Lucene search
K

14 matches found

Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.9 views

PT-2026-51841

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the qrtr port remove function where the socket reference count is decremented using sock put before the port is removed from the qrtr ports XArray and before the RCU...

7.8CVSS5.7AI score0.00135EPSS
Exploits0References10
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in Linux

A issue was discovered in the Linux kernel before version 5.11.11. The qrtrrecvmsg function in net/qrtr/qrtr.c allows attackers to obtain sensitive information from kernel memory due to a partially uninitialized data structure, identified as CID-50535249f624...

5.5CVSS6.4AI score0.00366EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/28 3:54 a.m.18 views

SUSE CVE-2026-46003

In the Linux kernel, the following vulnerability has been resolved: net: qrtr: ns: Limit the total number of nodes Currently, the nameserver doesn't limit the number of nodes it handles. This can be an attack vector if a malicious client starts registering random nodes, leading to memory...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References3
NVD
NVD
added 2026/05/27 2:17 p.m.11 views

CVE-2026-46003

In the Linux kernel, the following vulnerability has been resolved: net: qrtr: ns: Limit the total number of nodes Currently, the nameserver doesn't limit the number of nodes it handles. This can be an attack vector if a malicious client starts registering random nodes, leading to memory...

5.5CVSS0.00123EPSS
Exploits0References8
CVE
CVE
added 2026/05/27 12:56 p.m.26 views

CVE-2026-46026

CVE-2026-46026 concerns a bound-check omission in the Linux kernel’s net: qrtr: ns path, allowing a local attacker to flood LOOKUP messages; fix clamps the global maximum lookups to 64. Affected component is the qrtr ns logic, with local-privilege abuse leading to potential denial or resource exh...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2026/05/27 12:55 p.m.8 views

CVE-2026-46003

In the Linux kernel, the following vulnerability has been resolved: net: qrtr: ns: Limit the total number of nodes Currently, the nameserver doesn't limit the number of nodes it handles. This can be an attack vector if a malicious client starts registering random nodes, leading to memory...

5.5CVSS5.7AI score0.00123EPSS
Exploits0
Cvelist
Cvelist
added 2025/09/18 4:4 p.m.7 views

CVE-2023-53445 net: qrtr: Fix a refcount bug in qrtr_recvmsg()

In the Linux kernel, the following vulnerability has been resolved: net: qrtr: Fix a refcount bug in qrtrrecvmsg Syzbot reported a bug as following: refcountt: addition on 0; use-after-free. ... RIP: 0010:refcountwarnsaturate+0x17c/0x1f0 lib/refcount.c:25 ... Call Trace: refcountadd...

0.00131EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/31 12:0 a.m.12 views

RHEL 9 : kernel (RHSA-2025:14744)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:14744 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: driver: base: fix UAF when...

7.8CVSS6.9AI score0.00369EPSS
Exploits3References24
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.7 views

The vulnerability of the qtrr_endpoint_post() function in the net/qrtr/qrtr.c module allows a hacker to trigger a service failure in the Qualcomm IPC kernel of the Linux operating system.

The vulnerability of the qtrrendpointpost function in the net/qrtr/qrtr.c module is related to buffer out-of-bounds reading. Exploiting this vulnerability could allow an attacker to cause a service failure...

7.1CVSS6.6AI score0.00233EPSS
Exploits0References14Affected Software1
Debian CVE
Debian CVE
added 2025/06/18 11:1 a.m.8 views

CVE-2022-50044

In the Linux kernel, the following vulnerability has been resolved: net: qrtr: start MHI channel after endpoit creation MHI channel may generates event/interrupt right after enabling. It may leads to 2 race conditions issues. 1 Such event may be dropped by qcommhiqrtrdlcallback at check: if !qdev...

4.7CVSS5.1AI score0.0011EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2024/02/27 7:4 p.m.15 views

CVE-2021-46973

In the Linux kernel, the following vulnerability has been resolved: net: qrtr: Avoid potential use after free in MHI send It is possible that the MHI ulcallback will be invoked immediately following the queueing of the skb for transmission, leading to the callback decrementing the refcount of the...

8.4CVSS5.9AI score0.00236EPSS
Exploits0References5
Veracode
Veracode
added 2021/06/06 10:36 a.m.46 views

Denial Of Service (DoS)

linux is vulnerable to denial of service. THe function qrtrrecvmsg in net/qrtr/qrtr.c allows attackers to obtain sensitive information from kernel memory because of a partially uninitialized data structure, aka CID-50535249f624...

5.5CVSS4.9AI score0.00366EPSS
Exploits0References11Affected Software3
BDU FSTEC
BDU FSTEC
added 2021/04/21 12:0 a.m.5 views

The vulnerability of the rtr_recvmsg function in the Linux operating system allows a hacker to obtain confidential information.

The vulnerability of the rtrrecvmsg function in the Linux operating system’s net/qrtr/qrtr.c file is related to the lack of protection for service data. Exploiting this vulnerability could allow an attacker to obtain confidential information...

5.5CVSS6.5AI score0.00366EPSS
Exploits0References30Affected Software4
OSV
OSV
added 2019/11/18 6:15 a.m.1 views

DEBIAN-CVE-2019-19079

A memory leak in the qrtrtunwriteiter function in net/qrtr/tun.c in the Linux kernel before 5.3 allows attackers to cause a denial of service memory consumption, aka CID-a21b7f0cff19...

7.5CVSS6.8AI score0.02948EPSS
Exploits0References1
Rows per page
Query Builder