Lucene search
K

14 matches found

RedHat Linux
RedHat Linux
added 2026/06/25 11:21 p.m.5 views

kernel: tcp: fix potential race in tcp_v6_syn_recv_sock()

A flaw was found in the Linux kernel. A race condition exists in the TCP Transmission Control Protocol IPv6 Internet Protocol version 6 socket handling, specifically within the tcpv6synrecvsock function. This occurs because a child socket becomes visible in the TCP hash table before its...

9.8CVSS5.8AI score0.0028EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/29 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-31541

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tracing: Fix tracemarker copy link list updates When the copytracemarker option is enabled for an instance, anything written into /sys/kernel/tracing/tracemarke...

7.8CVSS7.1AI score0.00127EPSS
Exploits0References2
CVE
CVE
added 2026/04/03 3:15 p.m.23 views

CVE-2026-23450

CVE-2026-23450 (Linux kernel): The issue stems from a race in the SMC TCP path (net/smc) where, during close of an SMC listen socket, sk_user_data can be NULL or the smc_sock freed, causing a NULL dereference or use-after-free in smc_tcp_syn_recv_sock() when accessed under rcu/protected context. ...

9.8CVSS5.7AI score0.00488EPSS
Exploits0References7Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/03 3:15 p.m.2 views

CVE-2026-23450

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix NULL dereference and UAF in smctcpsynrecvsock Syzkaller reported a panic in smctcpsynrecvsock 1. smctcpsynrecvsock is called in the TCP receive path softirq via icskafops-synrecvsock on the clcsock TCP listening...

5.7AI score0.00488EPSS
Exploits0References8Affected Software1
NVD
NVD
added 2025/12/30 1:16 p.m.6 views

CVE-2023-54271

In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: Fix NULL deref caused by blkgpolicydata being installed before init blk-iocost sometimes causes the following crash: BUG: kernel NULL pointer dereference, address: 00000000000000e0 ... RIP: 0010:rawspinlock+0x17/0x30...

0.00168EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/01/22 2:15 a.m.6 views

kernel: i40e: fix race condition by adding filter's intermediate sync state

In the Linux kernel, the following vulnerability has been resolved: i40e: fix race condition by adding filter's intermediate sync state Fix a race condition in the i40e driver that leads to MAC/VLAN filters becoming corrupted and leaking. Address the issue that occurs under heavy load when multip...

4.7CVSS6.8AI score0.00175EPSS
Exploits0References5
OSV
OSV
added 2024/06/25 3:15 p.m.3 views

DEBIAN-CVE-2024-37354

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix crash on racing fsync and size-extending write into prealloc We have been seeing crashes on duplicate keys in btrfssetitemkeysafe: BTRFS critical device vdb: slot 4 key 450 108 8192 new key 450 108 8192 ------------ cu...

4.7CVSS5.3AI score0.00166EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/05/23 3:4 a.m.2 views

SUSE CVE-2021-47335

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid racing on fsyncentryslab by multi filesystem instances As syzbot reported, there is an use-after-free issue during f2fs recovery: Use-after-free write at 0xffff88823bc16040 in kfence-10:...

5.5CVSS6.5AI score0.00232EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/07/11 12:0 a.m.4 views

PT-2023-3846 · Microsoft · Windows Clip Service +1

Name of the Vulnerable Software and Affected Versions: Windows Clip Service affected versions not specified Description: The issue is related to synchronization errors in the Windows Clip Service, specifically a race condition. This could allow an attacker to elevate their privileges...

7.8CVSS9.2AI score0.00284EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2023/03/22 12:0 a.m.7 views

The vulnerability in the implementation of the Point to Point Tunneling Protocol (PPTP) network protocol for Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Point to Point Tunneling Protocol PPTP implementation in Windows operating systems is related to synchronization errors when using a shared resource “Race Situation”. Exploiting this vulnerability allows an attacker who operates remotely to execute arbitrary code...

8.1CVSS7.5AI score0.00834EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/03/14 12:0 a.m.3 views

PT-2023-1777 · Microsoft · Windows Brokerinfrastructure Service +1

Name of the Vulnerable Software and Affected Versions: Windows BrokerInfrastructure Service affected versions not specified Description: The issue is related to an elevation-of-privilege vulnerability in the Windows BrokerInfrastructure Service. It is caused by synchronization errors when using a...

7CVSS9.2AI score0.00246EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2022/12/07 12:0 a.m.16 views

PT-2022-7702

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to the simultaneous execution of commands using a shared resource with incorrect synchronization in the Linux kernel's drm/vmwgfx component. This can lead to a crash...

5.5CVSS6.3AI score0.00225EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2022/05/10 12:0 a.m.4 views

PT-2022-2595 · Microsoft · Windows Point-To-Point Tunneling Protocol +1

Name of the Vulnerable Software and Affected Versions: Windows Point-to-Point Tunneling Protocol affected versions not specified Description: The issue is related to the implementation of the Point to Point Tunneling Protocol PPTP in Windows operating systems, specifically concerning errors in...

9.3CVSS9.6AI score0.73097EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2017/10/19 2:48 p.m.3 views

kernel: Heap out-of-bounds read in AF_PACKET sockets

A race condition issue was found in the way the raw packet socket implementation in the Linux kernel networking subsystem handled synchronization. A local user able to open a raw packet socket requires the CAPNETRAW capability could use this to waste resources in the kernel's ring buffer or...

7.8CVSS7.2AI score0.00374EPSS
Exploits0References4
Rows per page
Query Builder