Lucene search
K

5 matches found

CVE
CVE
added 2026/05/01 2:15 p.m.18 views

CVE-2026-43016

The CVE-2026-43016 entries describe a use-after-free in the Linux kernel BPF sockmap path (sockmap) affecting AF_UNIX sockets. The issue occurs in sk_psock_verdict_data_ready(), when the peer’s sk_socket may be freed after an RCU grace period, while the sender holds the peer’s refcount. The root ...

7.8CVSS5.8AI score0.00125EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2024/07/12 1:15 p.m.3 views

DEBIAN-CVE-2024-40954

In the Linux kernel, the following vulnerability has been resolved: net: do not leave a dangling sk pointer, when socket creation fails It is possible to trigger a use-after-free by: attaching an fentry probe to sockrelease and the probe calling the bpfgetsocketcookie helper running traceroute -I...

7.8CVSS5.9AI score0.00255EPSS
Exploits0References1
OSV
OSV
added 2024/01/19 11:6 a.m.6 views

OESA-2024-1084 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: A flaw was found in the Bluetooth subsystem of the Linux kernel. A race condition between the btsockrecvmsg and btsockioctl functions could lead to a use-after-free on a socket buffer "skb". This flaw allows a local user to cause...

7CVSS6.8AI score0.00515EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2023/05/17 12:0 a.m.6 views

The vulnerability in the implementation of the NET/ROM network protocol of the Linux operating system allows a perpetrator to compromise the confidentiality, integrity, and accessibility of data.

The vulnerability in the implementation of the NET/ROM network protocol of the Linux operating system is related to the repeated use of the network descriptor socket when a connection has already been established in the nrrelease function within the net/netrom/afnetrom.c module. Exploiting this...

6.7CVSS6.7AI score0.0027EPSS
Exploits0References36Affected Software3
SUSE CVE
SUSE CVE
added 2023/02/15 3:29 a.m.3 views

SUSE CVE-2022-21504

The code in UEK6 U3 was missing an appropiate file descriptor count to be missing. This resulted in a use count error that allowed a file descriptor to a socket to be closed and freed while it was still in use by another portion of the kernel. An attack with local access can operate on the socket...

5.5CVSS6.3AI score0.00248EPSS
Exploits0References3
Rows per page
Query Builder