CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

148 matches found

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Do not call scsiRemoveHost in pm8001Alloc. Calling scsiRemoveHost before scsiAddHost results in a crash. BUG: Kernel NULL pointer dereferencing, address: 0000000000000108 RIP: 0010: devicedel+0x63/0x440 Call Trace:...

6.2CVSS6.2AI score0.00248EPSS

Exploits0References2

AstraLinux•added 5 days ago•3 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: A use-after-free issue was addressed for aborted SSP/STP sastask operations. Currently, a use-after-free may occur if an sastask is aborted by the upper layer before we handle the I/O completion in mpisspcompletion ...

7.8CVSS6.1AI score0.00238EPSS

Exploits0References2

OSV•added 2026/06/03 11:35 a.m.•9 views

SUSE-SU-2026:2238-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2023-20585: x86/CPU: Fix FPDSS on Zen1 bsc1243603. - CVE-2025-54518: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache bsc1264013. -...

9.8CVSS6.8AI score0.03663EPSS

Exploits12References448

OSV•added 2026/06/02 5:58 a.m.•7 views

SUSE-SU-2026:2217-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 RT kernel was updated to fix various security issues The following security issues were fixed: - CVE-2023-20585: x86/CPU: Fix FPDSS on Zen1 bsc1243603. - CVE-2025-68310: s390/pci: Use pciueventers in PCI recovery bsc1255160. - CVE-2025-71183: btrfs: always detect...

9.8CVSS6.8AI score0.00644EPSS

Exploits2References444

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fixed task leakage in pm8001sendabortall In pm8001sendabortall, ensure that the allocated SAS task is freed if pm8001tagalloc or pm8001mpibuildcmd fails...

5.5CVSS5.8AI score0.00246EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: scsi: pm8001: Fix tag leaks on error In functions like pm8001chipsetdevstatereq, pm8001chipfwflashupdatereq, pm80xxchipPhyCTLreq, and pm8001chipregdevreq, missing calls to pm8001tagfree were added to free the allocated tags wh...

5.5CVSS6AI score0.00246EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•6 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fixed a use-after-free issue related to aborted TMF sastask. Currently, a use-after-free might occur if the TMF sastask is aborted before we handle the I/O completion in mpisspcompletion. This abort occurs due to a...

7.8CVSS5.9AI score0.00244EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fixed a memory leak in pm8001chipfwflashupdatereq In pm8001chipfwflashupdatebuild, if pm8001chipfwflashupdatebuild fails, the struct fwcontrolex allocated must be freed...

5.5CVSS5.6AI score0.00248EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: scsi: pm8001: Fix for aborting all task initialization In pm80xxsendabortall, the nelem field of the ccb used is not initialized to 0. This missing initialization sometimes causes the task completion path to encounter an ccb...

5.5CVSS6.3AI score0.00288EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: scsi: pm8001: Fixed the runningreq for internal abort commands Disabling the remote PHY for a SATA disk causes a hang: bash root@none$ more /sys/class/sasPhy/phy-0:0:8/targetPortProtocols sata root@none$ echo 0...

5.6AI score0.00203EPSS

Exploits0References1

AstraLinux•added 2026/05/03 11:59 p.m.•8 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fixed a use-after-free in pm8001queuecommand The commit e29c47fe8946 “scsi: pm8001: Simplified pm8001taskexec” includes refactoring efforts for pm8001queuecommand. However, this refactoring introduced a potential...

7.8CVSS4.8AI score0.00126EPSS

Exploits0References1

Microsoft CVE•added 2026/03/26 8:3 a.m.•2 views

scsi: pm8001: Fix use-after-free in pm8001_queue_command()

...

7.8CVSS5.8AI score0.00126EPSS

Exploits0

SUSE CVE•added 2026/03/25 4:56 p.m.•5 views

SUSE CVE-2026-23306

In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fix use-after-free in pm8001queuecommand Commit e29c47fe8946 "scsi: pm8001: Simplify pm8001taskexec" refactors pm8001queuecommand, however it introduces a potential cause of a double free scenario when it changes th...

6CVSS5.7AI score0.00126EPSS

Exploits0References12

RedhatCVE•added 2026/03/25 2:3 p.m.•2 views

CVE-2026-23306

A flaw was found in the Linux kernel, specifically within the pm8001 SCSI driver and the libsas library. An incorrect return value in the pm8001queuecommand function, when a physical device is down or gone, can lead to a double free vulnerability. This occurs because the function frees a Serial...

5.5CVSS5.7AI score0.00126EPSS

Exploits0References4