Lucene search
K

25 matches found

Vulnrichment
Vulnrichment
added 2026/05/27 3:35 p.m.12 views

CVE-2026-44318 free5GC: BSF concurrent PUT /nbsf-management/v1/subscriptions/{subId} crashes the BSF process via concurrent map read/write on Subscriptions

free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's BSF PUT /nbsf-management/v1/subscriptions/subId handler has an unsynchronized write on the global Subscriptions map. The handler first reads the map under RLock via BSFContext.GetSubscriptionsubId, but if t...

6.5CVSS5.9AI score0.00268EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/04/08 12:0 a.m.4 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-006600)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006600 advisory. An issue was discovered in mm/mmap.c in the Linux kernel before 5.7.11. There is a race condition between certain expand functions expanddownwards and expandupwards...

7CVSS7.1AI score0.0045EPSS
Exploits1References3
Snyk
Snyk
added 2026/03/02 9:41 p.m.2 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling in the registeredStates map used during OAuth2 state handling. An attacker can cause the service to crash and become unavailable by sending multiple concurrent requests to the...

8.2CVSS5.8AI score0.00394EPSS
Exploits1References2
OSV
OSV
added 2026/02/13 1:14 p.m.7 views

OESA-2026-1340 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: media: av7110: prevent underflow in writetstodecoder The buf4 value comes from the user via tsplay. It is a value in the u8 range. The final length we pass to...

7.5CVSS5.4AI score0.00468EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/11 2:6 p.m.4 views

kernel: libceph: fix potential use-after-free in have_mon_and_osd_map()

A use-after-free vulnerability was found in the Ceph client session initialization in the Linux kernel. The havemonandosdmap function checks map epochs without holding the appropriate locks, racing with concurrent map updates that free the old map. This can result in dereferencing freed memory...

5.8AI score0.00173EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/11 7:31 a.m.8 views

kernel: libceph: fix potential use-after-free in have_mon_and_osd_map()

A use-after-free vulnerability was found in the Ceph client session initialization in the Linux kernel. The havemonandosdmap function checks map epochs without holding the appropriate locks, racing with concurrent map updates that free the old map. This can result in dereferencing freed memory...

5.8AI score0.00173EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/05 2:6 p.m.7 views

kernel: libceph: fix potential use-after-free in have_mon_and_osd_map()

A use-after-free vulnerability was found in the Ceph client session initialization in the Linux kernel. The havemonandosdmap function checks map epochs without holding the appropriate locks, racing with concurrent map updates that free the old map. This can result in dereferencing freed memory...

5.8AI score0.00173EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/19 12:45 a.m.12 views

kernel: libceph: fix potential use-after-free in have_mon_and_osd_map()

A use-after-free vulnerability was found in the Ceph client session initialization in the Linux kernel. The havemonandosdmap function checks map epochs without holding the appropriate locks, racing with concurrent map updates that free the old map. This can result in dereferencing freed memory...

5.8AI score0.00173EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/14 12:36 a.m.8 views

kernel: libceph: fix potential use-after-free in have_mon_and_osd_map()

A use-after-free vulnerability was found in the Ceph client session initialization in the Linux kernel. The havemonandosdmap function checks map epochs without holding the appropriate locks, racing with concurrent map updates that free the old map. This can result in dereferencing freed memory...

5.8AI score0.00173EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/14 12:17 a.m.10 views

kernel: libceph: fix potential use-after-free in have_mon_and_osd_map()

A use-after-free vulnerability was found in the Ceph client session initialization in the Linux kernel. The havemonandosdmap function checks map epochs without holding the appropriate locks, racing with concurrent map updates that free the old map. This can result in dereferencing freed memory...

5.8AI score0.00173EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/14 12:13 a.m.8 views

kernel: libceph: fix potential use-after-free in have_mon_and_osd_map()

A use-after-free vulnerability was found in the Ceph client session initialization in the Linux kernel. The havemonandosdmap function checks map epochs without holding the appropriate locks, racing with concurrent map updates that free the old map. This can result in dereferencing freed memory...

5.8AI score0.00173EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/13 9:50 a.m.12 views

kernel: libceph: fix potential use-after-free in have_mon_and_osd_map()

A use-after-free vulnerability was found in the Ceph client session initialization in the Linux kernel. The havemonandosdmap function checks map epochs without holding the appropriate locks, racing with concurrent map updates that free the old map. This can result in dereferencing freed memory...

5.8AI score0.00173EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/12/16 4:16 p.m.2 views

CVE-2025-68285

In the Linux kernel, the following vulnerability has been resolved: libceph: fix potential use-after-free in havemonandosdmap The wait loop in cephopensession can race with the client receiving a new monmap or osdmap shortly after the initial map is received. Both cephmonchandlemap and handleonem...

5.9AI score0.00173EPSS
Exploits0References35
Positive Technologies
Positive Technologies
added 2025/12/16 12:0 a.m.7 views

PT-2025-51689

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.14.0-rc2-build2+ 1266 Description The Linux kernel contains a flaw in libceph related to a potential use-after-free condition within the have mon and osd map function. The issue arises from a race condition in...

6.3AI score0.00173EPSS
Exploits0
OSV
OSV
added 2025/08/25 12:45 p.m.8 views

SUSE-SU-2025:20620-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_4

This update for kernel-livepatch-MICRO-6-0-RTUpdate4 fixes the following issues: - CVE-2024-56664: bpf, sockmap: fix race between element replace and close bsc1235250 - CVE-2025-37752: netsched: schsfq: move the limit validation bsc1245776 - CVE-2025-37797: netsched: hfsc: Fix a UAF vulnerability...

7.8CVSS6.8AI score0.00256EPSS
Exploits0References11
OSV
OSV
added 2025/08/25 12:16 p.m.8 views

SUSE-SU-2025:20610-1 Security update for kernel-livepatch-MICRO-6-0_Update_2

This update for kernel-livepatch-MICRO-6-0Update2 fixes the following issues: - CVE-2024-56664: bpf, sockmap: fix race between element replace and close bsc1235250 - CVE-2025-37752: netsched: schsfq: move the limit validation bsc1245776 - CVE-2025-37797: netsched: hfsc: Fix a UAF vulnerability in...

7.8CVSS6.7AI score0.00256EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2020-29369

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in mm/mmap.c in the Linux kernel before 5.7.11. There is a race condition between certain expand functions expanddownwards and...

7CVSS6.7AI score0.0045EPSS
Exploits1References2
Microsoft CVE
Microsoft CVE
added 2025/03/13 7:0 a.m.4 views

bpf, sockmap: Fix race between element replace and close()

...

7CVSS7.8AI score0.00173EPSS
Exploits0
Amazon
Amazon
added 2025/02/05 12:0 a.m.7 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net: sched: schmultiq: fix possible OOB write in multiqtune CVE-2024-36978 In the Linux kernel, the following vulnerability has been resolved: usb-storage: alauda: Check whether the media is initialized...

7.8CVSS7.1AI score0.00302EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/07/13 2:37 a.m.3 views

SUSE CVE-2024-39500

In the Linux kernel, the following vulnerability has been resolved: sockmap: avoid race between sockmapclose and skpsockput skpsockget will return NULL if the refcount of psock has gone to 0, which will happen when the last call of skpsockput is done. However, skpsockdrop may not have finished ye...

4.7CVSS6.3AI score0.00197EPSS
Exploits0References14
Rows per page
Query Builder