Lucene search
K

10 matches found

ATTACKERKB
ATTACKERKB
added 2026/06/24 4:28 p.m.16 views

CVE-2026-52971

In the Linux kernel, the following vulnerability has been resolved: net: ena: PHC: Fix potential use-after-free in gettimestamp Move the phc-active check and resp pointer assignment to after acquiring the spinlock. Previously, phc-active was checked without holding the lock, and resp was cached...

5.6AI score0.00133EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.11 views

PT-2026-51865

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the get timestamp function of the ENA network driver. The problem occurs because the phc-active check and the assignment of the resp pointer were perform...

7.8CVSS5.8AI score0.00133EPSS
Exploits0References6
CVE
CVE
added 2026/02/04 4:0 p.m.14 views

CVE-2026-23045

The CVE-2026-23045 issue affects the Linux kernel ENA driver (net/ena). The root cause is a missing devlink lock when updating devlink parameters: ena_devlink_alloc() calls devl_param_driverinit_value_set() without acquiring the required lock, triggering a lock assertion warning in devl_assert_lo...

5.1AI score0.00151EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/02/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-23045

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/ena: fix missing lock when update devlink params Fix assert lock warning while calling devlparamdriverinitvalueset in ena. WARNING: net/devlink/core.c:261 a...

6AI score0.00151EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/07/26 12:0 a.m.62 views

Rocky Linux 9 : kernel (RLSA-2024:4583)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:4583 advisory. kernel: TIPC message reassembly use-after-free remote code execution vulnerability CVE-2024-36886 kernel: ethernet: hisilicon: hns: hnsdsafmisc: fix a...

9.8CVSS7.9AI score0.01358EPSS
Exploits1References35
OSV
OSV
added 2024/07/12 12:37 p.m.15 views

CVE-2024-40999 net: ena: Add validation for completion descriptors consistency

In the Linux kernel, the following vulnerability has been resolved: net: ena: Add validation for completion descriptors consistency Validate that first flag is set only for the first descriptor in multi-buffer packets. In case of an invalid descriptor, a reset will occur. A new reset reason for R...

5.5CVSS6AI score0.00237EPSS
Exploits0References5
CVE
CVE
added 2024/07/12 12:37 p.m.104 views

CVE-2024-40999

CVE-2024-40999 affects the Linux kernel ENA driver. The vulnerability stems from insufficient validation of completion descriptors in multi-buffer packets: the "first" flag must only appear on the first descriptor. An invalid descriptor can trigger a reset, and a new RX data corruption reset reas...

5.5CVSS6.7AI score0.00237EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/07/12 12:0 a.m.4 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a problem with the net:ena component when handling the consistency of completion descriptors...

5.5CVSS6.9AI score0.00237EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/07/10 12:18 a.m.59 views

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as...

8.1CVSS7.3AI score0.01305EPSS
Exploits1References16
Oracle linux
Oracle linux
added 2021/06/15 12:0 a.m.234 views

Unbreakable Enterprise kernel-container security update

4.14.35-2047.504.2.el7 - md/raid1: properly indicate failure when ending a failed write request Paul Clements Orabug: 32887159 - video: hypervfb: Add ratelimit on error message Michael Kelley Orabug: 32856879 - Drivers: hv: vmbus: Initialize unloadevent statically Andrea Parri Microsoft Orabug:...

6.7CVSS7.3AI score0.0072EPSS
Exploits0
Rows per page
Query Builder