Lucene search
K

34 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: nvme-fc: The use of lock access to portstate and rportstate was corrected. nvmefcunregisterremote removes the remote port from an lport object at any time when there is no active association. This issue conflicts with the...

6AI score0.00197EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013040)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013040 advisory. In the Linux kernel, the following vulnerability has been resolved: nvme-fc: use lock accessing portstate and rport state nvmefcunregisterremote removes the remote...

5.7AI score0.00197EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011234)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011234 advisory. In the Linux kernel, the following vulnerability has been resolved: nvme-fc: use lock accessing portstate and rport state nvmefcunregisterremote removes the remote...

5.9AI score0.00197EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/25 12:30 p.m.6 views

EUVD-2026-15366

In the Linux kernel, the following vulnerability has been resolved: nvmet-fcloop: Check remoteport portstate before calling done callback In nvmefchandlelsrqstwork, the lsrsp-done callback is only set when remoteport-portstate is FCOBJSTATEONLINE. Otherwise, the nvmefcxmtlsrsp's LLDD call to...

5.7AI score0.00117EPSS
Exploits0References4
NVD
NVD
added 2026/03/25 11:16 a.m.7 views

CVE-2026-23376

In the Linux kernel, the following vulnerability has been resolved: nvmet-fcloop: Check remoteport portstate before calling done callback In nvmefchandlelsrqstwork, the lsrsp-done callback is only set when remoteport-portstate is FCOBJSTATEONLINE. Otherwise, the nvmefcxmtlsrsp's LLDD call to...

5.5CVSS0.00117EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/03/25 11:16 a.m.10 views

CVE-2026-23376

In the Linux kernel, the following vulnerability has been resolved: nvmet-fcloop: Check remoteport portstate before calling done callback In nvmefchandlelsrqstwork, the lsrsp-done callback is only set when remoteport-portstate is FCOBJSTATEONLINE. Otherwise, the nvmefcxmtlsrsp's LLDD call to...

5.5CVSS5.7AI score0.00117EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/03/25 10:27 a.m.26 views

CVE-2026-23376 nvmet-fcloop: Check remoteport port_state before calling done callback

In the Linux kernel, the following vulnerability has been resolved: nvmet-fcloop: Check remoteport portstate before calling done callback In nvmefchandlelsrqstwork, the lsrsp-done callback is only set when remoteport-portstate is FCOBJSTATEONLINE. Otherwise, the nvmefcxmtlsrsp's LLDD call to...

0.00117EPSS
Exploits0References3
CVE
CVE
added 2026/03/25 10:27 a.m.20 views

CVE-2026-23376

CVE-2026-23376 affects the Linux kernel nvmet-fcloop component. The vulnerability arises from not checking remoteport port_state before freeing resources in the fcloop_t2h_xmt_ls_rsp path, where lsrsp resources may be freed incorrectly if the remote port is not online. The fix updates fcloop_t2h_...

5.5CVSS5.7AI score0.00117EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/03/25 10:27 a.m.2 views

CVE-2026-23376

In the Linux kernel, the following vulnerability has been resolved: nvmet-fcloop: Check remoteport portstate before calling done callback In nvmefchandlelsrqstwork, the lsrsp-done callback is only set when remoteport-portstate is FCOBJSTATEONLINE. Otherwise, the nvmefcxmtlsrsp's LLDD call to...

5.5CVSS5.2AI score0.00117EPSS
Exploits0
CVE
CVE
added 2026/01/23 3:24 p.m.35 views

CVE-2026-22981

CVE-2026-22981 pertains to the Linux kernel driver for IDPF (Intel Ethernet 800/900-series? context in the doc refers to idpf) where, during reset handling, netdev interfaces are detached/closed to protect the reset path. The vulnerability description states that if reset handling succeeds, netde...

5.5CVSS5.3AI score0.00115EPSS
Exploits0References3Affected Software1
Microsoft CVE
Microsoft CVE
added 2025/12/10 9:2 a.m.6 views

nvme-fc: use lock accessing port_state and rport state

...

7CVSS7AI score0.00197EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/12/10 12:26 a.m.5 views

SUSE CVE-2025-40342

In the Linux kernel, the following vulnerability has been resolved: nvme-fc: use lock accessing portstate and rport state nvmefcunregisterremote removes the remote port on a lport object at any point in time when there is no active association. This races with with the reconnect logic, because...

6.4CVSS6.5AI score0.00197EPSS
Exploits0References23
EUVD
EUVD
added 2025/12/09 6:30 p.m.6 views

EUVD-2025-201860

In the Linux kernel, the following vulnerability has been resolved: nvme-fc: use lock accessing portstate and rport state nvmefcunregisterremote removes the remote port on a lport object at any point in time when there is no active association. This races with with the reconnect logic, because...

6AI score0.00197EPSS
Exploits0References8
NVD
NVD
added 2025/12/09 4:17 p.m.4 views

CVE-2025-40342

In the Linux kernel, the following vulnerability has been resolved: nvme-fc: use lock accessing portstate and rport state nvmefcunregisterremote removes the remote port on a lport object at any point in time when there is no active association. This races with with the reconnect logic, because...

0.00197EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/12/09 4:17 p.m.6 views

CVE-2025-40342

In the Linux kernel, the following vulnerability has been resolved: nvme-fc: use lock accessing portstate and rport state nvmefcunregisterremote removes the remote port on a lport object at any point in time when there is no active association. This races with with the reconnect logic, because...

6AI score0.00197EPSS
Exploits0References34
OSV
OSV
added 2025/12/09 4:17 p.m.4 views

UBUNTU-CVE-2025-40342

In the Linux kernel, the following vulnerability has been resolved: nvme-fc: use lock accessing portstate and rport state nvmefcunregisterremote removes the remote port on a lport object at any point in time when there is no active association. This races with with the reconnect logic, because...

5.9AI score0.00197EPSS
Exploits0References35
Microsoft CVE
Microsoft CVE
added 2025/12/09 9:3 a.m.4 views

net: bridge: fix use-after-free due to MST port state bypass

...

7CVSS7AI score0.00176EPSS
Exploits0
CVE
CVE
added 2025/12/09 4:9 a.m.24 views

CVE-2025-40342

The CVE-2025-40342 issue is in the Linux kernel nvme-fc/NVMe over Fabrics: nvme_fc_unregister_remote can remove a remote port at any time when there is no active association, racing with the reconnect logic because nvme_fc_create_association does not obtain a lock to guard port_state and atomical...

6.1AI score0.00197EPSS
Exploits0References7
Cvelist
Cvelist
added 2025/12/09 4:9 a.m.25 views

CVE-2025-40342 nvme-fc: use lock accessing port_state and rport state

In the Linux kernel, the following vulnerability has been resolved: nvme-fc: use lock accessing portstate and rport state nvmefcunregisterremote removes the remote port on a lport object at any point in time when there is no active association. This races with with the reconnect logic, because...

0.00197EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2025/12/09 4:9 a.m.4 views

CVE-2025-40342

In the Linux kernel, the following vulnerability has been resolved: nvme-fc: use lock accessing portstate and rport state nvmefcunregisterremote removes the remote port on a lport object at any point in time when there is no active association. This races with with the reconnect logic, because...

5.4AI score0.00197EPSS
Exploits0
Rows per page
Query Builder