Lucene search
+L

1300 matches found

Vulnrichment
Vulnrichment
added 2026/06/29 9:39 p.m.9 views

CVE-2026-10647 Deadlock denial of service in USB CDC-NCM device class on TX enqueue failure

The USB CDC-NCM device class subsys/usb/devicenext/class/usbdcdcncm.c ignores the return value of usbdepenqueue in its ethernet transmit callback cdcncmsend. When the enqueue fails, the function still calls ksemtake&data-syncsem, KFOREVER, blocking on a completion semaphore that is only ever...

5.3CVSS6.2AI score0.00134EPSS
Exploits1References2
CVE
CVE
added 2026/06/29 9:39 p.m.18 views

CVE-2026-10647

The CVE concerns the USB CDC-NCM driver (subsys/usb/device_next/class/usbd_cdc_ncm.c) in Zephyr. The code ignores the return value of usbd_ep_enqueue() in cdc_ncm_send(); when enqueue fails, it still calls k_sem_take(&data-sync_sem, K_FOREVER), waiting on a completion that is only signaled from t...

5.3CVSS6.2AI score0.00134EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/29 1:50 p.m.8 views

CVE-2026-53250

In the Linux kernel, the following vulnerability has been resolved: xsk: cache csumstart/csumoffset to fix TOCTOU in xskskbmetadata The TX metadata area resides in the UMEM buffer which is memory-mapped and concurrently writable by userspace. In xskskbmetadata, csumstart and csumoffset are read...

7.8CVSS5.8AI score0.00112EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/29 11:11 a.m.7 views

CVE-2026-53299

A flaw was found in the Linux kernel, specifically within the airoha network driver. This vulnerability arises from an issue where a variable ndesc is initialized too early in the airohaqdmainittxqueue routine. If a queue entry list allocation fails, this premature initialization can lead to a NU...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/29 8:15 a.m.7 views

CVE-2026-53294

A flaw was found in the Linux kernel's mailbox subsystem. This vulnerability occurs when the receive RX channel is aliased to the transmit TX channel with a different Memory-Mapped I/O MMIO and is not properly handled during the freeing of channels. This can lead to a double-free condition, which...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-53087

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: bcmgenet: fix leaking freebds While reclaiming the tx queue we fast forward the write pointer to drop any data in flight. These dropped frames are not adde...

7.5CVSS6.1AI score0.00376EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-53229

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/mlx5e: xsk: Fix DMA and xdpframe leak on XDPTX xmit failure In the XSK branch of mlx5exmitxdpbuff, when sq-xmitxdpframe returns false e.g. XDPSQ is full, th...

7.5CVSS6.1AI score0.00466EPSS
Exploits0References4
NVD
NVD
added 2026/06/26 8:17 p.m.8 views

CVE-2026-53298

In the Linux kernel, the following vulnerability has been resolved: net: airoha: Move ndesc initialization at end of airohaqdmainitrxqueue If queue entry or DMA descriptor list allocation fails in airohaqdmainitrxqueue routine, airohaqdmacleanup will trigger a NULL pointer dereference running...

5.5CVSS0.00122EPSS
Exploits0References4
OSV
OSV
added 2026/06/26 8:17 p.m.4 views

DEBIAN-CVE-2026-53300

In the Linux kernel, the following vulnerability has been resolved: net: enetc: fix NTMP DMA use-after-free issue The AI-generated review reported a potential DMA use-after-free issue 1. If netcxmitntmpcmd times out and returns an error, the pending command is not explicitly aborted, while...

7.8CVSS5.9AI score0.00124EPSS
Exploits0References1
NVD
NVD
added 2026/06/26 8:17 p.m.9 views

CVE-2026-53294

In the Linux kernel, the following vulnerability has been resolved: mailbox: mailbox-test: don't free the reused channel The RX channel can be aliased to the TX channel if it has a different MMIO. This special case needs to be handled when freeing the channels otherwise a double-free occurs...

