Lucene search
K

134 matches found

OSV
OSV
added 2026/06/30 11:7 a.m.2 views

SUSE-SU-2026:22458-1 Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2025-10263: arm64: errata: Mitigate TLBI errata on various Arm CPUs bsc1266290. - CVE-2025-38549: efivarfs: Fix memory leak of efivarfsfsinfo in...

9.8CVSS6.6AI score0.93235EPSS
Exploits51References350
OSV
OSV
added 2026/06/15 1:6 p.m.3 views

SUSE-SU-2026:22127-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2026-23254: net: gro: fix outer network offset bsc1259884. - CVE-2026-23303: smb: client: Don't log plaintext credentials in cifssetcifscreds bsc1260502. -...

9.8CVSS6.2AI score0.00514EPSS
Exploits0References125
OSV
OSV
added 2026/06/15 10:50 a.m.4 views

SUSE-SU-2026:22099-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2026-23254: net: gro: fix outer network offset bsc1259884. - CVE-2026-23303: smb: client: Don't log plaintext credentials in cifssetcifscreds bsc1260502. -...

9.8CVSS7.1AI score0.00514EPSS
Exploits0References125
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: iavf: Implement settime64 with -EOPNOTSUPP The ptpclocksettime function assumes that every ptpclock has implemented settime64. By using -EOPNOTSUPP as a stub, we prevent a NULL derefrence from occurring. This fix is similar to th...

5.8AI score0.00155EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: ptp: A possible memory leak has been fixed in ptpclockregister. I encountered a memory leak during the fault injection test. The affected object is as follows: 0xffff88800906c618 size: 8 bytes: comm "i2c-idt82p33931", pid 4421,...

5.5CVSS6AI score0.00237EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: gve: Implement settime64 with -EOPNOTSUPP The ptpclocksettime function assumes that every ptpclock has implemented settime64. Implementing settime64 with -EOPNOTSUPP prevents a NULL derefrence...

5.2AI score0.00161EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/04/03 11:25 p.m.7 views

SUSE CVE-2026-31396

In the Linux kernel, the following vulnerability has been resolved: net: macb: fix use-after-free access to PTP clock PTP clock is registered on every opening of the interface and destroyed on every closing. However it may be accessed via gettsinfo ethtool call which is possible while the interfa...

6.1CVSS5.7AI score0.00117EPSS
Exploits0References16
EUVD
EUVD
added 2026/04/03 6:31 p.m.5 views

EUVD-2026-18774

In the Linux kernel, the following vulnerability has been resolved: net: macb: fix use-after-free access to PTP clock PTP clock is registered on every opening of the interface and destroyed on every closing. However it may be accessed via gettsinfo ethtool call which is possible while the interfa...

5.7AI score0.00117EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2026/04/03 5:10 p.m.8 views

CVE-2026-31396

A flaw was found in the Linux kernel's Media Access Controller MACB Ethernet driver and Precision Time Protocol PTP clock subsystem. A local attacker could exploit a use-after-free vulnerability by accessing the PTP clock via the gettsinfo ethtool call after the PTP clock has been deallocated. Th...

5.8AI score0.00117EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/04/03 4:16 p.m.6 views

CVE-2026-31396

In the Linux kernel, the following vulnerability has been resolved: net: macb: fix use-after-free access to PTP clock PTP clock is registered on every opening of the interface and destroyed on every closing. However it may be accessed via gettsinfo ethtool call which is possible while the interfa...

7.8CVSS5.7AI score0.00117EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/04/03 3:16 p.m.2 views

CVE-2026-31396

In the Linux kernel, the following vulnerability has been resolved: net: macb: fix use-after-free access to PTP clock PTP clock is registered on every opening of the interface and destroyed on every closing. However it may be accessed via gettsinfo ethtool call which is possible while the interfa...

5.7AI score0.00117EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2026/04/03 3:16 p.m.23 views

CVE-2026-31396 net: macb: fix use-after-free access to PTP clock

In the Linux kernel, the following vulnerability has been resolved: net: macb: fix use-after-free access to PTP clock PTP clock is registered on every opening of the interface and destroyed on every closing. However it may be accessed via gettsinfo ethtool call which is possible while the interfa...

7.8CVSS0.00117EPSS
Exploits0References8
CVE
CVE
added 2026/04/03 3:16 p.m.29 views

CVE-2026-31396

Summary: CVE-2026-31396 affects the Linux kernel’s net/macb and PTP clock subsystem. The root cause is a use-after-free in ptp_clock_index() when the PTP clock is accessed via get_ts_info while the interface’s PTP clock object has been deregistered. This allows a local attacker to trigger a crash...

7.8CVSS5.7AI score0.00117EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2026/04/03 3:16 p.m.1 views

CVE-2026-31396 net: macb: fix use-after-free access to PTP clock

In the Linux kernel, the following vulnerability has been resolved: net: macb: fix use-after-free access to PTP clock PTP clock is registered on every opening of the interface and destroyed on every closing. However it may be accessed via gettsinfo ethtool call which is possible while the interfa...

7.8CVSS6.2AI score0.00117EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2026/04/03 12:0 a.m.11 views

PT-2026-30179

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.164+ Description The Linux kernel contained a use-after-free issue in the networking subsystem related to the macb driver and the PTP Precision Time Protocol clock. Specifically, the PTP clock could be access...

7.8CVSS5.4AI score0.00142EPSS
Exploits0References443
Tenable Nessus
Tenable Nessus
added 2026/03/03 12:0 a.m.6 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005763)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005763 advisory. In the Linux kernel, the following vulnerability has been resolved: posix-clock: Fix missing timespec64 check in pcclocksettime As Andrew pointed out, it will make...

5.5CVSS6.8AI score0.00233EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/03/03 12:0 a.m.7 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005717)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005717 advisory. In the Linux kernel, the following vulnerability has been resolved: posix-clock: Fix missing timespec64 check in pcclocksettime As Andrew pointed out, it will make...

5.5CVSS6.8AI score0.00233EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2026/02/24 11:20 a.m.16 views

USN-8029-3: Linux kernel (Azure) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - Nios II architecture; - PA-RISC architecture; - RISC-V architecture; -...

7.8CVSS7.7AI score0.00519EPSS
Exploits4
NVD
NVD
added 2026/02/18 3:18 p.m.7 views

CVE-2025-71226

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

0.00024EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2026/02/18 3:18 p.m.7 views

CVE-2025-71226

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

5.7AI score0.00024EPSS
Exploits0References4
Rows per page
Query Builder