Lucene search
+L

334 matches found

F5 Networks
F5 Networks
added 2026/02/03 7:48 p.m.14 views

K000159873: Linux kernel vulnerability CVE-2025-39881

Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: kernfs: Fix UAF in polling when open file is released A use-after-free UAF vulnerability was identified in the PSI Pressure Stall Information monitoring mechanism: BUG: KASAN: slab-use-after-free in...

7.8CVSS5.2AI score0.0014EPSS
Exploits0
OSV
OSV
added 2026/01/23 2:28 a.m.6 views

GO-2026-4322 Traefik's ACME TLS-ALPN fast path lacks timeouts and close on handshake stall in github.com/traefik/traefik

Traefik's ACME TLS-ALPN fast path lacks timeouts and close on handshake stall in github.com/traefik/traefik...

7.5CVSS5.4AI score0.00321EPSS
Exploits0References4
EUVD
EUVD
added 2026/01/15 10:58 p.m.7 views

EUVD-2026-2949

Traefik's ACME TLS-ALPN fast path lacks timeouts and close on handshake stall...

5.9CVSS6.4AI score0.00321EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2026/01/15 10:58 p.m.12 views

Traefik's ACME TLS-ALPN fast path lacks timeouts and close on handshake stall

Impact There is a potential vulnerability in Traefik ACME TLS certificates' automatic generation: the ACME TLS-ALPN fast path can allow unauthenticated clients to tie up goroutines and file descriptors indefinitely when the ACME TLS challenge is enabled. A malicious client can open many...

7.5CVSS7AI score0.00321EPSS
Exploits0References6Affected Software2
OSV
OSV
added 2026/01/15 10:58 p.m.3 views

GHSA-CWJM-3F7H-9HWQ Traefik's ACME TLS-ALPN fast path lacks timeouts and close on handshake stall

Impact There is a potential vulnerability in Traefik ACME TLS certificates' automatic generation: the ACME TLS-ALPN fast path can allow unauthenticated clients to tie up goroutines and file descriptors indefinitely when the ACME TLS challenge is enabled. A malicious client can open many...

5.9CVSS6.9AI score0.00321EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/01/15 10:44 p.m.3 views

CVE-2026-22045 Traefik's ACME TLS-ALPN fast path lacks timeouts and close on handshake stall

Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.35 and 3.6.7, there is a potential vulnerability in Traefik ACME TLS certificates' automatic generation: the ACME TLS-ALPN fast path can allow unauthenticated clients to tie up go routines and file descriptors indefinitely when the...

5.9CVSS5.6AI score0.00321EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/01/15 10:44 p.m.23 views

CVE-2026-22045 Traefik's ACME TLS-ALPN fast path lacks timeouts and close on handshake stall

Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.35 and 3.6.7, there is a potential vulnerability in Traefik ACME TLS certificates' automatic generation: the ACME TLS-ALPN fast path can allow unauthenticated clients to tie up go routines and file descriptors indefinitely when the...

5.9CVSS0.00321EPSS
Exploits0References4
OSV
OSV
added 2026/01/15 10:44 p.m.5 views

CVE-2026-22045 Traefik's ACME TLS-ALPN fast path lacks timeouts and close on handshake stall

Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.35 and 3.6.7, there is a potential vulnerability in Traefik ACME TLS certificates' automatic generation: the ACME TLS-ALPN fast path can allow unauthenticated clients to tie up go routines and file descriptors indefinitely when the...

5.9CVSS6.7AI score0.00321EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2026/01/15 10:44 p.m.7 views

CVE-2026-22045

Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.35 and 3.6.7, there is a potential vulnerability in Traefik ACME TLS certificates' automatic generation: the ACME TLS-ALPN fast path can allow unauthenticated clients to tie up go routines and file descriptors indefinitely when the...

7.5CVSS5.6AI score0.00321EPSS
Exploits0References4
NVD
NVD
added 2026/01/13 4:15 p.m.5 views

CVE-2025-68770

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix XDPTX path For XDPTX action in bnxtrxxdp, clearing of the event flags is not correct. bnxtpollwork - bnxtrxpkt - bnxtrxxdp may be looping within NAPI and some event flags may be set in earlier iterations. In particula...

0.00166EPSS
Exploits0References3
OSV
OSV
added 2026/01/09 2:7 p.m.14 views

OESA-2026-1049 squid security update

Squid is a high-performance proxy caching server. It handles all requests in a single, non-blocking, I/O-driven process and keeps meta data and implements negative caching of failed requests. Security Fixes: A flaw was found in Squid. The limits applied for validation of HTTP response headers are...

7.5CVSS6.6AI score0.05229EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.15 views

PT-2026-27716

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a use-after-free issue within the pipapo set type in the netfilter module. A large number of expired elements can cause the garbage collection process to run fo...

7.8CVSS5.8AI score0.00125EPSS
Exploits0
CVE
CVE
added 2025/12/24 12:23 p.m.14 views

CVE-2023-54052

The CVE-2023-54052 issue affects the Linux kernel's mt76 mt7921 wireless driver. When AMSDU frames are formed, TXS may be dropped, causing SKBs to be held in the driver and temporarily halt networking. Root cause per sources: skb leak due to TXS handling in AMSDU. Mitigation described in advisori...

6AI score0.002EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.7 views

PT-2025-52976

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free UAF issue exists in the Linux kernel related to PSI Pressure Stall Information trigger polling within cgroups. The issue occurs when destroying a psi trigger during cgro...

6.3AI score0.00158EPSS
Exploits0
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a psi trigger destruction on cgroup removal leading to a post-release reuse issue that could result in memor...

6.1AI score0.00158EPSS
Exploits0References4
OSV
OSV
added 2025/12/16 2:4 p.m.5 views

CVE-2025-68232 veth: more robust handing of race to avoid txq getting stuck

In the Linux kernel, the following vulnerability has been resolved: veth: more robust handing of race to avoid txq getting stuck Commit dc82a33297fc "veth: apply qdisc backpressure on full ptrring to reduce TX drops" introduced a race condition that can lead to a permanently stalled TXQ. This was...

6.2AI score0.00161EPSS
Exploits0References6
OSV
OSV
added 2025/11/29 3:15 a.m.3 views

ALPINE-CVE-2025-58436

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a client that connects to cupsd but sends slow messages, e.g. only one byte per second, delays cupsd as a whole, such that it becomes unusable by other clients. This issue...

5.5CVSS5.8AI score0.00199EPSS
Exploits1References1
OSV
OSV
added 2025/11/29 3:15 a.m.6 views

AZL-71143 CVE-2025-58436 affecting package cups for versions less than 2.4.16-1

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a client that connects to cupsd but sends slow messages, e.g. only one byte per second, delays cupsd as a whole, such that it becomes unusable by other clients. This issue...

5.5CVSS5.9AI score0.00199EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.6 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988676)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988676 advisory. In the Linux kernel, the following vulnerability has been resolved: net/sched: fqpie: prevent dismantle issue For some reason, fqpiedestroy did not copy working code...

5.5CVSS6AI score0.00236EPSS
Exploits0References4
CVE
CVE
added 2025/10/22 1:23 p.m.25 views

CVE-2023-53727

CVE-2023-53727 (Linux kernel) : The vulnerability resides in net/sched fq_pie where fq_pie_timer() could stall when configuring a very high number of flows (65536). The fix adds logic to yield the CPU every 2048 flows, reducing stall time to under 150 microseconds on debug kernels and preventing ...

6AI score0.00186EPSS
Exploits0References5
Rows per page
Query Builder