Lucene search
+L

23 matches found

SUSE CVE
SUSE CVE
added 2026/06/26 2:9 a.m.8 views

SUSE CVE-2026-53221

In the Linux kernel, the following vulnerability has been resolved: ip6vti: fix incorrect tunnel matching in vti6tnllookup In vti6tnllookup, when an exact match for a tunnel fails, the code falls back to searching for wildcard tunnels: - Tunnels matching the packet's local address, with any remot...

9.8CVSS5.9AI score0.00559EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/25 8:39 a.m.7 views

EUVD-2026-39312

In the Linux kernel, the following vulnerability has been resolved: ip6vti: fix incorrect tunnel matching in vti6tnllookup In vti6tnllookup, when an exact match for a tunnel fails, the code falls back to searching for wildcard tunnels: - Tunnels matching the packet's local address, with any remot...

5.9AI score0.00559EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2026/06/20 12:28 a.m.16 views

kernel: mptcp: fix slab-use-after-free in __inet_lookup_established

A flaw was found in the Linux kernel's Multipath TCP MPTCP implementation. Due to incorrect memory allocation for IPv6 subflow child sockets, a use-after-free vulnerability exists. A remote attacker could exploit this by triggering concurrent lookups in the kernel's hash table, potentially leadin...

9.8CVSS6.5AI score0.00459EPSS
Exploits0References5
OSV
OSV
added 2026/06/19 12:0 a.m.10 views

ALSA-2026:27288 Important: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: can: isotp: fix tx.buf use-after-free in isotpsendmsg CVE-2026-31474 kernel: mptcp: fix slab-use-after-free in inetlookupestablished CVE-2026-31669 kernel: rxrpc: Fix RxGK token loading t...

9.8CVSS6.6AI score0.00459EPSS
Exploits11References32
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.34 views

PT-2026-45489

Name of the Vulnerable Software and Affected Versions praisonai-platform affected versions not specified Description An Insecure Direct Object Reference IDOR exists in the project CRUD endpoints. The application validates if a user is a member of a workspace but fails to verify if the requested...

8.1CVSS6.1AI score0.00032EPSS
Exploits0References7
NVD
NVD
added 2026/05/27 2:17 p.m.14 views

CVE-2026-45956

In the Linux kernel, the following vulnerability has been resolved: drm/exynos: vidi: use priv-vididev for ctx lookup in vidiconnectionioctl vidiconnectionioctl retrieves the driverdata from drmdev-dev to obtain a struct vidicontext pointer. However, drmdev-dev is the exynos-drm master device, an...

7.8CVSS0.00126EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2026/05/27 12:18 p.m.34 views

CVE-2026-45956

In the Linux kernel, the following vulnerability has been resolved: drm/exynos: vidi: use priv-vididev for ctx lookup in vidiconnectionioctl vidiconnectionioctl retrieves the driverdata from drmdev-dev to obtain a struct vidicontext pointer. However, drmdev-dev is the exynos-drm master device, an...

7.8CVSS5.7AI score0.00126EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: llc: Support for ETHPTR8022 has been removed. The syzbot reported a bug related to uninit-values. 0 llc previously supported ETHP8022 0x0004 and also ETHPTR8022 0x0011. The syzbot exploited this to trigger the bug. The code us...

5.5CVSS6.2AI score0.00242EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/08 1:39 p.m.46 views

CVE-2026-43344 perf/x86/intel/uncore: Fix die ID init and look up bugs

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/uncore: Fix die ID init and look up bugs In snbeppci2phymapinit, in the nrnodeids 8 path, uncoredevicetodie may return -1 when all CPUs associated with the UBOX device are offline. Remove the WARNONONCEdieid == -1...

0.00102EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/05/08 1:39 p.m.8 views

CVE-2026-43344

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/uncore: Fix die ID init and look up bugs In snbeppci2phymapinit, in the nrnodeids 8 path, uncoredevicetodie may return -1 when all CPUs associated with the UBOX device are offline. Remove the WARNONONCEdieid == -1...

