Lucene search
K

25 matches found

RedHat Linux
RedHat Linux
added 2026/07/07 5:55 a.m.3 views

kernel: RDMA/vmw_pvrdma: Fix double free on pvrdma_alloc_ucontext() error path

A flaw was found in the Linux kernel, specifically within the RDMA Remote Direct Memory Access vmwpvrdma module. This vulnerability is a double free, which means the system attempts to release the same memory resource twice. This can occur in an error handling path within the pvrdmaallocucontext...

7.8CVSS5.9AI score0.00143EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2026/05/29 8:8 a.m.9 views

RDMA/vmw_pvrdma: Fix double free on pvrdma_alloc_ucontext() error path

...

7.8CVSS5.4AI score0.00143EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/05/29 1:15 a.m.16 views

SUSE CVE-2026-46189

In the Linux kernel, the following vulnerability has been resolved: RDMA/vmwpvrdma: Fix double free on pvrdmaallocucontext error path Sashiko points out that pvrdmauarfree is already called within pvrdmadeallocucontext, so calling it before triggers a double free...

5.5CVSS5.8AI score0.00143EPSS
Exploits0References4
NVD
NVD
added 2026/05/28 10:16 a.m.13 views

CVE-2026-46189

In the Linux kernel, the following vulnerability has been resolved: RDMA/vmwpvrdma: Fix double free on pvrdmaallocucontext error path Sashiko points out that pvrdmauarfree is already called within pvrdmadeallocucontext, so calling it before triggers a double free...

7.8CVSS0.00143EPSS
Exploits0References19
OSV
OSV
added 2026/05/28 10:16 a.m.8 views

UBUNTU-CVE-2026-46189

In the Linux kernel, the following vulnerability has been resolved: RDMA/vmwpvrdma: Fix double free on pvrdmaallocucontext error path Sashiko points out that pvrdmauarfree is already called within pvrdmadeallocucontext, so calling it before triggers a double free...

7.8CVSS5.7AI score0.00143EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2026/05/28 9:36 a.m.11 views

CVE-2026-46189

In the Linux kernel, the following vulnerability has been resolved: RDMA/vmwpvrdma: Fix double free on pvrdmaallocucontext error path Sashiko points out that pvrdmauarfree is already called within pvrdmadeallocucontext, so calling it before triggers a double free...

7.8CVSS5.7AI score0.00143EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/28 9:36 a.m.8 views

CVE-2026-46189

In the Linux kernel, the following vulnerability has been resolved: RDMA/vmwpvrdma: Fix double free on pvrdmaallocucontext error path Sashiko points out that pvrdmauarfree is already called within pvrdmadeallocucontext, so calling it before triggers a double free...

5.8AI score0.00143EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2026/05/28 9:36 a.m.40 views

CVE-2026-46189 RDMA/vmw_pvrdma: Fix double free on pvrdma_alloc_ucontext() error path

In the Linux kernel, the following vulnerability has been resolved: RDMA/vmwpvrdma: Fix double free on pvrdmaallocucontext error path Sashiko points out that pvrdmauarfree is already called within pvrdmadeallocucontext, so calling it before triggers a double free...

0.00143EPSS
Exploits0References8
OSV
OSV
added 2026/05/28 9:36 a.m.1 views

CVE-2026-46189 RDMA/vmw_pvrdma: Fix double free on pvrdma_alloc_ucontext() error path

In the Linux kernel, the following vulnerability has been resolved: RDMA/vmwpvrdma: Fix double free on pvrdmaallocucontext error path Sashiko points out that pvrdmauarfree is already called within pvrdmadeallocucontext, so calling it before triggers a double free...

7CVSS5.8AI score0.00143EPSS
Exploits0References21
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.12 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a double release of memory during the error path in the RDMA vmwpvrdma driver’s pvrdmaallocuconte...

