Lucene search
K

179 matches found

NVD
NVD
added 2025/09/05 6:15 p.m.4 views

CVE-2025-39673

In the Linux kernel, the following vulnerability has been resolved: ppp: fix race conditions in pppfillforwardpath pppfillforwardpath has two race conditions: 1. The ppp-channels list can change between listempty and listfirstentry, as ppplock is not held. If the only channel is deleted in...

4.7CVSS0.00105EPSS
Exploits0References8
OSV
OSV
added 2025/09/05 6:15 p.m.1 views

DEBIAN-CVE-2025-39673

In the Linux kernel, the following vulnerability has been resolved: ppp: fix race conditions in pppfillforwardpath pppfillforwardpath has two race conditions: 1. The ppp-channels list can change between listempty and listfirstentry, as ppplock is not held. If the only channel is deleted in...

4.7CVSS4.9AI score0.00105EPSS
Exploits0References1
OSV
OSV
added 2025/09/05 6:15 p.m.6 views

AZL-73647 CVE-2025-39673 affecting package kernel for versions less than 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: ppp: fix race conditions in pppfillforwardpath pppfillforwardpath has two race conditions: 1. The ppp-channels list can change between listempty and listfirstentry, as ppplock is not held. If the only channel is deleted in...

4.7CVSS5.6AI score0.00105EPSS
Exploits0References1
CVE
CVE
added 2025/09/05 5:20 p.m.30 views

CVE-2025-39673

Summary (CVE-2025-39673) : The issue is in the Linux kernel’s ppp_fill_forward_path() where two race conditions could occur in the ppp channels handling. The patch uses a lockless RCU approach: test and access the first channel with list_first_or_null_rcu(); modify channel list with RCU-variants ...

4.7CVSS5.8AI score0.00105EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2025/09/05 5:20 p.m.13 views

CVE-2025-39673 ppp: fix race conditions in ppp_fill_forward_path

In the Linux kernel, the following vulnerability has been resolved: ppp: fix race conditions in pppfillforwardpath pppfillforwardpath has two race conditions: 1. The ppp-channels list can change between listempty and listfirstentry, as ppplock is not held. If the only channel is deleted in...

0.00105EPSS
Exploits0References6
OSV
OSV
added 2025/09/05 5:20 p.m.8 views

CVE-2025-39673 ppp: fix race conditions in ppp_fill_forward_path

In the Linux kernel, the following vulnerability has been resolved: ppp: fix race conditions in pppfillforwardpath pppfillforwardpath has two race conditions: 1. The ppp-channels list can change between listempty and listfirstentry, as ppplock is not held. If the only channel is deleted in...

4.7CVSS6AI score0.00105EPSS
Exploits0References11
Patchstack
Patchstack
added 2025/08/27 12:0 a.m.6 views

Drupal Synchronize composer.json With Contrib Modules module * - Authenticated Other Vulnerability Type vulnerability

Authenticated Other Vulnerability Type vulnerability discovered by Drupal Security Site in WordPress Module Synchronize composer.json With Contrib Modules versions...

5.3CVSS6.8AI score0.00234EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/08/24 4:7 p.m.5 views

CVE-2025-38621

In the Linux kernel, the following vulnerability has been resolved: md: make rdevaddable usable for rcu mode Our testcase trigger panic: BUG: kernel NULL pointer dereference, address: 00000000000000e0 ... Oops: Oops: 0000 1 SMP NOPTI CPU: 2 UID: 0 PID: 85 Comm: kworker/2:1 Not tainted 6.16.0+ 94...

4.4CVSS5.1AI score0.00128EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-38485

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iio: accel: fxls8962af: Fix use after free in fxls8962affifoflush fxls8962affifoflush uses indiodev-activescanmask with iioforeachactivechannel without making...

7.8CVSS6.8AI score0.00151EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2025-38440

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/mlx5e: Fix race between DIM disable and netdim There's a race between disabling DIM and NAPI callbacks using the dim pointer on the RQ or SQ. If NAPI checks...

