Lucene search
K

1038 matches found

Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.10 views

PT-2026-37577

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the amdgpu gem va ioctl function where the fence was selected too early and its reference was not managed correctly. This leads to refcount underflows and the use of...

7.8CVSS5.8AI score0.00124EPSS
Exploits0References12
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the NETDEVCHANGEMTU event triggered when registered devices are deregistered. This vulnerability...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References1
CVE
CVE
added 2026/05/05 3:23 p.m.22 views

CVE-2026-43063

CVE-2026-43063 pertains to the Linux kernel XFS attribute recovery path. The vulnerability arises when xlog_recovery_iget* fails to yield a valid pointer and an ensuing irele operates on a dangling pointer, potentially enabling a local attacker to crash the system and cause a DoS. The Red Hat adv...

7.8CVSS5.8AI score0.00126EPSS
Exploits0References4Affected Software1
SUSE CVE
SUSE CVE
added 2026/05/02 1:25 a.m.9 views

SUSE CVE-2026-31703

In the Linux kernel, the following vulnerability has been resolved: writeback: Fix use after free in inodeswitchwbsworkfn inodeswitchwbsworkfn has a loop like: wbgetnewwb; while 1 list = llistdelall&newwb-switchwbsctxs; / Nothing to do? / if !list break; ... process the items ... Now adding of...

5.3CVSS5.5AI score0.00114EPSS
Exploits0References16
NVD
NVD
added 2026/05/01 2:16 p.m.6 views

CVE-2026-31701

In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: take a reference on the USB device in createcard The caiaq driver stores a pointer to the parent USB device in cdev-chip.dev but never takes a reference on it. The card's privatefree callback, sndusbcaiaqcardfree, ca...

5.5CVSS0.00117EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/05/01 2:14 p.m.6 views

CVE-2026-31769

In the Linux kernel, the following vulnerability has been resolved: gpib: fix use-after-free in IO ioctl handlers The IBRD, IBWRT, IBCMD, and IBWAIT ioctl handlers use a gpibdescriptor pointer after board-biggpibmutex has been released. A concurrent IBCLOSEDEV ioctl can free the descriptor via...

7.8CVSS5.7AI score0.00131EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/01 1:56 p.m.5 views

CVE-2026-31701

In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: take a reference on the USB device in createcard The caiaq driver stores a pointer to the parent USB device in cdev-chip.dev but never takes a reference on it. The card's privatefree callback, sndusbcaiaqcardfree, ca...

5.5CVSS5.7AI score0.00117EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2026/05/01 1:56 p.m.22 views

CVE-2026-31701

In CVE-2026-31701, the Linux kernel ALSA caiaq driver (USB audio) stored a pointer to the parent usb_device without a reference. The snd_usb_caiaq_card_free() path can run after the USB device is disconnected, dereferencing freed memory (use-after-free). The fix is to take a reference on the USB ...

5.5CVSS5.8AI score0.00117EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2026/05/01 1:56 p.m.35 views

CVE-2026-31701 ALSA: caiaq: take a reference on the USB device in create_card()

In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: take a reference on the USB device in createcard The caiaq driver stores a pointer to the parent USB device in cdev-chip.dev but never takes a reference on it. The card's privatefree callback, sndusbcaiaqcardfree, ca...

0.00117EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.7 views

PT-2026-36395

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak occurs in the lpvo usb driver within the GPIB subsystem. During the GPIB attach process, the driver iterates through registered USB interfaces and acquires references to US...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/04/24 2:42 p.m.38 views

CVE-2026-31594 PCI: endpoint: pci-epf-vntb: Remove duplicate resource teardown

In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-vntb: Remove duplicate resource teardown epfntbepcdestroy duplicates the teardown that the caller is supposed to perform later. This leads to an oops when .allowlink fails or when .droplink is performed. Th...

0.00123EPSS
Exploits0References8
EUVD
EUVD
added 2026/04/24 2:42 p.m.7 views

EUVD-2026-25487

In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-vntb: Remove duplicate resource teardown epfntbepcdestroy duplicates the teardown that the caller is supposed to perform later. This leads to an oops when .allowlink fails or when .droplink is performed. Th...

5.3AI score0.00123EPSS
Exploits0References3
CVE
CVE
added 2026/04/24 2:42 p.m.22 views

CVE-2026-31594

The CVE-2026-31594 issue is in the Linux kernel PCI endpoint framework (pci-epf-vntb). The root cause is a duplicate resource teardown in epf_ntb_epc_destroy(), causing an oops/kernel crash when .allow_link fails or .drop_link runs. The documented fix removes the helper and drops pci_epc_put(), t...

5.5CVSS5.3AI score0.00123EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2026/04/24 2:35 p.m.4 views

CVE-2026-31555

In the Linux kernel, the following vulnerability has been resolved: futex: Clear stale exiting pointer in futexlockpi retry path Fuzzying/stressing futexes triggered: WARNING: kernel/futex/core.c:825 at waitforownerexiting+0x7a/0x80, CPU11: futexlockpis/524 When futexlockpiatomic sees the owner i...

5.5CVSS5.2AI score0.00123EPSS
Exploits0
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.13 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a underflow in the reference counting mechanism used in intelengineparkheartbeat. This...

7.8CVSS5.8AI score0.00117EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a reference counting issue in the batman-adv module. This vulnerability may lead to reuse of resources...

9.8CVSS5.8AI score0.00399EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.4 views

PT-2026-34435

In the Linux kernel, the following vulnerability has been resolved: cxl/port: Fix use after free of parent port in cxl detach ep cxl detach ep is called during bottom-up removal when all CXL memory devices beneath a switch port have been removed. For each port in the hierarchy it locks both the...

5.7AI score0.00125EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010985)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010985 advisory. In the Linux kernel, the following vulnerability has been resolved: memory: pl353-smc: Fix refcount leak bug in pl353smcprobe The break of foreachavailablechildofnod...

5.5CVSS5.8AI score0.00146EPSS
Exploits0References4
NVD
NVD
added 2026/04/14 11:16 p.m.7 views

CVE-2026-33023

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. In versions 1.8.7 and prior, when built with the --with-gdk-pixbuf2 option, a use-after-free vulnerability exists in loadwithgdkpixbuf in loader.c. The cleanup path manually frees the sixelframet object and its interna...

7.8CVSS0.00289EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/04/14 10:5 p.m.6 views

CVE-2026-33023

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. In versions 1.8.7 and prior, when built with the --with-gdk-pixbuf2 option, a use-after-free vulnerability exists in loadwithgdkpixbuf in loader.c. The cleanup path manually frees the sixelframet object and its interna...

7.8CVSS5.8AI score0.00289EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder