Lucene search
K

39 matches found

RedhatCVE
RedhatCVE
added 2026/06/26 5:49 p.m.9 views

CVE-2026-52950

A flaw was found in the Linux kernel, specifically within the drm/xe/dma-buf component. This Use-After-Free UAF vulnerability occurs due to an issue in a retry loop, where a buffer object is prematurely freed on error. An attacker could potentially exploit this to cause memory corruption, leading...

7.8CVSS6.3AI score0.00132EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/24 6:32 p.m.5 views

EUVD-2026-38818

In the Linux kernel, the following vulnerability has been resolved: drm/xe/dma-buf: fix UAF with retry loop Retry doesn't work here, since bo will be freed on error, leading to UAF. However, now that we do the alloc & init before the attach, we can now combine this as one unit and have the init d...

5.7AI score0.00132EPSS
Exploits0References4
NVD
NVD
added 2026/06/24 5:17 p.m.9 views

CVE-2026-54904

concurrent-ruby is a modern concurrency tools for Ruby. Prior to 1.3.7, Concurrent::AtomicReferenceupdate can enter a permanent busy retry loop when the current value is Float::NAN. The issue is caused by the interaction between AtomicReferenceupdate, which retries until compareandsetoldvalue,...

8.2CVSS0.00278EPSS
Exploits1References1
NVD
NVD
added 2026/06/24 5:17 p.m.7 views

CVE-2026-52950

In the Linux kernel, the following vulnerability has been resolved: drm/xe/dma-buf: fix UAF with retry loop Retry doesn't work here, since bo will be freed on error, leading to UAF. However, now that we do the alloc & init before the attach, we can now combine this as one unit and have the init d...

7.8CVSS0.00132EPSS
Exploits0References6
OSV
OSV
added 2026/06/24 4:28 p.m.2 views

CVE-2026-52950 drm/xe/dma-buf: fix UAF with retry loop

In the Linux kernel, the following vulnerability has been resolved: drm/xe/dma-buf: fix UAF with retry loop Retry doesn't work here, since bo will be freed on error, leading to UAF. However, now that we do the alloc & init before the attach, we can now combine this as one unit and have the init d...

7.8CVSS5.8AI score0.00132EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/06/24 4:28 p.m.6 views

CVE-2026-52950

In the Linux kernel, the following vulnerability has been resolved: drm/xe/dma-buf: fix UAF with retry loop Retry doesn't work here, since bo will be freed on error, leading to UAF. However, now that we do the alloc & init before the attach, we can now combine this as one unit and have the init d...

5.7AI score0.00132EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/06/24 4:28 p.m.13 views

CVE-2026-52950

The CVE-2026-52950 issue affects the Linux kernel DRM/XE DMA-BUF path. The vulnerability is a Use-After-Free in the retry loop where a buffer object could be freed on error, potentially leading to memory corruption. The documented fix changes the sequence to allocate and initialize before the att...

7.8CVSS5.7AI score0.00132EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/06/24 4:28 p.m.33 views

CVE-2026-52950 drm/xe/dma-buf: fix UAF with retry loop

In the Linux kernel, the following vulnerability has been resolved: drm/xe/dma-buf: fix UAF with retry loop Retry doesn't work here, since bo will be freed on error, leading to UAF. However, now that we do the alloc & init before the attach, we can now combine this as one unit and have the init d...

7.8CVSS0.00132EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.10 views

PT-2026-51844

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A Use-After-Free UAF issue exists within the drm/xe/dma-buf component. The flaw occurs in a retry loop where a buffer object is freed upon an error, allowing subsequent access to the fre...

7.8CVSS6.2AI score0.00132EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/02/16 12:0 a.m.5 views

Siemens SIMATIC S7-1500 Loop with Unreachable Exit Condition ('Infinite Loop') (CVE-2025-38727)

In the Linux kernel, the following vulnerability has been resolved: netlink: avoid infinite retry looping in netlinkunicast netlinkattachskb checks for the socket's read memory allocation constraints. Firstly, it has: rmem skrcvbuf to check if the just increased rmem value fits into the socket's...

5.5CVSS6.5AI score0.00154EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: netlink: avoid infinite retry looping in netlinkunicast netlinkattachskb checks for the socket's read memory allocation constraints. Firstly, it has: rmem skrcvbuf to check if the just increased rmem value fits into the socket's...

5.5CVSS6.4AI score0.00154EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003952)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003952 advisory. An issue was discovered in fs/fuse/fusei.h in the Linux kernel before 5.11.8. A stall on CPU can occur because a retry loop continually finds the same bad inode, aka...

5.5CVSS6.5AI score0.0036EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004463)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004463 advisory. An issue was discovered in fs/fuse/fusei.h in the Linux kernel before 5.11.8. A stall on CPU can occur because a retry loop continually finds the same bad inode, aka...

5.5CVSS6.5AI score0.0036EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/12/10 8:34 a.m.5 views

CVE-2023-53815

In the Linux kernel, the following vulnerability has been resolved: posix-timers: Prevent RT livelock in itimerdelete itimerdelete has a retry loop when the timer is concurrently expired. On non-RT kernels this just spin-waits until the timer callback has completed, except for posix CPU timers...

4.7CVSS5.2AI score0.00167EPSS
Exploits0References4
OSV
OSV
added 2025/12/09 12:1 a.m.5 views

CVE-2023-53815 posix-timers: Prevent RT livelock in itimer_delete()

In the Linux kernel, the following vulnerability has been resolved: posix-timers: Prevent RT livelock in itimerdelete itimerdelete has a retry loop when the timer is concurrently expired. On non-RT kernels this just spin-waits until the timer callback has completed, except for posix CPU timers...

6.3AI score0.00167EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-15601

Malware in sbrugna...

5.5CVSS6.8AI score0.0036EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2025/09/06 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-38727

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: netlink: avoid infinite retry looping in netlinkunicast netlinkattachskb checks for the...

5.5CVSS6.2AI score0.00154EPSS
Exploits0References2
NVD
NVD
added 2025/09/04 4:15 p.m.12 views

CVE-2025-38727

In the Linux kernel, the following vulnerability has been resolved: netlink: avoid infinite retry looping in netlinkunicast netlinkattachskb checks for the socket's read memory allocation constraints. Firstly, it has: rmem skrcvbuf to check if the just increased rmem value fits into the socket's...

5.5CVSS0.00154EPSS
Exploits0References14
OSV
OSV
added 2025/09/04 4:15 p.m.6 views

UBUNTU-CVE-2025-38727

In the Linux kernel, the following vulnerability has been resolved: netlink: avoid infinite retry looping in netlinkunicast netlinkattachskb checks for the socket's read memory allocation constraints. Firstly, it has: rmem skrcvbuf to check if the just increased rmem value fits into the socket's...

5.5CVSS6.6AI score0.00154EPSS
Exploits0References19
CVE
CVE
added 2025/09/04 3:33 p.m.44 views

CVE-2025-38727

Linux kernel vulnerability CVE-2025-38727 affects netlink in the Linux kernel. A bug in netlink_attachskb() may cause an infinite retry loop when memory checks for skb->truesize against sk_rcvbuf are inconclusive (rmem + skb->truesize > sk_rcvbuf), potentially triggering an rcu_sched sta...

5.5CVSS5.8AI score0.00154EPSS
Exploits0References14Affected Software1
Rows per page
Query Builder