Lucene search
K

27 matches found

CVE
CVE
added 2026/01/21 6:57 a.m.38 views

CVE-2026-22976

CVE-2026-22976 affects the Linux kernel’s net/sched sch_qfq, where two qfq_class objects can reference the same leaf_qdisc. In certain teardown paths (e.g., when a qdisc is pending destruction via tc_new_tfilter and another qdisc is root-attached), a shared leaf_qdisc may have q.qlen > 0 while...

5.5CVSS5.3AI score0.00118EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2025/05/19 9:7 p.m.7 views

CLSA-2025-1747688831 kernel: Fix of 20 CVEs

drm/dpmst: Ensure mstprimary pointer is valid in drmdpmsthandleupreq CVE-2024-57798 - block: Fix handling of offline queues in blkmqallocrequesthctx CVE-2022-49720 - drm: nv04: Fix out of bounds access CVE-2024-27008 - parport: Proper fix for array out-of-bounds access CVE-2024-50074 - Bluetooth:...

7.8CVSS6.8AI score0.03558EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.3 views

kernel: net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT

A flaw was found in the packet scheduler API in the Linux kernel. An invalid assumption about qdiscs with major handle ffff allows qdiscs, such as DRR, that maintain an active class list to cause a use-after-free with a dangling class pointer...

7.8CVSS6.7AI score0.00292EPSS
Exploits0References5
OSV
OSV
added 2024/07/30 8:15 a.m.3 views

UBUNTU-CVE-2024-42114

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: restrict NL80211ATTRTXQQUANTUM values syzbot is able to trigger softlockups, setting NL80211ATTRTXQQUANTUM to 2^31. We had a similar issue in schfq, fixed with commit d9e15a273306 "pktsched: fq: do not accept sill...

4.4CVSS6.1AI score0.00174EPSS
Exploits0References20
NVD
NVD
added 2024/04/18 10:15 a.m.32 views

CVE-2024-26921

In the Linux kernel, the following vulnerability has been resolved: inet: inetdefrag: prevent sk release while still in use iplocalout and other functions can pass skb-sk as function argument. If the skb is a fragment and reassembly happens before such function call returns, the sk must not be...

5.5CVSS6.4AI score0.0038EPSS
Exploits1References8
CVE
CVE
added 2024/04/18 9:47 a.m.7936 views

CVE-2024-26921

CVE-2024-26921 is a Linux kernel issue where in the tx path, skb fragments could trigger a use-after-free of the socket when fragments are reassembled and the skb->sk field is freed prematurely. The fix, analyzed by Eric Dumazet, moves orphaning to the last safe moment, delaying skb->sk des...

5.5CVSS6.4AI score0.0038EPSS
Exploits1References8Affected Software1
Virtuozzo
Virtuozzo
added 2023/11/07 12:0 a.m.47 views

[Important] [Security] Virtuozzo ReadyKernel Patch 163.1 for Virtuozzo Hybrid Server 7.5

The cumulative Virtuozzo ReadyKernel patch was updated with security fixes. The patch applies to all supported kernels of Virtuozzo Hybrid Server 7.5. Vulnerability id: CVE-2023-4622 3.10.0-1160.53.1.vz7.185.3 to 3.10.0-1160.90.1.vz7.200.7 Null pointer dereference in Unix local sockets during...

7.8CVSS7.1AI score0.12966EPSS
Exploits8References3
Virtuozzo
Virtuozzo
added 2023/08/21 12:0 a.m.46 views

[Important] [Security] Virtuozzo ReadyKernel Patch 159.0 for Virtuozzo Hybrid Server 7.5

The cumulative Virtuozzo ReadyKernel patch was updated with security fixes. The patch applies to all supported kernels of Virtuozzo Hybrid Server 7.5. Vulnerability id: CVE-2023-3268 3.10.0-1160.41.1.vz7.183.5 to 3.10.0-1160.80.1.vz7.191.4 Out-of-bound memory access during reading relayfs...

