Lucene search
K

931 matches found

RedHat Linux
RedHat Linux
added 6 days ago3 views

kernel: net: mana: Fix double destroy_workqueue on service rescan PCI path

A flaw was found in the Linux kernel's mana network driver. This vulnerability, a use-after-free, occurs when the PCI service rescan path attempts to destroy an already-freed workqueue a second time. A local attacker could exploit this condition to cause a system crash, leading to a denial of...

7.8CVSS5.9AI score0.00118EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/07/06 9:21 p.m.4 views

kernel: net: mana: Fix double destroy_workqueue on service rescan PCI path

A flaw was found in the Linux kernel's mana network driver. This vulnerability, a use-after-free, occurs when the PCI service rescan path attempts to destroy an already-freed workqueue a second time. A local attacker could exploit this condition to cause a system crash, leading to a denial of...

7.8CVSS6.9AI score0.00118EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/29 8:6 a.m.6 views

CVE-2026-53297

A flaw was found in the Linux kernel's mana network driver. This vulnerability occurs when the manaremove function is invoked a second time without proper checks after a power management PM resume failure and subsequent driver unbinding. A local attacker could exploit this double invocation to...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:16 a.m.8 views

net: mvpp2: sync RX data at the hardware packet offset

...

8.6CVSS5.8AI score0.00401EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:6 a.m.25 views

net/mlx5: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list

...

8.7CVSS5.8AI score0.00131EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/06/26 7:40 p.m.7 views

CVE-2026-53299

In the Linux kernel, the following vulnerability has been resolved: net: airoha: Move ndesc initialization at end of airohaqdmainittx If queue entry list allocation fails in airohaqdmainittxqueue routine, airohaqdmacleanuptxqueue will trigger a NULL pointer dereference accessing the queue entry...

5.8AI score0.00121EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/26 6:55 p.m.9 views

CVE-2026-53008

A flaw was found in the Linux kernel. A race condition exists in the ice network driver's TX timestamp ring cleanup, specifically between the icefreetxtstampring and icetxmap functions. This vulnerability could allow a local attacker to trigger a null pointer dereference, leading to a system cras...

5.5CVSS5.8AI score0.00155EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/06/26 2:9 a.m.9 views

SUSE CVE-2026-53234

In the Linux kernel, the following vulnerability has been resolved: net: ibm: emac: Fix use-after-free during device removal The driver was using devmregisternetdev which causes unregisternetdev to be deferred until the devres cleanup phase, which runs after emacremove returns. This creates a...

7.8CVSS5.8AI score0.00131EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/26 12:17 a.m.8 views

CVE-2026-53248

A flaw was found in the Linux kernel's airoha network driver. This use-after-free vulnerability occurs when the airohametadatadstfree function frees memory prematurely, before all references to it are released. If a network packet still holds a pointer to the freed memory, a use-after-free...

8.8CVSS5.8AI score0.00391EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/26 12:3 a.m.8 views

CVE-2026-53087

A flaw was found in the Linux kernel's bcmgenet network driver. When the transmit tx queue is reclaimed, the driver incorrectly drops data frames without returning them to the pool of free buffer descriptors bds. This oversight results in a resource leak, which can lead to resource exhaustion and...

7.5CVSS6AI score0.00376EPSS
Exploits0References4
NVD
NVD
added 2026/06/25 9:16 a.m.7 views

CVE-2026-53234

In the Linux kernel, the following vulnerability has been resolved: net: ibm: emac: Fix use-after-free during device removal The driver was using devmregisternetdev which causes unregisternetdev to be deferred until the devres cleanup phase, which runs after emacremove returns. This creates a...

7.8CVSS0.00131EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/06/25 8:39 a.m.5 views

CVE-2026-53230

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix slab-out-of-bounds in mlx5querynicvportmaclist mlx5querynicvportmaclist sizes its firmware command buffer using the PF's logmaxcurrentuc/mclist capabilities. When querying a VF vport with a larger configured max via...

8.7CVSS5.9AI score0.00131EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/25 8:39 a.m.4 views

CVE-2026-53217

In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: sync RX data at the hardware packet offset mvpp2 programs the RX queue packet offset, so hardware writes received data at dmaaddr + MVPP2SKBHEADROOM. The current CPU sync starts at dmaaddr and only covers rxbytes +...

8.6CVSS5.6AI score0.00401EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/06/25 8:39 a.m.7 views

CVE-2026-53199

In the Linux kernel, the following vulnerability has been resolved: hvnetvsc: use kmaplocalpage in netvsccopytosendbuf netvsccopytosendbuf copies page buffer entries into the VMBus send buffer using phystovirt on the entry PFN. Entries for the RNDIS header and the skb linear data come from...

5.9AI score0.0053EPSS
Exploits0References9Affected Software1
EUVD
EUVD
added 2026/06/24 6:32 p.m.6 views

EUVD-2026-38839

In the Linux kernel, the following vulnerability has been resolved: net: ena: PHC: Fix potential use-after-free in gettimestamp Move the phc-active check and resp pointer assignment to after acquiring the spinlock. Previously, phc-active was checked without holding the lock, and resp was cached...

5.7AI score0.00133EPSS
Exploits0References4
CVE
CVE
added 2026/06/24 4:28 p.m.9 views

CVE-2026-52971

CVE-2026-52971 affects the Linux kernel ENA (Elastic Network Adapter) driver, specifically the PHC (Precision Time Protocol Hardware Clock) timestamp path get_timestamp. A race exists where phc->active is checked without holding the spinlock and resp is cached from ena_dev->phc.virt_addr be...

7.8CVSS5.7AI score0.00133EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.6 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fixed the issue where UMR hangs in the LAG error state during device unloading. During a firmware reset in LAG mode, a race condition causes the driver to hang indefinitely while waiting for UMR completion during devic...

5.5CVSS5.8AI score0.00155EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/20 12:28 a.m.26 views

kernel: net: mana: fix use-after-free in add_adev() error path

A flaw was found in the Linux kernel's mana network driver. An issue in the error handling of the addadev function can lead to a use-after-free vulnerability. This occurs when memory is released prematurely but then accessed again, which could allow a local attacker to cause a system crash denial...

7.8CVSS7AI score0.00116EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/06/19 5:14 p.m.7 views

kernel: net: mana: fix use-after-free in add_adev() error path

A flaw was found in the Linux kernel's mana network driver. An issue in the error handling of the addadev function can lead to a use-after-free vulnerability. This occurs when memory is released prematurely but then accessed again, which could allow a local attacker to cause a system crash denial...

7.8CVSS5.8AI score0.00116EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/06/19 4:39 p.m.8 views

kernel: net: mana: fix use-after-free in add_adev() error path

A flaw was found in the Linux kernel's mana network driver. An issue in the error handling of the addadev function can lead to a use-after-free vulnerability. This occurs when memory is released prematurely but then accessed again, which could allow a local attacker to cause a system crash denial...

7.8CVSS5.8AI score0.00116EPSS
Exploits0References5
Rows per page
Query Builder