CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

68 matches found

EUVD-2026-38836

In the Linux kernel, the following vulnerability has been resolved: KVM: s390: pci: fix GAIT table indexing due to double-scaling pointer arithmetic kvms390pciaifenable, kvms390pciaifdisable, and aenhostforward index the GAIT by manually multiplying the index with sizeofstruct zpcigaite. Since...

5.7AI score

Exploits0References7

AstraLinux•added 6 days ago•3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: misc: fastrpc: Fix for copy buffer page size For non-registered buffers, the fastrpc driver copies the buffer and passes it to the remote subsystem. There is a problem with the current implementation of page size calculation, ...

7.8CVSS6.6AI score0.00188EPSS

Exploits0References2

AstraLinux•added 6 days ago•3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: Fixed the jump offset calculation in tailcall. The additional call to bpfintjitcompile skips the JIT context initialization. This effectively skips the offset calculation, resulting in outoffset = -1. Therefore, t...

5.5CVSS6.7AI score0.00151EPSS

Exploits0References2

OSV•added 2026/04/24 3:16 p.m.•4 views

DEBIAN-CVE-2026-31553

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Fix the descriptor address in kvmatswapdesc Using "u64 user hva + offset" to get the virtual addresses of S1/S2 descriptors looks really wrong, if offset is not zero. What we want to get for swapping is hva + offset,...

8.8CVSS5.3AI score0.0012EPSS

Exploits0References1

ATTACKERKB•added 2026/04/24 2:35 p.m.•4 views

CVE-2026-31553

5.3AI score0.0012EPSS

Exploits0References3Affected Software1

CVE•added 2026/04/24 2:35 p.m.•12 views

CVE-2026-31553

CVE-2026-31553 affects the Linux kernel KVM on arm64. The issue stems from computing descriptor addresses in __kvm_at_swap_desc() using (u64 __user )hva + offset, which miscomputes when offset ≠ 0, effectively performing offset 8. The correction is to use hva + offset to obtain the correct S1/S2 ...

8.8CVSS5.3AI score0.0012EPSS

Exploits0References2Affected Software1

SUSE CVE•added 2026/04/23 1:25 a.m.•6 views

SUSE CVE-2026-31478

In the Linux kernel, the following vulnerability has been resolved: ksmbd: replace hardcoded hdr2len with offsetof in smb2calcmaxoutbuflen After this commit e2b76ab8b5c9 "ksmbd: add support for read compound", response buffer management was changed to use dynamic iov array. In the new design,...

9.8CVSS5.8AI score0.00502EPSS

Exploits0References4

EUVD•added 2026/03/18 6:31 p.m.•3 views

EUVD-2026-12898

In the Linux kernel, the following vulnerability has been resolved: gve: Fix stats report corruption on queue count change The driver and the NIC share a region in memory for stats reporting. The NIC calculates its offset into this region based on the total size of the stats region and the size o...

5.7AI score0.0012EPSS

Exploits0References8

UbuntuCve•added 2026/03/18 6:16 p.m.•6 views

CVE-2026-23262

7.8CVSS5.8AI score0.0012EPSS

Exploits0References15

Cvelist•added 2026/03/18 5:41 p.m.•25 views

CVE-2026-23262 gve: Fix stats report corruption on queue count change

0.0012EPSS

Exploits0References7

CVE•added 2026/03/18 5:41 p.m.•17 views

CVE-2026-23262

CVE-2026-23262 affects the Linux kernel gve driver when queue counts are changed. The NIC and driver share a region in memory for stats reporting; the NIC calculates its offset into this region using the total stats size and the NIC’s own stats size. When the queue count increases, the driver res...

7.8CVSS5.7AI score0.0012EPSS

Exploits0References7Affected Software1

OSV•added 2026/03/18 5:41 p.m.•4 views

CVE-2026-23262 gve: Fix stats report corruption on queue count change

7.8CVSS5.8AI score0.0012EPSS

Exploits0References10