Lucene search
K

1466 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/08 2:21 p.m.8 views

CVE-2026-43372

In the Linux kernel, the following vulnerability has been resolved: net: dsa: microchip: Fix error path in PTP IRQ setup If requestthreadedirq fails during the PTP message IRQ setup, the newly created IRQ mapping is never disposed. Indeed, the kszptpirqsetup's error path only frees the mappings...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References6Affected Software1
UbuntuCve
UbuntuCve
added 2026/05/08 2:16 p.m.10 views

CVE-2026-43346

In the Linux kernel, the following vulnerability has been resolved: ice: ptp: don't WARN when controlling PF is unavailable In VFIO passthrough setups, it is possible to pass through only a PF which doesn't own the source timer. In that case the PTP controlling PF adapter-ctrlpf is never...

5.5CVSS5.7AI score0.00112EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/08 1:39 p.m.40 views

CVE-2026-43346 ice: ptp: don't WARN when controlling PF is unavailable

In the Linux kernel, the following vulnerability has been resolved: ice: ptp: don't WARN when controlling PF is unavailable In VFIO passthrough setups, it is possible to pass through only a PF which doesn't own the source timer. In that case the PTP controlling PF adapter-ctrlpf is never...

0.00112EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/05/08 1:39 p.m.5 views

CVE-2026-43346

In the Linux kernel, the following vulnerability has been resolved: ice: ptp: don't WARN when controlling PF is unavailable In VFIO passthrough setups, it is possible to pass through only a PF which doesn't own the source timer. In that case the PTP controlling PF adapter-ctrlpf is never...

5.5CVSS5.7AI score0.00112EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the issue of releasing and reusing resources during PTP reset operations in iavf, potentially...

7.8CVSS5.8AI score0.00124EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an incorrect PTP IRQ setting that fails to release the IRQ mapping, potentially leading to resour...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.14 views

PT-2026-39033

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the net: dsa: microchip component where the ksz ptp irq setup function fails to dispose of a newly created IRQ mapping if the request threaded irq function fails durin...

5.8AI score0.00122EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.13 views

PT-2026-39108

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the iavf driver. A worker introduced to cache PHC PTP Hardware Clock time is not stopped during reset or disable operations. This creates a race conditio...

7.8CVSS5.8AI score0.00124EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2026/05/08 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-43447

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iavf: fix PTP use-after-free during reset Commit 7c01dbfc8a1c5f iavf: periodically cache PHC time introduced a worker to cache PHC time, but failed to stop it...

7.8CVSS7.1AI score0.00124EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/07 2:17 a.m.10 views

SUSE CVE-2026-43173

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: xscale: Check for PTP support properly In ixp4xxgettsinfo ixp46xptpfind is called unconditionally despite this feature only existing on ixp46x, leading to the following splat from tcpdump: root@OpenWrt: tcpdump -vv...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/06 11:27 a.m.27 views

CVE-2026-43173 net: ethernet: xscale: Check for PTP support properly

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: xscale: Check for PTP support properly In ixp4xxgettsinfo ixp46xptpfind is called unconditionally despite this feature only existing on ixp46x, leading to the following splat from tcpdump: root@OpenWrt: tcpdump -vv...

0.00122EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/05/06 11:27 a.m.6 views

CVE-2026-43173

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: xscale: Check for PTP support properly In ixp4xxgettsinfo ixp46xptpfind is called unconditionally despite this feature only existing on ixp46x, leading to the following splat from tcpdump: root@OpenWrt: tcpdump -vv...

5.5CVSS5.8AI score0.00122EPSS
Exploits0
CVE
CVE
added 2026/05/06 11:27 a.m.17 views

CVE-2026-43173

CVE-2026-43173 is a Linux kernel vulnerability in the net: ethernet: xscale driver where ixp46x_ptp_find() is invoked unconditionally from ixp4xx_get_ts_info(), even on systems without ixp46x support. This NULL pointer dereference can lead to a kernel crash/DoS when reading PTP-related info via e...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.9 views

PT-2026-37513

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A kernel NULL pointer dereference occurs in the xscale ethernet component. The function ixp4xx get ts info calls ixp46x ptp find unconditionally, even though PTP Precision Time Protocol...

5.5CVSS5.8AI score0.00122EPSS
Exploits0
OSV
OSV
added 2026/05/02 12:51 a.m.11 views

CLSA-2026-1777453146 ntp: Fix of 2 CVEs

CVE-2018-7185: unauthenticated packet with a zero-origin timestamp can reset an authenticated interleave association leading to denial of service. - CVE-2019-8936: NULL pointer dereference triggered by an authenticated mode 6 control packet with no value field...

7.5CVSS7.3AI score0.09239EPSS
Exploits2References1
CloudLinux
CloudLinux
added 2026/05/02 12:51 a.m.12 views

ntp: Fix of 2 CVEs

CVE-2018-7185: unauthenticated packet with a zero-origin timestamp can reset an authenticated interleave association leading to denial of service. - CVE-2019-8936: NULL pointer dereference triggered by an authenticated mode 6 control packet with no value field...

7.5CVSS6.8AI score0.09239EPSS
Exploits2
Vulnrichment
Vulnrichment
added 2026/04/29 10:0 p.m.3 views

CVE-2026-7418 UTT HiPER 1250GW NTP strcpy buffer overflow

A vulnerability was determined in UTT HiPER 1250GW up to 3.2.7-210907-180535. This vulnerability affects the function strcpy of the file route/goform/NTP. Executing a manipulation of the argument Profile can lead to buffer overflow. The attack may be launched remotely. The exploit has been public...

9CVSS8.6AI score0.00563EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/29 10:0 p.m.32 views

CVE-2026-7418 UTT HiPER 1250GW NTP strcpy buffer overflow

A vulnerability was determined in UTT HiPER 1250GW up to 3.2.7-210907-180535. This vulnerability affects the function strcpy of the file route/goform/NTP. Executing a manipulation of the argument Profile can lead to buffer overflow. The attack may be launched remotely. The exploit has been public...

9CVSS0.00563EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/04/29 10:0 p.m.4 views

CVE-2026-7418

A vulnerability was determined in UTT HiPER 1250GW up to 3.2.7-210907-180535. This vulnerability affects the function strcpy of the file route/goform/NTP. Executing a manipulation of the argument Profile can lead to buffer overflow. The attack may be launched remotely. The exploit has been public...

9CVSS8.6AI score0.00563EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/04/29 10:0 p.m.8 views

EUVD-2026-26295

A vulnerability was determined in UTT HiPER 1250GW up to 3.2.7-210907-180535. This vulnerability affects the function strcpy of the file route/goform/NTP. Executing a manipulation of the argument Profile can lead to buffer overflow. The attack may be launched remotely. The exploit has been public...

9CVSS8.6AI score0.00563EPSS
Exploits0References4
Rows per page
Query Builder