Lucene search
K

33 matches found

CVE
CVE
added 2026/06/09 11:44 p.m.15 views

CVE-2026-44505

The CVE affects Nimiq’s network-libp2p component (Rust) used in the Albatross-based PoS implementation. Before v1.4.0, when a peer returns a FoundRecord, the code verified the record via dht_verifier.verify and, on verifier error, logged and returned early without completing the oneshot used by N...

5.3CVSS5.5AI score0.00297EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/09 2:20 a.m.7 views

SUSE CVE-2026-46297

In the Linux kernel, the following vulnerability has been resolved: net: libwx: use requestirq for VF misc interrupt Currently, requestthreadedirq is used with a primary handler but a NULL threaded handler, while also setting the IRQFONESHOT flag. This specific combination triggers a WARNING sinc...

5.5CVSS5.4AI score0.00155EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/08 7:8 p.m.9 views

CVE-2026-46297

A flaw was found in the Linux kernel's libwx network driver. Incorrect handling of virtual function VF miscellaneous interrupts, specifically using requestthreadedirq with a null threaded handler and the IRQFONESHOT flag, can trigger a kernel warning. This issue may lead to system instability or...

5.5AI score0.00155EPSS
Exploits0References4
NVD
NVD
added 2026/06/08 5:16 p.m.11 views

CVE-2026-46297

In the Linux kernel, the following vulnerability has been resolved: net: libwx: use requestirq for VF misc interrupt Currently, requestthreadedirq is used with a primary handler but a NULL threaded handler, while also setting the IRQFONESHOT flag. This specific combination triggers a WARNING sinc...

0.00155EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/08 3:46 p.m.12 views

EUVD-2026-35163

In the Linux kernel, the following vulnerability has been resolved: net: libwx: use requestirq for VF misc interrupt Currently, requestthreadedirq is used with a primary handler but a NULL threaded handler, while also setting the IRQFONESHOT flag. This specific combination triggers a WARNING sinc...

5.4AI score0.00155EPSS
Exploits0References3
CVE
CVE
added 2026/06/08 3:46 p.m.23 views

CVE-2026-46297

CVE-2026-46297 involves a Linux kernel issue in net: libwx where using request_threaded_irq() with a primary handler and a NULL threaded handler together with IRQF_ONESHOT could trigger a warning in __setup_irq due to the commit aef30c8d569c. The vulnerability is resolved by switching to request_...

5.4AI score0.00155EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/08 3:46 p.m.5 views

CVE-2026-46297

In the Linux kernel, the following vulnerability has been resolved: net: libwx: use requestirq for VF misc interrupt Currently, requestthreadedirq is used with a primary handler but a NULL threaded handler, while also setting the IRQFONESHOT flag. This specific combination triggers a WARNING sinc...

5.4AI score0.00155EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/06/08 3:46 p.m.34 views

CVE-2026-46297 net: libwx: use request_irq for VF misc interrupt

In the Linux kernel, the following vulnerability has been resolved: net: libwx: use requestirq for VF misc interrupt Currently, requestthreadedirq is used with a primary handler but a NULL threaded handler, while also setting the IRQFONESHOT flag. This specific combination triggers a WARNING sinc...

0.00155EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/08 12:0 a.m.11 views

PT-2026-47369

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified openSUSE Tumbleweed versions prior to kernel-devel-7.0.12-1.1 Description An issue exists in the libwx network component where request threaded irq is used with a primary handler but a NULL threaded...

9.1CVSS5.4AI score0.00457EPSS
Exploits1References62
Github Security Blog
Github Security Blog
added 2026/01/27 12:59 a.m.4 views

oneshot has potential Use After Free when used asynchronously

There is a race condition that can lead to a use-after-free if a oneshot::Receiver is polled but then dropped instead of polled to completion. This could happen if the receiver future was cancelled while receiving, for example by being wrapped in a timeout future or similar. When the Receiver is...

5.9AI score
Exploits0References5Affected Software1
OSV
OSV
added 2026/01/27 12:59 a.m.6 views

GHSA-RVR2-R3PV-5M4P oneshot has potential Use After Free when used asynchronously

There is a race condition that can lead to a use-after-free if a oneshot::Receiver is polled but then dropped instead of polled to completion. This could happen if the receiver future was cancelled while receiving, for example by being wrapped in a timeout future or similar. When the Receiver is...

8.2CVSS5.9AI score
Exploits0References5
OSV
OSV
added 2026/01/25 12:0 p.m.3 views

RUSTSEC-2026-0005 Potential use-after-free in `oneshot` when used asynchronously

There is a race condition that can lead to a use-after-free if a oneshot::Receiver is polled but then dropped instead of polled to completion. This could happen if the receiver future was cancelled while receiving, for example by being wrapped in a timeout future or similar. When the Receiver is...

5.6AI score
Exploits0References3
RustSec
RustSec
added 2026/01/25 12:0 p.m.7 views

Potential use-after-free in `oneshot` when used asynchronously

There is a race condition that can lead to a use-after-free if a oneshot::Receiver is polled but then dropped instead of polled to completion. This could happen if the receiver future was cancelled while receiving, for example by being wrapped in a timeout future or similar. When the Receiver is...

5.5AI score
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-0582

Malicious code in bioql PyPI...

8.1CVSS8AI score0.01162EPSS
Exploits0References6
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.4 views

Malicious code in oneshot-application-api (npm)

The package oneshot-application-api was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-28241 Malicious code in oneshot-application-api (npm)

The package oneshot-application-api was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2025/02/12 2:15 p.m.9 views

AZL-56803 CVE-2024-57951 affecting package kernel for versions less than 5.15.180.1-1

In the Linux kernel, the following vulnerability has been resolved: hrtimers: Handle CPU state correctly on hotplug Consider a scenario where a CPU transitions from CPUHPONLINE to halfway through a CPU hotunplug down to CPUHPHRTIMERSPREPARE, and then back to CPUHPONLINE: Since hrtimerspreparecpu...

7.8CVSS6.7AI score0.00223EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 3:36 a.m.3 views

SUSE CVE-2021-45710

An issue was discovered in the tokio crate before 1.8.4, and 1.9.x through 1.13.x before 1.13.1, for Rust. In certain circumstances involving a closed oneshot channel, there is a data race and memory corruption...

3.3CVSS8.8AI score0.01162EPSS
Exploits0References10
ATTACKERKB
ATTACKERKB
added 2022/07/19 8:15 p.m.2 views

CVE-2022-34537

Digital Watchdog DW MEGApix IP cameras A7.2.220211029 was discovered to contain a cross-site scripting XSS vulnerability via the component biaoneshot.cgi...

5.4CVSS5.5AI score0.00369EPSS
Exploits0References2
OSV
OSV
added 2022/07/19 8:15 p.m.3 views

CVE-2022-34537

Digital Watchdog DW MEGApix IP cameras A7.2.220211029 was discovered to contain a cross-site scripting XSS vulnerability via the component biaoneshot.cgi...

5.4CVSS5.7AI score
Exploits0References1
Rows per page
Query Builder