5.5CVSS5.7AI score0.00102EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/12/09 8:32 a.m.4 views

expat: Integer overflow in lookup in xmlparse.c

expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...

8.8CVSS7.6AI score0.02636EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2023-52765

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mfd: qcom-spmi-pmic: Fix revid implementation The Qualcomm SPMI PMIC revid implementation is...

6.2CVSS5.7AI score0.00251EPSS
Exploits0References2
OSV
OSV
added 2025/07/28 12:15 p.m.5 views

AZL-72965 CVE-2025-38468 affecting package kernel for versions less than 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: net/sched: Return NULL when htblookupleaf encounters an empty rbtree htblookupleaf has a BUGON that can trigger with the following: tc qdisc del dev lo root tc qdisc add dev lo root handle 1: htb default 1 tc class add dev lo...

5.5CVSS5.8AI score0.00162EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/07/09 12:58 a.m.11 views

kernel: udf: Fix a slab-out-of-bounds write bug in udf_find_entry()

In the Linux kernel, the following vulnerability has been resolved: udf: Fix a slab-out-of-bounds write bug in udffindentry Syzbot reported a slab-out-of-bounds Write bug: loop0: detected capacity change from 0 to 2048 ================================================================== BUG: KASAN:...

7.8CVSS6.3AI score0.00196EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/07/09 12:29 a.m.10 views

kernel: udf: Fix a slab-out-of-bounds write bug in udf_find_entry()

In the Linux kernel, the following vulnerability has been resolved: udf: Fix a slab-out-of-bounds write bug in udffindentry Syzbot reported a slab-out-of-bounds Write bug: loop0: detected capacity change from 0 to 2048 ================================================================== BUG: KASAN:...

7.8CVSS6.3AI score0.00196EPSS
Exploits0References5
VulnCheck KEV
VulnCheck KEV
added 2024/12/06 12:0 a.m.5 views

VulnCheck KEV: CVE-2023-31248

Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability; nftchainlookupbyid failed to check whether a chain was active and CAPNETADMIN is in any user or network namespace...

7.8CVSS6.7AI score0.0205EPSS
Exploits0References1
OSV
OSV
added 2024/05/01 6:15 a.m.4 views

UBUNTU-CVE-2024-26956

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix failure to detect DAT corruption in btree and direct mappings Patch series "nilfs2: fix kernel bug at submitbhwbc". This resolves a kernel BUG reported by syzbot. Since there are two flaws involved, I've made each one...

7.8CVSS6.4AI score0.00255EPSS
Exploits0References30
OSV
OSV
added 2024/03/18 11:15 a.m.8 views

DEBIAN-CVE-2024-26635

In the Linux kernel, the following vulnerability has been resolved: llc: Drop support for ETHPTR8022. syzbot reported an uninit-value bug below. 0 llc supports ETHP8022 0x0004 and used to support ETHPTR8022 0x0011, and syzbot abused the latter to trigger the bug. write$tunr0,...

5.5CVSS5.6AI score0.00242EPSS
Exploits0References1
Snyk
Snyk
added 2023/03/26 12:59 p.m.1 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow due to the generic pointer p pointing to an inaccessible address in the getle32 function. The problem is essentially caused in PackLinuxElf64::elflookup at plxelf.cpp:5404. Remediation Upgrade upx to version...

7.5CVSS7AI score0.00817EPSS
Exploits1References2
OSV
OSV
added 2023/03/25 12:15 a.m.9 views

AZL-35308 CVE-2023-25663 affecting package tensorflow for versions less than 2.11.1-1

TensorFlow is an open source platform for machine learning. Prior to versions 2.12.0 and 2.11.1, when ctx-stepcontainter is a null ptr, the Lookup function will be executed with a null pointer. A fix is included in TensorFlow 2.12.0 and 2.11.1...

7.5CVSS6.6AI score0.00391EPSS
Exploits0References1
Rows per page
Query Builder