CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2026/05/08 12:0 a.m.•5 views

PT-2026-39035

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the Linux kernel within the remove nh grp entry function. The system publishes a new group using rcu assign pointer and immediately frees the removed...

7.8CVSS5.8AI score0.00125EPSS

Exploits0References7

Positive Technologies•added 2026/05/08 12:0 a.m.•8 views

PT-2026-38930

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A panic occurs in the ext4 file system when the DOUBLE CHECK macro is defined. During the execution of mb group bb bitmap alloc, the system reads and validates the block bitmap. If...

5.5CVSS5.6AI score0.0013EPSS

Exploits0References17

Tenable Nessus•added 2026/05/08 12:0 a.m.•22 views

Linux Distros Unpatched Vulnerability : CVE-2026-43288

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ext4: move ext4percpuparaminit before ext4mbinit When running kvm-xfstests -c ext4/1k -C 1 generic/383 with the DOUBLECHECK macro defined, the following panic i...

5.5CVSS5.9AI score0.0013EPSS

Exploits0References4

Tenable Nessus•added 2026/05/08 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2026-43374

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: nexthop: fix percpu use-after-free in removenhgrpentry When removing a nexthop from a group, removenhgrpentry publishes the new group via rcuassignpointer...

7.8CVSS5.8AI score0.00125EPSS

Exploits0References3

Cvelist•added 2026/05/05 3:17 p.m.•31 views

CVE-2026-43060 netfilter: nft_ct: drop pending enqueued packets on removal

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftct: drop pending enqueued packets on removal Packets sitting in nfqueue might hold a reference to: - templates that specify the conntrack zone, because a percpu area is used and module removal is possible. - conntra...

7.8CVSS0.0012EPSS

Exploits0References8

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: scsi: hpsa: A possible memory leak has been fixed in hpsainitone. The hpdaallocctlrinfo function allocates the h variable and its field replymap. However, in hpsainitone, if allocpercpu fails, hpsainitone jumps directly to clean1...

5.3AI score0.00173EPSS

5.5CVSS6.1AI score0.00147EPSS

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: - BPF: The rcureadlockTraceheld function in bpfmaplookuppercpuelem needs to be checked. The bpfmaplookuppercpuelem helper function is also available for sleepable BPF programs. When BPF JIT is disabled or on a 32-bit host,...

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: alloctag: The ability to dynamically allocate percpu counters for module tags. When a module is unloaded, it checks whether any of its tags are still in use. If so, it keeps the memory containing the module’s allocation tags aliv...

7.8CVSS5.2AI score0.00153EPSS

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: nfsd: move the initialization of the replycachestats counters back to nfsdinitnet. The commit f5f9d4a314da “nfsd: move the reply cache initialization into nfsd startup” moved the initialization of the reply cache into nfsd startu...

5.3AI score0.00168EPSS

5.5CVSS6.5AI score0.00231EPSS

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: ipc: Fixed a memory leak that occurred when msginitns failed during createipcns. Memory allocation using percpu may fail during createipcns. However, this failure is not properly handled, as the ipc sysctls and mq sysctls are...

5.5CVSS5.3AI score0.00232EPSS

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: fixed a percpu memory leak in nftablesaddchain. It seems that the percpu memory issue related to chain statistics began to occur after the commit 3bc158f8d0330f0a “netfilter: nftables: mapping basechain...

AstraLinux•added 2026/05/03 11:59 p.m.•7 views

Astra Linux – Vulnerability in Linux 5.10, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: In the dmstats function, check for and propagate the allocpercpu failure. Check the return value of allocprecpu, and return an error from dmstatsinit if it fails. Update allocdev to fail if dmstatsinit does so. Otherwise, a NULL...

5.5CVSS5.6AI score0.00161EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: PowerPC architecture: Avoid using nmienter/nmiexit in real-mode interrupts. The nmienter/nmiexit functions access per-CPU variables, which can lead to a kernel crash when these functions are invoked during real-mode interrupt...

5.5CVSS5.9AI score0.00228EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•7 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: flexproportions: making fpropnewperiod safe from hardirq issues. Bernd reported a deadlock issue in the flexible proportions code, which essentially complained about the following race conditions: runtimersoftirq – we’re in a...

5.5CVSS4.5AI score0.00114EPSS