Lucene search
K

1837 matches found

CVE
CVE
added 2026/07/07 12:58 p.m.20 views

CVE-2026-10659

The CVE concerns Zephyr’s Dhara FTL disk driver (drivers/disk/ftl_dhara.c). On flash read errors, the driver previously wrote error codes unconditionally to a caller-supplied err pointer, and the journal-resume path forwarded NULL into dhara_nand_read(), causing a NULL dereference during disk ini...

4.7CVSS6AI score0.00098EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/07/07 12:58 p.m.5 views

EUVD-2026-42037

The Dhara flash translation layer disk driver drivers/disk/ftldhara.c implemented the dharanand callbacks so that, on a flash error, the error code was written unconditionally through the caller-supplied dharaerrort err pointer e.g. err = DHARAEECC in dharanandread, and similar in...

4.7CVSS6AI score0.00098EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/07/07 12:58 p.m.8 views

CVE-2026-10659 NULL pointer dereference in Zephyr Dhara FTL disk driver on flash read error during journal resume

The Dhara flash translation layer disk driver drivers/disk/ftldhara.c implemented the dharanand callbacks so that, on a flash error, the error code was written unconditionally through the caller-supplied dharaerrort err pointer e.g. err = DHARAEECC in dharanandread, and similar in...

4.7CVSS6.1AI score0.00098EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/07/07 12:58 p.m.39 views

CVE-2026-10659 NULL pointer dereference in Zephyr Dhara FTL disk driver on flash read error during journal resume

The Dhara flash translation layer disk driver drivers/disk/ftldhara.c implemented the dharanand callbacks so that, on a flash error, the error code was written unconditionally through the caller-supplied dharaerrort err pointer e.g. err = DHARAEECC in dharanandread, and similar in...

4.7CVSS0.00098EPSS
Exploits1References2
OSV
OSV
added 2026/07/06 6:28 a.m.4 views

OESA-2026-2857 expat security update

expat is a stream-oriented XML parser library written in C. expat excels with files too large to fit RAM, and where performance and flexibility are crucial. Security Fixes: libexpat before 2.8.2 lacks handler call depth tracking for calls to XMLResumeParser from within handlers in cases of a poli...

6.9CVSS6.2AI score0.00135EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/07/01 1:32 p.m.6 views

CVE-2026-53340

In the Linux kernel, the following vulnerability has been resolved: i2c: imx: fix clock and pinctrl state inconsistency in runtime PM In i2cimxruntimesuspend, the clock is disabled before switching the pinctrl state to sleep. If pinctrlpmselectsleepstate fails, the runtime suspend is aborted but...

5.8AI score0.00154EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/07/01 1:32 p.m.7 views

EUVD-2026-40974

In the Linux kernel, the following vulnerability has been resolved: i2c: imx: fix clock and pinctrl state inconsistency in runtime PM In i2cimxruntimesuspend, the clock is disabled before switching the pinctrl state to sleep. If pinctrlpmselectsleepstate fails, the runtime suspend is aborted but...

5.8AI score0.00154EPSS
Exploits0References3
OSV
OSV
added 2026/07/01 1:32 p.m.4 views

CVE-2026-53340 i2c: imx: fix clock and pinctrl state inconsistency in runtime PM

In the Linux kernel, the following vulnerability has been resolved: i2c: imx: fix clock and pinctrl state inconsistency in runtime PM In i2cimxruntimesuspend, the clock is disabled before switching the pinctrl state to sleep. If pinctrlpmselectsleepstate fails, the runtime suspend is aborted but...

5.8AI score0.00154EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/06/28 1:9 a.m.8 views

SUSE CVE-2026-53297

In the Linux kernel, the following vulnerability has been resolved: net: mana: Guard manaremove against double invocation If PM resume fails e.g., manaattach returns an error, manaprobe calls manaremove, which tears down the device and sets gd-gdmacontext = NULL and gd-driverdata = NULL. However,...

