Lucene search
+L

39 matches found

susecve
susecve
added 2026/06/28 1:9 a.m.8 views

SUSE CVE-2026-53299

In the Linux kernel, the following vulnerability has been resolved: net: airoha: Move ndesc initialization at end of airohaqdmainittx If queue entry list allocation fails in airohaqdmainittxqueue routine, airohaqdmacleanuptxqueue will trigger a NULL pointer dereference accessing the queue entry...

5.8AI score0.00121EPSS
Exploits0References3
osv
osv
added 2026/06/25 8:39 a.m.3 views

CVE-2026-53242 ALSA: PCM: Fix wait queue list corruption in snd_pcm_drain() on linked streams

In the Linux kernel, the following vulnerability has been resolved: ALSA: PCM: Fix wait queue list corruption in sndpcmdrain on linked streams sndpcmdrain uses initwaitqueueentry which does not clear entry.prev/next, and addwaitqueue with a conditional removewaitqueue that is skipped when tocheck...

7.8CVSS5.9AI score0.00138EPSS
Exploits0References10
astralinux
astralinux
added 2026/06/24 3:11 p.m.8 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: ublk: The SQE128 flag is validated before accessing the cmd field. The ublkctrlcmddump function accesses the sqe-cmd field before checking the IOURINGFSQE128 flag. This could lead to out-of-boundary memory access. The flag...

5.5CVSS5.7AI score0.00156EPSS
Exploits0References2
euvd
euvd
added 2026/06/24 7:14 a.m.11 views

EUVD-2026-38715

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfqueue: hold bridge skb-dev while queued brpassframeup rewrites skb-dev from the ingress port to the bridge master before queueing bridge LOCALIN packets. NFQUEUE only holds references on state.in/out and bridge...

5.7AI score0.00142EPSS
Exploits0References8
ptsecurity
ptsecurity
added 2026/05/27 12:0 a.m.15 views

PT-2026-43723

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The ib uverbs post send function uses the wqe size variable from userspace without validation before passing it to kmalloc. If a small value is provided for wqe size, the system may...

7.1CVSS5.4AI score0.00164EPSS
Exploits0
astralinux
astralinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fixed a issue where a “use-after-free” condition could occur during an interrupt. During a destroy CQ operation, an interrupt may cause the processing of a CQE to occur after the resources managed by irdmacqfreersrc...

7.8CVSS6AI score0.00213EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: RDMA/rxe: Returns a CQE error if an invalid lkey is provided. In RXE, there is a lack of update of the WQE status in cases of LOCALwrite failures. This caused the following kernel panic if someone performed an atomic operation...

5.5CVSS6.4AI score0.00228EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: net: mana: Fixed error handling for TX CQE messages. For an unknown type of TX CQE error likely due to newer hardware, still free the SKB, update the queue tail, etc. Otherwise, the accounting data will be incorrect...

5.5CVSS6AI score0.0023EPSS
Exploits0References2
cnnvd
cnnvd
added 2026/05/08 12:0 a.m.12 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a physical SQE boundary-checking error involving a 128-byte operation in iouring, potentially...

7.1CVSS5.8AI score0.00131EPSS
Exploits0References2
redhat
redhat
added 2026/02/02 11:40 a.m.5 views

kernel: io_uring: prevent opcode speculation

In the Linux kernel, the following vulnerability has been resolved: iouring: prevent opcode speculation sqe-opcode is used for different tables, make sure we santitise it against speculations...

7.8CVSS6.8AI score0.00218EPSS
Exploits0References5
osv
osv
added 2025/12/24 11:15 a.m.4 views

UBUNTU-CVE-2023-54030

In the Linux kernel, the following vulnerability has been resolved: iouring/net: don't overflow multishot recv Don't allow overflowing multishot recv CQEs, it might get out of hand, hurt performance, and in the worst case scenario OOM the task...

5.7AI score0.00145EPSS
Exploits0References4
euvd
euvd
added 2025/10/28 11:48 a.m.4 views

EUVD-2025-36481

In the Linux kernel, the following vulnerability has been resolved: iouring/waitid: always prune wait queue entry in iowaitidwait For a successful return, always remove our entry from the wait queue entry list. Previously this was skipped if a cancelation was in progress, but this can race with...

5.9AI score0.00194EPSS
Exploits0References4
osv
osv
added 2025/10/28 11:48 a.m.5 views

CVE-2025-40047 io_uring/waitid: always prune wait queue entry in io_waitid_wait()

In the Linux kernel, the following vulnerability has been resolved: iouring/waitid: always prune wait queue entry in iowaitidwait For a successful return, always remove our entry from the wait queue entry list. Previously this was skipped if a cancelation was in progress, but this can race with...

6.4AI score0.00194EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2025/10/07 12:0 a.m.6 views

PT-2025-44115

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s io uring/waitid functionality. Specifically, the io waitid wait function did not consistently remove its entry from the wait queue entry list upon a...

3.8CVSS6.4AI score0.00194EPSS
Exploits0
nessus
nessus
added 2025/10/07 12:0 a.m.4 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-384118)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-384118 advisory. In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix error path in multi-packet WQE transmit Remove the erroneous unmap in case no DMA...

5.5CVSS6.1AI score0.00315EPSS
Exploits0References3
osv
osv
added 2025/10/04 4:15 p.m.4 views

UBUNTU-CVE-2023-53539

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix incomplete state save in rxerequester If a send packet is dropped by the IP layer in rxerequester the call to rxexmitpacket can fail with err == -EAGAIN. To recover, the state of the wqe is restored to the state...

5.5CVSS5.7AI score0.00146EPSS
Exploits0References7
mscve
mscve
added 2025/09/03 9:38 p.m.7 views

net: mana: Fix TX CQE error handling

...

5.5CVSS7AI score0.0023EPSS
Exploits0
susecve
susecve
added 2025/07/03 11:22 p.m.10 views

SUSE CVE-2025-38158

In the Linux kernel, the following vulnerability has been resolved: hisiaccvfiopci: fix XQE dma address error The dma addresses of EQE and AEQE are wrong after migration and results in guest kernel-mode encryption services failure. Comparing the definition of hardware registers, we found that the...

6.1CVSS7.8AI score0.00092EPSS
Exploits0References16
osv
osv
added 2025/06/06 1:43 p.m.5 views

CVE-2025-38002 io_uring/fdinfo: grab ctx->uring_lock around io_uring_show_fdinfo()

In the Linux kernel, the following vulnerability has been resolved: iouring/fdinfo: grab ctx-uringlock around iouringshowfdinfo Not everything requires locking in there, which is why the 'haslock' variable exists. But enough does that it's a bit unwieldy to manage. Wrap the whole thing in a...

5.5CVSS6.4AI score0.00175EPSS
Exploits1References6
redhat
redhat
added 2025/05/21 1:15 a.m.5 views

kernel: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink

In Linux kernel net/mlx5e, for SHAMPO, it is possible to receive CQEs with 0 consumed strides for the same WQE even after the WQE is fully consumed and unlinked. This triggers an additional unlink for the same wqe which corrupts the linked list...

5.5CVSS6.9AI score0.0021EPSS
Exploits0References5
Rows per page
Query Builder