Lucene search
+L

626 matches found

EUVD
EUVD
added 2026/05/27 12:58 p.m.13 views

EUVD-2026-32468

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix rxkad crypto unalignment handling Fix handling of a packet with a misaligned crypto length. Also handle non-ENOMEM errors from decryption by aborting. Further, remove the WARNONONCE so that it can't be remotely trigger...

5.7AI score0.00441EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/05/27 12:58 p.m.22 views

CVE-2026-46085

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix rxkad crypto unalignment handling Fix handling of a packet with a misaligned crypto length. Also handle non-ENOMEM errors from decryption by aborting. Further, remove the WARNONONCE so that it can't be remotely trigger...

7.5CVSS5.7AI score0.00441EPSS
Exploits0
EUVD
EUVD
added 2026/05/27 12:56 p.m.10 views

EUVD-2026-32309

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix memory leaks in rxkadverifyresponse Fix rxkadverifyresponse to free the ticket and the server key under all circumstances by initialising the ticket pointer to NULL and then making all paths through the function after...

5.8AI score0.00122EPSS
Exploits0References5
CVE
CVE
added 2026/05/27 12:56 p.m.25 views

CVE-2026-46012

CVE-2026-46012 is a Linux kernel issue in the rxrpc path (rxkad_verify_response) that leaks memory by failing to free the ticket and server key on all paths. The root cause is improper teardown in rxkad_verify_response, fixed by initializing the ticket pointer to NULL and routing all code paths t...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/05/27 12:56 p.m.46 views

CVE-2026-46012 rxrpc: Fix memory leaks in rxkad_verify_response()

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix memory leaks in rxkadverifyresponse Fix rxkadverifyresponse to free the ticket and the server key under all circumstances by initialising the ticket pointer to NULL and then making all paths through the function after...

0.00122EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/05/27 12:56 p.m.11 views

CVE-2026-46012

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix memory leaks in rxkadverifyresponse Fix rxkadverifyresponse to free the ticket and the server key under all circumstances by initialising the ticket pointer to NULL and then making all paths through the function after...

5.5CVSS5.7AI score0.00122EPSS
Exploits0
Cvelist
Cvelist
added 2026/05/27 12:56 p.m.42 views

CVE-2026-46010 rxrpc: Fix error handling in rxgk_extract_token()

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix error handling in rxgkextracttoken Fix a missing bit of error handling in rxgkextracttoken: in the event that rxgkdecryptskb returns -ENOMEM, it should just return that rather than continuing on for anything else, it...

8.1CVSS0.00403EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/05/27 12:56 p.m.22 views

CVE-2026-46010

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix error handling in rxgkextracttoken Fix a missing bit of error handling in rxgkextracttoken: in the event that rxgkdecryptskb returns -ENOMEM, it should just return that rather than continuing on for anything else, it...

8.1CVSS5.7AI score0.00403EPSS
Exploits0
CVE
CVE
added 2026/05/27 12:56 p.m.27 views

CVE-2026-46010

CVE-2026-46010 affects the Linux kernel's rxrpc component. The root cause is missing error handling in rxgk_extract_token(): if rxgk_decrypt_skb() returns -ENOMEM, the function should return that error instead of proceeding, which can lead to an abort. Several advisories state the vulnerability c...

8.1CVSS5.8AI score0.00403EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/05/27 12:55 p.m.11 views

EUVD-2026-32296

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix conn-level packet handling to unshare RESPONSE packets The security operations that verify the RESPONSE packets decrypt bits of it in place - however, the skbuff may be shared with a packet sniffer, which would lead to...

5.8AI score0.00159EPSS
Exploits0References5
OSV
OSV
added 2026/05/27 12:55 p.m.2 views

CVE-2026-46000 rxrpc: Fix conn-level packet handling to unshare RESPONSE packets

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix conn-level packet handling to unshare RESPONSE packets The security operations that verify the RESPONSE packets decrypt bits of it in place - however, the skbuff may be shared with a packet sniffer, which would lead to...

5.5CVSS5.7AI score0.00159EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2026/05/27 12:55 p.m.9 views

CVE-2026-45998

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix potential UAF after skbunshare failure If skbunshare fails to unshare a packet due to allocation failure in rxrpcinputpacket, the skb pointer in the parent rxrpciothread will be NULL'd out. This will likely cause the...

7.8CVSS5.7AI score0.00129EPSS
Exploits0
EUVD
EUVD
added 2026/05/27 12:55 p.m.14 views

EUVD-2026-32294

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix potential UAF after skbunshare failure If skbunshare fails to unshare a packet due to allocation failure in rxrpcinputpacket, the skb pointer in the parent rxrpciothread will be NULL'd out. This will likely cause the...

5.8AI score0.00129EPSS
Exploits0References5
CVE
CVE
added 2026/05/27 12:55 p.m.34 views

CVE-2026-45998

CVE-2026-45998 affects the Linux kernel RxRPC stack. The vulnerability arises when skb_unshare() fails to unshare a packet during rxrpc_input_packet(); the parent’s skb pointer can be NULL, risking a kernel oops in trace_rxrpc_rx_done(). The fix moves the unsharing logic down to rxrpc_input_call_...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2026/05/27 12:55 p.m.1 views

CVE-2026-45988 rxrpc: Fix re-decryption of RESPONSE packets

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix re-decryption of RESPONSE packets If a RESPONSE packet gets a temporary failure during processing, it may end up in a partially decrypted state - and then get requeued for a retry. Fix this by just discarding the packe...

9.8CVSS5.8AI score0.00457EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/27 12:55 p.m.47 views

CVE-2026-45988 rxrpc: Fix re-decryption of RESPONSE packets

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix re-decryption of RESPONSE packets If a RESPONSE packet gets a temporary failure during processing, it may end up in a partially decrypted state - and then get requeued for a retry. Fix this by just discarding the packe...

9.8CVSS0.00457EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/05/27 12:55 p.m.12 views

CVE-2026-45988

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix re-decryption of RESPONSE packets If a RESPONSE packet gets a temporary failure during processing, it may end up in a partially decrypted state - and then get requeued for a retry. Fix this by just discarding the packe...

9.8CVSS5.7AI score0.00457EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the fact that the processing of rxrpc connection-level data packets does not involve copying the RESPON...

5.8AI score0.00159EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/05/27 12:0 a.m.12 views

CVE-2026-46085

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix rxkad crypto unalignment handling Fix handling of a packet with a misaligned crypto length. Also handle non-ENOMEM errors from decryption by aborting. Further, remove the WARNONONCE so that it can't be remotely trigger...

7.5CVSS6.6AI score0.00441EPSS
Exploits0References6
OSV
OSV
added 2026/05/27 12:0 a.m.7 views

UBUNTU-CVE-2026-46000

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix conn-level packet handling to unshare RESPONSE packets The security operations that verify the RESPONSE packets decrypt bits of it in place - however, the skbuff may be shared with a packet sniffer, which would lead to...

5.5CVSS5.7AI score0.00159EPSS
Exploits0References13
Rows per page
Query Builder