Lucene search
K

5 matches found

OSV
OSV
added 2026/05/19 12:0 a.m.16 views

ALSA-2026:19225 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel: Denial of Service in authencesn due to too-short AAD CVE-2026-23060 kernel: crypto: algifaead - Revert to operating out-of-place CVE-2026-31431 kernel: crypto: afalg - limit...

8.8CVSS7.2AI score0.96267EPSS
Exploits255References10
Tenable Nessus
Tenable Nessus
added 2026/05/07 12:0 a.m.17 views

CentOS 9 : kernel-5.14.0-701.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the kernel-5.14.0-701.el9 build changelog. - In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - limit RX SG extraction by receive buffer budget Mak...

9.8CVSS6.2AI score0.96267EPSS
Exploits228References6
SUSE CVE
SUSE CVE
added 2026/04/26 1:52 a.m.7 views

SUSE CVE-2026-31677

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - limit RX SG extraction by receive buffer budget Make afalggetrsgl limit each RX scatterlist extraction to the remaining receive buffer budget. afalggetrsgl currently uses afalgreadable only as a gate before...

5.5CVSS5.6AI score0.00114EPSS
Exploits0References3
CVE
CVE
added 2026/04/25 8:46 a.m.37 views

CVE-2026-31677

The CVE-2026-31677 issue affects the Linux kernel af_alg path. The root cause is that af_alg_get_rsgl() could extract RX scatterlist data beyond the remaining receive budget, allowing a local attacker to trigger a DoS via recvmsg when there isn’t enough RX space for a chunk. The fix tightens budg...

5.5CVSS5.6AI score0.00114EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/25 12:0 a.m.7 views

PT-2026-35137

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the af alg component of the Linux kernel cryptography subsystem. The function af alg get rsgl fails to properly limit each RX scatterlist extraction to the remaining...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References138
Rows per page
Query Builder