Lucene search
+L

25 matches found

astralinux
astralinux
added 2026/06/24 3:11 p.m.4 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-motu – added a bounds check in the putuser loop for DSP events. In the DSP event handling code, the putuser loop copies event data. When the user buffer size is not aligned to 4 bytes, it may overwrite data beyond...

6AI score0.00161EPSS
Exploits0References3
cve
cve
added 2026/06/24 7:14 a.m.15 views

CVE-2026-52940

The CVE-2026-52940 issue affects the Linux kernel tun driver. tun_put_user() allocates an on‑stack virtio_net_hdr_v1_hash_tunnel without zeroing, while virtio_net_hdr_tnl_from_skb() only initializes the first 10 bytes for non‑tunnel SKBs. This allows an unprivileged user to set the vnet header to...

5.5CVSS5.8AI score0.00112EPSS
Exploits0References3Affected Software1
debiancve
debiancve
added 2026/06/24 7:14 a.m.5 views

CVE-2026-52940

In the Linux kernel, the following vulnerability has been resolved: tun: zero the whole vnet header in tunputuser tunputuser declares an on-stack struct virtionethdrv1hashtunnel without zeroing it. For a non-tunnel skb, virtionethdrtnlfromskb only initializes the first 10 bytes sizeofstruct...

5.5CVSS5.7AI score0.00112EPSS
Exploits0
euvd
euvd
added 2026/06/24 7:14 a.m.18 views

EUVD-2026-38710

In the Linux kernel, the following vulnerability has been resolved: tun: zero the whole vnet header in tunputuser tunputuser declares an on-stack struct virtionethdrv1hashtunnel without zeroing it. For a non-tunnel skb, virtionethdrtnlfromskb only initializes the first 10 bytes sizeofstruct...

5.8AI score0.00112EPSS
Exploits0References3
osv
osv
added 2026/06/24 7:14 a.m.3 views

CVE-2026-52940 tun: zero the whole vnet header in tun_put_user()

In the Linux kernel, the following vulnerability has been resolved: tun: zero the whole vnet header in tunputuser tunputuser declares an on-stack struct virtionethdrv1hashtunnel without zeroing it. For a non-tunnel skb, virtionethdrtnlfromskb only initializes the first 10 bytes sizeofstruct...

5.5CVSS5.8AI score0.00112EPSS
Exploits0References6
osv
osv
added 2026/05/27 2:17 p.m.10 views

UBUNTU-CVE-2026-46053

In the Linux kernel, the following vulnerability has been resolved: net: rds: fix MR cleanup on copy error rdsrdmamap hands sg/pages ownership to the transport after getmr succeeds. If copying the generated cookie back to user space fails after that point, the error path must not free those...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References7
cve
cve
added 2026/05/27 12:57 p.m.31 views

CVE-2026-46053

CVE-2026-46053 affects the Linux kernel RDS memory-registration cleanup. In net/rds, __rds_rdma_map() transfers ownership of sg/pages after get_mr(); if copying the cookie back to user space fails, resources could be freed more than once. The fix removes a duplicate unpin/free in the put_user() f...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References8Affected Software1
cvelist
cvelist
added 2026/05/27 12:57 p.m.45 views

CVE-2026-46053 net: rds: fix MR cleanup on copy error

In the Linux kernel, the following vulnerability has been resolved: net: rds: fix MR cleanup on copy error rdsrdmamap hands sg/pages ownership to the transport after getmr succeeds. If copying the generated cookie back to user space fails after that point, the error path must not free those...

7.8CVSS0.00129EPSS
Exploits0References8
osv
osv
added 2026/05/20 3:44 p.m.14 views

GHSA-59FH-9F3P-7M39 Flowise: Mass Assignment in PUT /api/v1/user Allows Authenticated Users to Override Password Hash and Bypass Password Change Verification

Summary A Mass Assignment vulnerability in the PUT /api/v1/user endpoint allows authenticated users to directly modify restricted user fields, including the credential password hash, bypassing the intended password change workflow. Because the endpoint forwards the entire request body to the...

