CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

53 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: iouring: Fixed a null-ptr-deref in iotctxexitcb Syzkaller reported a NULL deref bug as follows: BUG: KASAN: null-ptr-deref in iotctxexitcb+0x53/0xd3 A size 4 read at address 0000000000000138 by task file1/1955 CPU: 1 PID: 1955...

5.5CVSS6.1AI score0.00026EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: posix-cpu-timers: Fixed a race condition between handleposixcputimers and posixcputimerdel. If a non-autoreaping task that exits has already called exitnotify and calls handleposixcputimers from the IRQ, it may be reaped by its...

7.4CVSS6.4AI score0.00135EPSS

Exploits8References2

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: perf: Fix hang while freeing sigtrap event Perf can hang while freeing a sigtrap event if a related deferred signal hadn't managed to be sent before the file got closed: perfeventoverflow taskworkaddperfpendingtask fput...

5.5CVSS6.1AI score0.00065EPSS

Exploits0References1

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux - уязвимость в linux-5.15, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: perf: Fixed an event leak that occurred during execution and file release. The pending task work related to perf is never waited for when a matching event occurs. In the case of a child event released directly via freeevent,...

5.5CVSS6.8AI score0.00013EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: perf: Fix for event leak upon exit When a task is scheduled out, pending sigtrap deliveries are deferred until the target task resumes in user space through taskwork. However, failures during the process of adding an event’s...

5.5CVSS6.4AI score0.00013EPSS

Exploits0References2

EUVD•added 2026/03/20 9:32 a.m.•2 views

EUVD-2026-13611

In the Linux kernel, the following vulnerability has been resolved: iouring: ensure ctx-rings is stable for task work flags manipulation If DEFERTASKRUN | SETUPTASKRUN is used and task work is added while the ring is being resized, it's possible for the OR'ing of IORINGSQTASKRUN to happen in the...

5.6AI score0.00017EPSS

Exploits0References4

OSV•added 2026/03/20 8:8 a.m.•1 views

CVE-2026-23275 io_uring: ensure ctx->rings is stable for task work flags manipulation

7.8CVSS5.7AI score0.00017EPSS

Exploits0References6

Debian CVE•added 2026/03/20 8:8 a.m.•1 views

CVE-2026-23275

7.8CVSS5.2AI score0.00017EPSS

Exploits0

CVE•added 2026/03/20 8:8 a.m.•11 views

CVE-2026-23275

CVE-2026-23275 (Linux kernel, io_uring): The issue arises when DEFER_TASKRUN | SETUP_TASKRUN are used and task work is added while the ring is resized, allowing an overlap window where IORING_SQ_TASKRUN could be OR’ed on the old/new rings during swapping. The fix adds a 2nd rings pointer, →rings_...

7.8CVSS5.6AI score0.00017EPSS

Exploits0References3Affected Software1

Cvelist•added 2026/03/20 8:8 a.m.•17 views

CVE-2026-23275 io_uring: ensure ctx->rings is stable for task work flags manipulation

7.8CVSS0.00017EPSS

Exploits0References3

CNNVD•added 2026/03/20 12:0 a.m.•3 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the instability of the ctx-rings pointer during the task work flag operation by iouring. This...

7.8CVSS6.9AI score0.00017EPSS

Exploits0References5

Tenable Nessus•added 2026/03/20 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2026-23275

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iouring: ensure ctx-rings is stable for task work flags manipulation If DEFERTASKRUN | SETUPTASKRUN is used and task work is added while the ring is being...

7.8CVSS7AI score0.00017EPSS

Exploits0References3

Positive Technologies•added 2026/01/01 12:0 a.m.•1 views

PT-2026-26580

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the io uring subsystem. Specifically, a condition exists where, if DEFER TASKRUN and SETUP TASKRUN are utilized concurrently with ring resizing,...

5.8AI score0.00017EPSS

Exploits0References8

RedHat Linux•added 2025/11/11 9:13 a.m.•0 views

kernel: io_uring: check if iowq is killed before queuing

In the Linux kernel, the following vulnerability has been resolved: iouring: check if iowq is killed before queuing task work can be executed after the task has gone through iouring termination, whether it's the final taskwork run or the fallback path. In this case, task work will find -iowq bein...

5.5CVSS6.8AI score0.00032EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-13078

Malicious code in bioql PyPI...

7.3AI score0.00065EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-53357

Malicious code in bioql PyPI...

7.3AI score0.00032EPSS

Exploits0References4