Lucene search
+L

1617 matches found

Cvelist
Cvelist
added 2026/05/08 2:21 p.m.34 views

CVE-2026-43404 mm: Fix a hmm_range_fault() livelock / starvation problem

In the Linux kernel, the following vulnerability has been resolved: mm: Fix a hmmrangefault livelock / starvation problem If hmmrangefault fails a foliotrylock in doswappage, trying to acquire the lock of a device-private folio for migration, to ram, the function will spin until it succeeds...

0.00093EPSS
Exploits0References3
OSV
OSV
added 2026/05/08 2:21 p.m.2 views

CVE-2026-43404 mm: Fix a hmm_range_fault() livelock / starvation problem

In the Linux kernel, the following vulnerability has been resolved: mm: Fix a hmmrangefault livelock / starvation problem If hmmrangefault fails a foliotrylock in doswappage, trying to acquire the lock of a device-private folio for migration, to ram, the function will spin until it succeeds...

5.5CVSS5.8AI score0.00093EPSS
Exploits0References6
NVD
NVD
added 2026/05/08 2:16 p.m.9 views

CVE-2026-43303

In the Linux kernel, the following vulnerability has been resolved: mm/pagealloc: clear page-private in freepagesprepare Several subsystems slub, shmem, ttm, etc. use page-private but don't clear it before freeing pages. When these pages are later allocated as high-order pages and split via...

7.8CVSS0.0013EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2026/05/08 2:16 p.m.9 views

CVE-2026-43303

In the Linux kernel, the following vulnerability has been resolved: mm/pagealloc: clear page-private in freepagesprepare Several subsystems slub, shmem, ttm, etc. use page-private but don't clear it before freeing pages. When these pages are later allocated as high-order pages and split via...

7.8CVSS5.8AI score0.0013EPSS
Exploits0References5
OSV
OSV
added 2026/05/08 2:16 p.m.16 views

UBUNTU-CVE-2026-43303

In the Linux kernel, the following vulnerability has been resolved: mm/pagealloc: clear page-private in freepagesprepare Several subsystems slub, shmem, ttm, etc. use page-private but don't clear it before freeing pages. When these pages are later allocated as high-order pages and split via...

7.8CVSS5.8AI score0.0013EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/05/08 1:11 p.m.46 views

CVE-2026-43303 mm/page_alloc: clear page->private in free_pages_prepare()

In the Linux kernel, the following vulnerability has been resolved: mm/pagealloc: clear page-private in freepagesprepare Several subsystems slub, shmem, ttm, etc. use page-private but don't clear it before freeing pages. When these pages are later allocated as high-order pages and split via...

7.8CVSS0.0013EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/08 1:11 p.m.5 views

CVE-2026-43303

In the Linux kernel, the following vulnerability has been resolved: mm/pagealloc: clear page-private in freepagesprepare Several subsystems slub, shmem, ttm, etc. use page-private but don't clear it before freeing pages. When these pages are later allocated as high-order pages and split via...

7.8CVSS6.5AI score0.0013EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2026/05/08 1:11 p.m.2 views

CVE-2026-43303 mm/page_alloc: clear page->private in free_pages_prepare()

In the Linux kernel, the following vulnerability has been resolved: mm/pagealloc: clear page-private in freepagesprepare Several subsystems slub, shmem, ttm, etc. use page-private but don't clear it before freeing pages. When these pages are later allocated as high-order pages and split via...

7.8CVSS5.9AI score0.0013EPSS
Exploits0References9
CVE
CVE
added 2026/05/08 1:11 p.m.42 views

CVE-2026-43303

The CVE-2026-43303 issue affects the Linux kernel’s memory management in mm/page_alloc. Subsystems such as slub, shmem, and ttm expose page->private and fail to clear it before freeing pages. If freed pages are later allocated as high-order pages and split, tail pages may retain stale page-&gt...

