CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added yesterday•2 views

CVE-2026-53054

A flaw was found in the Linux kernel's Direct Rendering Manager DRM subsystem, specifically within the Qualcomm Adreno GPU MSM driver. An incorrect argument in the VMBIND UNMAP locking mechanism meant that certain objects involved in unmapping operations were not consistently locked. This could...

7CVSS5.9AI score0.00166EPSS

RedhatCVE•added 2 days ago•7 views

CVE-2026-53072

A flaw was found in the Linux kernel's Bluetooth subsystem. Improper handling of locking within the hciconnrequestevt function, particularly when the HCIPROTODEFER protocol is active, can result in a Use-After-Free UAF vulnerability. This condition arises when a connection object is accessed afte...

7CVSS6AI score0.00164EPSS

RedhatCVE•added 2 days ago•4 views

CVE-2026-53119

A flaw was found in the Linux kernel's platform/wmi component. A vulnerability exists where a driver's match function can access memory after it has been freed Use-After-Free, due to improper locking during driver probing. This could allow an attacker to execute arbitrary code or cause the system...

6.1AI score0.00157EPSS

CVE•added 2 days ago•7 views

CVE-2026-53227

CVE-2026-53227 : In the Linux kernel’s net/openvswitch path, the patch fixes a bug where a reply skb could be freed after unlocking when its allocation happens after locking the ovs_mutex and returns an error. The root cause is that the error value is saved but the pointer remains non-NULL, leadi...

5.8AI score0.00198EPSS

Exploits0References8

EUVD•added 2 days ago•4 views

EUVD-2026-39254

In the Linux kernel, the following vulnerability has been resolved: locking/rtmutex: Skip removewaiter when waiter is not enqueued syzbot triggered the following splat in removewaiter via FUTEXCMPREQUEUEPI: KASAN: null-ptr-deref in range 0x0000000000000a88-0x0000000000000a8f...

5.7AI score0.00173EPSS

Debian CVE•added 2 days ago•3 views

CVE-2026-53163

5.6AI score0.00173EPSS

Exploits0

EUVD•added 2 days ago•3 views

EUVD-2026-39251

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free race in fastrpcmapcreate fastrpcmaplookup returns a raw pointer after releasing fl-lock. The caller fastrpcmapcreate then calls fastrpcmapget krefgetunlesszero on this unprotected pointer. A...

5.8AI score0.00172EPSS

Exploits0References6

EUVD•added 3 days ago•4 views

EUVD-2026-38903

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix afunix iter deadlock bpfiterunixseqshow may deadlock when locksockfast takes the fast path and the iter prog attempts to update a sockmap. Which ends up spinning at sockmapupdateelem's bhlocksock: WARNING:...

5.7AI score0.00172EPSS

Exploits0References7

EUVD-2026-38847

In the Linux kernel, the following vulnerability has been resolved: net: psp: check for device unregister when creating assoc pspassocdevicegetlocked obtains a pspdev reference via pspdevgetforsock which uses pspdevtryget under RCU; it then acquires psd-lock and drops the reference. Before the lo...

5.7AI score0.00166EPSS

EUVD•added 3 days ago•4 views

EUVD-2026-38988

In the Linux kernel, the following vulnerability has been resolved: PCI: use generic driveroverride infrastructure When a driver is probed through driverattach, the bus' match callback is called without the device lock held, thus accessing the driveroverride field without a lock, which can cause ...

5.7AI score0.00157EPSS

EUVD-2026-38986

In the Linux kernel, the following vulnerability has been resolved: vdpa: use generic driveroverride infrastructure When a driver is probed through driverattach, the bus' match callback is called without the device lock held, thus accessing the driveroverride field without a lock, which can cause...

5.7AI score0.00155EPSS

CVE•added 3 days ago•9 views

CVE-2026-53119

Summary: CVE-2026-53119 affects the Linux kernel in platform/wmi code. The issue occurs when a driver is probed via __driver_attach(): the bus’ match() callback is invoked without the device lock held, allowing access to the driver_override field without proper synchronization, which can cause a ...

5.7AI score0.00157EPSS

EUVD•added 3 days ago•5 views

EUVD-2026-38983

In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: use generic driveroverride infrastructure When a driver is probed through driverattach, the bus' match callback is called without the device lock held, thus accessing the driveroverride field without a lock, which ca...

5.7AI score0.00157EPSS

EUVD-2026-38930

In the Linux kernel, the following vulnerability has been resolved: dm cache policy smq: fix missing locks in invalidating cache blocks In passthrough mode, the policy invalidatemapping operation is called simultaneously from multiple workers, thus it should be protected by a lock. Otherwise, we...

5.7AI score0.00176EPSS

Exploits0References8

EUVD-2026-38922

In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix VMBIND UNMAP locking Wrong argument meant that the objs involved in UNMAP ops were not always getting locked. Since NOSHARE objs share a common resv with the VM which is always locked this would only show up with...

5.7AI score0.00166EPSS

CVE•added 3 days ago•4 views

CVE-2026-53054

The CVE-2026-53054 entry concerns the Linux kernel DRM/MSM code, where a wrong argument caused UNMAP operations to fail to lock the involved objects consistently. Specifically, UNMAP handling could bypass proper locking for non-_NO_SHARE BOs, since _NO_SHARE objects share a common reservation wit...

5.7AI score0.00166EPSS