Lucene search
+L

28 matches found

SUSE CVE
SUSE CVE
added 2026/07/03 3:3 a.m.10 views

SUSE CVE-2026-53357

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: fix UAF in l2capsockcleanuplisten vs l2capconndel btacceptdequeue unlinks a not-yet-accepted child from the parent accept queue and releasesocks it before returning, so the returned sk has no caller reference and is...

5.8AI score0.00165EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/06/10 8:9 p.m.7 views

kernel: smc: Fix use-after-free in tcp_write_timer_handler()

In the Linux kernel, the following vulnerability has been resolved: smc: Fix use-after-free in tcpwritetimerhandler. With Eric's ref tracker, syzbot finally found a repro for use-after-free in tcpwritetimerhandler by kernel TCP sockets. 0 If SMC creates a kernel socket in smccreate, the kernel...

5.3AI score0.00162EPSS
Exploits0References5
OSV
OSV
added 2026/01/13 3:34 p.m.8 views

CVE-2025-71086 net: rose: fix invalid array index in rose_kill_by_device()

In the Linux kernel, the following vulnerability has been resolved: net: rose: fix invalid array index in rosekillbydevice rosekillbydevice collects sockets into a local array and then iterates over them to disconnect sockets bound to a device being brought down. The loop mistakenly indexes...

7.8CVSS6.1AI score0.0012EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-8477

Malicious code in bioql PyPI...

7.2AI score0.0019EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-13094

Malicious code in bioql PyPI...

7.2AI score0.00176EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-6288

Malicious code in bioql PyPI...

5.5CVSS7.2AI score0.00214EPSS
Exploits0References9
CVE
CVE
added 2025/07/28 11:21 a.m.101 views

CVE-2025-38471

CVE-2025-38471 affects the Linux kernel TLS path. A bug in TLS where the code may operate on an old skb during queue decrypt-state checks can lead to a use-after-free (observed in tls_strp_check_rcv). The issue arises after net-next TCP changes that compact skbs more aggressively, triggering the ...

7.8CVSS6.4AI score0.00152EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2025/07/04 2:15 p.m.12 views

CVE-2025-38190

In the Linux kernel, the following vulnerability has been resolved: atm: Revert atmaccounttx if copyfromiterfull fails. In vccsendmsg, we account skb-truesize to sk-skwmemalloc by atmaccounttx. It is expected to be reverted by atmpopraw later called by vcc-dev-ops-sendvcc, skb. However, vccsendms...

5.5CVSS0.00164EPSS
Exploits0References10
NVD
NVD
added 2025/05/02 4:15 p.m.8 views

CVE-2023-53072

In the Linux kernel, the following vulnerability has been resolved: mptcp: use the workqueue to destroy unaccepted sockets Christoph reported a UaF at token lookup time after having refactored the passive socket initialization part: BUG: KASAN: use-after-free in tokenbucketbusy+0x253/0x260 Read o...

7.8CVSS0.00168EPSS
Exploits0References3
NVD
NVD
added 2025/05/01 1:15 p.m.7 views

CVE-2025-23143

In the Linux kernel, the following vulnerability has been resolved: net: Fix null-ptr-deref by socklockinitclassandname and rmmod. When I ran the repro 0 and waited a few seconds, I observed two LOCKDEP splats: a warning immediately followed by a null-ptr-deref. 1 Reproduction Steps: 1 Mount CIFS...

5.5CVSS0.00176EPSS
Exploits0References12
Cvelist
Cvelist
added 2025/05/01 12:55 p.m.21 views

CVE-2025-23143 net: Fix null-ptr-deref by sock_lock_init_class_and_name() and rmmod.

In the Linux kernel, the following vulnerability has been resolved: net: Fix null-ptr-deref by socklockinitclassandname and rmmod. When I ran the repro 0 and waited a few seconds, I observed two LOCKDEP splats: a warning immediately followed by a null-ptr-deref. 1 Reproduction Steps: 1 Mount CIFS...