4.7CVSS6.5AI score0.0011EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/07/29 11:23 p.m.4 views

SUSE CVE-2025-38440

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix race between DIM disable and netdim There's a race between disabling DIM and NAPI callbacks using the dim pointer on the RQ or SQ. If NAPI checks the DIM state bit and sees it still set, it assumes rq-dim or sq-dim...

4.7CVSS6.4AI score0.0011EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2025/07/28 11:22 p.m.4 views

SUSE CVE-2025-38485

In the Linux kernel, the following vulnerability has been resolved: iio: accel: fxls8962af: Fix use after free in fxls8962affifoflush fxls8962affifoflush uses indiodev-activescanmask with iioforeachactivechannel without making sure the indiodev stays in buffer mode. There is a race if indiodev...

7CVSS6.6AI score0.00151EPSS
Exploits0References23
OSV
OSV
added 2025/07/28 12:15 p.m.5 views

AZL-73452 CVE-2025-38485 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: iio: accel: fxls8962af: Fix use after free in fxls8962affifoflush fxls8962affifoflush uses indiodev-activescanmask with iioforeachactivechannel without making sure the indiodev stays in buffer mode. There is a race if indiodev...

7.8CVSS5.8AI score0.00151EPSS
Exploits0References1
OSV
OSV
added 2025/07/28 12:15 p.m.14 views

AZL-65934 CVE-2025-38485 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: iio: accel: fxls8962af: Fix use after free in fxls8962affifoflush fxls8962affifoflush uses indiodev-activescanmask with iioforeachactivechannel without making sure the indiodev stays in buffer mode. There is a race if indiodev...

7.8CVSS5.8AI score0.00151EPSS
Exploits0References1
OSV
OSV
added 2025/07/25 4:15 p.m.3 views

DEBIAN-CVE-2025-38440

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix race between DIM disable and netdim There's a race between disabling DIM and NAPI callbacks using the dim pointer on the RQ or SQ. If NAPI checks the DIM state bit and sees it still set, it assumes rq-dim or sq-dim...

4.7CVSS4.9AI score0.0011EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/07/25 3:27 p.m.6 views

CVE-2025-38440

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix race between DIM disable and netdim There's a race between disabling DIM and NAPI callbacks using the dim pointer on the RQ or SQ. If NAPI checks the DIM state bit and sees it still set, it assumes rq-dim or sq-dim...

4.7CVSS5.7AI score0.0011EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2025/05/08 6:26 a.m.91 views

CVE-2025-37806

CVE-2025-37806 affects Linux kernel fs/ntfs3 write path. A NULL pointer dereference can occur in __generic_file_write_iter when an ioctl clears the file’s compress flag during a write, causing is_compressed() to return 0 and the code to call the wrong AOP, leading to a null dereference in write_b...

5.5CVSS5.2AI score0.00164EPSS
Exploits0References3Affected Software1
SUSE CVE
SUSE CVE
added 2025/04/02 8:57 a.m.3 views

SUSE CVE-2025-21938

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix 'scheduling while atomic' in mptcppmnlappendnewlocaladdr If multiple connection requests attempt to create an implicit mptcp endpoint in parallel, more than one caller may end up in mptcppmnlappendnewlocaladdr because...

5.5CVSS7.5AI score0.00135EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2025/02/27 3:10 a.m.9 views

SUSE CVE-2022-49215

In the Linux kernel, the following vulnerability has been resolved: xsk: Fix race at socket teardown Fix a race in the xsk socket teardown code that can lead to a NULL pointer dereference splat. The current xsk unbind code in xskunbinddev starts by setting xs-state to XSKUNBOUND, sets xs-dev to...

5.5CVSS6.7AI score0.00169EPSS
Exploits0References5
OSV
OSV
added 2025/02/27 2:15 a.m.3 views

DEBIAN-CVE-2025-21727

In the Linux kernel, the following vulnerability has been resolved: padata: fix UAF in padatareorder A bug was found when run ltp test: BUG: KASAN: slab-use-after-free in padatafindnext+0x29/0x1a0 Read of size 4 at addr ffff88bbfe003524 by task kworker/u113:2/3039206 CPU: 0 PID: 3039206 Comm:...

7.8CVSS5.6AI score0.002EPSS
Exploits0References1
Rows per page
Query Builder