Lucene search
K

35 matches found

Cvelist
Cvelist
added 2026/05/28 9:40 a.m.49 views

CVE-2026-46212 batman-adv: bla: prevent use-after-free when deleting claims

In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: prevent use-after-free when deleting claims When batadvbladelbackboneclaims removes all claims for a backbone, it does this by dropping the link entry in the hash list. This list entry itself was one of the...

8.8CVSS0.00274EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.8 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013467)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013467 advisory. A flaw was found in the Linux Kernel. The tlsistxready incorrectly checks for list emptiness, potentially accessing a type confused entry to the listhead, leaking th...

3.3CVSS6.6AI score0.00217EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/07 12:0 a.m.3 views

PT-2026-30862

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. Prior to 2.6.4, the POST /api/food/id/shopping/ endpoint reads amount and unit directly from request.data and passes them without validation to ShoppingListEntry.objects.create. Invalid amount...

7.3CVSS5.9AI score0.00224EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.4 views

PT-2025-53053

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the RDMA/irdma component of the Linux kernel related to PBLE Persistent Binding List Entry objects. When the irdma module is removed, the memory allocated for the...

7.8CVSS6.2AI score0.00465EPSS
Exploits2References896
RedhatCVE
RedhatCVE
added 2025/12/19 3:16 p.m.4 views

CVE-2025-64469

There is a stack-based buffer overflow vulnerability in NI LabVIEW in LVResFile::FindRsrcListEntry when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially...

8.5CVSS7.6AI score0.00134EPSS
Exploits0References1
OSV
OSV
added 2025/12/18 3:15 p.m.4 views

CVE-2025-64469

There is a stack-based buffer overflow vulnerability in NI LabVIEW in LVResFile::FindRsrcListEntry when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially...

8.5CVSS6.4AI score0.00134EPSS
Exploits0References1
OSV
OSV
added 2025/12/18 3:15 p.m.5 views

CVE-2025-64467

There is an out of bounds read vulnerability in NI LabVIEW in LVResFile::FindRsrcListEntry when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted...

8.5CVSS6AI score0.00132EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/18 2:40 p.m.4 views

CVE-2025-64467 Out-of-Bounds Read in LVResFile::FindRsrcListEntry() in NI LabVIEW

There is an out of bounds read vulnerability in NI LabVIEW in LVResFile::FindRsrcListEntry when parsing a corrupted VI file. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted...

8.5CVSS6.8AI score0.00132EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/18 12:0 a.m.4 views

PT-2025-52237

Name of the Vulnerable Software and Affected Versions NI LabVIEW versions prior to 25.3 Description An out of bounds read issue exists in NI LabVIEW within the LVResFile::FindRsrcListEntry function when processing a damaged VI file. This can lead to information disclosure or arbitrary code...

8.5CVSS6.9AI score0.00132EPSS
Exploits0References4
EUVD
EUVD
added 2025/12/08 3:31 a.m.4 views

EUVD-2023-60085

In the Linux kernel, the following vulnerability has been resolved: PCI: Free released resource after coalescing releaseresource doesn't actually free the resource or resource list entry so free the resource list entry to avoid a leak...

6AI score0.00168EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/12/08 1:19 a.m.2 views

CVE-2023-53743

In the Linux kernel, the following vulnerability has been resolved: PCI: Free released resource after coalescing releaseresource doesn't actually free the resource or resource list entry so free the resource list entry to avoid a leak...

5.1AI score0.00168EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/12/08 12:0 a.m.3 views

PT-2025-49473

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to PCI resource management. Specifically, the release resource function does not properly free allocated resources or resource list entries afte...

6.8AI score0.00168EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-10844

Malware in sbrugna...

9.1CVSS9AI score0.00998EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/09/19 11:36 p.m.3 views

SUSE CVE-2022-50384

In the Linux kernel, the following vulnerability has been resolved: staging: vmeuser: Fix possible UAF in tsi148dmalistadd Smatch report warning as follows: drivers/staging/vmeuser/vmetsi148.c:1757 tsi148dmalistadd warn: '&entry-list' not removed from list In tsi148dmalistadd, the error path "got...

7.8CVSS6.5AI score0.00156EPSS
Exploits0References3
OSV
OSV
added 2025/09/19 4:15 p.m.8 views

AZL-67523 CVE-2025-39853 affecting package kernel for versions less than 6.6.112.1-1

In the Linux kernel, the following vulnerability has been resolved: i40e: Fix potential invalid access when MAC list is empty listfirstentry never returns NULL - if the list is empty, it still returns a pointer to an invalid object, leading to potential invalid memory access when dereferenced. Fi...

7.1CVSS5.6AI score0.00152EPSS
Exploits0References1
OSV
OSV
added 2025/09/18 2:15 p.m.4 views

UBUNTU-CVE-2022-50384

In the Linux kernel, the following vulnerability has been resolved: staging: vmeuser: Fix possible UAF in tsi148dmalistadd Smatch report warning as follows: drivers/staging/vmeuser/vmetsi148.c:1757 tsi148dmalistadd warn: '&entry-list' not removed from list In tsi148dmalistadd, the error path "got...

7.8CVSS5.8AI score0.00156EPSS
Exploits0References12
OSV
OSV
added 2025/08/19 5:15 p.m.2 views

UBUNTU-CVE-2025-38577

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid panic in f2fsevictinode As syzbot 1 reported as below: R10: 0000000000000100 R11: 0000000000000206 R12: 00007ffe17473450 R13: 00007f28b1c10854 R14: 000000000000dae5 R15: 00007ffe17474520 --- end trace...

5.5CVSS5.9AI score0.00161EPSS
Exploits0References40
CVE
CVE
added 2025/08/19 5:3 p.m.42 views

CVE-2025-38577

CVE-2025-38577 : In the Linux kernel, a use-after-free in the f2fs code path can trigger during inode eviction/writeback. The provided trace shows a KASAN use-after-free in __list_del_entry_valid() while f2fs_inode_synced → f2fs_update_inode → f2fs_write_inode, culminating in a crash during check...

5.5CVSS7.1AI score0.00161EPSS
Exploits0References11Affected Software1
OSV
OSV
added 2025/06/18 11:15 a.m.1 views

DEBIAN-CVE-2022-49981

In the Linux kernel, the following vulnerability has been resolved: HID: hidraw: fix memory leak in hidrawrelease Free the buffered reports before deleting the list entry. BUG: memory leak unreferenced object 0xffff88810e72f180 size 32: comm "softirq", pid 0, jiffies 4294945143 age 16.080s hex du...

5.5CVSS5.3AI score0.00205EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/03/06 12:0 a.m.6 views

cvp Incorrect Bailout Use-After-Free

In the function msmcvpmapbufwncc reachable from the EVAKMDREGISTERBUFFER ioctl, after cbuf is created and fully initialized, it is unconditionally added to the linked list inst-cvpwnccbufs.list. msmcvpmapbufwncc then tries to add an entry for the buffer to inst-cvpwnccbufstable. This can fail if...

7.8CVSS7.1AI score0.00099EPSS
Exploits0
Rows per page
Query Builder