Lucene search
K

83 matches found

EUVD
EUVD
added 2026/06/24 6:32 p.m.5 views

EUVD-2026-38856

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: join hook list via splicelistrcu in commit phase Publish new hooks in the list into the basechain/flowtable using splicelistrcu to ensure netlink dump list traversal via rcu is safe while concurrent ruleset...

5.7AI score0.00122EPSS
Exploits0References3
NVD
NVD
added 2026/06/24 5:17 p.m.6 views

CVE-2026-52988

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: join hook list via splicelistrcu in commit phase Publish new hooks in the list into the basechain/flowtable using splicelistrcu to ensure netlink dump list traversal via rcu is safe while concurrent ruleset...

7.1CVSS0.00122EPSS
Exploits0References2
CVE
CVE
added 2026/06/24 4:29 p.m.24 views

CVE-2026-53000

CVE-2026-53000 affects the Linux kernel netfilter NAT path. The root issue is partial exposure of nf_hook_ops during error handling, which can lead to unsafe access to internal hook data via the datapath and nat dispatcher flow. Exploitation details are not provided in the documents, but the desc...

7.8CVSS5.8AI score0.00123EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2026/06/24 4:29 p.m.9 views

CVE-2026-52988

The CVE-2026-52988 issue affects the Linux kernel netfilter nf_tables code, specifically the join hook list updated via splice_list_rcu() during commit phases. The vulnerability arises when new hooks are published to the basechain/flowtable while a concurrent ruleset update is ongoing, potentiall...

7.1CVSS5.7AI score0.00122EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2026/05/27 11:16 a.m.15 views

CVE-2026-45845

In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: fix NULL pointer dereference in class dump When a TAPRIO child qdisc is deleted via RTMDELQDISC, tapriograft is called with new == NULL and stores NULL into q-qdiscscl - 1. Subsequent RTMGETTCLASS dump operatio...

5.5CVSS0.00108EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/04/24 10:14 p.m.6 views

CVE-2026-31657

A flaw was found in the Linux kernel's batman-adv component. The batadvblaaddclaim function can improperly drop a reference to a backbone gateway while other parts of the code, such as the netlink claim dump path, still hold and attempt to use a pointer to the freed memory. This creates a...

9.8CVSS5.3AI score0.00399EPSS
Exploits0References4
OSV
OSV
added 2026/04/24 3:16 p.m.5 views

DEBIAN-CVE-2026-31657

In the Linux kernel, the following vulnerability has been resolved: batman-adv: hold claim backbone gateways by reference batadvblaaddclaim can replace claim-backbonegw and drop the old gateway's last reference while readers still follow the pointer. The netlink claim dump path dereferences...

9.8CVSS5.3AI score0.00399EPSS
Exploits0References1
NVD
NVD
added 2026/04/24 3:16 p.m.7 views

CVE-2026-31657

In the Linux kernel, the following vulnerability has been resolved: batman-adv: hold claim backbone gateways by reference batadvblaaddclaim can replace claim-backbonegw and drop the old gateway's last reference while readers still follow the pointer. The netlink claim dump path dereferences...

9.8CVSS0.00399EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/04/24 2:45 p.m.48 views

CVE-2026-31657 batman-adv: hold claim backbone gateways by reference

In the Linux kernel, the following vulnerability has been resolved: batman-adv: hold claim backbone gateways by reference batadvblaaddclaim can replace claim-backbonegw and drop the old gateway's last reference while readers still follow the pointer. The netlink claim dump path dereferences...

9.8CVSS0.00399EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.10 views

PT-2026-35009

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description In the batman-adv module, the function batadv bla add claim can replace claim-backbone gw and drop the last reference of the old gateway while readers are still following the pointer. Th...

9.8CVSS5.2AI score0.00399EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010886)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010886 advisory. In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: Clear nfctarget before being used Fix a slab-out-of-bounds read that occurs in nlaput...

5.9AI score0.00203EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011397)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011397 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: nftsetpipapo: walk over current view on netlink dump The generation mask can be update...

5.5CVSS6.3AI score0.00277EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.7 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-012966)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-012966 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: nftsetpipapo: walk over current view on netlink dump The generation mask can be update...

5.5CVSS6.8AI score0.00277EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.8 views

Unity Linux 20.1050a Security Update: kernel (UTSA-2026-007006)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007006 advisory. In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix infinite recursion in fib6dumpdone. syzkaller reported infinite recursive calls of...

7.8CVSS6.4AI score0.00282EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007473)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007473 advisory. In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: Clear nfctarget before being used Fix a slab-out-of-bounds read that occurs in nlaput...

5.9AI score0.00203EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-23458

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netfilter: ctnetlink: fix use-after-free in ctnetlinkdumpexpct ctnetlinkdumpexpct stores a conntrack pointer in cb-data for the netlink dump callback...

7.8CVSS6AI score0.00126EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/04/03 7:11 p.m.7 views

CVE-2026-23458

A flaw was found in the Linux kernel's netfilter connection tracking ctnetlink component. This vulnerability, known as a use-after-free, occurs when the system attempts to access a memory location after it has been deallocated, which can lead to unpredictable behavior. A local attacker could...

7.8CVSS5.8AI score0.00126EPSS
Exploits0References4
OSV
OSV
added 2026/04/03 3:15 p.m.2 views

CVE-2026-23458 netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct()

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: fix use-after-free in ctnetlinkdumpexpct ctnetlinkdumpexpct stores a conntrack pointer in cb-data for the netlink dump callback ctnetlinkexpctdumptable, but drops the conntrack reference immediately after...

7.8CVSS5.8AI score0.00126EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.7 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-27017)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27017 advisory. - In the Linux kernel, the following vulnerability has been resolved: netfilter: nftsetpipapo: walk over curre...

5.5CVSS6.7AI score0.00277EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004313)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004313 advisory. A NULL pointer dereference vulnerability was found in netlinkdump. This issue can occur when the Netlink socket receives the messagesendmsg for the XFRMMSGGETSA,...

7.8CVSS6.6AI score0.00292EPSS
Exploits0References6
Rows per page
Query Builder