Lucene search
K

154 matches found

OSV
OSV
added 5 days ago5 views

OESA-2026-2870 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: net/sched: fix pedit partial COW leading to page cache corruption tcfpeditact computes the COW range for skbensurewritable once before the key loop using...

7.8CVSS5.9AI score0.00321EPSS
Exploits10References2
CVE
CVE
added 2026/07/01 1:32 p.m.15 views

CVE-2026-53329

The CVE affects the Linux kernel’s drm/amd/display path, specifically dal_vector_reserve(). The allocation size is computed as capacity * vector->struct_size using uint32_t arithmetic, which can overflow and yield a smaller buffer, causing heap overflows on subsequent vector appends. The fix r...

6AI score0.00195EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/07/01 1:32 p.m.37 views

CVE-2026-53329 drm/amd/display: Use krealloc_array() in dal_vector_reserve()

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Use kreallocarray in dalvectorreserve Why & How dalvectorreserve computes the allocation size as "capacity vector-structsize" using uint32t arithmetic, which can silently wrap to a small value on overflow. This...

0.00195EPSS
Exploits0References8
EUVD
EUVD
added 2026/06/24 6:32 p.m.4 views

EUVD-2026-38840

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - Cap AEAD AD length to 0x80000000 In order to prevent arithmetic overflows when checking the TX buffer size, cap the associated data length to 0x80000000...

5.7AI score0.0014EPSS
Exploits0References8
EUVD
EUVD
added 2026/06/24 6:32 p.m.5 views

EUVD-2026-38816

In the Linux kernel, the following vulnerability has been resolved: i2c: dev: prevent integer overflow in I2CTIMEOUT ioctl While fuzzing with Syzkaller, a persistent scheduletimeout: wrong timeout value warning was observed, accompanied by SMBus controller state machine corruption. The I2CTIMEOUT...

5.8AI score0.00185EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/06/24 4:28 p.m.8 views

CVE-2026-52972

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - Cap AEAD AD length to 0x80000000 In order to prevent arithmetic overflows when checking the TX buffer size, cap the associated data length to 0x80000000...

5.7AI score0.0014EPSS
Exploits0References9Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.7 views

PT-2026-51916

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the populate enum data function within the dell-wmi-sysman module. The function aggregates firmware-provided value-modifier and possible-value strings into fixed...

6.2AI score0.00172EPSS
Exploits0References16
RedHat Linux
RedHat Linux
added 2026/06/17 12:5 p.m.5 views

kernel: crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id

In the Linux kernel, the following vulnerability has been resolved: crypto: asymmetrickeys - prevent overflow in asymmetrickeygenerateid Use checkaddoverflow to guard against potential integer overflows when adding the binary blob lengths and the size of an asymmetrickeyid structure and return...

5.8AI score0.00154EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/06/17 9:22 a.m.9 views

kernel: sctp: fix a potential overflow in sctp_ifwdtsn_skip

In the Linux kernel, the following vulnerability has been resolved: sctp: fix a potential overflow in sctpifwdtsnskip Currently, when traversing ifwdtsn skips with sctpwalkifwdtsn, it only checks the pos against the end of the chunk. However, the data left for the last pos may be sizeofstruct...

7.8CVSS5.9AI score0.00155EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/06/11 11:46 a.m.7 views

kernel: crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id

In the Linux kernel, the following vulnerability has been resolved: crypto: asymmetrickeys - prevent overflow in asymmetrickeygenerateid Use checkaddoverflow to guard against potential integer overflows when adding the binary blob lengths and the size of an asymmetrickeyid structure and return...

5.6AI score0.00154EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/06/04 10:49 a.m.8 views

kernel: crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id

In the Linux kernel, the following vulnerability has been resolved: crypto: asymmetrickeys - prevent overflow in asymmetrickeygenerateid Use checkaddoverflow to guard against potential integer overflows when adding the binary blob lengths and the size of an asymmetrickeyid structure and return...