0.00176EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/04/16 2:12 p.m.30 views

CVE-2025-22058 udp: Fix memory accounting leak.

In the Linux kernel, the following vulnerability has been resolved: udp: Fix memory accounting leak. Matt Dowling reported a weird UDP memory usage issue. Under normal operation, the UDP memory usage reported in /proc/net/sockstat remains close to zero. However, it occasionally spiked to 524,288...

0.00188EPSS
Exploits0References9
CVE
CVE
added 2025/04/01 3:40 p.m.172 views

CVE-2025-21926

CVE-2025-21926 : In the Linux kernel, the net: gso: fix ownership in __udp_gso_segment vulnerability is resolved. The bug occurs when __udp_gso_segment removes the skb destructor while keeping the socket reference intact, risking a skb_orphan-triggered kernel BUG with OpenVSwitch sequences (OVS_A...

5.5CVSS7AI score0.002EPSS
Exploits0References11Affected Software1
NVD
NVD
added 2025/03/27 3:15 p.m.7 views

CVE-2025-21884

In the Linux kernel, the following vulnerability has been resolved: net: better track kernel sockets lifetime While kernel sockets are dismantled during pernetoperations-exit, their freeing can be delayed by any tx packets still held in qdisc or device queues, due to skbsetownerw prior calls. Thi...

5.5CVSS0.0019EPSS
Exploits0References4
OSV
OSV
added 2025/03/12 9:42 a.m.13 views

CVE-2025-21854 sockmap, vsock: For connectible sockets allow only connected

In the Linux kernel, the following vulnerability has been resolved: sockmap, vsock: For connectible sockets allow only connected sockmap expects all vsocks to have a transport assigned, which is expressed in vsockproto::psockupdateskprot. However, there is an edge case where an unconnected...

5.5CVSS6.1AI score0.00197EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.16 views

Linux Distros Unpatched Vulnerability : CVE-2024-56664

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix race between element replace and close Element replace with a socket...

7CVSS6.3AI score0.00173EPSS
Exploits0References3
OSV
OSV
added 2025/02/26 2:11 a.m.15 views

CVE-2022-49369 amt: fix possible memory leak in amt_rcv()

In the Linux kernel, the following vulnerability has been resolved: amt: fix possible memory leak in amtrcv If an amt receives packets and it finds socket. If it can't find a socket, it should free a received skb. But it doesn't. So, a memory leak would possibly occur...

5.5CVSS5AI score0.00243EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/01/31 7:32 p.m.13 views

CVE-2025-21683

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix bpfskselectreuseport memory leak As pointed out in the original comment, lookup in sockmap can return a TCP ESTABLISHED socket. Such TCP socket may have had SOATTACHREUSEPORTEBPF set before it was ESTABLISHED. In other...

5.5CVSS6.4AI score0.00214EPSS
Exploits0References4
OSV
OSV
added 2024/12/02 1:44 p.m.9 views

CVE-2024-53124 net: fix data-races around sk->sk_forward_alloc

In the Linux kernel, the following vulnerability has been resolved: net: fix data-races around sk-skforwardalloc Syzkaller reported this warning: ------------ cut here ------------ WARNING: CPU: 0 PID: 16 at net/ipv4/afinet.c:156 inetsockdestruct+0x1c5/0x1e0 Modules linked in: CPU: 0 UID: 0 PID: ...

4.7CVSS5.9AI score0.00205EPSS
Exploits0References16
OSV
OSV
added 2024/11/05 9:19 a.m.15 views

LSN-0107-1 Kernel Live Patch Security Notice

In the Linux kernel, the following vulnerability has been resolved: inet: inetdefrag: prevent sk release while still in use iplocalout and other functions can pass skb-sk as function argument. If the skb is a fragment and reassembly happens before such function call returns, the sk must not be...

7.8CVSS7AI score0.00757EPSS
Exploits2References6
Rows per page
Query Builder