7.8CVSS6.9AI score0.00532EPSS
Exploits2References3
Virtuozzo
Virtuozzo
added 2023/07/24 12:0 a.m.38 views

[Important] [Security] Virtuozzo ReadyKernel Patch 158.1 for Virtuozzo Hybrid Server 7.5

The cumulative Virtuozzo ReadyKernel patch was updated with security fixes. The patch applies to all supported kernels of Virtuozzo Hybrid Server 7.5. Vulnerability id: CVE-2023-0590 3.10.0-1160.41.1.vz7.183.5 to 3.10.0-1160.80.1.vz7.191.4 A use-after-free while changing the network packet...

5.5CVSS7AI score0.00964EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.29 views

Ubuntu: Security Advisory (USN-5567-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.5AI score0.12746EPSS
Exploits12References4
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.35 views

Ubuntu: Security Advisory (USN-5557-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.5AI score0.12746EPSS
Exploits12References4
Ubuntu
Ubuntu
added 2022/08/25 3:58 a.m.120 views

USN-5582-1: Linux kernel (Azure CVM) vulnerabilities

Arthur Mongodin discovered that the netfilter subsystem in the Linux kernel did not properly perform data validation. A local attacker could use this to escalate privileges in certain situations. CVE-2022-34918 Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux...

7.8CVSS7.6AI score0.12746EPSS
Exploits25
Ubuntu
Ubuntu
added 2022/08/10 6:26 p.m.96 views

USN-5567-1: Linux kernel (OEM) vulnerabilities

Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service system crash or execute arbitrary code...

7.8CVSS7.2AI score0.12746EPSS
Exploits12
OSV
OSV
added 2022/08/10 6:26 p.m.9 views

USN-5567-1 linux-oem-5.14, linux-oem-5.17 vulnerabilities

Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service system crash or execute arbitrary code...

7.8CVSS7.1AI score0.12746EPSS
Exploits12References4
Ubuntu
Ubuntu
added 2022/08/10 4:59 p.m.116 views

USN-5564-1: Linux kernel (Intel IoTG) vulnerabilities

Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service system crash or execute arbitrary code...

7.8CVSS7.7AI score0.12746EPSS
Exploits26
OSV
OSV
added 2022/08/10 4:59 p.m.10 views

USN-5564-1 linux-intel-iotg vulnerabilities

Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service system crash or execute arbitrary code...

7.8CVSS7.3AI score0.12746EPSS
Exploits26References16
OSV
OSV
added 2022/08/10 12:36 p.m.16 views

USN-5560-2 linux-hwe, linux-aws-hwe, linux-azure, linux-gcp, linux-oracle vulnerabilities

Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service system crash or execute arbitrary code...

7.8CVSS6.9AI score0.12746EPSS
Exploits26References14
Ubuntu
Ubuntu
added 2022/08/10 11:17 a.m.196 views

USN-5560-1: Linux kernel vulnerabilities

Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service system crash or execute arbitrary code...

7.8CVSS7.3AI score0.12746EPSS
Exploits26
OSV
OSV
added 2022/08/10 11:17 a.m.10 views

USN-5560-1 linux, linux-aws, linux-azure-4.15, linux-dell300x, linux-gcp-4.15, linux-kvm, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities

Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service system crash or execute arbitrary code...

7.8CVSS7.1AI score0.12746EPSS
Exploits26References14
Ubuntu
Ubuntu
added 2022/08/09 11:44 p.m.95 views

USN-5557-1: Linux kernel vulnerabilities

Zhenpeng Lin discovered that the network packet scheduler implementation in the Linux kernel did not properly remove all references to a route filter before freeing it in some situations. A local attacker could use this to cause a denial of service system crash or execute arbitrary code...

7.8CVSS7.2AI score0.12746EPSS
Exploits12
Rows per page
Query Builder