Lucene search
K

1286 matches found

NVD
NVD
added 2026/05/06 12:16 p.m.13 views

CVE-2026-43217

In the Linux kernel, the following vulnerability has been resolved: media: iris: gen2: Add sanity check for session stop In iriskillsession, inst-state is set to IRISINSTERROR and sessionclose is executed, which will kfreeinsthfigen2-packet. If stopstreaming is called afterward, it will cause a...

5.5CVSS0.00126EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/06 11:28 a.m.6 views

CVE-2026-43276

In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix double destroyworkqueue on service rescan PCI path While testing corner cases in the driver, a use-after-free crash was found on the service rescan PCI path. When manaservreset calls managdsuspend, managdcleanup...

5.8AI score0.00118EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/06 11:28 a.m.10 views

CVE-2026-43217

In the Linux kernel, the following vulnerability has been resolved: media: iris: gen2: Add sanity check for session stop In iriskillsession, inst-state is set to IRISINSTERROR and sessionclose is executed, which will kfreeinsthfigen2-packet. If stopstreaming is called afterward, it will cause a...

5.7AI score0.00126EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/05/06 11:28 a.m.20 views

CVE-2026-43217

CVE-2026-43217 affects the Linux kernel, specifically the media: iris: gen2 component. The issue occurs in iris_kill_session where inst->state is set to IRIS_INST_ERROR and session_close frees inst_hfi_gen2->packet; if stop_streaming is called afterward, a crash may occur. The published fix...

5.5CVSS5.8AI score0.00126EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/05/06 11:27 a.m.17 views

CVE-2026-43124

The CVE-2026-43124 issue affects Linux kernel pstore ram_core, where persistent_ram_vmap() could return a non-NULL pointer after vmap() failed, causing persistent_ram_buffer_map() to incorrectly report success and potentially dereference an invalid address on access, leading to a crash (DoS). Roo...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References8Affected Software1
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.12 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the findnetwork function in the rtl8723bs driver. This function does not check for the null pointer of...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.14 views

PT-2026-37557

In the Linux kernel, the following vulnerability has been resolved: media: iris: gen2: Add sanity check for session stop In iris kill session, inst-state is set to IRIS INST ERROR and session close is executed, which will kfreeinst hfi gen2-packet. If stop streaming is called afterward, it will...

5.8AI score0.00126EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.12 views

PT-2026-37423

Name of the Vulnerable Software and Affected Versions Linux Kernel affected versions not specified Description An out-of-bounds array access exists in the WiFi wl1251 driver. The wl1251 tx packet cb function uses a firmware completion ID, provided as a raw u8 from the completion block, to index t...

8.8CVSS5.8AI score0.00247EPSS
Exploits0References21
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.16 views

PT-2026-37616

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free crash occurs on the service rescan PCI path. When mana serv reset calls mana gd suspend, the mana gd cleanup function destroys the gc-service wq workqueue. If the...

7.8CVSS5.8AI score0.00118EPSS
Exploits0References72
OSV
OSV
added 2026/05/05 10:18 a.m.12 views

CLSA-2026-1777976295 Fix CVE(s): CVE-2026-28690

SECURITY UPDATE: stack buffer overflow in MNG/JNG encoder — missing NULL check after ImageToBlob in WriteOneJNGImage could propagate a NULL blob pointer into later stack buffer operations GHSA-7h7q-j33q-hvpf. - debian/patches/CVE-2026-28690.patch: bail out of WriteOneJNGImage when ImageToBlob...

6.9CVSS7.4AI score0.00096EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/05 1:45 a.m.11 views

SUSE CVE-2026-43861

mutt before 2.3.2 does not check for '\0' in urlpctdecode...

5.3CVSS5.8AI score0.00162EPSS
Exploits0References5
CVE
CVE
added 2026/05/04 5:52 a.m.20 views

CVE-2026-43861

CVE-2026-43861 affects mutt up to version 2.3.1, where the url_pct_decode function does not check for a '\0' terminator. This could allow malformed URLs to bypass validation. The CVSSv3.1 base score is 3.7 (LOW); attack vector: NETWORK, complexity: HIGH, privileges: NONE, user interaction: NONE. ...

3.7CVSS5.8AI score0.00162EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/04 5:52 a.m.9 views

EUVD-2026-26899

mutt before 2.3.2 does not check for '\0' in urlpctdecode...

3.7CVSS5.8AI score0.00162EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/05/04 5:52 a.m.5 views

CVE-2026-43861

mutt before 2.3.2 does not check for '\0' in urlpctdecode...

3.7CVSS5.8AI score0.00162EPSS
Exploits0
Cvelist
Cvelist
added 2026/05/01 2:14 p.m.36 views

CVE-2026-31727 usb: gadget: u_ether: Fix NULL pointer deref in eth_get_drvinfo

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uether: Fix NULL pointer deref in ethgetdrvinfo Commit ec35c1969650 "usb: gadget: fncm: Fix netdevice lifecycle with devicemove" reparents the gadget device to /sys/devices/virtual during unbind, clearing the gadget...

0.00123EPSS
Exploits0References6
OSV
OSV
added 2026/04/30 9:48 a.m.7 views

CLSA-2026-1777542477 Fix CVE(s): CVE-2026-28690

SECURITY UPDATE: stack buffer overflow in MNG/JNG encoder — missing NULL check after ImageToBlob in WriteOneJNGImage could propagate a NULL blob pointer into later stack buffer operations GHSA-7h7q-j33q-hvpf. - debian/patches/CVE-2026-28690.patch: bail out of WriteOneJNGImage when ImageToBlob...

6.9CVSS7.4AI score0.00096EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/24 2:42 p.m.5 views

CVE-2026-31583

In the Linux kernel, the following vulnerability has been resolved: media: em28xx: fix use-after-free in em28xxv4l2open em28xxv4l2open reads dev-v4l2 without holding dev-lock, creating a race with em28xxv4l2init's error path and em28xxv4l2fini, both of which free the em28xxv4l2 struct and set...

5.2AI score0.00128EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/04/24 2:42 p.m.44 views

CVE-2026-31583 media: em28xx: fix use-after-free in em28xx_v4l2_open()

In the Linux kernel, the following vulnerability has been resolved: media: em28xx: fix use-after-free in em28xxv4l2open em28xxv4l2open reads dev-v4l2 without holding dev-lock, creating a race with em28xxv4l2init's error path and em28xxv4l2fini, both of which free the em28xxv4l2 struct and set...

0.00128EPSS
Exploits0References9
EUVD
EUVD
added 2026/04/24 2:42 p.m.17 views

EUVD-2026-25475

In the Linux kernel, the following vulnerability has been resolved: hwmon: powerz Fix use-after-free on USB disconnect After powerzdisconnect frees the URB and releases the mutex, a subsequent powerzread call can acquire the mutex and call powerzreaddata, which dereferences the freed URB pointer...

5.4AI score0.00125EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/04/24 2:35 p.m.5 views

CVE-2026-31559

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix missing NULL checks for kstrdup 1. Replace "offindnodebypath"/"" with "ofroot" to avoid multiple calls to "ofnodeput". 2. Fix a potential kernel oops during early boot when memory allocation fails while parsing CPU...

5.3AI score0.00122EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder