Lucene search
K

83 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: - In the net subsystem, sfc: added missing xdp queue reinitialization after changing the rx/tx ring buffer size. When acting as XDPTX or XDPREDIRECT, the kernel panics if the xdp queues are not reinitialized properly...

5.5CVSS6.5AI score0.00231EPSS
Exploits0References1
OSV
OSV
added 2026/06/19 6:4 a.m.7 views

RLSA-2026:26456 Important: 389-ds-base security, bug fix, and enhancement update

389 Directory Server is an LDAP version 3 LDAPv3 compliant server. The base packages include the Lightweight Directory Access Protocol LDAP server and command-line utilities for server administration. Security Fixes: 389-ds-base: 389-ds-base: unbounded LDAP controls count in...

7.5CVSS5.9AI score0.00815EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/17 1:55 a.m.13 views

Important: Red Hat Security Advisory: 389-ds-base security, bug fix, and enhancement update

An update for 389-ds-base is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.5CVSS5.4AI score0.00815EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/22 1:18 p.m.33 views

CVE-2026-8673 Password re-initialization mechanism sends passwords in plain text

Unprotected transport of credentials vulnerability in syslink software AG Avantra on Linux, Windows allows Sniffing Attacks. This issue affects Avantra: before 25.3.0...

5.9CVSS0.00192EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Memory leaks have been fixed in mpi3mrinitioc. Do not allocate memory again when the IOC is being reinitialized...

5.5CVSS5.9AI score0.00163EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: i3c: mipi-i3c-hci: Correct handling of RINGCTRLABORT in DMA dequeue. The logic used to abort the DMA ring contains several flaws: 1. The driver issues an abort unconditionally, even when the ring has already stopped. 2. The...

7.8CVSS5.8AI score0.00128EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/15 1:58 a.m.9 views

SUSE CVE-2026-43488

In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Prevent interrupt storm on host controller error HCE The xHCI controller reports a Host Controller Error HCE in UAS Storage Device plug/unplug scenarios on Android devices. HCE is checked in xhciirq function and causes...

5.8AI score0.00114EPSS
Exploits0References3
CVE
CVE
added 2026/05/08 1:37 p.m.29 views

CVE-2026-43340

Summary (CVE-2026-43340): The Linux kernel COMEDI subsystem contains a spinlock (dev->spinlock) in struct comedi_device that can be reinitialized when a COMEDI device is reattached to different low-level drivers via COMEDI_DEVCONFIG. This race can occur if multiple drivers with different lockd...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References8Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/24 8:33 p.m.7 views

CVE-2026-31606

A flaw was found in the Linux kernel's USB Human Interface Device HID gadget driver. When the /dev/hidg device is still open during unbind and bind operations, the character device cdev is reinitialized while still in use. This unsafe behavior can lead to a system crash, resulting in a Denial of...

5.5CVSS5.2AI score0.00122EPSS
Exploits0References4
OSV
OSV
added 2026/04/22 1:54 p.m.5 views

CVE-2026-31473 media: mc, v4l2: serialize REINIT and REQBUFS with req_queue_mutex

In the Linux kernel, the following vulnerability has been resolved: media: mc, v4l2: serialize REINIT and REQBUFS with reqqueuemutex MEDIAREQUESTIOCREINIT can run concurrently with VIDIOCREQBUFS0 queue teardown paths. This can race request object cleanup against vb2 queue cancellation and lead to...

7.8CVSS6.2AI score0.00126EPSS
Exploits0References11
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from insufficient validation of ERTM re-initialization and zero pdulen in L2CAP. This vulnerability ma...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.7 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-010845)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010845 advisory. In the Linux kernel, the following vulnerability has been resolved: blk-mq: use quiesced elevator switch when reinitializing queues The hctx's runwork may be racing...

7.8CVSS5.6AI score0.00195EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/25 3:32 p.m.6 views

CVE-2026-23326

A flaw was found in the Linux kernel. An issue in the eXpress Data Path XDP socket xsk component, specifically during fragment node deletion, can lead to a buffer leak. This occurs because a list node is not properly reinitialized after removal, causing the system to incorrectly manage memory. Th...

5.5CVSS6AI score0.00129EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2026/03/20 8:1 a.m.4 views

media: dvb-core: fix wrong reinitialization of ringbuffer on reopen

...

7.8CVSS5.8AI score0.00129EPSS
Exploits0
CNNVD
CNNVD
added 2026/02/14 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the ice driver’s lack of the icedeinithw call during the devlink re-initialization process. This...

5.5CVSS6AI score0.001EPSS
Exploits0References2
NVD
NVD
added 2026/01/25 3:15 p.m.8 views

CVE-2026-23009

In the Linux kernel, the following vulnerability has been resolved: xhci: sideband: don't dereference freed ring when removing sideband endpoint xhcisidebandremoveendpoint incorrecly assumes that the endpoint is running and has a valid transfer ring. Lianqin reported a crash during suspend/wake-u...

5.5CVSS0.00135EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/01/25 2:36 p.m.40 views

CVE-2026-23009 xhci: sideband: don't dereference freed ring when removing sideband endpoint

In the Linux kernel, the following vulnerability has been resolved: xhci: sideband: don't dereference freed ring when removing sideband endpoint xhcisidebandremoveendpoint incorrecly assumes that the endpoint is running and has a valid transfer ring. Lianqin reported a crash during suspend/wake-u...

0.00135EPSS
Exploits0References2
CVE
CVE
added 2026/01/25 2:36 p.m.15 views

CVE-2026-23009

CVE-2026-23009 is a Linux kernel vulnerability in the xHCI sideband code where xhci_sideband_remove_endpoint() could dereference a non-existent transfer ring (ep->ring) during suspend/resume or re-enumeration, risking a crash. The fix adds a guard to only dereference ep->ring if it exists a...

5.5CVSS5.2AI score0.00135EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2025/12/08 12:46 a.m.12 views

CVE-2025-40320

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential cfid UAF in smb2queryinfocompound When smb2queryinfocompound retries, a previously allocated cfid may have been freed in the first attempt. Because cfid wasn't reset on replay, later cleanup could act o...

5.2AI score0.00162EPSS
Exploits0
Veeam
Veeam
added 2025/11/13 12:0 a.m.17 views

Impact of Domain name or Hostname Change on Veeam Appliances

Challenge After changing the FQDN of a Veeam Appliance--either by adding it to a domain or changing its hostname--some operations may be impacted. Solution SAML Authentication May Stop Working After the host name of the Veeam Software Appliance is changed, the Service Provider SP information will...

5.8AI score
Exploits0Affected Software1
Rows per page
Query Builder