Lucene search
+L

1073 matches found

Cvelist
Cvelist
added 2026/07/10 8:42 p.m.32 views

CVE-2026-34196 GPU DDK - UAF read and/or write of arbitrary physical memory due to integer truncation in PMRDevPhysAddrOSMem

Software installed and run as a non-privileged user may conduct improper GPU system calls to cause an integer overflow and map two GPU virtual addresses to the same physical address. One of these virutal mappings can be freed along with the physical page, allowing for a read/write UAF via the...

0.00118EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2026/07/10 12:0 a.m.4 views

The vulnerability of the kvm_set_memory_region() function in the virt/kvm/kvm_main.c module of the KVM virtualization subsystem in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the kvmsetmemoryregion function in the virt/kvm/kvmmain.c module of the Kernel-based Virtual Machine KVM virtualization subsystem of the Linux operating system is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker...

5.5CVSS6.2AI score0.00166EPSS
Exploits0References8Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/07/08 12:0 a.m.7 views

The vulnerability of the xe_oa_add_config_ioctl() function in the drivers/gpu/drm/xe/xe_oa.c module of the Direct Rendering Infrastructure (DRI) driver in the Linux operating system allows a attacker to cause a service failure.

The vulnerability of the xeoaaddconfigioctl function in the drivers/gpu/drm/xe/xeoa.c module of the Direct Rendering Infrastructure DRI driver for the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability can allow an attacker to cause a...

5.5CVSS6AI score0.00115EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/07/08 12:0 a.m.6 views

The vulnerability of the ets_qdisc_change() function in the net/sched/sch_ets.c module of the network/sched/sch_ets.c subsystem of the Linux operating system’s networking subsystem allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the etsqdiscchange function in the net/sched/schets.c file, within the network scheduling subsystem of the Linux kernel, is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

7CVSS5.9AI score0.00151EPSS
Exploits0References11Affected Software7
BDU FSTEC
BDU FSTEC
added 2026/07/08 12:0 a.m.5 views

The vulnerability of the `vidtv_channel_si_init()` function in the `drivers/media/test-drivers/vidtv/vidtv_channel.c` file of the Linux kernel-based multimedia device driver allows a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the vidtvchannelsiinit function in the drivers/media/test-drivers/vidtv/vidtvchannel.c file of the Linux kernel multimedia device driver relates to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the...

8CVSS5.2AI score0.00173EPSS
Exploits0References10Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/07/01 12:0 a.m.5 views

The vulnerability of the cros_ec_ishtp_remove() function in the drivers/platform/chrome/cros_ec_ishtp.c module of the Chrome OS device support module for Linux kernel allows a malicious actor to cause a service failure.

The vulnerability of the crosecishtpremove function in the drivers/platform/chrome/crosecishtp.c module of the Chrome OS device driver support module is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS5.2AI score0.00173EPSS
Exploits0References12Affected Software6
BDU FSTEC
BDU FSTEC
added 2026/06/27 12:0 a.m.4 views

The vulnerability of the iommu_sva_bind_device() function in the drivers/iommu/iommu-sva.c module of the Linux operating system’s IOMMU driver allows a hacker to cause a service failure.

The vulnerability of the iommusvabinddevice function in the drivers/iommu/iommu-sva.c file of the Linux IOMMU driver relates to the reutilization of previously freed memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

7.8CVSS6AI score0.00145EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/06/27 12:0 a.m.3 views

The vulnerability of the asdpciRemove() function in the drivers/scsi/aic94xx/aic94xx_init.c driver for Linux SCSI device drivers allows a hacker to cause a service failure.

The vulnerability of the asdpciRemove function in the drivers/scsi/aic94xx/aic94xxinit.c driver for Linux SCSI devices is related to the reutilization of previously freed memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

7.8CVSS6AI score0.00126EPSS
Exploits0References10Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/06/27 12:0 a.m.7 views

The vulnerability of the alps_disconnect() function in the drivers/input/mouse/alps.c module of the Linux kernel mouse driver allows a hacker to cause a service failure.

The vulnerability of the alpsdisconnect function in the drivers/input/mouse/alps.c module of the Linux kernel operating system is related to the repeated use of previously freed memory. Exploiting this vulnerability could allow a attacker to cause a service failure...

5.5CVSS5.8AI score0.00166EPSS
Exploits0References9Affected Software3
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.18 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the function skbgroreceive, which does not check the zero-copy status during the copy of frags,...

7.8CVSS5.3AI score0.00137EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.21 views

tmux 缓冲区错误漏洞

tmux is an open-source terminal multiplexer developed by tmux. Versions of tmux 3.6a and earlier contained a buffer error vulnerability. This vulnerability stemmed from the imagefree function in image.c, which allowed reusing memory after it had been freed, potentially leading to local attacks...

4.5CVSS5.1AI score0.00124EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/08 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the fact that the device pages are not migrated back into system memory when the files are closed...

7.8CVSS5.3AI score0.00126EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.13 views

GPAC 安全漏洞

GPAC is an open-source multimedia framework developed by GPAC. Versions of GPAC prior to 26.02.0 contained security vulnerabilities; these vulnerabilities stemmed from the use of the dasherprocess function, which allowed reusing of memory after heap deallocation, potentially leading to...

5.5CVSS5.3AI score0.0013EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.14 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the potential for reusing memory after the creation of the createbigsync function in the Bluetooth HCI...

7.8CVSS5.8AI score0.00125EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.14 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the accidental reuse of freed memory due to an unexpected GFN in KVM x86 shadow paging...

8.8CVSS5.8AI score0.00126EPSS
Exploits0References5
Redos
Redos
added 2026/05/15 12:0 a.m.15 views

ROS-20260515-73-0038

A vulnerability in the MediaStream component of Google Chrome and Microsoft Edge browser is related to memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML page...

8.8CVSS5.7AI score0.00271EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.13 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the use of the lereadfeaturescomplete function in Bluetooth HCI sync. This function allows for...

8.8CVSS5.8AI score0.00219EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the persistent cleaner in ksmbd, which reuses memory after release in ksmbdclosefd, potentially...

9.8CVSS5.8AI score0.00356EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the reuse of freed memory during the decrementing of sbi-nrpages in f2fswriteendio. This could le...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/04/25 1:36 a.m.14 views

SUSE CVE-2026-31669

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix slab-use-after-free in inetlookupestablished The ehash table lookups are lockless and rely on SLABTYPESAFEBYRCU to guarantee socket memory stability during RCU read-side critical sections. Both tcpprot and tcpv6prot ha...

7CVSS5.6AI score0.00459EPSS
Exploits0References25
Rows per page
Query Builder