Lucene search
+L

36 matches found

cve
cve
added 2026/06/27 8:59 a.m.42 views

CVE-2026-45259

CVE-2026-45259 affects FreeBSD where sigqueue(2) was allowed in capability mode but kern_sigqueue lacked a capability-mode check to restrict signal delivery to the caller’s own PID. The issue enables a capability-mode sandboxed process to signal other processes (including SIGKILL/SIGSTOP) within ...

6.5CVSS5.7AI score0.00092EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2026/06/27 8:59 a.m.40 views

CVE-2026-45259 sigqueue(2) missing capability mode restriction

sigqueue2 was marked as permitted in capability mode with the introduction of Capsicum in 2011, but the implementation of kernsigqueue did not include a capability mode check restricting signal delivery to the calling process's own PID. A process in capability mode can use sigqueue2 to send signa...

0.00092EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/06/27 8:59 a.m.11 views

CVE-2026-45259

sigqueue2 was marked as permitted in capability mode with the introduction of Capsicum in 2011, but the implementation of kernsigqueue did not include a capability mode check restricting signal delivery to the calling process's own PID. A process in capability mode can use sigqueue2 to send signa...

5.7AI score0.00092EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/27 12:0 a.m.11 views

PT-2026-53061

Name of the Vulnerable Software and Affected Versions FreeBSD affected versions not specified Description The implementation of the kern sigqueue function failed to include a capability mode check. This allows a process operating in Capsicum capability mode—a security framework that restricts...

6.5CVSS5.7AI score0.00092EPSS
Exploits0References7
euvd
euvd
added 2026/06/26 3:32 p.m.11 views

EUVD-2026-39776

When used to deliver a signal to a specific thread, thrkill22 called pcansignal to determine whether the operation was permitted but did not check the result before delivering the signal. The signal was sent even when the permission check failed. The system call returned the resulting error to th...

5.5CVSS5.9AI score0.00092EPSS
Exploits0References2
redhatcve
redhatcve
added 2026/06/26 2:56 p.m.16 views

CVE-2026-52946

A flaw was found in the Linux kernel. A lock order deadlock can occur in the sendsigio and sendsigurg functions when a process group receives a signal. This vulnerability, caused by an unsafe lock order during software interrupts SOFTIRQ in asynchronous I/O fasync signaling, could allow a remote...

7.5CVSS5.8AI score0.00461EPSS
Exploits0References4
cve
cve
added 2026/06/26 2:43 p.m.36 views

CVE-2026-45256

CVE-2026-45256 affects FreeBSD thr_kill2(2). The kernel failed to verify the result of p_cansignal() before delivering a signal, allowing unprivileged local users who know target PIDs to signal processes they normally could not, including root-owned ones. This can lead to stopping or terminating ...

5.5CVSS5.9AI score0.00092EPSS
Exploits0References1Affected Software1
nessus
nessus
added 2026/06/11 12:0 a.m.5 views

FreeBSD : FreeBSD -- sigqueue(2) missing capability mode restriction (94f20492-6473-11f1-958d-bc241121aa0a)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 94f20492-6473-11f1-958d-bc241121aa0a advisory. sigqueue2 was marked as permitted in capability mode with the introduction of Capsicum in 2011, but the...

6.5CVSS5.4AI score0.00092EPSS
Exploits0References2
packetstormnews
packetstormnews
added 2026/06/09 12:0 a.m.8 views

FreeBSD Security Advisory - FreeBSD-SA-26:28.capsicum

FreeBSD Security Advisory - sigqueue2 was marked as permitted in capability mode with the introduction of Capsicum in 2011, but the implementation of kernsigqueue did not include a capability mode check restricting signal delivery to the calling process's own PID...

5.5AI score0.00092EPSS
Exploits0
packetstormnews
packetstormnews
added 2026/06/09 12:0 a.m.19 views

FreeBSD Security Advisory - FreeBSD-SA-26:25.thr

FreeBSD Security Advisory - When used to deliver a signal to a specific thread, thrkill22 called pcansignal to determine whether the operation was permitted but did not check the result before delivering the signal. The signal was sent even when the permission check failed. The system call return...

