79996 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-43050
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - atm: lec: fix use-after-free in sockdefreadable A race condition exists between lecatmclose setting priv-lecd to NULL and concurrent access to priv-lecd in...
Linux Distros Unpatched Vulnerability : CVE-2026-31755
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: cdns3: gadget: fix NULL pointer dereference in epqueue When the gadget endpoint is disabled or not yet configured, the ep-desc pointer can be NULL. This...
Linux Distros Unpatched Vulnerability : CVE-2026-31727
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uether: Fix NULL pointer deref in ethgetdrvinfo Commit ec35c1969650 usb: gadget...
Linux Distros Unpatched Vulnerability : CVE-2026-31728
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: gadget: uether: Fix race between getherdisconnect and ethstop A race condition between getherdisconnect and ethstop leads to a NULL pointer dereference...
CVE-2026-31753
A flaw was found in the Linux kernel, specifically within the auxdisplay and line-display modules. This vulnerability occurs when the linedisprelease function attempts to free display resources. If the associated attachment list has already been removed, the function dereferences a null pointer,...
CVE-2026-31749
A flaw was found in the niatmio16d driver within the Comedi Comedi is a collection of drivers for data acquisition equipment subsystem of the Linux kernel. This vulnerability occurs when an error during the driver's attach process causes the cleanup function atmio16ddetach to be called with...
CVE-2026-31744
A flaw was found in the Linux kernel. When processing energy model performance domains, the devenergymodelnlgetperfdomainsdoit function fails to validate the return value from emperfdomaingetbyid. If a non-existent performance domain ID is provided, this leads to a null pointer dereference, which...
CVE-2026-31736
A flaw was found in the Linux kernel's mtkppe Ethernet driver. When the gmac0 interface is disabled, a precheck for a valid ingress device can lead to a NULL pointer dereference. This vulnerability can cause a system crash, resulting in a Denial of Service DoS...
CVE-2026-31728
A flaw was found in the Linux kernel's usb: gadget: uether module. A race condition between the getherdisconnect and ethstop functions can lead to a NULL pointer dereference. This occurs when ethstop is triggered concurrently while getherdisconnect is tearing down USB endpoints. The vulnerability...
CVE-2026-31727
A flaw was found in the Linux kernel's USB gadget subsystem, specifically within the uether module. A local user can exploit this vulnerability by using a userspace tool to query a USB gadget interface during a specific detached state. This action can trigger a NULL pointer dereference, potential...
CVE-2026-31726
A flaw was found in the Linux kernel's USB Video Class UVC gadget driver. A race condition during power management PM transitions can cause a null pointer dereference. This occurs when the system attempts to access a deallocated gadget pointer, leading to a kernel panic. This vulnerability can be...
CVE-2026-31715
A flaw was found in the Linux kernel's Flash-Friendly File System f2fs. A use-after-free vulnerability exists due to incorrect handling of page counts during concurrent write operations and unmounting. This can lead to a NULL pointer dereference, causing the system to panic and resulting in a...
CLSA-2026-1777662046 vim: Fix of CVE-2022-2183
CVE-2022-2183: fix out-of-bounds read in getlispindent src/indent.c by guarding the that++; amount++; advance with if that != NUL so the lisp auto-indent pointer does not walk past the line's NUL terminator...
CVE-2026-43043
A flaw was found in the Linux kernel's af-alg subsystem. When the AFALG interface chains a new afalgtsgl structure, it fails to unmark the end of a Scatter/Gather List SGL. This can lead to a NULL pointer dereference during a subsequent sendmsg operation, causing a kernel panic and resulting in a...
CVE-2026-35233
An unprivileged attacker can craft a user-space process with a malicious ELF binary containing an out-of-range shlink field. When root-level dtrace attaches to -- or instruments -- that process via dtrace -p , pid probes, or USDT, the ELF parser reads heap memory beyond the allocated section cach...
JLSEC-2026-381
libexpat before 2.7.5 allows a NULL pointer dereference with empty external parameter entity content...
NULL Pointer Dereference
Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in the TShape process. An attacker can cause the application to crash or become unresponsive by submitting a specially crafted VRML file that triggers dereference of a corrupt or unvalidated pointer during shape...
CVE-2026-43008
A flaw was found in the Linux kernel's qixis-fpga driver. This vulnerability is due to incorrect error handling when initializing memory-mapped I/O Input/Output regions. An attacker could potentially exploit this flaw by triggering an error condition, which may lead to an invalid pointer...
CVE-2026-43043
In the Linux kernel, the following vulnerability has been resolved: crypto: af-alg - fix NULL pointer dereference in scatterwalk The AFALG interface fails to unmark the end of a Scatter/Gather List SGL when chaining a new afalgtsgl structure. If a sendmsg fills an SGL exactly to MAXSGLENTS, the...
CVE-2026-43013
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: lag: Check for LAG device before creating debugfs mlx5lagdevaddmdev may return 0 success even when an error occurs that is handled gracefully. Consequently, the initialization flow proceeds to call mlx5ldevadddebugfs ev...