Lucene search
K

5116 matches found

RedHat Linux
RedHat Linux
added 11 hours ago5 views

kernel: futex/requeue: Prevent NULL pointer dereference in remove_waiter() on self-deadlock

A flaw was found in the Linux kernel's futex Fast Userspace Mutex requeue mechanism. When a non-top waiter attempts to requeue a Priority Inheritance PI futex it already owns, a NULL pointer dereference can occur. This issue, specifically within the removewaiter function during a self-deadlock...

6AI score0.00126EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/07/01 4:54 p.m.8 views

CVE-2026-53327

A flaw was found in the Linux kernel's debugobjects functionality. On systems with Real-Time RT enabled kernels, the fillpool function can lead to a system assertion if a task is already blocked on a lock, causing corruption of the priority inheritance chain. This issue can result in a Denial of...

5.5CVSS5.8AI score0.00172EPSS
Exploits0References4
OSV
OSV
added 2026/07/01 2:16 p.m.4 views

UBUNTU-CVE-2026-53327

In the Linux kernel, the following vulnerability has been resolved: debugobjects: Do not fillpool if piblockedon On RT enabled kernels, fillpool ends up calling rtlocklock, which asserts if current::piblockedon is set, because a task can obviously only block on one lock as otherwise the priority...

5.7AI score0.00172EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/07/01 1:32 p.m.38 views

CVE-2026-53327 debugobjects: Do not fill_pool() if pi_blocked_on

In the Linux kernel, the following vulnerability has been resolved: debugobjects: Do not fillpool if piblockedon On RT enabled kernels, fillpool ends up calling rtlocklock, which asserts if current::piblockedon is set, because a task can obviously only block on one lock as otherwise the priority...

0.00172EPSS
Exploits0References6
EUVD
EUVD
added 2026/07/01 1:32 p.m.9 views

EUVD-2026-40961

In the Linux kernel, the following vulnerability has been resolved: debugobjects: Do not fillpool if piblockedon On RT enabled kernels, fillpool ends up calling rtlocklock, which asserts if current::piblockedon is set, because a task can obviously only block on one lock as otherwise the priority...

5.8AI score0.00172EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/07/01 1:32 p.m.7 views

CVE-2026-53327

In the Linux kernel, the following vulnerability has been resolved: debugobjects: Do not fillpool if piblockedon On RT enabled kernels, fillpool ends up calling rtlocklock, which asserts if current::piblockedon is set, because a task can obviously only block on one lock as otherwise the priority...

5.8AI score0.00172EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2026/07/01 1:32 p.m.20 views

CVE-2026-53327

CVE-2026-53327 affects the Linux kernel, specifically the debugobjects path related to fill_pool() on RT-enabled kernels. The root cause is that fill_pool() may invoke rtlock_lock() while current::pi_blocked_on is set, which can trigger an assertion because a task should block on only one lock to...

5.8AI score0.00172EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/29 12:0 a.m.22 views

CVE-2026-51219

A heap buffer overflow in the HighPriorityASDUQueuehasUnconfirmedIMessages function of lib60870 v2.3.3 to v2.3.6 allows attackers to cause a Denial of Service DoS via a crafted payload...

0.00348EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/29 12:0 a.m.12 views

PT-2026-53752

Name of the Vulnerable Software and Affected Versions lib60870 versions 2.3.3 through 2.3.6 Description A heap buffer overflow occurs in the HighPriorityASDUQueue hasUnconfirmedIMessages function. This flaw allows an attacker to trigger a Denial of Service DoS by sending a specially crafted...

6.5CVSS6.2AI score0.00348EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/06/29 12:0 a.m.5 views

CVE-2026-51219

A heap buffer overflow in the HighPriorityASDUQueuehasUnconfirmedIMessages function of lib60870 v2.3.3 to v2.3.6 allows attackers to cause a Denial of Service DoS via a crafted payload...

6AI score0.00348EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-53166

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - futex/requeue: Prevent NULL pointer dereference in removewaiter on self-deadlock When FUTEXCMPREQUEUEPI requeues a non-top waiter that already owns the target P...

6AI score0.00126EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/26 7:23 a.m.6 views

CVE-2026-53166

A flaw was found in the Linux kernel's futex Fast Userspace Mutex requeue mechanism. When a non-top waiter attempts to requeue a Priority Inheritance PI futex it already owns, a NULL pointer dereference can occur. This issue, specifically within the removewaiter function during a self-deadlock...

5.5CVSS5.9AI score0.00126EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/06/26 2:11 a.m.23 views

SUSE CVE-2026-53166

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

6AI score0.00126EPSS
Exploits0References3
NVD
NVD
added 2026/06/25 9:16 a.m.6 views

CVE-2026-53166

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

0.00126EPSS
Exploits0
EUVD
EUVD
added 2026/06/25 8:38 a.m.6 views

EUVD-2026-39257

In the Linux kernel, the following vulnerability has been resolved: futex/requeue: Prevent NULL pointer dereference in removewaiter on self-deadlock When FUTEXCMPREQUEUEPI requeues a non-top waiter that already owns the target PI futex, taskblocksonrtmutex returns -EDEADLK before setting...

5.8AI score0.00126EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/24 4:28 p.m.5 views

CVE-2026-52977

In the Linux kernel, the following vulnerability has been resolved: futex: Prevent lockup in requeue-PI during signal/ timeout wakeup During wait-requeue-pi task A and requeue-PI task B the following race can happen: Task A Task B futexwaitrequeuepi futexsetuptimer futexdowait futexrequeue CLASSh...

5.6AI score0.00172EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2026/06/24 4:28 p.m.11 views

CVE-2026-52977

CVE-2026-52977 affects the Linux kernel futex subsystem, describing a race between wait-requeue-pi (task A) and requeue-PI (task B) that can cause a live lock on UP systems when a signal/timeout wakeup occurs. The race involves futex_wait_requeue_pi() -> futex_setup_timer() -> futex_do_wait...

5.7AI score0.00172EPSS
Exploits0References6
NVD
NVD
added 2026/06/24 2:17 p.m.10 views

CVE-2026-57290

A cross-site request forgery CSRF vulnerability in Jenkins Priority Sorter Plugin 936.v2c01c6b84449 and earlier allows attackers to overwrite the global job priority configuration...

4.3CVSS0.00152EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/24 1:20 p.m.33 views

CVE-2026-57290

A cross-site request forgery CSRF vulnerability in Jenkins Priority Sorter Plugin 936.v2c01c6b84449 and earlier allows attackers to overwrite the global job priority configuration...

0.00152EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/24 1:20 p.m.5 views

CVE-2026-57290

A cross-site request forgery CSRF vulnerability in Jenkins Priority Sorter Plugin 936.v2c01c6b84449 and earlier allows attackers to overwrite the global job priority configuration...

4.3CVSS5.8AI score0.00152EPSS
Exploits0References2
Rows per page
Query Builder