CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

54 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: vduse: It is now checked that the offset is within the bounds when calling getconfig. This check only examines len, not offset. This could lead to an out-of-bounds read if offset dev-configsize. The issue arises because both...

7.1CVSS5.7AI score0.00032EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: vduse: Fixed NULL pointer dereferencing during sysfs access. The control device does not have a drvdata field. Therefore, a NULL pointer dereferencing will occur when accessing the msgtimeout attribute of the control device via...

5.5CVSS6.1AI score0.00143EPSS

Exploits0References1

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: vduse: Fixed NULL pointer dereference issue. The vdusevdpasetvqaffinity callback can be called with a NULL value as the cpumask when deleting the vduse device. This patch resets the virtqueue’s IRQ affinity mask value to set all...

5.7AI score0.00022EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в linux-5.15

A flaw was discovered in vDPA with the VDUSE backend. Currently, there are no checks in the VDUSE kernel driver to ensure that the size of the device configuration space is consistent with the features advertised by the VDUSE user-space application. In the event of a mismatch, the Virtio driver...

6.5CVSS6.7AI score0.00095EPSS

Exploits0References2

RedhatCVE•added 2025/12/31 11:16 a.m.•1 views

CVE-2023-54291

In the Linux kernel, the following vulnerability has been resolved: vduse: fix NULL pointer dereference vdusevdpasetvqaffinity callback can be called with NULL value as cpumask when deleting the vduse device. This patch resets virtqueue's IRQ affinity mask value to set all CPUs instead of...

5.5CVSS5.6AI score0.00022EPSS

Exploits0References4

SUSE CVE•added 2025/12/31 12:26 a.m.•1 views

SUSE CVE-2023-54291

5.5CVSS6.3AI score0.00022EPSS

Exploits0References17

Tenable Nessus•added 2025/12/31 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2023-54291

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - vduse: fix NULL pointer dereference vdusevdpasetvqaffinity callback can be called with NULL value as cpumask when deleting the vduse device. This patch resets...

6AI score0.00022EPSS

Exploits0References3

EUVD•added 2025/12/30 3:30 p.m.•2 views

EUVD-2023-60513

5.8AI score0.00022EPSS

Exploits0References3

NVD•added 2025/12/30 1:16 p.m.•1 views

CVE-2023-54291

0.00022EPSS

Exploits0References2

UbuntuCve•added 2025/12/30 1:16 p.m.•1 views

CVE-2023-54291

5.7AI score0.00022EPSS

Exploits0References4

Cvelist•added 2025/12/30 12:23 p.m.•21 views

CVE-2023-54291 vduse: fix NULL pointer dereference

0.00022EPSS

Exploits0References2

Debian CVE•added 2025/12/30 12:23 p.m.•2 views

CVE-2023-54291

5.1AI score0.00022EPSS

Exploits0

OSV•added 2025/12/30 12:23 p.m.•1 views

CVE-2023-54291 vduse: fix NULL pointer dereference

6.2AI score0.00022EPSS

Exploits0References5

CVE•added 2025/12/30 12:23 p.m.•3 views

CVE-2023-54291

CVE-2023-54291 affects the Linux kernel’s vduse/vdpa code. The issue is a NULL pointer dereference when vduse_vdpa_set_vq_affinity is called with cpu_mask NULL during device deletion. The patch fixes the crash by resetting the virtqueue IRQ affinity mask to cover all CPUs instead of dereferencing...

5.9AI score0.00022EPSS

Exploits0References2

Positive Technologies•added 2025/12/24 12:0 a.m.•2 views

PT-2025-53104

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a memory leak in the vhost-vdpa subsystem related to IOTLB I/O Translation Lookaside Buffer management. Prior to commit 3d5698793897, the vhost vdpa iotlb unmap...

7.8CVSS6.1AI score0.00145EPSS

Exploits2References841

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-34579

Malicious code in bioql PyPI...

6.5CVSS6.2AI score0.00095EPSS

Exploits0References3

Tenable Nessus•added 2025/08/07 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2021-47605

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: vduse: fix memory corruption in vdusedevioctl The config.offset comes from the user. There...

7.8CVSS5.7AI score0.00076EPSS

Exploits0References2

Tenable Nessus•added 2025/03/05 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2022-2308

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in vDPA with VDUSE backend. There are currently no checks in VDUSE kernel driver to ensure the size of the device config space is in line with...

6.5CVSS6.1AI score0.00095EPSS

Exploits0References2

OSV•added 2025/02/26 7:1 a.m.•4 views

DEBIAN-CVE-2022-49329

In the Linux kernel, the following vulnerability has been resolved: vduse: Fix NULL pointer dereference on sysfs access The control device has no drvdata. So we will get a NULL pointer dereference when accessing control device's msgtimeout attribute via sysfs: 132.841881 T3644 BUG: kernel NULL...

5.5CVSS5.5AI score0.00143EPSS

Exploits0References1

OSV•added 2025/02/26 7:1 a.m.•0 views

UBUNTU-CVE-2022-49329

5.5CVSS6.5AI score0.00143EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by