5.9AI score0.00154EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-46232

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HID: playstation: Clamp numtouchreports A device would never lie about the number of touch reports would it? If it does the loop in dualshock4parsereport will...

8.1CVSS7.1AI score0.00258EPSS
Exploits0References2
OSV
OSV
added 2026/05/27 2:16 p.m.6 views

UBUNTU-CVE-2025-71305

In the Linux kernel, the following vulnerability has been resolved: drm/display/dpmst: Add protection against 0 vcpi When releasing a timeslot there is a slight chance we may end up with the wrong payload mask due to overflow if the delayeddestroywork ends up coming into play after a DP 2.1 monit...

5.5CVSS5.7AI score0.00156EPSS
Exploits0References9
Cvelist
Cvelist
added 2026/05/27 12:14 p.m.38 views

CVE-2025-71305 drm/display/dp_mst: Add protection against 0 vcpi

In the Linux kernel, the following vulnerability has been resolved: drm/display/dpmst: Add protection against 0 vcpi When releasing a timeslot there is a slight chance we may end up with the wrong payload mask due to overflow if the delayeddestroywork ends up coming into play after a DP 2.1 monit...

0.00156EPSS
Exploits0References6
CVE
CVE
added 2026/05/27 12:14 p.m.25 views

CVE-2025-71305

The provided connected sources confirm a concrete fix for CVE-2025-71305 in the Linux kernel DRM MST path. The vulnerability arose in drm/display/dp_mst_topology where, on timeslot release after a DP 2.1 monitor disconnect, the VCPI can become 0 and code could compute a payload mask as ~BIT(vcpi-...

5.5CVSS5.8AI score0.00156EPSS
Exploits0References6Affected Software1
SUSE CVE
SUSE CVE
added 2026/05/16 1:11 a.m.10 views

SUSE CVE-2026-43490

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate inherited ACE SID length smbinheritdacl walks the parent directory DACL loaded from the security descriptor xattr. It verifies that each ACE contains the fixed SID header before using it, but does not verify that...

5.5CVSS5.9AI score0.00408EPSS
Exploits0References3
OSV
OSV
added 2026/05/07 5:13 a.m.9 views

CLSA-2026-1778130778 tomcat: Fix of 2 CVEs

CVE-2025-48988: limit number and header size of multipart parts - CVE-2025-52520: use Math.addExact and long postSize to prevent overflow bypass of maxPostSize during multipart upload...

7.5CVSS7AI score0.54877EPSS
Exploits1References1
NVD
NVD
added 2026/05/06 12:16 p.m.7 views

CVE-2026-43125

In the Linux kernel, the following vulnerability has been resolved: dlm: validate length in dlmsearchrsbtree The len parameter in dlmdumprsbname is not validated and comes from network messages. When it exceeds DLMRESNAMEMAXLEN, it can cause out-of-bounds write in dlmsearchrsbtree. Add length...

9.8CVSS0.00426EPSS
Exploits0References17
RedHat Linux
RedHat Linux
added 2026/05/05 5:58 a.m.6 views

kernel: crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id

In the Linux kernel, the following vulnerability has been resolved: crypto: asymmetrickeys - prevent overflow in asymmetrickeygenerateid Use checkaddoverflow to guard against potential integer overflows when adding the binary blob lengths and the size of an asymmetrickeyid structure and return...

6.1AI score0.00154EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/01 1:56 p.m.35 views

CVE-2026-31704 ksmbd: use check_add_overflow() to prevent u16 DACL size overflow

In the Linux kernel, the following vulnerability has been resolved: ksmbd: use checkaddoverflow to prevent u16 DACL size overflow setposixaclentriesdacl and setntacldacl accumulate ACE sizes in u16 variables. When a file has many POSIX ACL entries, the accumulated size can wrap past 65535, causin...

0.00117EPSS
Exploits0References6
Rows per page
Query Builder