CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added yesterday•2 views

CVE-2026-55958

8.3CVSS6.3AI score

Exploits0References3Affected Software1

CVE•added yesterday•8 views

CVE-2026-55958

The CVE-2026-55958 issue is a buffer overrun in Renesas TSIP TLS 1.3 transcript handling. In tsip_StoreMessage(), a capacity check for the fixed MSGBAG_SIZE (8 KB) sets an error but does not return, allowing an XMEMCPY to overwrite past the end once the TLS handshake transcript exceeds MSGBAGE_SI...

8.3CVSS6.3AI score

EUVD•added 2 days ago•3 views

EUVD-2026-38898

In the Linux kernel, the following vulnerability has been resolved: i3c: master: renesas: Fix memory leak in renesasi3ci3cxfers The xfer structure allocated by renesasi3callocxfer was never freed in the renesasi3ci3cxfers function. Use the freekfree cleanup attribute to automatically free the...

5.7AI score0.00166EPSS

Exploits0References4

AstraLinux•added last week•4 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: usb: renesas: Fixed the refcount leak bug In usbhsrza1hardwareinit, the offindnodebyname function will return a node pointer with the refcount incremented. We should use ofnodeput when the node pointer is no longer needed...

5.5CVSS5.3AI score0.00156EPSS

AstraLinux•added last week•5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: drm: renesas: rz-du: mipidsi: Fixed a kernel panic that occurred when rebooting certain panels. Since commit 56de5e305d4b “clk: renesas: r9a07g044: Added MSTOP for RZ/G2L”, we may encounter the following kernel panic when...

5.5CVSS5.9AI score0.00121EPSS

Exploits0References1

AstraLinux•added last week•3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: pinctrl: renesas: core: Fixed a possible nullptrderef in shpfcmapresources. This issue could lead to a nullptrderef when using ‘res’. If platformgetresource returns NULL, moving using ‘res’ after devmioremapresource will prevent...

5.5CVSS6.1AI score0.0024EPSS

Exploits0References1

AstraLinux•added last week•3 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: i2c: riic: Moving suspend handling to NOIRQ phase Commit 53326135d0e0 “i2c: riic: Adding suspend/resume support” added suspend support for the Renesas I2C driver. Following this change, on RZ/G3E, the following warning appears...

5.4AI score0.00166EPSS

Exploits0References1

Tenable Nessus•added 2026/06/10 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-46310

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: renesas: vsp1: Fix NULL pointer deref on module unload When unloading the module on gen 4, we hit a NULL pointer dereference. This is caused by the clean...

6AI score0.00154EPSS

SUSE CVE•added 2026/06/09 2:20 a.m.•8 views

SUSE CVE-2026-46310

In the Linux kernel, the following vulnerability has been resolved: media: renesas: vsp1: Fix NULL pointer deref on module unload When unloading the module on gen 4, we hit a NULL pointer dereference. This is caused by the cleanup code calling vsp1drmcleanup where it should be calling...

5.5CVSS5.5AI score0.00154EPSS

RedhatCVE•added 2026/06/08 6:27 p.m.•9 views

CVE-2026-46310

A flaw was found in the Linux kernel's media: renesas: vsp1 component. When unloading the module on generation 4 hardware, an incorrect cleanup function is called, leading to a NULL pointer dereference. This vulnerability can be triggered by a local attacker, potentially causing a system crash an...

NVD•added 2026/06/08 5:16 p.m.•13 views

Exploits0References4

CVE-2026-46310

0.00154EPSS

OSV•added 2026/06/08 5:16 p.m.•5 views

UBUNTU-CVE-2026-46310

5.4AI score0.00154EPSS

Exploits0References6

ATTACKERKB•added 2026/06/08 3:50 p.m.•6 views

CVE-2026-46310

Exploits0References4Affected Software1

CVE•added 2026/06/08 3:50 p.m.•29 views

CVE-2026-46310

The vulnerability CVE-2026-46310 affects Linux kernel media: renesas vsp1, where unloading the gen 4 module could dereference NULL due to cleanup calling vsp1_drm_cleanup() instead of vsp1_vspx_cleanup(). The root cause is an IP version check omission during cleanup, which could trigger a NULL po...

EUVD•added 2026/06/08 3:50 p.m.•8 views

EUVD-2026-35120

Cvelist•added 2026/06/08 3:50 p.m.•36 views

CVE-2026-46310 media: renesas: vsp1: Fix NULL pointer deref on module unload

0.00154EPSS

CNNVD•added 2026/06/08 12:0 a.m.•5 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the media renesas vsp1 module’s ability to unreference empty pointers after unloading it. This could le...

5.3AI score0.00154EPSS

Positive Technologies•added 2026/06/08 12:0 a.m.•9 views

PT-2026-47381

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL pointer dereference occurs when unloading the module on gen 4. This issue is caused by the cleanup code incorrectly calling the vsp1 drm cleanup function instead of the vsp1 vspx...

9.1CVSS5.3AI score0.00457EPSS

Exploits1References63

AstraLinux•added 2026/05/20 5:53 a.m.•9 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: Memory: renesas-rpc-if – fixed the platform-device leak in the error path. Make sure the flash platform device is freed in case registration fails during the probe...

5.5CVSS6.1AI score0.00246EPSS