7.8CVSS5.8AI score0.0013EPSS
Exploits0References6Affected Software1
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the freepagesprepare function not clearing the page-private field. This may result in the retenti...

7.8CVSS5.8AI score0.0013EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.11 views

PT-2026-38945

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description Certain subsystems, including slub, shmem, and ttm, fail to clear the page-private variable before freeing pages. When these pages are subsequently allocated as high-order pages and spli...

7.8CVSS7.3AI score0.0013EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.13 views

PT-2026-39065

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A livelock or starvation issue exists in the Linux kernel. When hmm range fault fails a folio trylock in do swap page while attempting to acquire the lock of a device-private folio for...

5.8AI score0.00093EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/05/08 12:0 a.m.17 views

Linux Distros Unpatched Vulnerability : CVE-2026-43303

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mm/pagealloc: clear page-private in freepagesprepare Several subsystems slub, shmem, ttm, etc. use page-private but don't clear it before freeing pages. When...

7.8CVSS7.2AI score0.0013EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/06 9:31 p.m.8 views

EUVD-2026-28192

OpenClaw before 2026.4.22 contains a time-of-check/time-of-use race condition in the OpenShell filesystem bridge that allows attackers to read files outside the intended mount root. Attackers can exploit symlink swaps during filesystem operations to bypass sandbox restrictions and access...

6CVSS5.8AI score0.00208EPSS
Exploits0References4
OSV
OSV
added 2026/05/06 9:31 p.m.5 views

GHSA-6F72-9GXX-98MJ Duplicate Advisory: OpenClaw: OpenShell FS bridge writes stay pinned to the sandbox mount root

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-wppj-c6mr-83jj. This link is maintained to preserve external references. Original Description OpenClaw before 2026.4.22 contains a time-of-check/time-of-use race condition in OpenShell sandbox filesystem writes...

6CVSS5.7AI score0.02442EPSS
Exploits0References4
NVD
NVD
added 2026/05/05 4:16 p.m.11 views

CVE-2026-43070

In the Linux kernel, the following vulnerability has been resolved: bpf: Reset register ID for BPFEND value tracking When a register undergoes a BPFEND byte swap operation, its scalar value is mutated in-place. If this register previously shared a scalar ID with another register e.g., after an r1...

7.8CVSS0.00118EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/05 11:25 a.m.8 views

EUVD-2026-27269

OpenClaw before 2026.4.10 contains a time-of-check-time-of-use vulnerability in the validateScriptFileForShellBleed function that allows local attackers to bypass workspace boundary checks. An attacker with workspace write access can race-condition swap the target file between validation and...

2.5CVSS5.8AI score0.00079EPSS
Exploits0References3
OSV
OSV
added 2026/05/05 11:25 a.m.5 views

CVE-2026-43529 OpenClaw < 2026.4.10 - Time-of-Check-Time-of-Use (TOCTOU) Race Condition in exec Script Preflight Validator

OpenClaw before 2026.4.10 contains a time-of-check-time-of-use vulnerability in the validateScriptFileForShellBleed function that allows local attackers to bypass workspace boundary checks. An attacker with workspace write access can race-condition swap the target file between validation and...

2CVSS6AI score0.00079EPSS
Exploits0References5
Snyk
Snyk
added 2026/05/04 9:7 p.m.12 views

Time-of-check Time-of-use (TOCTOU) Race Condition

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Time-of-check Time-of-use TOCTOU Race Condition due to a race condition in the process that reads and verifies files before returning bytes. An attacker can access data outside the intend...

8.3CVSS5.8AI score0.00208EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/04 12:0 a.m.8 views

Oracle Linux 10 : vim (ELSA-2026-11389)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-11389 advisory. - RHEL-159615 CVE-2026-33412 vim: Vim: Arbitrary code execution via command injection in glob function - RHEL-155409 CVE-2026-28421 vim: Vim: Denial of servic...

8.2CVSS6.4AI score0.01162EPSS
Exploits0References2
Rows per page
Query Builder