Lucene search
K

213 matches found

SUSE CVE
SUSE CVE
added 2026/06/26 2:14 a.m.6 views

SUSE CVE-2026-52972

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - Cap AEAD AD length to 0x80000000 In order to prevent arithmetic overflows when checking the TX buffer size, cap the associated data length to 0x80000000...

7CVSS5.8AI score0.0014EPSS
Exploits0References4
CVE
CVE
added 2026/06/25 8:38 a.m.13 views

CVE-2026-53171

The CVE affects the Linux kernel’s accel/ethosu driver. The dma_length() function can under- or overflow while deriving DMA region usage, causing region_size[] to be under-reported and potentially bypassing bounds checks in ethosu_job.c. The issue arises from arithmetic in len calculations, signe...

8.8CVSS6AI score0.00137EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2026/06/24 5:17 p.m.10 views

CVE-2026-52972

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - Cap AEAD AD length to 0x80000000 In order to prevent arithmetic overflows when checking the TX buffer size, cap the associated data length to 0x80000000...

7CVSS0.0014EPSS
Exploits0References11
Cvelist
Cvelist
added 2026/06/24 4:28 p.m.26 views

CVE-2026-52972 crypto: af_alg - Cap AEAD AD length to 0x80000000

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - Cap AEAD AD length to 0x80000000 In order to prevent arithmetic overflows when checking the TX buffer size, cap the associated data length to 0x80000000...

0.0014EPSS
Exploits0References8
CVE
CVE
added 2026/06/24 4:28 p.m.17 views

CVE-2026-52972

CVE-2026-52972 affects the Linux kernel crypto/af_alg component, causing an arithmetic overflow when handling associated data lengths during the TX buffer size check. The root cause is the potential overflow if AD length is not capped; the fix caps the AD length to 0x80000000. Multiple OS vendors...

7CVSS5.7AI score0.0014EPSS
Exploits0References11
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: SCTP: Added a refcnt field in sctpstreampriorities to avoid a nested loop. With this addition of the refcnt in sctpstreampriorities, we no longer need to traverse all streams to check whether a priority is used by other streams...

5.5CVSS5.9AI score0.00111EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: x86: Do not overflow the lpageinfo array when checking attributes The issue was fixed by preventing KVMSETMEMORYATTRIBUTES from overflowing the lpageinfo array and triggering KASAN errors, as observed in the...

5.5CVSS6.2AI score0.00227EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: dmaengine: ti: k3-udma: The byte counter UDMACHANRT was reset to prevent overflow. The UDMACHANRTBCNTREG registers store real-time channel byte count statistics. These registers are 32-bit hardware counters, and the driver uses...

5.5CVSS5.9AI score0.00145EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/06/17 1:20 a.m.4 views

kernel: crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id

In the Linux kernel, the following vulnerability has been resolved: crypto: asymmetrickeys - prevent overflow in asymmetrickeygenerateid Use checkaddoverflow to guard against potential integer overflows when adding the binary blob lengths and the size of an asymmetrickeyid structure and return...

5.7AI score0.00154EPSS
Exploits0References5
OSV
OSV
added 2026/06/08 5:16 p.m.10 views

UBUNTU-CVE-2026-46286

In the Linux kernel, the following vulnerability has been resolved: leds: qcom-lpg: Check for array overflow when selecting the high resolution When selecting the high resolution values from the array, FIELDGET is used to pull from a 3 bit register, yet the array being indexed has only 5 values i...

5.2AI score0.00168EPSS
Exploits0References12
Microsoft CVE
Microsoft CVE
added 2026/05/29 8:6 a.m.9 views

Bluetooth: virtio_bt: clamp rx length before skb_put

...

7.7CVSS5.4AI score0.00142EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/05/29 1:14 a.m.11 views

SUSE CVE-2026-46218

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Add bounds checking to ibget,setvalue The uvd/vce/vcn code accesses the IB at predefined offsets without checking that the IB is large enough. Check the bounds here. The caller is responsible for making sure it can...

5.5CVSS6AI score0.00131EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/28 9:40 a.m.18 views

EUVD-2026-32845

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Add bounds checking to ibget,setvalue The uvd/vce/vcn code accesses the IB at predefined offsets without checking that the IB is large enough. Check the bounds here. The caller is responsible for making sure it can...

6AI score0.00131EPSS
Exploits0References5
CVE
CVE
added 2026/05/28 9:40 a.m.32 views

CVE-2026-46217

CVE-2026-46217 concerns the Linux kernel AMDGPU driver component drm/amdgpu/vcn4, where an integer overflow occurs during a message bound check. Red Hat reports the flaw could cause system instability or DoS, indicating the vulnerability lies in the vcn4 code path of the AMDGPU driver. Several so...

5.8AI score0.00013EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/21 12:0 a.m.9 views

Encrypted Neural Networks without Overflows

Fully homomorphic encryption FHE enables private inference by evaluating neural networks on encrypted data. In this way, we can delegate the computation to a third party server without ever revealing the user's data. Currently, the CKKS scheme is the backbone of most efficient FHE implementations...

5.8AI score
Exploits0
RedHat Linux
RedHat Linux
added 2026/05/20 1:3 p.m.16 views

kernel: crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id

In the Linux kernel, the following vulnerability has been resolved: crypto: asymmetrickeys - prevent overflow in asymmetrickeygenerateid Use checkaddoverflow to guard against potential integer overflows when adding the binary blob lengths and the size of an asymmetrickeyid structure and return...

6.1AI score0.00154EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: fbmon: prevented division by zero in fbvideomodefromvideomode. The expression htotal vtotal can have a zero value during overflow. It is necessary to prevent division by zero, as seen in fbvartovideomode. This issue was identifie...

5.5CVSS5.8AI score0.00223EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm/xe/xemigrate: Casting to output precision before multiplying operands This issue addressed potential overflows that could occur when multiplying two operands with lower precision u32, before widening them to a higher precisio...

5.5CVSS6.1AI score0.0018EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: powerpc/bpf: Fixed the JIT code size calculation for the BPF trampoline. The archbpftrampolinesize function provides the JIT size of the BPF trampoline before the buffer for JIT compilation of it is allocated. The total number of...

5.5CVSS6.2AI score0.00127EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: In blkstacklimits, we check that the t-chunksectors value is a multiple of the t-physicalblocksize value. However, by determining the chunksectors value in bytes, it is possible to overflow the unsigned int variable that stores...

5.5CVSS6.2AI score0.00149EPSS
Exploits0References2
Rows per page
Query Builder