Lucene search
+L

87 matches found

mscve
mscve
added 2026/06/27 8:16 a.m.6 views

hv_netvsc: use kmap_local_page in netvsc_copy_to_send_buf

...

7.5CVSS5.8AI score0.0053EPSS
Exploits0
redhatcve
redhatcve
added 2026/06/26 1:31 a.m.11 views

CVE-2026-53199

A flaw was found in the Linux kernel's Hyper-V network virtual service client hvnetvsc component. This vulnerability occurs in the netvsccopytosendbuf function, where incorrect memory mapping of page buffer entries can lead to a system fault. Specifically, on 32-bit x86 systems with high memory...

7.5CVSS6AI score0.0053EPSS
Exploits0References4
nvd
nvd
added 2026/06/25 9:16 a.m.5 views

CVE-2026-53199

In the Linux kernel, the following vulnerability has been resolved: hvnetvsc: use kmaplocalpage in netvsccopytosendbuf netvsccopytosendbuf copies page buffer entries into the VMBus send buffer using phystovirt on the entry PFN. Entries for the RNDIS header and the skb linear data come from...

7.5CVSS0.0053EPSS
Exploits0References8
osv
osv
added 2026/06/25 8:39 a.m.2 views

CVE-2026-53199 hv_netvsc: use kmap_local_page in netvsc_copy_to_send_buf

In the Linux kernel, the following vulnerability has been resolved: hvnetvsc: use kmaplocalpage in netvsccopytosendbuf netvsccopytosendbuf copies page buffer entries into the VMBus send buffer using phystovirt on the entry PFN. Entries for the RNDIS header and the skb linear data come from...

7.5CVSS6AI score0.0053EPSS
Exploits0References11
cvelist
cvelist
added 2026/06/25 8:39 a.m.29 views

CVE-2026-53199 hv_netvsc: use kmap_local_page in netvsc_copy_to_send_buf

In the Linux kernel, the following vulnerability has been resolved: hvnetvsc: use kmaplocalpage in netvsccopytosendbuf netvsccopytosendbuf copies page buffer entries into the VMBus send buffer using phystovirt on the entry PFN. Entries for the RNDIS header and the skb linear data come from...

7.5CVSS0.0053EPSS
Exploits0References8
attackerkb
attackerkb
added 2026/06/25 8:39 a.m.7 views

CVE-2026-53199

In the Linux kernel, the following vulnerability has been resolved: hvnetvsc: use kmaplocalpage in netvsccopytosendbuf netvsccopytosendbuf copies page buffer entries into the VMBus send buffer using phystovirt on the entry PFN. Entries for the RNDIS header and the skb linear data come from...

5.9AI score0.0053EPSS
Exploits0References9Affected Software1
ptsecurity
ptsecurity
added 2026/06/25 12:0 a.m.7 views

PT-2026-52295

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the netvsc copy to send buf function where page buffer entries are copied into the VMBus send buffer using phys to virt on the entry PFN. On 32-bit x86 systems with...

7.5CVSS6.1AI score0.0053EPSS
Exploits0References22
astralinux
astralinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: sctp: Check the send stream number after waitforsndbuf This patch addresses a corner case where the number of out streams may change after waitforsndbuf is called. When the main thread in the client initiates a connection, if the...

5.5CVSS6AI score0.00137EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: TCP: Fixed a signed-integer overflow bug in tcpaddbacklog The types of skrcvbuf and sksndbuf within the struct sock structure are int. In tcpaddbacklog, the limit for these variables is calculated by adding skrcvbuf, sksndbuf, an...

6.3AI score0.00168EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: NFSD: Protection against send buffer overflow in NFSv2 READ Since the time before the advent of Git, NFSD has managed the number of pages held by each nfsd thread by combining the RPC receive and send buffers into a single array ...

7.8CVSS6.3AI score0.0017EPSS
Exploits0References2
nessus
nessus
added 2026/05/20 12:0 a.m.8 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-021537)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021537 advisory. In the Linux kernel, the following vulnerability has been resolved: NFSD: Protect against send buffer overflow in NFSv2 READ Since before the git era, NFSD has...