5.4AI score0.00092EPSS
Exploits0
freebsd_advisory
freebsd_advisory
added 2026/06/09 12:0 a.m.11 views

FreeBSD-SA-26:28.capsicum

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-26:28.capsicum Security Advisory The FreeBSD Project Topic: sigqueue2 missing capability mode restriction Category: core Module: capsicum Announced: 2026-06-09...

6.5CVSS5.7AI score0.00092EPSS
Exploits0
astralinux
astralinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Ensure that the XFD state is preserved during signal delivery. Sean reported the following error when running KVM tests: WARNING: CPU: 232 PID: 15391 at xfdvalidatestate+0x65/0x70 Call Trace: fpuclearuserstates+0x9c/0x10...

6AI score0.00174EPSS
Exploits0References1
susecve
susecve
added 2025/12/17 12:26 a.m.5 views

SUSE CVE-2025-68171

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Ensure XFD state on signal delivery Sean reported 1 the following splat when running KVM tests: WARNING: CPU: 232 PID: 15391 at xfdvalidatestate+0x65/0x70 Call Trace: fpuclearuserstates+0x9c/0x100...

5.5CVSS6.5AI score0.00174EPSS
Exploits0References20
euvd
euvd
added 2025/12/16 3:30 p.m.4 views

EUVD-2025-203725

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Ensure XFD state on signal delivery Sean reported 1 the following splat when running KVM tests: WARNING: CPU: 232 PID: 15391 at xfdvalidatestate+0x65/0x70 Call Trace: fpuclearuserstates+0x9c/0x100...

5.9AI score0.00174EPSS
Exploits0References6
nvd
nvd
added 2025/12/16 2:15 p.m.3 views

CVE-2025-68171

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Ensure XFD state on signal delivery Sean reported 1 the following splat when running KVM tests: WARNING: CPU: 232 PID: 15391 at xfdvalidatestate+0x65/0x70 Call Trace: fpuclearuserstates+0x9c/0x100...

0.00174EPSS
Exploits0References5
ubuntucve
ubuntucve
added 2025/12/16 2:15 p.m.4 views

CVE-2025-68171

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Ensure XFD state on signal delivery Sean reported 1 the following splat when running KVM tests: WARNING: CPU: 232 PID: 15391 at xfdvalidatestate+0x65/0x70 Call Trace: fpuclearuserstates+0x9c/0x100...

5.7AI score0.00174EPSS
Exploits0References22
osv
osv
added 2025/12/16 2:15 p.m.4 views

UBUNTU-CVE-2025-68171

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Ensure XFD state on signal delivery Sean reported 1 the following splat when running KVM tests: WARNING: CPU: 232 PID: 15391 at xfdvalidatestate+0x65/0x70 Call Trace: fpuclearuserstates+0x9c/0x100...

5.7AI score0.00174EPSS
Exploits0References23
osv
osv
added 2025/12/16 1:42 p.m.4 views

CVE-2025-68171 x86/fpu: Ensure XFD state on signal delivery

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Ensure XFD state on signal delivery Sean reported 1 the following splat when running KVM tests: WARNING: CPU: 232 PID: 15391 at xfdvalidatestate+0x65/0x70 Call Trace: fpuclearuserstates+0x9c/0x100...

6.3AI score0.00174EPSS
Exploits0References8
cvelist
cvelist
added 2025/12/16 1:42 p.m.29 views

CVE-2025-68171 x86/fpu: Ensure XFD state on signal delivery

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Ensure XFD state on signal delivery Sean reported 1 the following splat when running KVM tests: WARNING: CPU: 232 PID: 15391 at xfdvalidatestate+0x65/0x70 Call Trace: fpuclearuserstates+0x9c/0x100...

0.00174EPSS
Exploits0References5
cve
cve
added 2025/12/16 1:42 p.m.13 views

CVE-2025-68171

CVE-2025-68171: In the Linux kernel, the x86/fpu subsystem fix ensures the XFD state is synchronized on signal delivery to avoid mismatches when a non‑AMX task is preempted by an AMX‑enabled task that modifies the XFD MSR. The issue could occur when fpu state is reloaded with init values after pr...

6.1AI score0.00174EPSS
Exploits0References5
Rows per page
Query Builder