Lucene search
K

120 matches found

RedHat Linux
RedHat Linux
added 2 days ago4 views

kernel: net: atm: fix crash due to unvalidated vcc pointer in sigd_send()

A flaw was found in the Linux kernel's Asynchronous Transfer Mode ATM networking component. A local attacker, by acting as a malicious signaling daemon, could send a specially crafted message containing an unvalidated pointer. This unvalidated pointer would be directly used by the kernel, leading...

5.5CVSS6.1AI score0.00131EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2 days ago9 views

kernel: net: atm: fix crash due to unvalidated vcc pointer in sigd_send()

A flaw was found in the Linux kernel's Asynchronous Transfer Mode ATM networking component. A local attacker, by acting as a malicious signaling daemon, could send a specially crafted message containing an unvalidated pointer. This unvalidated pointer would be directly used by the kernel, leading...

5.5CVSS6.1AI score0.00131EPSS
Exploits0References5
CVE
CVE
added 2026/06/12 5:34 p.m.211 views

CVE-2026-48163

CVE-2026-48163 affects MariaDB (wsrep SST): during donor–donor synchronization, the donor interpolates parameters from the joiner in the SST rsync command line, and not all parameters are validated. This could allow a malicious joiner to execute arbitrary shell commands on the donor side. Patched...

9.1CVSS5.8AI score0.00654EPSS
Exploits0References12Affected Software1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

A issue was discovered in the Linux kernel before version 6.6.8. The dovccioctl function in net/atm/ioctl.c has a use-after-free issue due to a race condition involving vccrecvmsg...

7CVSS6.5AI score0.0051EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/06 9:28 p.m.10 views

CVE-2026-43203

A flaw was found in the Linux kernel's fore200e ATM Asynchronous Transfer Mode network adapter driver. A race condition during the device removal process can lead to a use-after-free vulnerability. This occurs when the fore200e adapter is deallocated while its associated tasklets small,...

7.5CVSS5.8AI score0.00435EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/04/27 10:34 a.m.10 views

kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem

A flaw was found in the Linux kernel's Asynchronous Transfer Mode ATM subsystem. An authenticated local attacker could exploit a Use-After-Free UAF vulnerability in the /proc/net/atm/lec handling. This flaw occurs due to improper devput calls without prior devhold calls, leading to an imbalance i...

7.8CVSS5.5AI score0.0017EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/04/08 3:45 p.m.10 views

kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem

A flaw was found in the Linux kernel's Asynchronous Transfer Mode ATM subsystem. An authenticated local attacker could exploit a Use-After-Free UAF vulnerability in the /proc/net/atm/lec handling. This flaw occurs due to improper devput calls without prior devhold calls, leading to an imbalance i...

7.8CVSS5.9AI score0.0017EPSS
Exploits0References5
OSV
OSV
added 2026/04/08 2:16 p.m.5 views

DEBIAN-CVE-2026-31411

In the Linux kernel, the following vulnerability has been resolved: net: atm: fix crash due to unvalidated vcc pointer in sigdsend Reproducer available at 1. The ATM send path sendmsg - vccsendmsg - sigdsend reads the vcc pointer from msg-vcc and uses it directly without any validation. This...

5.5CVSS5.5AI score0.00131EPSS
Exploits0References1
OSV
OSV
added 2026/04/08 2:16 p.m.5 views

UBUNTU-CVE-2026-31411

In the Linux kernel, the following vulnerability has been resolved: net: atm: fix crash due to unvalidated vcc pointer in sigdsend Reproducer available at 1. The ATM send path sendmsg - vccsendmsg - sigdsend reads the vcc pointer from msg-vcc and uses it directly without any validation. This...

5.5CVSS5.8AI score0.00131EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2026/04/08 8:35 a.m.18 views

kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem

A flaw was found in the Linux kernel's Asynchronous Transfer Mode ATM subsystem. An authenticated local attacker could exploit a Use-After-Free UAF vulnerability in the /proc/net/atm/lec handling. This flaw occurs due to improper devput calls without prior devhold calls, leading to an imbalance i...

7.8CVSS5.9AI score0.0017EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/04/08 6:13 a.m.11 views

kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem

A flaw was found in the Linux kernel's Asynchronous Transfer Mode ATM subsystem. An authenticated local attacker could exploit a Use-After-Free UAF vulnerability in the /proc/net/atm/lec handling. This flaw occurs due to improper devput calls without prior devhold calls, leading to an imbalance i...

7.8CVSS6.7AI score0.0017EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/04/08 3:38 a.m.19 views

Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring Syste...

7.8CVSS6.5AI score0.00248EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2026/04/08 12:0 a.m.14 views

RHEL 9 : kernel (RHSA-2026:7013)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:7013 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel: Use-after-free i...

7.8CVSS5.9AI score0.00248EPSS
Exploits1References13
UbuntuCve
UbuntuCve
added 2026/04/08 12:0 a.m.5 views

CVE-2026-31411

In the Linux kernel, the following vulnerability has been resolved: net: atm: fix crash due to unvalidated vcc pointer in sigdsend Reproducer available at 1. The ATM send path sendmsg - vccsendmsg - sigdsend reads the vcc pointer from msg-vcc and uses it directly without any validation. This...

5.5CVSS5.8AI score0.00131EPSS
Exploits0References2
OSV
OSV
added 2026/04/07 12:0 a.m.13 views

RLSA-2026:6037 Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem CVE-2025-38180 kernel: macvlan: fix error recovery in macvlancommonnewlink CVE-2026-23209 kernel: net/sched: clsu32: use...

7.3CVSS6.5AI score0.0017EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/04/01 1:15 a.m.11 views

kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem

A flaw was found in the Linux kernel's Asynchronous Transfer Mode ATM subsystem. An authenticated local attacker could exploit a Use-After-Free UAF vulnerability in the /proc/net/atm/lec handling. This flaw occurs due to improper devput calls without prior devhold calls, leading to an imbalance i...

7.8CVSS6.7AI score0.0017EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/03/30 12:0 a.m.6 views

AlmaLinux 8 : kernel-rt (ALSA-2026:6036)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:6036 advisory. kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem CVE-2025-38180 kernel: macvlan: fix error recovery in macvlancommonnewlink...

7.8CVSS6.7AI score0.0017EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/03/26 4:32 p.m.22 views

CVE-2026-27816 EVerest's ISO15118 update_energy_transfer_modes overflow can corrupt EVSE state

EVerest is an EV charging software stack. Prior to versions to 2026.02.0, ISO15118chargerImpl::handleupdateenergytransfermodes copies a variable-length list into a fixed-size array of length 6 without bounds checking. With schema validation disabled by default, oversized MQTT Cmd payloads can...

6.9CVSS0.00197EPSS
Exploits0References1
Redos
Redos
added 2026/03/23 12:0 a.m.9 views

ROS-20260323-73-0024

A vulnerability in the atm component of the Linux operating system kernel is related to improper memory freeing before deleting the last link. Exploitation of the vulnerability allows an attacker to cause a denial of service...

5.5CVSS5.8AI score0.00149EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/03/03 8:57 p.m.10 views

kernel: Linux kernel: Denial of Service in ATM CLIP module via infinite recursion

A flaw was found in the Linux kernel's Asynchronous Transfer Mode ATM Classical IP CLIP module. A local user can trigger an infinite recursive call in the clippush function by repeatedly calling the ioctlATMARPMKIP system call. This vulnerability occurs when the socket is closed, leading to stack...

7.8CVSS5.8AI score0.0017EPSS
Exploits0References5
Rows per page
Query Builder