5.8AI score0.00121EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-53297

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: mana: Guard manaremove against double invocation If PM resume fails e.g., manaattach returns an error, manaprobe calls manaremove, which tears down the...

5.5CVSS6AI score0.00121EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-53237

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gpio: mvebu: fix NULL pointer dereference in suspend/resume mvebupwmsuspend and mvebupwmresume are called for all GPIO banks during suspend/resume, but not all...

5.5CVSS6AI score0.00127EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:12 a.m.7 views

gpio: mvebu: fix NULL pointer dereference in suspend/resume

...

5.5CVSS5.8AI score0.00127EPSS
Exploits0
NVD
NVD
added 2026/06/26 8:17 p.m.9 views

CVE-2026-53297

In the Linux kernel, the following vulnerability has been resolved: net: mana: Guard manaremove against double invocation If PM resume fails e.g., manaattach returns an error, manaprobe calls manaremove, which tears down the device and sets gd-gdmacontext = NULL and gd-driverdata = NULL. However,...

5.5CVSS0.00121EPSS
Exploits0References3
OSV
OSV
added 2026/06/26 8:17 p.m.5 views

UBUNTU-CVE-2026-53297

In the Linux kernel, the following vulnerability has been resolved: net: mana: Guard manaremove against double invocation If PM resume fails e.g., manaattach returns an error, manaprobe calls manaremove, which tears down the device and sets gd-gdmacontext = NULL and gd-driverdata = NULL. However,...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2026/06/26 7:40 p.m.6 views

CVE-2026-53297

In the Linux kernel, the following vulnerability has been resolved: net: mana: Guard manaremove against double invocation If PM resume fails e.g., manaattach returns an error, manaprobe calls manaremove, which tears down the device and sets gd-gdmacontext = NULL and gd-driverdata = NULL. However,...

5.5CVSS5.7AI score0.00121EPSS
Exploits0
EUVD
EUVD
added 2026/06/26 7:40 p.m.8 views

EUVD-2026-39902

In the Linux kernel, the following vulnerability has been resolved: net: mana: Guard manaremove against double invocation If PM resume fails e.g., manaattach returns an error, manaprobe calls manaremove, which tears down the device and sets gd-gdmacontext = NULL and gd-driverdata = NULL. However,...

5.8AI score0.00121EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/26 7:40 p.m.7 views

CVE-2026-53297

In the Linux kernel, the following vulnerability has been resolved: net: mana: Guard manaremove against double invocation If PM resume fails e.g., manaattach returns an error, manaprobe calls manaremove, which tears down the device and sets gd-gdmacontext = NULL and gd-driverdata = NULL. However,...

5.7AI score0.00121EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/06/26 7:40 p.m.15 views

CVE-2026-53297

The CVE-2026-53297 issue is in the Linux kernel mana network driver. A double invocation of mana_remove after a PM resume failure can dereference a NULL gc when unbinding, causing a kernel panic. The root cause is that, on a failed resume, mana_probe() calls mana_remove() which tears down state a...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/06/26 7:40 p.m.4 views

CVE-2026-53297 net: mana: Guard mana_remove against double invocation

In the Linux kernel, the following vulnerability has been resolved: net: mana: Guard manaremove against double invocation If PM resume fails e.g., manaattach returns an error, manaprobe calls manaremove, which tears down the device and sets gd-gdmacontext = NULL and gd-driverdata = NULL. However,...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/06/26 8:34 a.m.10 views

CVE-2026-53237

A flaw was found in the Linux kernel's Marvell EBU mvebu General Purpose Input/Output GPIO driver. During system suspend and resume operations, the mvebupwmsuspend and mvebupwmresume functions are called for all GPIO banks. However, not all banks have Pulse Width Modulation PWM functionality,...

5.5CVSS5.8AI score0.00127EPSS
Exploits0References4
Rows per page
Query Builder