Lucene search
K

23 matches found

RedHat Linux
RedHat Linux
added 6 days ago5 views

kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count()

A use-after-free flaw was found in the Linux kernel's iSCSI target subsystem. In the iscsitdecconnusagecount function, complete is called while still holding the conn-connusagelock spinlock. The waiting thread such as iscsitcloseconnection may wake up immediately and free the iscsitconn structure...

7.8CVSS5.7AI score0.00117EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/06/26 2:11 a.m.7 views

SUSE CVE-2026-53160

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free race in fastrpcmapcreate fastrpcmaplookup returns a raw pointer after releasing fl-lock. The caller fastrpcmapcreate then calls fastrpcmapget krefgetunlesszero on this unprotected pointer. A...

7.8CVSS5.8AI score0.00125EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/26 2:9 a.m.6 views

SUSE CVE-2026-53239

In the Linux kernel, the following vulnerability has been resolved: xfrm: policy: fix use-after-free on inexact bin in xfrmpolicybyselctx Fix the race by pruning the bin while still holding xfrmpolicylock, before dropping it. Use xfrmpolicyinexactprunebin directly since the lock is already held...

7.8CVSS5.8AI score0.00135EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/25 8:39 a.m.26 views

CVE-2026-53239 xfrm: policy: fix use-after-free on inexact bin in xfrm_policy_bysel_ctx()

In the Linux kernel, the following vulnerability has been resolved: xfrm: policy: fix use-after-free on inexact bin in xfrmpolicybyselctx Fix the race by pruning the bin while still holding xfrmpolicylock, before dropping it. Use xfrmpolicyinexactprunebin directly since the lock is already held...

7.8CVSS0.00135EPSS
Exploits0References8
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fixed a issue where a “use-after-free” condition could occur during an interrupt. During a destroy CQ operation, an interrupt may cause the processing of a CQE to occur after the resources managed by irdmacqfreersrc...

7.8CVSS5.3AI score0.00208EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/17 6:53 a.m.6 views

kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count()

A use-after-free flaw was found in the Linux kernel's iSCSI target subsystem. In the iscsitdecconnusagecount function, complete is called while still holding the conn-connusagelock spinlock. The waiting thread such as iscsitcloseconnection may wake up immediately and free the iscsitconn structure...

7.8CVSS5.3AI score0.00117EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/06/11 11:46 a.m.6 views

kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count()

A use-after-free flaw was found in the Linux kernel's iSCSI target subsystem. In the iscsitdecconnusagecount function, complete is called while still holding the conn-connusagelock spinlock. The waiting thread such as iscsitcloseconnection may wake up immediately and free the iscsitconn structure...

7.8CVSS5.4AI score0.00117EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: btrfs: Fixed a use-after-free issue when attempting to join an aborted transaction. When trying to join the current transaction, if it aborts, we read its “aborted” field after unlocking fsinfo-translock, without holding any...

7.8CVSS6.5AI score0.00231EPSS
Exploits0References2
CVE
CVE
added 2026/05/08 2:21 p.m.18 views

CVE-2026-43388

CVE-2026-43388 (Linux kernel, DAMON) : The vulnerability arises in mm/damon/core/damos_walk(), which sets ctx->walk_control to a caller-provided control structure before checking if the context is running. If the context is inactive, it returns -EINVAL without clearing the pointer, leaving a d...

7.8CVSS5.8AI score0.00124EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2026/04/27 10:34 a.m.6 views

kernel: scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count()

A use-after-free flaw was found in the Linux kernel's iSCSI target subsystem. In the iscsitdecconnusagecount function, complete is called while still holding the conn-connusagelock spinlock. The waiting thread such as iscsitcloseconnection may wake up immediately and free the iscsitconn structure...

7.8CVSS5.5AI score0.00117EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/03/09 1:3 a.m.5 views

kernel: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats

In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrummr: Fix use-after-free when updating multicast route stats Cited commit added a dedicated mutex instead of RTNL to protect the multicast route list, so that it will not change while the driver periodically traverse...