6CVSS5.8AI score0.00251EPSS
Exploits0References2
snyk
snyk
added 2026/04/10 7:49 p.m.5 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization in the PUT /user route. An attacker can gain full administrative privileges by using a read-only access token to change the administrator's password, then logging in to obtain an unrestricted session token that...

8.8CVSS5.8AI score
Exploits0References2
nessus
nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002149)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002149 advisory. The 1 getuser and 2 putuser API functions in the Linux kernel before 3.5.5 on the v6k and v7 ARM platforms do not validate certain addresses, which allows attackers ...

8.8CVSS8.2AI score0.39711EPSS
Exploits9References12
mscve
mscve
added 2026/01/06 9:1 a.m.5 views

ALSA: firewire-motu: add bounds check in put_user loop for DSP events

...

5.3AI score0.00161EPSS
Exploits0
susecve
susecve
added 2026/01/06 12:24 a.m.4 views

SUSE CVE-2025-68753

In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-motu: add bounds check in putuser loop for DSP events In the DSP event handling code, a putuser loop copies event data. When the user buffer size is not aligned to 4 bytes, it could overwrite beyond the buffer...

5.5CVSS6.6AI score0.00161EPSS
Exploits0References21
nvd
nvd
added 2026/01/05 10:15 a.m.5 views

CVE-2025-68753

In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-motu: add bounds check in putuser loop for DSP events In the DSP event handling code, a putuser loop copies event data. When the user buffer size is not aligned to 4 bytes, it could overwrite beyond the buffer...

0.00161EPSS
Exploits0References6
cve
cve
added 2026/01/05 9:32 a.m.31 views

CVE-2025-68753

The CVE CVE-2025-68753 relates to the Linux kernel ALSA: firewire-motu DSP event handling. The issue stems from a missing bounds check in a put_user() loop that copies DSP event data; if the user buffer size is not aligned to 4 bytes, data could be written beyond the intended boundary, potentiall...

6.2AI score0.00161EPSS
Exploits0References6
debiancve
debiancve
added 2026/01/05 9:32 a.m.7 views

CVE-2025-68753

In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-motu: add bounds check in putuser loop for DSP events In the DSP event handling code, a putuser loop copies event data. When the user buffer size is not aligned to 4 bytes, it could overwrite beyond the buffer...

5.4AI score0.00161EPSS
Exploits0
cvelist
cvelist
added 2026/01/05 9:32 a.m.27 views

CVE-2025-68753 ALSA: firewire-motu: add bounds check in put_user loop for DSP events

In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-motu: add bounds check in putuser loop for DSP events In the DSP event handling code, a putuser loop copies event data. When the user buffer size is not aligned to 4 bytes, it could overwrite beyond the buffer...

0.00161EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2026/01/05 12:0 a.m.9 views

PT-2026-1241

Name of the Vulnerable Software and Affected Versions Linux Kernel affected versions not specified Description A flaw exists in the handling of DSP events within the ALSA firewire-motu module. A missing bounds check in a put user loop could allow overwriting beyond the user buffer boundary when t...

4.6CVSS6.7AI score0.00161EPSS
Exploits0
osv
osv
added 2025/07/09 11:15 a.m.1 views

DEBIAN-CVE-2025-38261

In the Linux kernel, the following vulnerability has been resolved: riscv: save the SRSUM status over switches When threads/tasks are switched we need to ensure the old execution's SRSUM state is saved and the new thread has the old SRSUM state restored. The issue was seen under heavy load...

5.5CVSS5.6AI score0.00132EPSS
Exploits0References1
redhat
redhat
added 2024/11/12 9:11 a.m.7 views

kernel: x86/lib: Revert to _ASM_EXTABLE_UA() for {get,put}_user() fixups

In the Linux kernel, the following vulnerability has been resolved: x86/lib: Revert to ASMEXTABLEUA for get,putuser fixups During memory error injection test on kernels = v6.4, the kernel panics like below. However, this issue couldn't be reproduced on kernels getusernocheck4+0x6/0x20 mce: Hardwa...

7.1CVSS6.8AI score0.00264EPSS
Exploits0References5
Rows per page
Query Builder