Lucene search
K

187 matches found

RedhatCVE
RedhatCVE
added 2026/06/25 11:32 p.m.10 views

CVE-2026-52971

A flaw was found in the Linux kernel's Elastic Network Adapter ENA driver, specifically within the Precision Time Protocol Hardware Clock PHC timestamp retrieval function. A race condition exists where the gettimestamp function could attempt to access memory that has already been freed by the...

7.8CVSS5.7AI score0.00133EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/24 8:21 p.m.6 views

CVE-2026-52923

A flaw was found in the Linux kernel. The ipcidralloc function, used in the checkpoint/restore path for SysV Inter-Process Communication IPC ID allocation, does not properly limit ID allocation to the valid range. This can result in the system attempting to dereference freed memory, leading to a...

7.8CVSS5.8AI score0.00127EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/24 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-52923

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ipc: limit nextid allocation to the valid ID range The checkpoint/restore sysctl path can request the next SysV IPC id through ids-nextid. ipcidralloc currently...

7.8CVSS6.1AI score0.00127EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: fs: dlm: fix invalid dereference of sblvbptr I encounter issues when placing an lkbsb on the stack and having the sblvbptr field point to a dangling pointer, without using DLMLKFVALBLK. This will cause a crash with the following...

5.5CVSS5.8AI score0.00155EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/08 4:34 p.m.11 views

CVE-2026-46275

A flaw was found in the Linux kernel's Bluetooth hciuart component. Lifecycle management issues, including Use-After-Free UAF and race conditions, were identified during the closing and initialization paths. These issues can lead to the dereferencing of freed memory, potentially causing system...

7.8CVSS5.7AI score0.00185EPSS
Exploits1References4
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in binutils

A issue was discovered in the Binary File Descriptor BFD library also known as libbfd, as distributed in GNU Binutils 2.31. An invalid memory address dereference was identified in the readreloc function in reloc.c. This vulnerability causes a segmentation fault and results in the crash of the...

5.5CVSS6.2AI score0.0182EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in exiv2

An invalid memory address dereferencing was discovered in the Exiv2::StringValueBase::read method in value.cpp of Exiv2 0.26. This vulnerability causes a segmentation fault and results in the application crashing, leading to a denial of service...

5.5CVSS6.5AI score0.01071EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.7 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013572)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013572 advisory. In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix NULL-ptr-deref in rxeqpdocleanup when socket create failed There is a null-ptr-dere...

5.7AI score0.00177EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/08 8:51 p.m.7 views

CVE-2026-31411

A flaw was found in the Linux kernel's Asynchronous Transfer Mode ATM networking component. A local attacker, by acting as a malicious signaling daemon, could send a specially crafted message containing an unvalidated pointer. This unvalidated pointer would be directly used by the kernel, leading...

7.1CVSS6AI score0.00125EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/03 5:3 p.m.3 views

CVE-2026-31403

A flaw was found in the Linux kernel's Network File System Daemon NFSD component. A local user can exploit this vulnerability by opening the /proc/fs/nfs/exports file and then causing the associated network namespace to be destroyed. Subsequent attempts to read from the still-open file descriptor...

7.8CVSS5.8AI score0.00123EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/21 6:30 a.m.7 views

EUVD-2026-14017

Issue summary: A type confusion vulnerability exists in the signature verification of signed PKCS7 data where an ASN1TYPE union member is accessed without first validating the type, causing an invalid or NULL pointer dereference when processing malformed PKCS7 data. Impact summary: An application...

7.2CVSS5.8AI score0.00502EPSS
Exploits1References12
OSV
OSV
added 2026/01/27 4:16 p.m.6 views

AZL-75275 CVE-2026-22795 affecting package openssl for versions less than 3.3.5-3

Issue summary: An invalid or NULL pointer dereference can happen in an application processing a malformed PKCS12 file. Impact summary: An application processing a malformed PKCS12 file can be caused to dereference an invalid or NULL pointer on memory read, resulting in a Denial of Service. A type...

5.5CVSS7AI score0.00144EPSS
Exploits1References1
AlpineLinux
AlpineLinux
added 2026/01/27 4:1 p.m.4 views

CVE-2026-22796

Issue summary: A type confusion vulnerability exists in the signature verification of signed PKCS7 data where an ASN1TYPE union member is accessed without first validating the type, causing an invalid or NULL pointer dereference when processing malformed PKCS7 data. Impact summary: An application...

5.3CVSS5.9AI score0.00502EPSS
Exploits1
OSV
OSV
added 2026/01/27 4:1 p.m.6 views

CVE-2025-69420 Missing ASN1_TYPE validation in TS_RESP_verify_response() function

Issue summary: A type confusion vulnerability exists in the TimeStamp Response verification code where an ASN1TYPE union member is accessed without first validating the type, causing an invalid or NULL pointer dereference when processing a malformed TimeStamp Response file. Impact summary: An...

7.5CVSS7.1AI score0.00768EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-22795

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Issue summary: An invalid or NULL pointer dereference can happen in an application processing a malformed PKCS12 file. Impact summary: An application processing...

5.5CVSS6.7AI score0.00144EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.6 views

MiracleLinux 7 : elfutils-0.176-2.el7 (AXSA:2019-3992:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-3992:02 advisory. elfutils: Heap-based buffer over-read in libdw/dwarfgetaranges.c:dwarfgetaranges via crafted file CVE-2018-16062 elfutils: Double-free due to double...

9.8CVSS6.6AI score0.03691EPSS
Exploits9References11
RedhatCVE
RedhatCVE
added 2026/01/09 11:58 a.m.7 views

CVE-2018-19887

An invalid memory address dereference was discovered in the huffcode function libfaac/huff2.c in Freeware Advanced Audio Coder FAAC 1.29.9.2. The vulnerability causes a segmentation fault and application crash, which leads to denial of service in the book 4 case...

5.5CVSS6.7AI score0.00872EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/01/05 12:0 a.m.3 views

CVE-2025-52516

An issue was discovered in the Camera in Samsung Mobile Processor and Wearable Processor Exynos 1330, 1380, 1480, 2400, 1580, 2500. An invalid kernel address dereference in the issimian device driver leads to a denial of service...

6.3AI score0.00115EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/12/30 12:0 a.m.6 views

SUSE SLES15: cluster-md-kmp-default / dlm-kmp-default / gfs2-kmp-default / etc (SUSE-SU-2025:4320-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4320-1 advisory. The SUSE Linux Enterprise 15 SP5 kernel was updated to fix various security issues The following security issues were fixed: -...

7.8CVSS6.8AI score0.21314EPSS
Exploits0References611
SUSE CVE
SUSE CVE
added 2025/12/17 12:25 a.m.3 views

SUSE CVE-2025-68212

In the Linux kernel, the following vulnerability has been resolved: fs: Fix uninitialized 'offp' in statmountstring In statmountstring, most flags assign an output offset pointer offp which is later updated with the string offset. However, the STATMOUNTMNTUIDMAP and STATMOUNTMNTGIDMAP cases...

6.4AI score0.00155EPSS
Exploits0References3
Rows per page
Query Builder