Lucene search
K

22 matches found

RedHat Linux
RedHat Linux
added 2026/06/22 5:29 a.m.13 views

kernel: Linux kernel: Denial of Service in libceph OSD client due to unreset sparse-read state

A flaw was found in the Linux kernel's libceph OSD client. When a connection fault occurs during a sparse read, the sparse-read state is not properly reset. This allows a misbehaving or compromised Ceph OSD server, or a network adversary, to disrupt traffic. As a result, the client can misinterpr...

7.5CVSS5.8AI score0.0028EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.12 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the btrfs file system. This vulnerability arises when the ASSERT function in the...

5.5CVSS5.8AI score0.00117EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/05/04 9:46 p.m.10 views

kernel: Linux kernel: Denial of Service in libceph OSD client due to unreset sparse-read state

A flaw was found in the Linux kernel's libceph OSD client. When a connection fault occurs during a sparse read, the sparse-read state is not properly reset. This allows a misbehaving or compromised Ceph OSD server, or a network adversary, to disrupt traffic. As a result, the client can misinterpr...

7.5CVSS5.8AI score0.0028EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/02/18 12:25 a.m.3 views

SUSE CVE-2026-23136

In the Linux kernel, the following vulnerability has been resolved: libceph: reset sparse-read state in osdfault When a fault occurs, the connection is abandoned, reestablished, and any pending operations are retried. The OSD client tracks the progress of a sparse-read reply using a separate stat...

5.5CVSS5.7AI score0.0028EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2026/02/16 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-23136

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libceph: reset sparse-read state in osdfault When a fault occurs, the connection is abandoned, reestablished, and any pending operations are retried. The OSD...

7.5CVSS7.1AI score0.0028EPSS
Exploits0References3
NVD
NVD
added 2026/02/14 4:15 p.m.7 views

CVE-2026-23136

In the Linux kernel, the following vulnerability has been resolved: libceph: reset sparse-read state in osdfault When a fault occurs, the connection is abandoned, reestablished, and any pending operations are retried. The OSD client tracks the progress of a sparse-read reply using a separate stat...

7.5CVSS0.0028EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/02/14 4:15 p.m.3 views

CVE-2026-23136

In the Linux kernel, the following vulnerability has been resolved: libceph: reset sparse-read state in osdfault When a fault occurs, the connection is abandoned, reestablished, and any pending operations are retried. The OSD client tracks the progress of a sparse-read reply using a separate stat...

7.5CVSS5.7AI score0.0028EPSS
Exploits0References12
CVE
CVE
added 2026/02/14 3:22 p.m.30 views

CVE-2026-23136

CVE-2026-23136 : Linux kernel vulnerability in the libceph OSD client where the sparse-read state isn’t reset after a mid-payload disruption, causing the client to treat a fresh reply as a continuation of the old one. This can lead to a denial of service condition due to persistent sparse-read st...

7.5CVSS5.2AI score0.0028EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/02/14 3:22 p.m.6 views

EUVD-2026-5901

In the Linux kernel, the following vulnerability has been resolved: libceph: reset sparse-read state in osdfault When a fault occurs, the connection is abandoned, reestablished, and any pending operations are retried. The OSD client tracks the progress of a sparse-read reply using a separate stat...

5.2AI score0.0028EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/02/14 3:22 p.m.5 views

CVE-2026-23136

In the Linux kernel, the following vulnerability has been resolved: libceph: reset sparse-read state in osdfault When a fault occurs, the connection is abandoned, reestablished, and any pending operations are retried. The OSD client tracks the progress of a sparse-read reply using a separate stat...

5.2AI score0.0028EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2026/02/14 3:22 p.m.3 views

CVE-2026-23136

In the Linux kernel, the following vulnerability has been resolved: libceph: reset sparse-read state in osdfault When a fault occurs, the connection is abandoned, reestablished, and any pending operations are retried. The OSD client tracks the progress of a sparse-read reply using a separate stat...

7.5CVSS5.2AI score0.0028EPSS
Exploits0
CNNVD
CNNVD
added 2026/02/14 12:0 a.m.6 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the osdfault function not resetting the sparse read state. This could lead to state machine error...

7.5CVSS7AI score0.0028EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.6 views

PT-2026-8131

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the libceph component of the Linux kernel where the sparse-read state is not properly reset in the osd fault function when a connection fault occurs. This can lead to th...

7.5CVSS5.8AI score0.0028EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-24194

Malware in sbrugna...

4.3CVSS4.6AI score0.00844EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2022-55218

Malicious code in bioql PyPI...

7.2AI score0.00197EPSS
Exploits0References4
NVD
NVD
added 2025/06/18 11:15 a.m.5 views

CVE-2022-50201

In the Linux kernel, the following vulnerability has been resolved: selinux: fix memleak in securityreadstatekernel In this function, it directly returns the result of securityreadpolicy without freeing the allocated memory in data, cause memory leak issue, so free the memory if securityreadpolic...

5.5CVSS0.00197EPSS
Exploits0References4
OSV
OSV
added 2024/03/06 11:9 a.m.19 views

BIT-DISCOURSE-2021-37703 Information exposure in Discourse

Discourse is an open-source platform for community discussion. In Discourse before versions 2.7.8 and 2.8.0.beta5, a user's read state for a topic such as the last read post number and the notification level is exposed...

4.3CVSS4.8AI score0.00844EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2021/10/25 7:15 p.m.2 views

CVE-2021-39220

Nextcloud is an open-source, self-hosted productivity platform The Nextcloud Mail application prior to versions 1.10.4 and 1.11.0 does by default not render images in emails to not leak the read state or user IP. The privacy filter failed to filter images with a relative protocol. It is recommend...

3.5CVSS5.9AI score0.00759EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2021/10/25 12:0 a.m.6 views

PT-2021-22471 · Nextcloud · Nextcloud Mail

Name of the Vulnerable Software and Affected Versions: Nextcloud Mail versions prior to 1.10.4 and 1.11.0 Description: The Nextcloud Mail application has a privacy filter issue that fails to filter images with a relative protocol, potentially leaking the read state or user IP. This issue is due t...

3.5CVSS3.7AI score0.00759EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2021/08/13 4:15 p.m.2 views

CVE-2021-37703

Discourse is an open-source platform for community discussion. In Discourse before versions 2.7.8 and 2.8.0.beta5, a user's read state for a topic such as the last read post number and the notification level is exposed...

4.3CVSS5.3AI score0.00844EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder