CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

39 matches found

AstraLinux•added 2026/06/19 11:10 a.m.•5 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: afunix: Do not use GC if MSGPEEK occurred. Igor Ushakov reported that GC purged the receive queue of a live socket due to a race with MSGPEEK, with a fix provided. This is exactly the same issue that was previously fixed in the...

4.7CVSS5.8AI score0.00089EPSS

Exploits0References1

AstraLinux•added 2026/06/19 11:10 a.m.•3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: afpacket: fixed vlangettci vs MSGPEEK The responsible commit forgot to handle the MSGPEEK case, resulting in a crash 1, as detected by syzbot. vlangettci was rewritten so that it does not touch the skb at all, allowing it to b...

5.5CVSS6.4AI score0.00257EPSS

Exploits0References2

Cvelist•added 2026/05/01 2:15 p.m.•34 views

CVE-2026-43029 mptcp: fix soft lockup in mptcp_recvmsg()

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix soft lockup in mptcprecvmsg syzbot reported a soft lockup in mptcprecvmsg 0. When receiving data with MSGPEEK | MSGWAITALL flags, the skb is not removed from the skreceivequeue. This causes skwaitdata to always find...

7.5CVSS0.00329EPSS

Exploits0References3

CNNVD•added 2026/05/01 12:0 a.m.•8 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the mptcprecvmsg function in mptcp not keeping track of the last snooped skb when using MSGPEEK, which could...

7.5CVSS5.8AI score0.00329EPSS

Exploits0References1

RedHat Linux•added 2026/04/22 12:15 a.m.•7 views

kernel: Linux kernel: Denial of Service via unsafe requeue in rxrpc_recvmsg

A flaw was found in the Linux kernel. A local unprivileged process can exploit an unsafe requeue path in the rxrpcrecvmsg function by using AFRXRPC sockets with MSGDONTWAIT and MSGPEEK flags. This improper handling of the receive message queue can lead to memory corruption, such as Use-After-Free...

7.8CVSS5.8AI score0.00129EPSS

Exploits0References5

RedhatCVE•added 2026/03/25 4:34 p.m.•2 views

CVE-2026-23394

A flaw was found in the Linux kernel's afunix component. A race condition exists between the MSGPEEK operation and the garbage collection process. This can allow a local user to cause the garbage collector to incorrectly purge the receive queue of an alive socket, potentially leading to a denial ...

5.5CVSS5.7AI score0.00089EPSS

Exploits0References4

EUVD•added 2026/03/25 12:30 p.m.•4 views

EUVD-2026-15396

In the Linux kernel, the following vulnerability has been resolved: afunix: Give up GC if MSGPEEK intervened. Igor Ushakov reported that GC purged the receive queue of an alive socket due to a race with MSGPEEK with a nice repro. This is the exact same issue previously fixed by commit cbcf01128d0...

5.7AI score0.00089EPSS

Exploits0References3

NVD•added 2026/03/25 11:16 a.m.•3 views

CVE-2026-23394

4.7CVSS0.00089EPSS

Exploits0References5

UbuntuCve•added 2026/03/25 11:16 a.m.•3 views

CVE-2026-23394

4.7CVSS5.7AI score0.00089EPSS

Exploits0References13

OSV•added 2026/03/25 11:16 a.m.•11 views

UBUNTU-CVE-2026-23394

4.7CVSS5.7AI score0.00089EPSS

Exploits0References17

Cvelist•added 2026/03/25 10:33 a.m.•24 views

CVE-2026-23394 af_unix: Give up GC if MSG_PEEK intervened.

0.00089EPSS

Exploits0References5

Debian CVE•added 2026/03/25 10:33 a.m.•2 views

CVE-2026-23394

4.7CVSS5.2AI score0.00089EPSS

Exploits0

ATTACKERKB•added 2026/03/25 10:33 a.m.•9 views

CVE-2026-23394

5.5AI score0.00089EPSS

Exploits0References4Affected Software1

OSV•added 2026/03/25 10:33 a.m.•3 views

CVE-2026-23394 af_unix: Give up GC if MSG_PEEK intervened.

4.7CVSS5.7AI score0.00089EPSS

Exploits0References5

CNNVD•added 2026/03/25 12:0 a.m.•4 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a competition between garbage collection and the MSGPEEK operation, potentially leading to...

4.7CVSS5.8AI score0.00089EPSS

Exploits0References3

SUSE CVE•added 2026/02/05 12:25 a.m.•5 views

SUSE CVE-2026-23066

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix recvmsg unconditional requeue If rxrpcrecvmsg fails because MSGDONTWAIT was specified but the call at the front of the recvmsg queue already has its mutex locked, it requeues the call - whether or not the call is alrea...

7CVSS5.2AI score0.00129EPSS

Exploits0References8

UbuntuCve•added 2026/02/04 5:16 p.m.•3 views

CVE-2026-23066

7.8CVSS5.7AI score0.00129EPSS

Exploits0References4

OSV•added 2026/02/04 5:16 p.m.•3 views

UBUNTU-CVE-2026-23066

7.8CVSS5.7AI score0.00129EPSS

Exploits0References5

OSV•added 2026/02/04 4:7 p.m.•5 views

CVE-2026-23066 rxrpc: Fix recvmsg() unconditional requeue

7.8CVSS5.2AI score0.00129EPSS

Exploits0References7

Tenable Nessus•added 2026/01/15 12:0 a.m.•1 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002477)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002477 advisory. udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during...

10CVSS8.7AI score0.12791EPSS

Exploits1References10

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by