CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

4.7CVSS6.4AI score0.00014EPSS

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: vfs: Do not evict inode under the inode lru traversing context The inode reclaiming process see function pruneicachesb collects all reclaimable inodes and marks them with the IFREEING flag. At that time, other processes will b...

Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: BPF: Fixed a memory leak in the LRU and LRUPERCPU hash maps The LRU and LRUPERCPU maps allocate a new element during updates, before locking the target hash table bucket. Immediately afterwards, the maps attempt to lock the bucke...

5.7AI score0.00032EPSS

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: bpf: Address the issue reported by KCSAN regarding bpflrulist. KCSAN reported a data-race when accessing node-ref. Although node-ref doesn’t need to be accurate, take this opportunity to use a more common READONCE and WRITEONC...

6AI score0.00034EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: zsmalloc: The LRU update function has been moved from zsmapobject to zsmalloc. Under memory pressure, we sometimes observe the following crashes: 5694.832838 ------------ Cut here 5694.842093 Listdel corruption;...

5.8AI score0.00022EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: gfs2: A use-after-free issue was fixed in gfs2glockshrinkscan. The GLFLRU flag is checked under lrulock in gfs2glockremovefromlru to remove a glock from the lru list in gfs2glockput. During the shrink scan process, the same flag ...

7.8CVSS6.2AI score0.00015EPSS

7.8CVSS6.4AI score0.00013EPSS

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: fscache: delete fscachecookielrutimer when fscache exits to avoid UAF The fscachecookielrutimer is initialized when the fscache module is inserted, but is not deleted when the fscache module is removed. If timerreduce is called...

EUVD•added 2026/05/08 3:31 p.m.•6 views

EUVD-2026-28710

In the Linux kernel, the following vulnerability has been resolved: mm: Fix a hmmrangefault livelock / starvation problem If hmmrangefault fails a foliotrylock in doswappage, trying to acquire the lock of a device-private folio for migration, to ram, the function will spin until it succeeds...

5.8AI score0.00012EPSS

Exploits0References4

CVE•added 2026/05/08 2:21 p.m.•8 views

CVE-2026-43404

CVE-2026-43404: In the Linux kernel mm subsystem, hmm_range_fault() can livelock if folio_trylock() fails during device-private folio migration; the spinning waiter may be starved if a dependent work item on the same CPU never runs, causing a DoS-like livelock. Conditions include: migration path ...

5.5CVSS5.8AI score0.00012EPSS

Exploits0References3Affected Software1

EUVD•added 2026/05/06 8:54 p.m.•1 views

EUVD-2026-28222

OpenTelemetry.Exporter.Zipkin is the .NET Zipkin exporter for OpenTelemetry. In versions 1.15.2 and earlier, the Zipkin exporter remote endpoint cache accepts unbounded key growth derived from span attributes. In high-cardinality scenarios, a process using Zipkin export for client or producer spa...

5.3CVSS5.8AI score0.00016EPSS

ATTACKERKB•added 2026/05/04 7:14 p.m.•1 views

CVE-2026-7768

@fastify/accepts-serializer cached serializer-selection results keyed by the request Accept header without a size limit or eviction policy. A remote unauthenticated client could send many distinct but matching Accept header variants to make the cache grow unbounded, eventually exhausting the...

7.5CVSS5.8AI score0.00048EPSS

Exploits0References3

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: mm: multi-gen LRU: fix crash during cgroup migration The lrugenmigratemm function assumes that lrugenaddmm runs before it. This assumption is not true in the following scenario: CPU 1 CPU 2 clone cgroupcanfork cgroupprocswrite...

5.5CVSS6.1AI score0.00084EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: mm/damon/lrusort: A divide-by-zero error was avoided in damonlrusortapplyparameters. The patch series “mm/damon: avoid divide-by-zero in DAMON module’s parameter application”. The DAMON’s RECLAIM and LRUSORT modules do not perfor...

5.5CVSS5.7AI score0.00019EPSS

Tenable Nessus•added 2026/04/21 12:0 a.m.•2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013191)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013191 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf: Address KCSAN report on bpflrulist KCSAN reported a data-race when accessing node-ref...

5.6AI score0.00034EPSS

Exploits0References4

Cvelist•added 2026/03/18 12:23 a.m.•27 views

CVE-2026-27980 Next.js: Unbounded next/image disk cache growth can exhaust storage

Next.js is a React framework for building full-stack web applications. Starting in version 10.0.0 and prior to version 16.1.7, the default Next.js image optimization disk cache /next/image did not have a configurable upper bound, allowing unbounded cache growth. An attacker could generate many...

6.9CVSS0.00023EPSS

Exploits0References3

ATTACKERKB•added 2026/03/18 12:23 a.m.•4 views

CVE-2026-27980

6.9CVSS5.8AI score0.00023EPSS

Exploits0References4Affected Software1

OSV•added 2026/02/18 10:30 a.m.•3 views

OSEC-2026-02 ARP unbounded memory usage

Background Mirage's implementation of the ARP protocol RFC826 caches ARP replies to construct an IPv4 address - MAC address cache. This cache is long-lived effectively global, and also contains pending ARP requests, which are replaced by the reply, or deleted after a timeout. ARP replies that do...

7.4CVSS6AI score

Tenable Nessus•added 2026/01/21 12:0 a.m.•2 views

Fedora 43 : rust-lru (2026-cd2a3ce9e6)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-cd2a3ce9e6 advisory. Update to version 0.16.3. Includes the fix for RUSTSEC-2026-0002. Tenable has extracted the preceding description block directly from the Fedora security...

5.6AI score

OpenVAS•added 2026/01/20 12:0 a.m.•3 views

Fedora: Security Advisory (FEDORA-2026-e153bc6b6a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5AI score