Lucene search
K

102 matches found

Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.5 views

PT-2026-34928

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists in the hackrf driver. When the hackrf probe function registers a device and subsequently encounters an error, it may free device memory using kfree while file...

9.8CVSS5.8AI score0.00525EPSS
Exploits0References322
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007366)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007366 advisory. In the Linux kernel, the following vulnerability has been resolved: caif: fix memory leak in cfctrllinkuprequest When linktype is unknown or kzalloc failed in...

5.5CVSS5.8AI score0.00136EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/17 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-23158

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gpio: virtuser: fix UAF in configfs release path The gpio-virtuser configfs release path uses guardmutex to protect the device structure. However, the device is...

7.8CVSS7AI score0.00116EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/02/14 4:15 p.m.6 views

CVE-2026-23158

In the Linux kernel, the following vulnerability has been resolved: gpio: virtuser: fix UAF in configfs release path The gpio-virtuser configfs release path uses guardmutex to protect the device structure. However, the device is freed before the guard cleanup runs, causing mutexunlock to operate ...

7.8CVSS5.7AI score0.00116EPSS
Exploits0References5
EUVD
EUVD
added 2026/02/14 4:1 p.m.9 views

EUVD-2026-5880

In the Linux kernel, the following vulnerability has been resolved: gpio: virtuser: fix UAF in configfs release path The gpio-virtuser configfs release path uses guardmutex to protect the device structure. However, the device is freed before the guard cleanup runs, causing mutexunlock to operate ...

5.2AI score0.00116EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/14 4:1 p.m.4 views

CVE-2026-23158

In the Linux kernel, the following vulnerability has been resolved: gpio: virtuser: fix UAF in configfs release path The gpio-virtuser configfs release path uses guardmutex to protect the device structure. However, the device is freed before the guard cleanup runs, causing mutexunlock to operate ...

5.1AI score0.00116EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/02/14 4:1 p.m.29 views

CVE-2026-23158 gpio: virtuser: fix UAF in configfs release path

In the Linux kernel, the following vulnerability has been resolved: gpio: virtuser: fix UAF in configfs release path The gpio-virtuser configfs release path uses guardmutex to protect the device structure. However, the device is freed before the guard cleanup runs, causing mutexunlock to operate ...

0.00116EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/02/14 4:1 p.m.7 views

CVE-2026-23158

In the Linux kernel, the following vulnerability has been resolved: gpio: virtuser: fix UAF in configfs release path The gpio-virtuser configfs release path uses guardmutex to protect the device structure. However, the device is freed before the guard cleanup runs, causing mutexunlock to operate ...

7.8CVSS5.2AI score0.00116EPSS
Exploits0
CNNVD
CNNVD
added 2026/02/14 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the reuse of the release path after the gpio-virtuser configuration is released, potentially leading to...

7.8CVSS7AI score0.00116EPSS
Exploits0References3
OSV
OSV
added 2026/01/31 12:16 p.m.3 views

UBUNTU-CVE-2026-23036

In the Linux kernel, the following vulnerability has been resolved: btrfs: release path before igetfailed in btrfsreadlockedinode In btrfsreadlockedinode if we fail to lookup the inode, we jump to the 'out' label with a path that has a read locked leaf and then we call igetfailed. This can result...

5.7AI score0.00194EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/01/31 11:42 a.m.4 views

CVE-2026-23036

In the Linux kernel, the following vulnerability has been resolved: btrfs: release path before igetfailed in btrfsreadlockedinode In btrfsreadlockedinode if we fail to lookup the inode, we jump to the 'out' label with a path that has a read locked leaf and then we call igetfailed. This can result...

5.7AI score0.00194EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/01/31 11:42 a.m.13 views

CVE-2026-23036

The CVE-2026-23036 entry describes a Linux kernel vulnerability in the Btrfs path: release path before iget_failed() in btrfs_read_locked_inode(). The root cause is a sequence that can trigger an ABBA deadlock when iget_failed() evicts an inode while a read-locked leaf is still in scope, leading ...

5.8AI score0.00194EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/01/31 11:42 a.m.32 views

CVE-2026-23036 btrfs: release path before iget_failed() in btrfs_read_locked_inode()

In the Linux kernel, the following vulnerability has been resolved: btrfs: release path before igetfailed in btrfsreadlockedinode In btrfsreadlockedinode if we fail to lookup the inode, we jump to the 'out' label with a path that has a read locked leaf and then we call igetfailed. This can result...

0.00194EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/01/31 11:42 a.m.7 views

CVE-2026-23036

In the Linux kernel, the following vulnerability has been resolved: btrfs: release path before igetfailed in btrfsreadlockedinode In btrfsreadlockedinode if we fail to lookup the inode, we jump to the 'out' label with a path that has a read locked leaf and then we call igetfailed. This can result...

5.2AI score0.00194EPSS
Exploits0
Cvelist
Cvelist
added 2026/01/31 11:39 a.m.28 views

CVE-2026-23018 btrfs: release path before initializing extent tree in btrfs_read_locked_inode()

In the Linux kernel, the following vulnerability has been resolved: btrfs: release path before initializing extent tree in btrfsreadlockedinode In btrfsreadlockedinode we are calling btrfsinitfileextenttree while holding a path with a read locked leaf from a subvolume tree, and...

0.001EPSS
Exploits0References2
CVE
CVE
added 2026/01/31 11:39 a.m.17 views

CVE-2026-23018

CVE-2026-23018 describes a Linux kernel vulnerability in the btrfs code path. In btrfs_read_locked_inode(), a path with a read-locked leaf from a subvolume tree is used while calling btrfs_init_file_extent_tree(), which may perform GFP_KERNEL allocations and trigger memory reclaim. This can creat...

5.5CVSS5.8AI score0.001EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/01/31 11:39 a.m.4 views

CVE-2026-23018 btrfs: release path before initializing extent tree in btrfs_read_locked_inode()

In the Linux kernel, the following vulnerability has been resolved: btrfs: release path before initializing extent tree in btrfsreadlockedinode In btrfsreadlockedinode we are calling btrfsinitfileextenttree while holding a path with a read locked leaf from a subvolume tree, and...

5.5CVSS5.8AI score0.001EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/01/31 11:39 a.m.4 views

CVE-2026-23018

In the Linux kernel, the following vulnerability has been resolved: btrfs: release path before initializing extent tree in btrfsreadlockedinode In btrfsreadlockedinode we are calling btrfsinitfileextenttree while holding a path with a read locked leaf from a subvolume tree, and...

5.5CVSS5.2AI score0.001EPSS
Exploits0
EUVD
EUVD
added 2025/12/30 3:30 p.m.4 views

EUVD-2023-60483

In the Linux kernel, the following vulnerability has been resolved: driver core: fix potential null-ptr-deref in deviceadd I got the following null-ptr-deref report while doing fault injection test: BUG: kernel NULL pointer dereference, address: 0000000000000058 CPU: 2 PID: 278 Comm: 37-i2c-ds248...

6.2AI score0.00129EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/12/30 12:23 p.m.5 views

CVE-2023-54281

In the Linux kernel, the following vulnerability has been resolved: btrfs: release path before inode lookup during the ino lookup ioctl During the ino lookup ioctl we can end up calling btrfsiget to get an inode reference while we are holding on a root's btree. If btrfsiget needs to lookup the...

5.4AI score0.00168EPSS
Exploits0
Rows per page
Query Builder