Lucene search
K

178 matches found

Redos
Redos
added 2026/06/29 12:0 a.m.6 views

ROS-20260629-73-0024

The vulnerability in giflib is related to a memory reclamation error. Exploiting this vulnerability can allow an attacker to cause a service failure...

7CVSS5.8AI score0.00144EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/25 8:38 a.m.31 views

CVE-2026-53157 net: phonet: free phonet_device after RCU grace period

In the Linux kernel, the following vulnerability has been resolved: net: phonet: free phonetdevice after RCU grace period phonetdevicedestroy removes a phonetdevice from the per-net device list with listdelrcu, but frees it immediately. RCU readers walking the same list can still hold a pointer t...

0.00135EPSS
Exploits0References8
CVE
CVE
added 2026/06/24 4:29 p.m.24 views

CVE-2026-53000

CVE-2026-53000 affects the Linux kernel netfilter NAT path. The root issue is partial exposure of nf_hook_ops during error handling, which can lead to unsafe access to internal hook data via the datapath and nat dispatcher flow. Exploitation details are not provided in the documents, but the desc...

7.8CVSS5.8AI score0.00123EPSS
Exploits0References6
Redos
Redos
added 2026/06/22 12:0 a.m.5 views

ROS-20260622-73-0032

The vulnerability of the LookupCNAME function in the Go programming language is related to a memory reclamation error when processing CNAME records. Exploiting this vulnerability can allow an attacker to cause service interruptions...

7.5CVSS5.9AI score0.00813EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2026/06/08 12:0 a.m.3 views

The vulnerability of the LookupCNAME() function in the Go programming language allows a perpetrator to trigger a service failure.

The vulnerability of the LookupCNAME function in the Go programming language is related to a memory reclamation error when processing CNAME records. Exploiting this vulnerability can allow an attacker to cause service interruptions...

7.8CVSS5.8AI score0.00813EPSS
Exploits0References6Affected Software2
CNNVD
CNNVD
added 2026/05/29 12:0 a.m.12 views

FreeRDP 资源管理错误漏洞

FreeRDP is an open-source implementation of the Remote Desktop Protocol RDP by the FreeRDP team. Versions of FreeRDP prior to 3.26.0 contained a resource management vulnerability. This vulnerability stemmed from the RDPEAR NDR parser acceptingNDR pointers with multiple logical pointer fields. It...

8.8CVSS5.8AI score0.00384EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.22 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the failure of the connection preparation in the mac80211 module. This failure results in the site not...

8.8CVSS5.8AI score0.00302EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.14 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the fact that the TASKDEAD task that exits can be preempted, potentially leading to reclamation after...

7.8CVSS5.8AI score0.00126EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15

In the Linux kernel, the following vulnerability has been resolved: ice: Do not use the WQMEMRECLAIM flag for the workqueue. When both ice and the irdma driver are loaded, a warning is triggered in checkFlushDependency. This occurs because the ice driver’s workqueue is allocated with the...

5.5CVSS6.1AI score0.00239EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/20 12:0 a.m.9 views

NLnet Labs Unbound 安全漏洞

NLnet Labs Unbound is a high-performance DNS resolver open-sourced by NLnet Labs. Versions of NLnet Labs Unbound from 1.14.0 to 1.25.0 contain security vulnerabilities. These vulnerabilities stem from inconsistent locking mechanisms, and under certain conditions, they may lead to heap reclamation...

8.2CVSS5.8AI score0.00255EPSS
Exploits0References2
OSV
OSV
added 2026/05/15 10:44 p.m.8 views

CLSA-2026-1778873714 mod_http2: Fix of CVE-2023-45802

CVE-2023-45802: fix deferred memory reclaim of reset HTTP/2 streams...

5.9CVSS5.8AI score0.03024EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2026/05/05 12:0 a.m.1 views

The vulnerability of the HTTP/2 protocol implementation in the Apache HTTP Server allows a attacker to execute arbitrary code or cause a service failure.

The vulnerability of the HTTP/2 protocol implementation in the Apache HTTP Server is related to a memory reclamation error. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause a service failure...

9CVSS7.9AI score0.4581EPSS
Exploits16References6Affected Software2
NVD
NVD
added 2026/04/22 2:16 p.m.4 views

CVE-2026-31448

In the Linux kernel, the following vulnerability has been resolved: ext4: avoid infinite loops caused by residual data On the mkdir/mknod path, when mapping logical blocks to physical blocks, if inserting a new extent into the extent tree fails in this example, because the file system disabled th...

9.4CVSS0.00433EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/04/22 1:53 p.m.31 views

CVE-2026-31448 ext4: avoid infinite loops caused by residual data

In the Linux kernel, the following vulnerability has been resolved: ext4: avoid infinite loops caused by residual data On the mkdir/mknod path, when mapping logical blocks to physical blocks, if inserting a new extent into the extent tree fails in this example, because the file system disabled th...

9.4CVSS0.00433EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.10 views

PT-2026-34353

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the ext4 file system during the mkdir and mknod paths. When mapping logical blocks to physical blocks, if inserting a new extent into the extent tree fails, the ext4 e...

9.4CVSS6AI score0.00433EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-31448

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ext4: avoid infinite loops caused by residual data On the mkdir/mknod path, when mapping logical blocks to physical blocks, if inserting a new extent into the...

9.4CVSS6.7AI score0.00433EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/09 12:0 a.m.7 views

wasmtime 资源管理错误漏洞

Wasmtime is a lightweight WebAssembly runtime open source by the Bytecode Alliance. Version 43.0.0 of Wastime contains a resource management vulnerability. This vulnerability stems from a flaw in cloning wastim::Linker, which may lead to reuse after reclamation...

5CVSS5.8AI score0.00117EPSS
Exploits0References1
CVE
CVE
added 2026/03/25 10:28 a.m.25 views

CVE-2026-23386

CVE-2026-23386 concerns the Linux kernel gve driver in QPL mode, where gve_tx_clean_pending_packets() could misinterpret the dma_addr_t array as buffer IDs, causing out-of-bounds/unmap errors. The root cause was an improper buffer cleanup path in gve_tx_clean_pending_packets() that could referenc...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/03/25 10:28 a.m.26 views

CVE-2026-23386 gve: fix incorrect buffer cleanup in gve_tx_clean_pending_packets for QPL

In the Linux kernel, the following vulnerability has been resolved: gve: fix incorrect buffer cleanup in gvetxcleanpendingpackets for QPL In DQ-QPL mode, gvetxcleanpendingpackets incorrectly uses the RDA buffer cleanup path. It iterates numbufs times and attempts to unmap entries in the dma array...

0.00121EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of separation between the stages of garbage collection for pipapo collection...

7.8CVSS5.8AI score0.00119EPSS
Exploits0References7
Rows per page
Query Builder