Lucene search
K

106 matches found

RedHat Linux
RedHat Linux
added 2026/05/19 9:4 a.m.14 views

kernel: bpf: Check rcu_read_lock_trace_held() in bpf_map_lookup_percpu_elem()

In the Linux kernel, the following vulnerability has been resolved: bpf: Check rcureadlocktraceheld in bpfmaplookuppercpuelem bpfmaplookuppercpuelem helper is also available for sleepable bpf program. When BPF JIT is disabled or under 32-bit host, bpfmaplookuppercpuelem will not be inlined. Using...

5.5CVSS6.2AI score0.00147EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/06 12:30 p.m.8 views

EUVD-2026-27731

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Move vbus draw to workqueue context Currently dwc3gadgetvbusdraw can be called from atomic context, which in turn invokes power-supply-core APIs. And some these PMIC APIs have operations that may sleep, leading...

5.8AI score0.00122EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/05/06 1:41 a.m.7 views

SUSE CVE-2026-43010

In the Linux kernel, the following vulnerability has been resolved: bpf: Reject sleepable kprobemulti programs at attach time kprobe.multi programs run in atomic/RCU context and cannot sleep. However, bpfkprobemultilinkattach did not validate whether the program being attached had the sleepable...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.10 views

PT-2026-37554

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the KVM x86 component where reading PDPTR registers in the get sregs2 function lacks proper SRCU read-side protection. Reading PDPTRs can trigger access to guest memor...

7.8CVSS5.7AI score0.00139EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/01 4:18 p.m.8 views

CVE-2026-43010

A flaw was found in the Linux kernel. A local user could attach a sleepable BPF kprobemulti program, which allows sleepable helper functions, such as bpfcopyfromuser, to be invoked from a non-sleepable context. This incorrect handling can lead to a system crash, resulting in a Denial of Service D...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References4
NVD
NVD
added 2026/05/01 3:16 p.m.6 views

CVE-2026-43010

In the Linux kernel, the following vulnerability has been resolved: bpf: Reject sleepable kprobemulti programs at attach time kprobe.multi programs run in atomic/RCU context and cannot sleep. However, bpfkprobemultilinkattach did not validate whether the program being attached had the sleepable...

5.5CVSS0.00122EPSS
Exploits0References5
CVE
CVE
added 2026/05/01 2:15 p.m.17 views

CVE-2026-43010

CVE-2026-43010 : The Linux kernel fix addresses a bug where sleepable kprobe_multi programs could be attached in a non-sleepable context because bpf_kprobe_multi_link_attach() did not validate the sleepable flag. This allowed sleepable helpers (e.g., bpf_copy_from_user()) to be invoked from an at...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/05/01 2:15 p.m.7 views

EUVD-2026-26609

In the Linux kernel, the following vulnerability has been resolved: bpf: Reject sleepable kprobemulti programs at attach time kprobe.multi programs run in atomic/RCU context and cannot sleep. However, bpfkprobemultilinkattach did not validate whether the program being attached had the sleepable...

5.7AI score0.00122EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/05/01 2:15 p.m.5 views

CVE-2026-43010

In the Linux kernel, the following vulnerability has been resolved: bpf: Reject sleepable kprobemulti programs at attach time kprobe.multi programs run in atomic/RCU context and cannot sleep. However, bpfkprobemultilinkattach did not validate whether the program being attached had the sleepable...

5.5CVSS5.7AI score0.00122EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/01 2:15 p.m.11 views

CVE-2026-43010

In the Linux kernel, the following vulnerability has been resolved: bpf: Reject sleepable kprobemulti programs at attach time kprobe.multi programs run in atomic/RCU context and cannot sleep. However, bpfkprobemultilinkattach did not validate whether the program being attached had the sleepable...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References6Affected Software1
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.13 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to validate the sleepable flag when the bpf kprobemulti program is attached, which could result in...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.11 views

PT-2026-36427

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel where bpf kprobe multi link attach fails to validate if a program being attached has the sleepable flag set. Because kprobe.multi programs operate...

9.8CVSS5.8AI score0.0053EPSS
Exploits1References377
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.9 views

Amazon Linux 2023 : bpftool6.12, kernel6.12, kernel6.12-devel (ALAS2023-2026-1455)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1455 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf: Reject narrower access to pointer ctx fields CVE-2025-38591 In the Linux kernel, the following vulnerability has been...

7.8CVSS6.2AI score0.00468EPSS
Exploits0References98
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.5 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: - BPF: The rcureadlockTraceheld function in bpfmaplookuppercpuelem needs to be checked. The bpfmaplookuppercpuelem helper function is also available for sleepable BPF programs. When BPF JIT is disabled or on a 32-bit host,...

5.5CVSS6.4AI score0.00147EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/01/26 12:24 a.m.7 views

SUSE CVE-2026-23002

In the Linux kernel, the following vulnerability has been resolved: lib/buildid: use kernelread for sleepable context Prevent a "BUG: unable to handle kernel NULL pointer dereference in filemapreadfolio". For the sleepable context, convert freader to use kernelread instead of direct page cache...

5.5CVSS5.3AI score0.0015EPSS
Exploits0References7
NVD
NVD
added 2026/01/25 3:15 p.m.7 views

CVE-2026-23002

In the Linux kernel, the following vulnerability has been resolved: lib/buildid: use kernelread for sleepable context Prevent a "BUG: unable to handle kernel NULL pointer dereference in filemapreadfolio". For the sleepable context, convert freader to use kernelread instead of direct page cache...

5.5CVSS0.0015EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/01/25 3:15 p.m.7 views

CVE-2026-23002

In the Linux kernel, the following vulnerability has been resolved: lib/buildid: use kernelread for sleepable context Prevent a "BUG: unable to handle kernel NULL pointer dereference in filemapreadfolio". For the sleepable context, convert freader to use kernelread instead of direct page cache...

5.5CVSS5.7AI score0.0015EPSS
Exploits0References5
OSV
OSV
added 2026/01/25 3:15 p.m.5 views

UBUNTU-CVE-2026-23002

In the Linux kernel, the following vulnerability has been resolved: lib/buildid: use kernelread for sleepable context Prevent a "BUG: unable to handle kernel NULL pointer dereference in filemapreadfolio". For the sleepable context, convert freader to use kernelread instead of direct page cache...

5.5CVSS5.7AI score0.0015EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/01/25 2:36 p.m.2 views

CVE-2026-23002

In the Linux kernel, the following vulnerability has been resolved: lib/buildid: use kernelread for sleepable context Prevent a "BUG: unable to handle kernel NULL pointer dereference in filemapreadfolio". For the sleepable context, convert freader to use kernelread instead of direct page cache...

5.7AI score0.0015EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/01/25 2:36 p.m.3 views

EUVD-2026-4620

In the Linux kernel, the following vulnerability has been resolved: lib/buildid: use kernelread for sleepable context Prevent a "BUG: unable to handle kernel NULL pointer dereference in filemapreadfolio". For the sleepable context, convert freader to use kernelread instead of direct page cache...

5.2AI score0.0015EPSS
Exploits0References4
Rows per page
Query Builder