Lucene search
K

487 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/04 12:0 a.m.15 views

RHCOS 4 : OpenShift Container Platform 4.14.59 (RHSA-2025:21328)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:21328 advisory. - net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871 - runc: container escape via...

9.1CVSS7.3AI score0.00724EPSS
Exploits4References10
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.9 views

RHCOS 4 : OpenShift Container Platform 4.12.84 (RHSA-2026:0315)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:0315 advisory. - runc: container escape via 'masked path' abuse due to mount race conditions CVE-2025-31133 - runc: container escape with malicious...

8.4CVSS6AI score0.0067EPSS
Exploits4References8
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.3 views

RHCOS 4 : OpenShift Container Platform 4.15.61 (RHSA-2026:1540)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:1540 advisory. - runc: container escape via 'masked path' abuse due to mount race conditions CVE-2025-31133 - runc: container escape with malicious...

8.4CVSS6AI score0.0067EPSS
Exploits4References8
RedHat Linux
RedHat Linux
added 2026/04/27 2:17 a.m.8 views

runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects

A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process...

7.5CVSS7.6AI score0.00523EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2026/04/27 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-31630

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rxrpc: proc: size address buffers for %pISpc output The AFRXRPC procfs helpers format local and remote socket addresses into fixed 50-byte stack buffers with...

7.8CVSS6AI score0.00132EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/04/25 1:37 a.m.6 views

SUSE CVE-2026-31630

In the Linux kernel, the following vulnerability has been resolved: rxrpc: proc: size address buffers for %pISpc output The AFRXRPC procfs helpers format local and remote socket addresses into fixed 50-byte stack buffers with "%pISpc". That is too small for the longest current-tree IPv6-with-port...

7.8CVSS5.6AI score0.00132EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/04/24 8:55 p.m.5 views

CVE-2026-31630

A flaw was found in the Linux kernel, specifically within the rxrpc component. The AFRXRPC procfs helpers use fixed-size buffers to format local and remote socket addresses. When processing certain IPv6 addresses with ports, the formatted string can exceed the buffer's capacity, leading to a buff...

7.8CVSS6.1AI score0.00132EPSS
Exploits0References4
OSV
OSV
added 2026/04/24 3:16 p.m.6 views

DEBIAN-CVE-2026-31630

In the Linux kernel, the following vulnerability has been resolved: rxrpc: proc: size address buffers for %pISpc output The AFRXRPC procfs helpers format local and remote socket addresses into fixed 50-byte stack buffers with "%pISpc". That is too small for the longest current-tree IPv6-with-port...

7.8CVSS5.4AI score0.00132EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/24 2:44 p.m.35 views

CVE-2026-31630 rxrpc: proc: size address buffers for %pISpc output

In the Linux kernel, the following vulnerability has been resolved: rxrpc: proc: size address buffers for %pISpc output The AFRXRPC procfs helpers format local and remote socket addresses into fixed 50-byte stack buffers with "%pISpc". That is too small for the longest current-tree IPv6-with-port...

7.8CVSS0.00132EPSS
Exploits0References6
CVE
CVE
added 2026/04/24 2:44 p.m.17 views

CVE-2026-31630

The CVE-2026-31630 issue affects the Linux kernel RXRPC procfs address formatting: AF_RXRPC procfs helpers used fixed 50-byte buffers to render local/remote socket addresses with "%pISpc", which is insufficient for the longest current IPv6-with-port forms (notably ISATAP paths). The root cause is...

7.8CVSS5.5AI score0.00132EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2026/04/24 2:44 p.m.4 views

EUVD-2026-25523

In the Linux kernel, the following vulnerability has been resolved: rxrpc: proc: size address buffers for %pISpc output The AFRXRPC procfs helpers format local and remote socket addresses into fixed 50-byte stack buffers with "%pISpc". That is too small for the longest current-tree IPv6-with-port...

5.5AI score0.00132EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/24 2:44 p.m.4 views

CVE-2026-31630

In the Linux kernel, the following vulnerability has been resolved: rxrpc: proc: size address buffers for %pISpc output The AFRXRPC procfs helpers format local and remote socket addresses into fixed 50-byte stack buffers with "%pISpc". That is too small for the longest current-tree IPv6-with-port...

5.5AI score0.00132EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.6 views

PT-2026-34982

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description In the AF RXRPC procfs helpers, local and remote socket addresses are formatted into fixed 50-byte stack buffers using the %pISpc formatter. This buffer size is insufficient for the...

7.8CVSS5.7AI score0.00378EPSS
Exploits0References144
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013319)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013319 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix a procfs host directory removal regression scsiprochostdirrm decreases a referenc...

5.5CVSS6.3AI score0.00166EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/04/15 3:24 p.m.4 views

runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects

A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process...

7.5CVSS5.7AI score0.00523EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2026/04/08 12:0 a.m.3 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006822)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006822 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix unremoved procfs host directory regression Commit fc663711b944 scsi: core: Remove...

5.5CVSS6AI score0.00242EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/26 3:34 p.m.8 views

Security Bulletin: Technical Support Appliance - potential denial of service in Linux kernel subsystems

Summary Multiple vulnerabilities have been identified in the Linux kernel affecting subsystems including InfiniBand hfi1, RDMA, SquashFS, ATM networking, USB core, MPTCP, procfs, and framebuffer fbdev. These issues involve race conditions, use-after-free scenarios, and out-of-bounds memory access...

7.8CVSS5.9AI score0.00259EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2026/03/17 6:49 a.m.2 views

runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects

A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process...

7.5CVSS5.7AI score0.00523EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/03/17 6:49 a.m.5 views

runc: container escape via 'masked path' abuse due to mount race conditions

A flaw was found in runc. This flaw exploits an issue with how masked paths are implementedin runc. When masking files, runc will bind-mount the container's /dev/null inode on top of the file. However, if an attacker can replace /dev/null with a symlink to some other procfs file, runc will instea...

7.8CVSS5.8AI score0.0067EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.3 views

EulerOS 2.0 SP12 : docker-runc (EulerOS-SA-2026-1388)

According to the versions of the docker-runc package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacke...

7.5CVSS7.3AI score0.00523EPSS
Exploits1References2
Rows per page
Query Builder