Lucene search
K

16 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in Linux 5.10, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: NET: caif: Fixed a use-after-free in cfusbldevicenotify. syzbot reported a use-after-free in cfusbldevicenotify 1. This causes a stack trace like below: BUG: KASAN: Use-after-free in cfusbldevicenotify+0x7c9/0x870,...

7.8CVSS5.5AI score0.00159EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-45866

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - serial: caif: fix use-after-free in caifserial ldiscclose There is a use-after-free bug in caifserial where handletx may access ser-tty after the tty has been...

7.8CVSS7AI score0.0016EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/05/06 11:27 a.m.8 views

CVE-2026-43167

In the Linux kernel, the following vulnerability has been resolved: xfrm: always flush state and policy upon NETDEVUNREGISTER event syzbot is reporting that "struct xfrmstate" refcount is leaking. unregisternetdevice: waiting for netdevsim0 to become free. Usage count = 2 reftracker:...

5.5CVSS5.6AI score0.00127EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/04/26 1:52 a.m.10 views

SUSE CVE-2026-31678

In the Linux kernel, the following vulnerability has been resolved: openvswitch: defer tunnel netdevput to RCU release ovsnetdevtunneldestroy may run after NETDEVUNREGISTER already detached the device. Dropping the netdev reference in destroy can race with concurrent readers that still observe...

6.4CVSS5.4AI score0.00096EPSS
Exploits0References17
NVD
NVD
added 2026/04/25 9:16 a.m.3 views

CVE-2026-31678

In the Linux kernel, the following vulnerability has been resolved: openvswitch: defer tunnel netdevput to RCU release ovsnetdevtunneldestroy may run after NETDEVUNREGISTER already detached the device. Dropping the netdev reference in destroy can race with concurrent readers that still observe...

7.8CVSS0.00096EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/04/03 3:15 p.m.21 views

CVE-2026-23442 ipv6: add NULL checks for idev in SRv6 paths

In the Linux kernel, the following vulnerability has been resolved: ipv6: add NULL checks for idev in SRv6 paths in6devget can return NULL when the device has no IPv6 configuration e.g. MTU IPV6MINMTU or after NETDEVUNREGISTER. Add NULL checks for idev returned by in6devget in both...

0.00123EPSS
Exploits0References8
OSV
OSV
added 2026/01/31 12:16 p.m.3 views

UBUNTU-CVE-2025-71182

In the Linux kernel, the following vulnerability has been resolved: can: j1939: make j1939sessionactivate fail if device is no longer registered syzbot is still reporting unregisternetdevice: waiting for vcan0 to become free. Usage count = 2 even after commit 93a27b5891b8 "can: j1939: add missing...

5.5CVSS5.7AI score0.00156EPSS
Exploits0References29
CVE
CVE
added 2026/01/23 2:25 p.m.12 views

CVE-2025-71152

CVE-2025-71152 is a vulnerability reported in the Linux kernel and appears in multiple OS advisories. Connected entries indicate patches for Root Linux (rootio-linux) across Debian 11/12/13 variants, and additional OSV records show Debian-based and Chainguard advisories patching Root packages. Pu...

7.8CVSS5.4AI score0.0012EPSS
Exploits0References4Affected Software1
RedHat Linux
RedHat Linux
added 2026/01/14 12:10 a.m.14 views

Important: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.8CVSS6.8AI score0.00236EPSS
Exploits0References14
Debian CVE
Debian CVE
added 2025/12/06 9:50 p.m.4 views

CVE-2025-40271

In the Linux kernel, the following vulnerability has been resolved: fs/proc: fix uaf in procreaddirde Pde is erased from subdir rbtree through rberase, but not set the node to EMPTY, which may result in uaf access. We should use RBCLEARNODE set the erased node to EMPTY, then pdesubdirnext will...

5.3AI score0.00517EPSS
Exploits3
EUVD
EUVD
added 2025/10/08 10:45 a.m.3 views

EUVD-2025-31826

SQL injection vulnerability based on the melis-cms module of the Melis platform from Melis Technology. This vulnerability allows an attacker to retrieve, create, update, and delete databases through the 'idPage' parameter in the '/melis/MelisCms/PageEdition/getTinyTemplates' endpoint...

9.3CVSS7.5AI score0.00385EPSS
Exploits2References2
OSV
OSV
added 2025/10/01 8:15 a.m.2 views

UBUNTU-CVE-2025-39925

In the Linux kernel, the following vulnerability has been resolved: can: j1939: implement NETDEVUNREGISTER notification handler syzbot is reporting unregisternetdevice: waiting for vcan0 to become free. Usage count = 2 problem, for j1939 protocol did not have NETDEVUNREGISTER notification handler...

5.5CVSS6.6AI score0.00119EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/10/01 8:7 a.m.6 views

CVE-2025-39925 can: j1939: implement NETDEV_UNREGISTER notification handler

In the Linux kernel, the following vulnerability has been resolved: can: j1939: implement NETDEVUNREGISTER notification handler syzbot is reporting unregisternetdevice: waiting for vcan0 to become free. Usage count = 2 problem, for j1939 protocol did not have NETDEVUNREGISTER notification handler...

0.00119EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/05/03 2:49 a.m.5 views

SUSE CVE-2023-53138

In the Linux kernel, the following vulnerability has been resolved: net: caif: Fix use-after-free in cfusbldevicenotify syzbot reported use-after-free in cfusbldevicenotify 1. This causes a stack trace like below: BUG: KASAN: use-after-free in cfusbldevicenotify+0x7c9/0x870 net/caif/caifusb.c:138...

7.8CVSS6.5AI score0.00159EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2025/05/02 4:15 p.m.5 views

CVE-2023-53138

In the Linux kernel, the following vulnerability has been resolved: net: caif: Fix use-after-free in cfusbldevicenotify syzbot reported use-after-free in cfusbldevicenotify 1. This causes a stack trace like below: BUG: KASAN: use-after-free in cfusbldevicenotify+0x7c9/0x870 net/caif/caifusb.c:138...

7.8CVSS5.8AI score0.00159EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2025/05/02 4:15 p.m.2 views

UBUNTU-CVE-2023-53138

In the Linux kernel, the following vulnerability has been resolved: net: caif: Fix use-after-free in cfusbldevicenotify syzbot reported use-after-free in cfusbldevicenotify 1. This causes a stack trace like below: BUG: KASAN: use-after-free in cfusbldevicenotify+0x7c9/0x870 net/caif/caifusb.c:138...

7.8CVSS5.9AI score0.00159EPSS
Exploits0References11
Rows per page
Query Builder