5.7AI score0.00173EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/02/10 12:0 a.m.8 views

Siemens SCALANCE and RUGGEDCOM Improper Input Validation (CVE-2025-39841)

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix buffer free/clear order in deferred receive path Fix a use-after-free window by correcting the buffer release sequence in the deferred receive path. The code freed the RQ buffer first and only then cleared the...

7.8CVSS6.5AI score0.00167EPSS
Exploits0References4
CVE
CVE
added 2025/12/09 1:30 a.m.21 views

CVE-2023-53855

CVE-2023-53855 is a Linux kernel vulnerability in the DSA/Ocelot tagging path. When the tagging protocol in use is ocelot-8021q and a driver is unbound, the removal path can trigger an assertion failure in RTNL (RTNL: assertion failed at net/dsa/tag_8021q.c:409) and in vlan_vid_del, due to callin...

6.1AI score0.00184EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/12/09 1:30 a.m.26 views

CVE-2023-53855 net: dsa: ocelot: call dsa_tag_8021q_unregister() under rtnl_lock() on driver remove

In the Linux kernel, the following vulnerability has been resolved: net: dsa: ocelot: call dsatag8021qunregister under rtnllock on driver remove When the tagging protocol in current use is "ocelot-8021q" and we unbind the driver, we see this splat: $ echo '0000:00:00.2'...

0.00184EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2025/10/27 9:41 a.m.4 views

kernel: scsi: lpfc: Fix buffer free/clear order in deferred receive path

A use-after-free vulnerability exists in the linux kernel such that the buffer release sequence in the deferred receive path. The code freed the RQ buffer first and only then cleared the context pointer under the lock...

7.8CVSS6AI score0.00167EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/10/20 10:1 a.m.3 views

kernel: scsi: lpfc: Fix buffer free/clear order in deferred receive path

A use-after-free vulnerability exists in the linux kernel such that the buffer release sequence in the deferred receive path. The code freed the RQ buffer first and only then cleared the context pointer under the lock...

7.8CVSS6AI score0.00167EPSS
Exploits0References5
NVD
NVD
added 2025/10/04 4:15 p.m.4 views

CVE-2023-53558

In the Linux kernel, the following vulnerability has been resolved: rcu-tasks: Avoid prinfo with spin lock in cblistinitgeneric prinfo is called with rtp-cbsgbllock spin lock locked. Because prinfo calls printk that might sleep, this will result in BUG like below: 0.206455 cblistinitgeneric:...

5.5CVSS0.00134EPSS
Exploits0References3
OSV
OSV
added 2025/09/19 4:15 p.m.3 views

UBUNTU-CVE-2025-39841

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix buffer free/clear order in deferred receive path Fix a use-after-free window by correcting the buffer release sequence in the deferred receive path. The code freed the RQ buffer first and only then cleared the...

7.8CVSS6.4AI score0.00167EPSS
Exploits0References30
OSV
OSV
added 2025/02/26 7:1 a.m.1 views

UBUNTU-CVE-2022-49441

In the Linux kernel, the following vulnerability has been resolved: tty: fix deadlock caused by calling printk under ttyport-lock ptywrite invokes kmalloc which may invoke a normal printk to print failure message. This can cause a deadlock in the scenario reported by syz-bot below: CPU0 CPU1 CPU2...

5.5CVSS6.2AI score0.0023EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2024/09/24 2:39 a.m.3 views

kernel: wifi: iwlwifi: read txq->read_ptr under lock

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: read txq-readptr under lock If we read txq-readptr without lock, we can read the same value twice, then obtain the lock, and reclaim from there to two different places, but crucially reclaim the same entry twice,...

5.5CVSS6.8AI score0.00238EPSS
Exploits0References5
Rows per page
Query Builder