Lucene search
K

10359 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/09 12:0 a.m.10 views

Amazon Linux 2 : kernel, --advisory ALAS2-2026-3302 (ALAS-2026-3302)

The version of kernel installed on the remote host is prior to 4.14.355-282.728. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3302 advisory. In the Linux kernel, the following vulnerability has been resolved:xfrm: esp: avoid in-place decrypt on shared skb...

8.8CVSS6.1AI score0.93235EPSS
Exploits33References6
Amazon
Amazon
added 2026/05/09 12:0 a.m.15 views

Important: kernel-livepatch-6.12.83-111.159

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb frags "Dirty Frag" and other issues in Amazon Linux kernels: https://aws.amazon.com/security/security-bulletins/2026-027-aws/ CVE-2026-43284 Affected Packages:...

7.8CVSS6AI score0.93235EPSS
Exploits31
RedhatCVE
RedhatCVE
added 2026/05/08 10:34 p.m.9 views

CVE-2026-7954

A race flaw was found in the Shared Storage component of the Chromium browser. Upstream bugs: https://code.google.com/p/chromium/issues/detail?id=496380960...

5.8CVSS5.7AI score0.00155EPSS
Exploits0References5
OSV
OSV
added 2026/05/08 7:50 p.m.6 views

CLSA-2026-1778261157 Update of kernel

xfrm: esp: avoid in-place decrypt on shared skb frags...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/05/08 7:50 p.m.8 views

CLSA-2026-1778261513 Update of alt-php

Miscellaneous Ubuntu changes - Packaging: add tuxcare suffix Miscellaneous upstream changes - xfrm: esp: avoid in-place decrypt on shared skb frags - rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/05/08 7:47 p.m.7 views

CLSA-2026-1778261301 Update of alt-php

Miscellaneous upstream changes - xfrm: esp: avoid in-place decrypt on shared skb frags...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/05/08 7:44 p.m.8 views

CLSA-2026-1778267481 Update of kernel-uek

rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present - xfrm: esp: avoid in-place decrypt on shared skb frags...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/05/08 7:43 p.m.7 views

CLSA-2026-1778260666 Update of kernel

xfrm: esp: avoid in-place decrypt on shared skb frags...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/05/08 7:23 p.m.8 views

CLSA-2026-1778260978 Update of kernel

xfrm: esp: avoid in-place decrypt on shared skb frags...

5.8AI score
Exploits0References1
Rosalinux
Rosalinux
added 2026/05/08 6:25 p.m.13 views

Advisory ROSA-SA-2026-3266

software: kernel-6.6 6.6.126 WASP: ROSA-CHROME unaffected versions = kernel-6.6-6.6.6.126-3 affected versions kernel-6.6-6.6.6.126-3 CVE-ID: CVE-2026-43284 BDU-ID: None CVE-Crit: NO DATA CVE-DESC.: A vulnerability in the xfrm subsystem ESP of the Linux kernel allows data decryption over non-packe...

8.8CVSS6AI score0.93235EPSS
Exploits31
RedhatCVE
RedhatCVE
added 2026/05/08 5:57 p.m.12 views

CVE-2025-71301

A flaw was found in the Linux kernel's Direct Rendering Manager DRM subsystem, specifically within the shared memory shmem test module. This vulnerability occurs because the reservation lock is not properly held during vmap and vunmap operations. A local attacker could potentially exploit this fl...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References4
F5 Networks
F5 Networks
added 2026/05/08 5:6 p.m.32 views

K000161181: Linux kernel vulnerabilities CVE-2026-43284 and CVE-2026-43500

Security Advisory Description CVE-2026-43284 Dirty Frag In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb frags MSGSPLICEPAGES can attach pages from a pipe directly to an skb. TCP marks such skbs with SKBFLSHAREDFRAG after...

8.8CVSS6AI score0.93235EPSS
Exploits33
OSV
OSV
added 2026/05/08 5:6 p.m.12 views

GHSA-95C3-6VVW-4MRQ MCP Registry's GitHub OIDC tokens are replayable across registry deployments due to shared audience

SECURITY registry001 Vulnerability Report While analyzing the code logic, an area that may lead to unintended behavior under specific conditions was discovered. Overview - Verified Version: c5c4b9e8890dd5754bee889b2f1417f4fe3b5ce5 - Vulnerability Type: Authentication bypass via cross-registry OID...

4.7CVSS5.8AI score0.00219EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2026/05/08 5:6 p.m.18 views

MCP Registry's GitHub OIDC tokens are replayable across registry deployments due to shared audience

SECURITY registry001 Vulnerability Report While analyzing the code logic, an area that may lead to unintended behavior under specific conditions was discovered. Overview - Verified Version: c5c4b9e8890dd5754bee889b2f1417f4fe3b5ce5 - Vulnerability Type: Authentication bypass via cross-registry OID...

4.7CVSS5.8AI score0.00219EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2026/05/08 3:31 p.m.11 views

EUVD-2026-28674

In the Linux kernel, the following vulnerability has been resolved: drm/i915: Fix potential overflow of shmem scatterlist length When a scatterlists table of a GEM shmem object of size 4 GB or more is populated with pages allocated from a folio, unsigned int .length attribute of a scatterlist may...

5.7AI score0.00129EPSS
Exploits0References6
EUVD
EUVD
added 2026/05/08 3:31 p.m.11 views

EUVD-2025-209745

In the Linux kernel, the following vulnerability has been resolved: drm/tests: shmem: Hold reservation lock around purge Acquire and release the GEM object's reservation lock around calls to the object's purge operation. The tests use drmgemshmempurgelocked, which led to errors such as show below...

5.8AI score0.00121EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2026/05/08 3:20 p.m.9 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 RT kernel was updated to fix the following issue: This fixes the DirtyFrag issues: CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags bsc1264449. CVE-2026-43500: rxrpc and afs modules are disabled bsc1264450 Special Instructions and Notes: Pleas...

8.8CVSS6AI score0.93235EPSS
Exploits33References8
OSV
OSV
added 2026/05/08 3:20 p.m.5 views

SUSE-SU-2026:1778-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 RT kernel was updated to fix the following issue: This fixes the DirtyFrag issues: - CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags bsc1264449. - CVE-2026-43500: rxrpc and afs modules are disabled bsc1264450...

8.8CVSS6AI score0.93235EPSS
Exploits33References5
UbuntuCve
UbuntuCve
added 2026/05/08 3:16 p.m.10 views

CVE-2026-43368

In the Linux kernel, the following vulnerability has been resolved: drm/i915: Fix potential overflow of shmem scatterlist length When a scatterlists table of a GEM shmem object of size 4 GB or more is populated with pages allocated from a folio, unsigned int .length attribute of a scatterlist may...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References7
OSV
OSV
added 2026/05/08 3:16 p.m.9 views

UBUNTU-CVE-2026-43368

In the Linux kernel, the following vulnerability has been resolved: drm/i915: Fix potential overflow of shmem scatterlist length When a scatterlists table of a GEM shmem object of size 4 GB or more is populated with pages allocated from a folio, unsigned int .length attribute of a scatterlist may...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References8
Rows per page
Query Builder