4 matches found
CVE-2026-31404 NFSD: Defer sub-object cleanup in export put callbacks
In the Linux kernel, the following vulnerability has been resolved: NFSD: Defer sub-object cleanup in export put callbacks svcexportput calls pathput and authdomainput immediately when the last reference drops, before the RCU grace period. RCU readers in eshow and cshow access both expath via...
PT-2026-30187
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the NFS daemon NFSD related to the handling of sub-object cleanup during export release. Specifically, the svc export put function calls path put...
FreeBSD : libX11 -- Sub-object overflows (734b8f46-773d-4fef-bed3-61114fe8e4c5)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 734b8f46-773d-4fef-bed3-61114fe8e4c5 advisory. - The X.Org project reports: The functions in src/InitExt.c in libX11 prior to 1.8.6 do not check that...
GHSA-PWGM-JVQV-6V8P Plone anonymous access to sub-objects in CMFEditions where KwAsAttributes classes were publishable
The CMFEditions component 2.x in Plone 4.0.x through 4.0.9, 4.1, and 4.2 through 4.2a2 does not prevent the KwAsAttributes classes from being publishable, which allows remote attackers to access sub-objects via unspecified vectors, a different vulnerability than CVE-2011-3587...