Lucene search
K

108 matches found

OSV
OSV
added 2026/02/15 7:33 p.m.5 views

SUSE-SU-2026:0546-1 Security update for the Linux Kernel (Live Patch 13 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise kernel 6.4.0-150600.23.60 fixes various security issues The following security issues were fixed: - CVE-2025-38352: posix-cpu-timers: fix race between handleposixcputimers and posixcputimerdel bsc1249205. - CVE-2025-39742: RDMA: hfi1: fix possible...

7.4CVSS8.3AI score0.01345EPSS
Exploits8References9
OSV
OSV
added 2026/02/15 11:4 a.m.3 views

SUSE-SU-2026:0535-1 Security update for the Linux Kernel (Live Patch 28 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise kernel 5.14.21-150500.55.113 fixes various security issues The following security issues were fixed: - CVE-2023-53321: wifi: mac80211hwsim: drop short frames bsc1250314. - CVE-2025-38111: net/mdiobus: Fix potential out-of-bounds read/write access...

7.4CVSS6.6AI score0.01345EPSS
Exploits8References9
OSV
OSV
added 2026/02/13 11:4 p.m.3 views

SUSE-SU-2026:0515-1 Security update for the Linux Kernel (Live Patch 65 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise kernel 4.12.14-122.247 fixes various security issues The following security issues were fixed: - CVE-2023-53321: wifi: mac80211hwsim: drop short frames bsc1250314. - CVE-2025-38352: posix-cpu-timers: fix race between handleposixcputimers and...

7.4CVSS6.6AI score0.01345EPSS
Exploits8References8
OSV
OSV
added 2026/02/12 11:26 a.m.1 views

SUSE-SU-2026:0472-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 Azure kernel was updated to fix various security issues The following security issues were fixed: - CVE-2023-54013: interconnect: Fix locking for runpm vs reclaim bsc1256280. - CVE-2025-39880: libceph: fix invalid accesses to cephconnectionv1info bsc1250388. -...

9.8CVSS7.2AI score0.00424EPSS
Exploits2References372
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.4 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005184)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005184 advisory. In the Linux kernel, the following vulnerability has been resolved: tcp/dccp: Don't use timerpending in reqskqueueunlink. Martin KaFai Lau reported use-after-free 0...

7.8CVSS6.7AI score0.00241EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/12/24 1:16 p.m.6 views

CVE-2023-54120

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix race condition in hidpsessionthread There is a potential race condition in hidpsessionthread that may lead to use-after-free. For instance, the timer is active while hidpdeltimer is called in hidpsessionthread. Aft...

5.9AI score0.00184EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/12/16 12:0 a.m.6 views

PT-2025-51627

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists within the timer subsystem, specifically in the timer shutdown sync function, potentially leading to a kernel warning. This occurs when the timer function pointer...

4.7CVSS6.5AI score0.00117EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/12/14 4:9 p.m.3 views

CVE-2025-40257

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix a race in mptcppmdeladdtimer mptcppmdeladdtimer can call skstoptimersyncsk, &entry-;addtimer while another might have free entry already, as reported by syzbot. Add RCU protection to fix this issue. Also change confusi...

6.7CVSS5.8AI score0.00171EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/12/04 4:8 p.m.18 views

CVE-2025-40257 mptcp: fix a race in mptcp_pm_del_add_timer()

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix a race in mptcppmdeladdtimer mptcppmdeladdtimer can call skstoptimersyncsk, &entry-addtimer while another might have free entry already, as reported by syzbot. Add RCU protection to fix this issue. Also change confusin...

0.00171EPSS
Exploits0References7
EUVD
EUVD
added 2025/12/04 4:8 p.m.5 views

EUVD-2025-201200

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix a race in mptcppmdeladdtimer mptcppmdeladdtimer can call skstoptimersyncsk, &entry-addtimer while another might have free entry already, as reported by syzbot. Add RCU protection to fix this issue. Also change confusin...

5.9AI score0.00171EPSS
Exploits0References5
CVE
CVE
added 2025/12/04 4:8 p.m.18 views

CVE-2025-40257

CVE-2025-40257 affects the Linux kernel MPTCP path. The issue is a race in mptcp_pm_del_add_timer() where calling sk_stop_timer_sync could race with an already-freed entry, leading to use-after-free. The fix adds RCU protection and replaces the add_timer flag with a stop_timer boolean, as noted i...

6AI score0.00171EPSS
Exploits0References8
OSV
OSV
added 2025/12/04 4:8 p.m.4 views

CVE-2025-40257 mptcp: fix a race in mptcp_pm_del_add_timer()

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix a race in mptcppmdeladdtimer mptcppmdeladdtimer can call skstoptimersyncsk, &entry-addtimer while another might have free entry already, as reported by syzbot. Add RCU protection to fix this issue. Also change confusin...

6.3AI score0.00171EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2025/12/04 4:8 p.m.2 views

CVE-2025-40257

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix a race in mptcppmdeladdtimer mptcppmdeladdtimer can call skstoptimersyncsk, &entry-addtimer while another might have free entry already, as reported by syzbot. Add RCU protection to fix this issue. Also change confusin...

5.4AI score0.00171EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/12/04 12:0 a.m.3 views

PT-2025-49087

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the mptcp pm del add timer function, which can lead to a race condition. Specifically, the function may call sk stop timer sync while another process ...

6.2AI score0.00171EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/12/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-40257

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mptcp: fix a race in mptcppmdeladdtimer mptcppmdeladdtimer can call skstoptimersyncsk, &entry-addtimer while another might have free entry already, as reported ...

6.2AI score0.00171EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.4 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989006)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989006 advisory. In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix call timer start racing with call destruction The rxrpccall struct has a timer used to...

4.7CVSS5AI score0.00165EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/21 12:0 a.m.5 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987555)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987555 advisory. In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix call timer start racing with call destruction The rxrpccall struct has a timer used to...

4.7CVSS5AI score0.00165EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/10/10 6:33 p.m.6 views

Security update for the Linux Kernel (Live Patch 33 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024141 fixes several issues. The following security issues were fixed: CVE-2024-53168: sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket bsc1243650. CVE-2024-50154: tcp/dccp: Do not use timerpending in reqskqueueunlink bsc1233072...

8.5CVSS7AI score0.00596EPSS
Exploits1References20
Rockylinux
Rockylinux
added 2025/10/10 5:50 a.m.14 views

kernel security update

An update is available for kernel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...

7.8CVSS7.8AI score0.01345EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2025/10/10 12:0 a.m.5 views

RockyLinux 9 : kernel (RLSA-2025:15661)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:15661 advisory. kernel: drm/vkms: Fix use after free and double free on init error CVE-2025-22097 kernel: scsi: lpfc: Use memcpy for BIOS version CVE-2025-38332 kernel:...

7.8CVSS7.7AI score0.01345EPSS
Exploits8References9
Rows per page
Query Builder