Lucene search
K

45 matches found

NVD
NVD
added 2026/06/26 8:17 p.m.7 views

CVE-2026-53286

In the Linux kernel, the following vulnerability has been resolved: idpf: fix double free and use-after-free in aux device error paths When auxiliarydeviceadd fails in idpfplugvportauxdev or idpfplugcoreauxdev, the errauxdevadd label calls auxiliarydeviceuninit and falls through to errauxdevinit...

7.8CVSS0.00126EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/26 7:40 p.m.6 views

EUVD-2026-39891

In the Linux kernel, the following vulnerability has been resolved: idpf: fix double free and use-after-free in aux device error paths When auxiliarydeviceadd fails in idpfplugvportauxdev or idpfplugcoreauxdev, the errauxdevadd label calls auxiliarydeviceuninit and falls through to errauxdevinit...

5.8AI score0.00126EPSS
Exploits0References3
OSV
OSV
added 2026/06/26 7:40 p.m.3 views

CVE-2026-53286 idpf: fix double free and use-after-free in aux device error paths

In the Linux kernel, the following vulnerability has been resolved: idpf: fix double free and use-after-free in aux device error paths When auxiliarydeviceadd fails in idpfplugvportauxdev or idpfplugcoreauxdev, the errauxdevadd label calls auxiliarydeviceuninit and falls through to errauxdevinit...

7.8CVSS5.8AI score0.00126EPSS
Exploits0References6
OSV
OSV
added 2026/06/25 9:16 a.m.3 views

UBUNTU-CVE-2026-53161

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free of fastrpcuser in workqueue context There is a race between fastrpcdevicerelease and the workqueue that processes DSP responses. When the user closes the file descriptor, fastrpcdevicerelease fre...

7.8CVSS5.7AI score0.00135EPSS
Exploits0References11
EUVD
EUVD
added 2026/06/25 8:38 a.m.7 views

EUVD-2026-39252

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free of fastrpcuser in workqueue context There is a race between fastrpcdevicerelease and the workqueue that processes DSP responses. When the user closes the file descriptor, fastrpcdevicerelease fre...

5.7AI score0.00135EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.8 views

PT-2026-52257

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists between fastrpc device release and the workqueue processing DSP responses. When a user closes a file descriptor, fastrpc device release frees the fastrpc user...

7.8CVSS6AI score0.00135EPSS
Exploits0References22
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: media: davinci: vpif: Fixed a use-after-free issue during the driver unbind operation. The driver allocates and registers two platform device structures during the probe phase. However, these devices were never deregistered after...

7.8CVSS6.1AI score0.00252EPSS
Exploits0References2
OSV
OSV
added 2026/05/28 10:16 a.m.8 views

UBUNTU-CVE-2026-46164

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix double free in createspaceinfosubgroup error path When kobjectinitandadd fails, the call chain is: createspaceinfosubgroup - btrfssysfsaddspaceinfotype - kobjectinitandadd - failure - kobjectput&subgroup-kobj -...

7CVSS5.7AI score0.00136EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/28 9:36 a.m.37 views

CVE-2026-46164 btrfs: fix double free in create_space_info_sub_group() error path

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix double free in createspaceinfosubgroup error path When kobjectinitandadd fails, the call chain is: createspaceinfosubgroup - btrfssysfsaddspaceinfotype - kobjectinitandadd - failure - kobjectput&subgroup-kobj -...

7CVSS0.00136EPSS
Exploits0References6
CVE
CVE
added 2026/05/28 9:36 a.m.26 views

CVE-2026-46164

CVE-2026-46164 affects the Linux kernel's btrfs subsystem. The vulnerability is a double-free in create_space_info_sub_group() when kobject_init_and_add() fails, causing the sub_group to be freed twice as the error path unwinds. The call chain is: create_space_info_sub_group() → btrfs_sysfs_add_s...

7CVSS5.8AI score0.00136EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2026/05/28 9:35 a.m.25 views

CVE-2026-46129

CVE-2026-46129 concerns the Linux kernel’s btrfs subsystem. In the create_space_info() error path, if kobject_init_and_add() fails, the chain leads to a double free of space_info due to both a direct kfree and a later release via space_info->kobj. The fix changes cleanup so that after kobject_...

7.8CVSS5.8AI score0.00139EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/28 12:0 a.m.22 views

PT-2026-44252

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A double free issue exists in the btrfs module within the create space info function error path. When kobject init and add fails, the system executes a call chain that leads to space inf...

9.8CVSS5.9AI score0.00574EPSS
Exploits1References291
Cvelist
Cvelist
added 2026/05/27 12:18 p.m.43 views

CVE-2026-45981 s390/cio: Fix device lifecycle handling in css_alloc_subchannel()

In the Linux kernel, the following vulnerability has been resolved: s390/cio: Fix device lifecycle handling in cssallocsubchannel cssallocsubchannel calls deviceinitialize before setting up the DMA masks. If dmasetcoherentmask or dmasetmask fails, the error path frees the subchannel structure...

0.00126EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.23 views

PT-2026-43848

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the css alloc subchannel function where device initialize is called before the DMA masks are configured. If the dma set coherent mask or dma set mask functions fail, t...

5.5CVSS5.4AI score0.00126EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.11 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: KVM: Do not dereference ops-destroy with a null pointer. The cleanup of a KVM device occurs through either of two callbacks: 1 destroy, called when the VM is being destroyed; 2 release, called when a device file descriptor is...

5.5CVSS6.2AI score0.00292EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15

In the Linux kernel, the following vulnerability has been resolved: s390/vfio-ap: fixed a memory leak in the vfioap device driver. The device release callback function invoked to release the matrix device uses the devgetdrvdata function to retrieve the pointer to the vfiomatrixdev object in order...

5.6AI score0.00167EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/07 2:19 a.m.21 views

SUSE CVE-2026-43056

In the Linux kernel, the following vulnerability has been resolved: net: mana: fix use-after-free in addadev error path If auxiliarydeviceadd fails, addadev jumps to addfail and calls auxiliarydeviceuninitadev. The auxiliary device has its release callback set to adevrelease, which frees the...

7.8CVSS5.7AI score0.00116EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/06 3:46 p.m.1 views

CVE-2026-34764 Electron has a use-after-free in offscreen shared texture release() callback

Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. From 33.0.0-alpha.1 to before 39.8.5, 40.8.5, 41.1.0, and 42.0.0-alpha.5, apps that use offscreen rendering with GPU shared textures may be vulnerable to a use-after-free. Under certain...

2.3CVSS5.8AI score0.001EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/06 3:46 p.m.30 views

CVE-2026-34764 Electron has a use-after-free in offscreen shared texture release() callback

Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. From 33.0.0-alpha.1 to before 39.8.5, 40.8.5, 41.1.0, and 42.0.0-alpha.5, apps that use offscreen rendering with GPU shared textures may be vulnerable to a use-after-free. Under certain...

2.3CVSS0.001EPSS
Exploits0References1
OSV
OSV
added 2026/04/03 9:52 p.m.3 views

GHSA-8X5Q-PVF5-64MP Electron: Use-after-free in offscreen shared texture release() callback

Impact Apps that use offscreen rendering with GPU shared textures may be vulnerable to a use-after-free. Under certain conditions, the release callback provided on a paint event texture can outlive its backing native state, and invoking it after that point dereferences freed memory in the main...

2.3CVSS5.8AI score0.001EPSS
Exploits0References3
Rows per page
Query Builder