131 matches found
ROS-20260629-73-0024
The vulnerability in giflib is related to a memory reclamation error. Exploiting this vulnerability can allow an attacker to cause a service failure...
CVE-2026-53157 net: phonet: free phonet_device after RCU grace period
In the Linux kernel, the following vulnerability has been resolved: net: phonet: free phonetdevice after RCU grace period phonetdevicedestroy removes a phonetdevice from the per-net device list with listdelrcu, but frees it immediately. RCU readers walking the same list can still hold a pointer t...
CVE-2026-53000
CVE-2026-53000 affects the Linux kernel netfilter NAT path. The root issue is partial exposure of nf_hook_ops during error handling, which can lead to unsafe access to internal hook data via the datapath and nat dispatcher flow. Exploitation details are not provided in the documents, but the desc...
ROS-20260622-73-0032
The vulnerability of the LookupCNAME function in the Go programming language is related to a memory reclamation error when processing CNAME records. Exploiting this vulnerability can allow an attacker to cause service interruptions...
The vulnerability of the LookupCNAME() function in the Go programming language allows a perpetrator to trigger a service failure.
The vulnerability of the LookupCNAME function in the Go programming language is related to a memory reclamation error when processing CNAME records. Exploiting this vulnerability can allow an attacker to cause service interruptions...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15
In the Linux kernel, the following vulnerability has been resolved: ice: Do not use the WQMEMRECLAIM flag for the workqueue. When both ice and the irdma driver are loaded, a warning is triggered in checkFlushDependency. This occurs because the ice driver’s workqueue is allocated with the...
CLSA-2026-1778873714 mod_http2: Fix of CVE-2023-45802
CVE-2023-45802: fix deferred memory reclaim of reset HTTP/2 streams...
The vulnerability of the HTTP/2 protocol implementation in the Apache HTTP Server allows a attacker to execute arbitrary code or cause a service failure.
The vulnerability of the HTTP/2 protocol implementation in the Apache HTTP Server is related to a memory reclamation error. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause a service failure...
Vulnerabilities of the kerberos_AcceptSecurityContext() and kerberos_InitializeSecurityContextA() functions in the FreeRDP client, allowing attackers to compromise the accessibility of protected information
The vulnerabilities of the kerberosAcceptSecurityContext and kerberosInitializeSecurityContextA functions in the FreeRDP client are related to a memory reclamation error. Exploiting these vulnerabilities could allow an attacker to compromise the accessibility of protected information...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of implementation of the remmap operation, potentially leading to repeated memory...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerabilities have been resolved: cifs: Client: Fixed a memory leak in smb3fsCONTEXTPARSEPARAM. The user calls fsconfig twice, but when the program exits, free only frees ctx-source for the second call to fsconfig, not the first. Regarding fc-source, there is ...
The vulnerability of the Options::fontFamily function in the ImageMagick graphical editor allows a hacker to trigger a service failure.
The vulnerability of the Options::fontFamily function in the ImageMagick graphic editor is related to a memory reclamation error. Exploiting this vulnerability could allow an attacker to cause a service failure...
CVE-2025-68356
In the Linux kernel, the following vulnerability has been resolved: gfs2: Prevent recursive memory reclaim Function newinode returns a new inode with inode-imapping-gfpmask set to GFPHIGHUSERMOVABLE. This value includes the GFPFS flag, so allocations in that address space can recurse into...
EUVD-2025-205099
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix exclusive map memory leak When exclproghash is 0 and exclproghashsize is non-zero, the map also needs to be freed. Otherwise, the map memory will not be reclaimed, just like the memory leak problem reported by syzbot 1...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a possible conflict between interconnect bandwidth setting locks and memory reclamation locks, which could...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the fact that the gfpmask in the inode address space contains the GFPFS flag, which could lead to recursive...
The vulnerability of the exfat_free_upcase_table() function in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the exfatfreeupcasetable function fs/exfat/nls.c in the Linux kernel is related to a memory reallocation error. Exploiting this vulnerability could allow an attacker to cause a system failure...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988671)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988671 advisory. In the Linux kernel, the following vulnerability has been resolved: ice: Do not use WQMEMRECLAIM flag for workqueue When both ice and the irdma driver are loaded, a...
Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-404093)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-404093 advisory. In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential deadlock with newly created symlinks Syzbot reported that pagesymlink, call...
SUSE CVE-2025-38373
In the Linux kernel, the following vulnerability has been resolved: IB/mlx5: Fix potential deadlock in MR deregistration The issue arises when kzalloc is invoked while holding umemmutex or any other lock acquired under umemmutex. This is problematic because kzalloc can trigger fsreclaimaqcuire,...