Lucene search
K

4 matches found

NVD
NVD
added 2026/02/14 3:16 p.m.5 views

CVE-2026-23120

In the Linux kernel, the following vulnerability has been resolved: l2tp: avoid one data-race in l2tptunneldelwork We should read sk-sksocket only when dealing with kernel sockets. syzbot reported the following data-race: BUG: KCSAN: data-race in l2tptunneldelwork / skcommonrelease write to...

5.5CVSS0.00114EPSS
Exploits0References7
CVE
CVE
added 2026/01/14 3:7 p.m.18 views

CVE-2025-71133

The CVE-2025-71133 entry concerns the Linux kernel RDMA/irdma path, where irdma_net_event could dereference neigh (ptr) data before confirming NETEVENT_NEIGH_UPDATE. The code fix moves neigh->dev access under the NETEVENT_NEIGH_UPDATE case, preventing a potential out-of-bounds read reported by...

7.1CVSS6AI score0.00153EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2025/10/29 1:37 p.m.2 views

CVE-2025-40084 ksmbd: transport_ipc: validate payload size before reading handle

In the Linux kernel, the following vulnerability has been resolved: ksmbd: transportipc: validate payload size before reading handle handleresponse dereferences the payload as a 4-byte handle without verifying that the declared payload size is at least 4 bytes. A malformed or truncated message fr...

6.3AI score0.00183EPSS
Exploits0References8
Cvelist
Cvelist
added 2025/10/29 1:37 p.m.6 views

CVE-2025-40084 ksmbd: transport_ipc: validate payload size before reading handle

In the Linux kernel, the following vulnerability has been resolved: ksmbd: transportipc: validate payload size before reading handle handleresponse dereferences the payload as a 4-byte handle without verifying that the declared payload size is at least 4 bytes. A malformed or truncated message fr...

0.00183EPSS
Exploits0References5
Rows per page
Query Builder