Lucene search
K

9 matches found

NVD
NVD
added 2026/06/24 5:17 p.m.6 views

CVE-2026-52991

In the Linux kernel, the following vulnerability has been resolved: sched/psi: fix race between file release and pressure write A potential race condition exists between pressure write and cgroup file release regarding the priv member of struct kernfsopenfile, which triggers the uaf reported in 1...

7.8CVSS0.00104EPSS
Exploits0References6
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: md: Do not set mddev’s private field to NULL in raid0 with pers-free. In a normal stop process, the following sequence of operations occurs: domdstop | mdstop pers-free; mddev-private=NULL | mdfree free mddev The mdstop function...

5.5CVSS6.2AI score0.00273EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/28 4:1 a.m.11 views

SUSE CVE-2025-71312

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: fix ntfsmountoptions leak in ntfsfillsuper In ntfsfillsuper, the fc-fsprivate pointer is set to NULL without first freeing the memory it points to. This causes the subsequent call to ntfsfsfree to skip freeing the...

5.5CVSS5.8AI score0.00137EPSS
Exploits0References3
CVE
CVE
added 2026/05/01 2:15 p.m.20 views

CVE-2026-43050

CVE-2026-43050 describes a race in the Linux kernel’s ATM lec code. A race between lec_atm_close() clearing priv->lecd and concurrent access in send_to_lecd(), lec_handle_bridge(), and lec_atm_send() can cause a use-after-free on the lecd pointer when a socket is freed via RCU. The fix convert...

7CVSS5.8AI score0.00119EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2026/04/22 1:54 p.m.31 views

CVE-2026-31507 net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix double-free of smcspdpriv when tee duplicates splice pipe buffer smcrxsplice allocates one smcspdpriv per pipebuffer and stores the pointer in pipebuffer.private. The pipebufoperations for these buffers used .get =...

7.8CVSS0.00126EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/08/19 12:0 a.m.3 views

PT-2025-44141

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.15.0-rc2-g3ee3f6e1202e 335 Description The Linux kernel contains a flaw within the drm/msm subsystem related to Shared Surface Private Pointer SSPP validation. The current code validates SSPP for both the curre...

4.6CVSS5.5AI score0.0017EPSS
Exploits0
Cvelist
Cvelist
added 2025/04/16 2:11 p.m.19 views

CVE-2025-22035 tracing: Fix use-after-free in print_graph_function_flags during tracer switching

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix use-after-free in printgraphfunctionflags during tracer switching Kairui reported a UAF issue in printgraphfunctionflags during ftrace stress testing 1. This issue can be reproduced if puting a 'mdelay10' after...

0.00232EPSS
Exploits0References9
OSV
OSV
added 2024/09/18 8:15 a.m.6 views

AZL-49684 CVE-2024-46755 affecting package kernel for versions less than 5.15.167.1-1

In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Do not return unused priv in mwifiexgetprivbyid mwifiexgetprivbyid returns the priv pointer corresponding to the bssnum and bsstype, but without checking if the priv is actually currently in use. Unused priv pointe...

5.5CVSS6.3AI score0.00272EPSS
Exploits0References1
OSV
OSV
added 2024/08/26 11:15 a.m.0 views

DEBIAN-CVE-2024-43891

In the Linux kernel, the following vulnerability has been resolved: tracing: Have format file honor EVENTFILEFLFREED When eventfs was introduced, special care had to be done to coordinate the freeing of the file meta data with the files that are exposed to user space. The file meta data would hav...

4.7CVSS6AI score0.00225EPSS
Exploits0References1
Rows per page
Query Builder