Lucene search
+L

7 matches found

RedhatCVE
RedhatCVE
added 2026/06/29 1:50 p.m.8 views

CVE-2026-53250

In the Linux kernel, the following vulnerability has been resolved: xsk: cache csumstart/csumoffset to fix TOCTOU in xskskbmetadata The TX metadata area resides in the UMEM buffer which is memory-mapped and concurrently writable by userspace. In xskskbmetadata, csumstart and csumoffset are read...

7.8CVSS5.8AI score0.00112EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/06/25 8:39 a.m.32 views

CVE-2026-53250 xsk: cache csum_start/csum_offset to fix TOCTOU in xsk_skb_metadata()

In the Linux kernel, the following vulnerability has been resolved: xsk: cache csumstart/csumoffset to fix TOCTOU in xskskbmetadata The TX metadata area resides in the UMEM buffer which is memory-mapped and concurrently writable by userspace. In xskskbmetadata, csumstart and csumoffset are read...

7.8CVSS0.00112EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/02/14 4:15 p.m.6 views

CVE-2026-23133

In the Linux kernel, the following vulnerability has been resolved: wifi: ath10k: fix dmafreecoherent pointer dmaalloccoherent allocates a DMA mapped buffer and stores the addresses in XXXunaligned fields. Those should be reused when freeing the buffer rather than the aligned addresses...

5.5CVSS6AI score0.00123EPSS
Exploits0References31
OSV
OSV
added 2025/07/10 8:15 a.m.1 views

DEBIAN-CVE-2025-38267

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Do not trigger WARNON due to a commitoverrun When reading a memory mapped buffer the reader page is just swapped out with the last page written in the write buffer. If the reader page is the same as the commit buffer...

7.8CVSS6.3AI score0.00173EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/10 7:41 a.m.10 views

CVE-2025-38267 ring-buffer: Do not trigger WARN_ON() due to a commit_overrun

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Do not trigger WARNON due to a commitoverrun When reading a memory mapped buffer the reader page is just swapped out with the last page written in the write buffer. If the reader page is the same as the commit buffer...

0.00173EPSS
Exploits0References3
CVE
CVE
added 2025/07/10 7:41 a.m.52 views

CVE-2025-38267

CVE-2025-38267 affects the Linux kernel ring-buffer logic. The issue arises during memory-mapped buffer reads when a commit_overrun allows the reader page to swap to the commit buffer, potentially triggering a WARN_ON_ONCE due to missed events. The vulnerability is tied to the ring_buffer_map_get...

7.8CVSS6.3AI score0.00173EPSS
Exploits0References3Affected Software1
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.1 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: Ring-Buffer: Do not trigger WARNON due to a commitoverrun. When reading a memory-mapped buffer, the reader page is simply swapped out with the last page written to the write buffer. If the reader page is the same as the commit...

7.8CVSS6AI score0.00173EPSS
Exploits0References3
Rows per page
Query Builder