7.8CVSS0.00129EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/06/26 8:4 p.m.8 views

CVE-2026-52972

A flaw was found in the Linux kernel's afalg cryptography module. This vulnerability involves an arithmetic overflow when processing associated data lengths during the transmit buffer size check. A remote attacker could exploit this flaw by providing a specially crafted associated data length,...

7CVSS6AI score0.00144EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/06/26 7:40 p.m.29 views

CVE-2026-53300 net: enetc: fix NTMP DMA use-after-free issue

In the Linux kernel, the following vulnerability has been resolved: net: enetc: fix NTMP DMA use-after-free issue The AI-generated review reported a potential DMA use-after-free issue 1. If netcxmitntmpcmd times out and returns an error, the pending command is not explicitly aborted, while...

7.8CVSS0.00124EPSS
Exploits0References3
OSV
OSV
added 2026/06/26 7:40 p.m.3 views

CVE-2026-53299 net: airoha: Move ndesc initialization at end of airoha_qdma_init_tx()

In the Linux kernel, the following vulnerability has been resolved: net: airoha: Move ndesc initialization at end of airohaqdmainittx If queue entry list allocation fails in airohaqdmainittxqueue routine, airohaqdmacleanuptxqueue will trigger a NULL pointer dereference accessing the queue entry...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/26 7:40 p.m.9 views

EUVD-2026-39899

In the Linux kernel, the following vulnerability has been resolved: mailbox: mailbox-test: don't free the reused channel The RX channel can be aliased to the TX channel if it has a different MMIO. This special case needs to be handled when freeing the channels otherwise a double-free occurs...

5.8AI score0.00129EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2026/06/26 7:40 p.m.6 views

CVE-2026-53294

In the Linux kernel, the following vulnerability has been resolved: mailbox: mailbox-test: don't free the reused channel The RX channel can be aliased to the TX channel if it has a different MMIO. This special case needs to be handled when freeing the channels otherwise a double-free occurs...

7.8CVSS5.7AI score0.00129EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/26 6:55 p.m.9 views

CVE-2026-53008

A flaw was found in the Linux kernel. A race condition exists in the ice network driver's TX timestamp ring cleanup, specifically between the icefreetxtstampring and icetxmap functions. This vulnerability could allow a local attacker to trigger a null pointer dereference, leading to a system cras...

5.5CVSS5.8AI score0.00077EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/26 4:6 p.m.9 views

CVE-2026-53086

A flaw was found in the Linux kernel's bcmgenet network driver. This vulnerability arises from an overly aggressive timeout handler that attempts to reset all network transmission queues when only one experiences an issue. This behavior can create race conditions, potentially leading to system...

9.8CVSS5.8AI score0.00386EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/26 12:3 a.m.11 views

CVE-2026-53088

A flaw was found in the Linux kernel's bcmgenet network driver. An off-by-one error in the bcmgenetputtxcb function, related to the writeptr handling for transmit control blocks txcb, could lead to incorrect cleanup of these blocks. This issue may result in system instability or unexpected behavi...

9.8CVSS5.8AI score0.00404EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/26 12:3 a.m.9 views

CVE-2026-53087

A flaw was found in the Linux kernel's bcmgenet network driver. When the transmit tx queue is reclaimed, the driver incorrectly drops data frames without returning them to the pool of free buffer descriptors bds. This oversight results in a resource leak, which can lead to resource exhaustion and...

7.5CVSS6AI score0.00376EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/25 9:21 p.m.18 views

CVE-2026-53009

A flaw was found in the Linux kernel's ice network driver. An error in the driver's handling of network packet transmission, specifically when icetso or icetxcsum functions fail, can lead to a double-free of a network buffer skb. This occurs because a transmit buffer txbuf may still point to an...

7.8CVSS6.1AI score0.00128EPSS
Exploits0References4
Rows per page
Query Builder