path, call fsputdax to drop the DAX device reference...

CVE•added 2026/05/27 12:56 p.m.•12 views

CVE-2026-46004

The CVE-2026-46004 issue affects the Linux kernel ALSA caiaq driver. The probe path in setup_card() mishandled errors (e.g., after snd_card_register()), potentially causing use-after-free in subsequent calls such as snd_usb_caiaq_control_init(). The fix changes setup_card() to return an error cod...

5.8AI score0.00032EPSS

Exploits0References8

EUVD•added 2026/05/27 12:55 p.m.•9 views

EUVD-2026-32299

In the Linux kernel, the following vulnerability has been resolved: net: qrtr: ns: Limit the total number of nodes Currently, the nameserver doesn't limit the number of nodes it handles. This can be an attack vector if a malicious client starts registering random nodes, leading to memory...

Cvelist•added 2026/05/27 12:55 p.m.•32 views

CVE-2026-46003 net: qrtr: ns: Limit the total number of nodes

0.00024EPSS

CVE•added 2026/05/27 12:55 p.m.•11 views

CVE-2026-46003

The CVE-2026-46003 entry concerns the Linux kernel, specifically the net: qrtr: ns component. The issue is that the nameserver did not cap the total number of nodes it handles, allowing a malicious client to register many nodes and potentially exhaust memory. The documented fix limits the maximum...

EUVD•added 2026/05/27 12:55 p.m.•7 views

EUVD-2026-32298

In the Linux kernel, the following vulnerability has been resolved: ext2: reject inodes with zero inlink and valid mode in ext2iget ext2iget already rejects inodes with inlink == 0 when imode is zero or idtime is set, treating them as deleted. However, the case of inlink == 0 with a non-zero mode...

5.8AI score0.00032EPSS