7.8CVSS6AI score0.0017EPSS
Exploits0References4
nessus
nessus
added 2026/04/21 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010835)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010835 advisory. In the Linux kernel, the following vulnerability has been resolved: tcp: fix a signed-integer-overflow bug in tcpaddbacklog The type of skrcvbuf and sksndbuf in stru...

5.7AI score0.00168EPSS
Exploits0References4
susecve
susecve
added 2026/03/19 12:27 a.m.11 views

SUSE CVE-2026-23243

In the Linux kernel, the following vulnerability has been resolved: RDMA/umad: Reject negative datalen in ibumadwrite ibumadwrite computes datalen from user-controlled count and the MAD header sizes. With a mismatched user MAD header size and RMPP header length, datalen can become negative and...

7.8CVSS5.6AI score0.00131EPSS
Exploits0References103
euvd
euvd
added 2026/03/18 12:31 p.m.20 views

EUVD-2026-12804

In the Linux kernel, the following vulnerability has been resolved: RDMA/umad: Reject negative datalen in ibumadwrite ibumadwrite computes datalen from user-controlled count and the MAD header sizes. With a mismatched user MAD header size and RMPP header length, datalen can become negative and...

5.7AI score0.00131EPSS
Exploits0References9
osv
osv
added 2026/03/18 11:16 a.m.8 views

UBUNTU-CVE-2026-23243

In the Linux kernel, the following vulnerability has been resolved: RDMA/umad: Reject negative datalen in ibumadwrite ibumadwrite computes datalen from user-controlled count and the MAD header sizes. With a mismatched user MAD header size and RMPP header length, datalen can become negative and...

7.8CVSS5.7AI score0.00131EPSS
Exploits0References19
nessus
nessus
added 2026/03/04 12:0 a.m.2 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005789)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005789 advisory. In the Linux kernel, the following vulnerability has been resolved: NFSD: Protect against send buffer overflow in NFSv2 READ Since before the git era, NFSD has...

7.8CVSS6AI score0.0017EPSS
Exploits0References4
nessus
nessus
added 2026/03/03 12:0 a.m.6 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005580)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005580 advisory. In the Linux kernel, the following vulnerability has been resolved: sctp: check send stream number after waitforsndbuf This patch fixes a corner case where the asoc...

5.5CVSS6.7AI score0.00137EPSS
Exploits0References4
redhat
redhat
added 2026/02/25 4:10 a.m.5 views

kernel: tcp: fix a signed-integer-overflow bug in tcp_add_backlog()

A flaw was found in the Linux kernel’s TCP implementation in the function tcpaddbacklog. When calculating the maximum acceptable backlog for TCP sockets, the sum of the receive buffer skrcvbuf, the send buffer sksndbuf, and a fixed constant may exceed the maximum value of a signed integer due to...

5.9AI score0.00168EPSS
Exploits0References5
redhat
redhat
added 2026/02/11 5:6 p.m.3 views

kernel: tcp: fix a signed-integer-overflow bug in tcp_add_backlog()

A flaw was found in the Linux kernel’s TCP implementation in the function tcpaddbacklog. When calculating the maximum acceptable backlog for TCP sockets, the sum of the receive buffer skrcvbuf, the send buffer sksndbuf, and a fixed constant may exceed the maximum value of a signed integer due to...

5.9AI score0.00168EPSS
Exploits0References5
redhat
redhat
added 2026/02/11 4:37 p.m.3 views

kernel: tcp: fix a signed-integer-overflow bug in tcp_add_backlog()

A flaw was found in the Linux kernel’s TCP implementation in the function tcpaddbacklog. When calculating the maximum acceptable backlog for TCP sockets, the sum of the receive buffer skrcvbuf, the send buffer sksndbuf, and a fixed constant may exceed the maximum value of a signed integer due to...

5.9AI score0.00168EPSS
Exploits0References5
Rows per page
Query Builder