CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

115 matches found

CVE•added 2026/05/06 11:28 a.m.•3 views

CVE-2026-43216

Summary of CVE-2026-43216 : In the Linux kernel, skb_may_tx_timestamp() could acquire sock::sk_callback_lock in IRQ context, risking a deadlock if the lock was already write-locked on the same CPU. The fix drops the lock and uses READ_ONCE() / WRITE_ONCE() to safely access and clear the pointers ...

5.5CVSS5.8AI score0.00013EPSS

Exploits0References3Affected Software1

Cvelist•added 2026/05/06 7:40 a.m.•23 views

CVE-2026-43119 Bluetooth: hci_sync: annotate data-races around hdev->req_status

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: annotate data-races around hdev-reqstatus hcicmdsyncsk sets hdev-reqstatus under hdev-reqlock: hdev-reqstatus = HCIREQPEND; However, several other functions read or write hdev-reqstatus without holding any loc...

0.00013EPSS

Exploits0References4

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: sysctl: Data race issues in procdouintvec have been fixed. A sysctl variable is accessed concurrently, and there is always a risk of data races. Therefore, both readers and writers need some basic protection to avoid load/store...

4.7CVSS6.2AI score0.0001EPSS

Exploits0References1

AstraLinux•added 2026/05/03 11:59 p.m.•0 views

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux

In the Linux kernel, the following vulnerability has been resolved: icmp: Fix data-races around sysctl. While reading icmp sysctl variables, they can be changed concurrently. So, we need to add READONCE to avoid data-races...

4.7CVSS6.2AI score0.00007EPSS

Exploits0References1

Cvelist•added 2026/02/18 2:16 p.m.•19 views

CVE-2026-23212 bonding: annotate data-races around slave->last_rx

In the Linux kernel, the following vulnerability has been resolved: bonding: annotate data-races around slave-lastrx slave-lastrx and slave-targetlastarprx... can be read and written locklessly. Add READONCE and WRITEONCE annotations. syzbot reported: BUG: KCSAN: data-race in bondrcvvalidate /...

0.00014EPSS

Exploits0References5

CVE•added 2026/02/14 3:9 p.m.•4 views

CVE-2026-23124

CVE-2026-23124 is a Linux kernel IPv6 data-race issue in ndisc_router_discovery() where reads/writes to in6_dev->ra_mtu occur without proper synchronization. The race can occur during router advertisement MTU handling (mtu checks are noted but not yet enforced); the fix adds READ_ONCE()/WRITE_...

5.5CVSS5.2AI score0.00018EPSS

Exploits0References6Affected Software1

Cvelist•added 2025/12/30 12:11 p.m.•19 views

CVE-2023-54226 af_unix: Fix data races around sk->sk_shutdown.

In the Linux kernel, the following vulnerability has been resolved: afunix: Fix data races around sk-skshutdown. KCSAN found a data race around sk-skshutdown where unixreleasesock and unixshutdown update it under unixstatelock, OTOH unixpoll and unixdgrampoll read it locklessly. We need to annota...

0.00029EPSS

Exploits0References7

OSV•added 2025/12/09 1:30 a.m.•1 views

CVE-2023-53853 netlink: annotate accesses to nlk->cb_running

In the Linux kernel, the following vulnerability has been resolved: netlink: annotate accesses to nlk-cbrunning Both netlinkrecvmsg and netlinknativeseqshow read nlk-cbrunning locklessly. Use READONCE there. Add corresponding WRITEONCE to netlinkdump and netlinkdumpstart syzbot reported: BUG:...

6.4AI score0.0004EPSS

Exploits0References11

Tenable Nessus•added 2025/11/05 12:0 a.m.•1 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989343)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989343 advisory. In the Linux kernel, the following vulnerability has been resolved: tcp: Fix data-races around sysctltcpslowstartafteridle. While reading sysctltcpslowstartafteridle...

4.7CVSS5.9AI score0.00008EPSS

Exploits0References4

Tenable Nessus•added 2025/11/05 12:0 a.m.•1 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989656)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989656 advisory. In the Linux kernel, the following vulnerability has been resolved: tcp: Fix a data-race around sysctltcpprobethreshold. While reading sysctltcpprobethreshold, it ca...

4.7CVSS5.9AI score0.00007EPSS

Exploits0References4

Tenable Nessus•added 2025/10/07 12:0 a.m.•1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987001)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987001 advisory. In the Linux kernel, the following vulnerability has been resolved: ip: Fix a data-race around sysctlfwmarkreflect. While reading sysctlfwmarkreflect, it can be...

4.7CVSS5.9AI score0.00032EPSS

Exploits0References4

Tenable Nessus•added 2025/10/07 12:0 a.m.•2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987250)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987250 advisory. In the Linux kernel, the following vulnerability has been resolved: tcp: Fix a data-race around sysctltcpmtuprobefloor. While reading sysctltcpmtuprobefloor, it can ...

4.7CVSS5.9AI score0.00019EPSS

Exploits0References4