5.8AI score0.00143EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/28 12:0 a.m.13 views

PT-2026-44312

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified openSUSE Tumbleweed versions prior to kernel-devel-7.0.11-1.1 Description A double free issue exists in the RDMA/vmw pvrdma component. The error path in the pvrdma alloc ucontext function triggers...

9.8CVSS6AI score0.00675EPSS
Exploits0References338
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-34795

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.0056EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/09/06 6:15 p.m.1 views

CVE-2022-2541

The uContext for Amazon plugin for WordPress is vulnerable to Cross-Site Request Forgery to Cross-Site Scripting in versions up to, and including 3.9.1. This is due to missing nonce validation in the /app/sites/ajax/actions/keywordsave.php file that is called via the doAjax function. This makes i...

8.8CVSS7.2AI score0.0056EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2022/09/06 6:15 p.m.2 views

CVE-2022-2542

The uContext for Clickbank plugin for WordPress is vulnerable to Cross-Site Request Forgery to Cross-Site Scripting in versions up to, and including 3.9.1. This is due to missing nonce validation in the /app/sites/ajax/actions/keywordsave.php file that is called via the doAjax function. This make...

8.8CVSS7.2AI score0.00552EPSS
Exploits0References5
NVD
NVD
added 2022/09/06 6:15 p.m.11 views

CVE-2022-2541

The uContext for Amazon plugin for WordPress is vulnerable to Cross-Site Request Forgery to Cross-Site Scripting in versions up to, and including 3.9.1. This is due to missing nonce validation in the /app/sites/ajax/actions/keywordsave.php file that is called via the doAjax function. This makes i...

8.8CVSS0.0056EPSS
Exploits0References4
NVD
NVD
added 2022/09/06 6:15 p.m.32 views

CVE-2022-2542

The uContext for Clickbank plugin for WordPress is vulnerable to Cross-Site Request Forgery to Cross-Site Scripting in versions up to, and including 3.9.1. This is due to missing nonce validation in the /app/sites/ajax/actions/keywordsave.php file that is called via the doAjax function. This make...

8.8CVSS0.00552EPSS
Exploits0References4
Prion
Prion
added 2022/09/06 6:15 p.m.16 views

Cross site request forgery (csrf)

The uContext for Clickbank plugin for WordPress is vulnerable to Cross-Site Request Forgery to Cross-Site Scripting in versions up to, and including 3.9.1. This is due to missing nonce validation in the /app/sites/ajax/actions/keywordsave.php file that is called via the doAjax function. This make...

6.8CVSS7.8AI score0.00552EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2022/09/06 5:18 p.m.25 views

CVE-2022-2541 uContext for Amazon <= 3.9.1 - Cross-Site Request Forgery to Cross-Site Scripting

The uContext for Amazon plugin for WordPress is vulnerable to Cross-Site Request Forgery to Cross-Site Scripting in versions up to, and including 3.9.1. This is due to missing nonce validation in the /app/sites/ajax/actions/keywordsave.php file that is called via the doAjax function. This makes i...

8.8CVSS8.1AI score0.0056EPSS
Exploits0References4
CVE
CVE
added 2022/09/06 5:18 p.m.78 views

CVE-2022-2541

CVE-2022-2541 affects the WordPress plugin uContext for Amazon (versions up to and including 3.9.1). The root cause is missing nonce validation in the Ajax handler (~/app/sites/ajax/actions/keyword_save.php) invoked via doAjax(), enabling Cross-Site Request Forgery that can lead to Cross-Site Scr...

8.8CVSS7.9AI score0.0056EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2022/09/06 5:18 p.m.77 views

CVE-2022-2542

The CVE-2022-2542 entry concerns the WordPress uContext for Clickbank plugin (versions up to and including 3.9.1). The vulnerability is a Cross-Site Request Forgery (CSRF) that can lead to Cross-Site Scripting (XSS) due to missing nonce validation in the file ~/app/sites/ajax/actions/keyword_save...

8.8CVSS7.9AI score0.00552EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder