Lucene search
K

27 matches found

CNNVD
CNNVD
added 2026/05/28 12:0 a.m.16 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the non-active timer cleanup path in the HID applet b-kbd driver, allowing for reuse of resources after...

5.8AI score0.00124EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in Firefox and Thunderbird

Certain network request objects were freed too early when releasing a network request handle. This could have led to a use-after-free condition, potentially causing a crash that can be exploited. This vulnerability affects Firefox ESR 91.5, Firefox 96, and Thunderbird 91.5...

8.8CVSS7.2AI score0.0096EPSS
Exploits1References1
OSV
OSV
added 2026/04/03 3:15 p.m.2 views

CVE-2026-23466 drm/xe: Open-code GGTT MMIO access protection

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Open-code GGTT MMIO access protection GGTT MMIO access is currently protected by hotplug drmdeventer, which works correctly when the driver loads successfully and is later unbound or unloaded. However, if driver load fail...

7.8CVSS6AI score0.00129EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/04/03 12:0 a.m.5 views

PT-2026-30160

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the DRM/XE subsystem related to GGTT MMIO access protection. Currently, GGTT MMIO access is protected by hotplug mechanisms, which function correctly...

9.8CVSS7AI score0.00443EPSS
Exploits0References466
OPENSUSE Linux
OPENSUSE Linux
added 2026/03/30 12:0 a.m.4 views

Security update for obs-service-set_version (moderate)

openSUSE Security Update: Security update for obs-service-setversion Announcement ID: openSUSE-SU-2026:0108-1 Rating: moderate References: 1072359 1212476 866966 Cross-References: CVE-2014-0593 Affected Products: openSUSE Backports SLE-15-SP7 An update that solves one vulnerability and has two...

10CVSS7AI score0.01869EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/06 12:0 a.m.6 views

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system developed by Chinese company Huawei. It is a full-scenario distributed operating system based on a microkernel architecture. There is a security vulnerability in Huawei HarmonyOS, which stems from a concurrency issue in the graphical module’s reutilization...

8.4CVSS7.1AI score0.00066EPSS
Exploits0References2
OSV
OSV
added 2026/01/30 2:2 p.m.6 views

CVE-2026-1682 Free5GC SMF PFCP UDP Endpoint handler.go HandlePfcpAssociationReleaseRequest null pointer dereference

A flaw has been found in Free5GC SMF up to 4.1.0. Affected is the function HandlePfcpAssociationReleaseRequest of the file internal/pfcp/handler/handler.go of the component PFCP UDP Endpoint. Executing a manipulation can lead to null pointer dereference. The attack may be launched remotely. The...

6.9CVSS5.7AI score0.00667EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.2 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001622)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001622 advisory. In the Linux kernel through 4.14.13, drivers/block/loop.c mishandles lorelease serialization, which allows attackers to cause a denial of service lockacquire...

7.8CVSS6.5AI score0.00367EPSS
Exploits0References17
NVD
NVD
added 2025/12/30 1:15 p.m.7 views

CVE-2022-50819

In the Linux kernel, the following vulnerability has been resolved: udmabuf: Set ubuf-sg = NULL if the creation of sg table fails When userspace tries to map the dmabuf and if for some reason e.g. OOM the creation of the sg table fails, ubuf-sg needs to be set to NULL. Otherwise, when the userspa...

0.00201EPSS
Exploits0References5
NVD
NVD
added 2025/12/04 4:16 p.m.5 views

CVE-2025-40249

In the Linux kernel, the following vulnerability has been resolved: gpio: cdev: make sure the cdev fd is still active before emitting events With the final call to fput on a file descriptor, the release action may be deferred and scheduled on a work queue. The reference count of that descriptor i...

0.00162EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/12 9:56 p.m.6 views

CVE-2025-40197 media: mc: Clear minor number before put device

In the Linux kernel, the following vulnerability has been resolved: media: mc: Clear minor number before put device The device minor should not be cleared after the device is released...

0.00193EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.4 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988689)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988689 advisory. In the Linux kernel, the following vulnerability has been resolved: KVM: Don't null dereference ops-destroy A KVM device cleanup happens in either of two callbacks: ...

5.5CVSS5.7AI score0.00292EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.4 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-989997)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989997 advisory. In the Linux kernel, the following vulnerability has been resolved: um: net: Do not use drvdata in release The drvdata is not available in release. Let's just use...

5.5CVSS6.1AI score0.00242EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986743)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986743 advisory. In the Linux kernel, the following vulnerability has been resolved: KVM: Don't null dereference ops-destroy A KVM device cleanup happens in either of two callbacks: ...

5.5CVSS5.7AI score0.00292EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-55478

Malicious code in bioql PyPI...

6.3AI score0.00186EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/07/10 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from potential ndlp reuse after release in devlosstmocallbk...

7.8CVSS7AI score0.00159EPSS
Exploits0References5
CVE
CVE
added 2025/07/03 8:35 a.m.84 views

CVE-2025-38123

CVE-2025-38123 affects the Linux kernel in Azure Linux 3.0 environments, where the t7xx NAPI RX polling path could use an invalid netdev after dellink-triggered disconnects, causing a NULL pointer dereference and kernel panic during skb processing. The issue arises when the driver processes napi_...

5.5CVSS7AI score0.00155EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/02/27 3:15 a.m.4 views

UBUNTU-CVE-2024-58002

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Remove dangling pointers When an async control is written, we copy a pointer to the file handle that started the operation. That pointer will be used when the device is done. Which could be anytime in the future...

7.8CVSS6.5AI score0.00229EPSS
Exploits0References49
CNNVD
CNNVD
added 2025/02/27 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not properly handling IRQ releases, which could result in invalid IRQ releases...

5.5CVSS6.3AI score0.00213EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2024/12/03 12:16 a.m.2 views

SUSE CVE-2024-53103

In the Linux kernel, the following vulnerability has been resolved: hvsock: Initializing vsk-trans to NULL to prevent a dangling pointer When hvs is released, there is a possibility that vsk-trans may not be initialized to NULL, which could lead to a dangling pointer. This issue is resolved by...

5.5CVSS7.6AI score0.00237EPSS
Exploits1References17
Rows per page
Query Builder