Lucene search
+L

159 matches found

cve
cve
added 2026/07/04 1:31 p.m.25 views

CVE-2026-14535

Summary: CVE-2026-14535 affects Trail of Bits fickling up to version 0.1.11. A logic error in the UnsafeImportsML and MLAllowlist passes causes shared mutable state (AnalysisContext.reported_shortened_code) to poison deduplication, rendering MLAllowlist dead code and allowing certain pickle paylo...

9.8CVSS5.9AI score0.00321EPSS
Exploits1References4Affected Software1
euvd
euvd
added 2026/07/04 1:25 p.m.11 views

EUVD-2026-41675

Trail of Bits fickling versions up to and including 0.1.10 do not include the Python standard library modules posixsubprocess, site, and atexit in the UNSAFEIMPORTS denylist fickle.py. Because these modules are absent from the denylist, fickling's checksafety function returns LIKELYSAFE with zero...

8.8CVSS5.8AI score0.00342EPSS
Exploits1References4
ptsecurity
ptsecurity
added 2026/07/01 12:0 a.m.24 views

PT-2026-55213

Name of the Vulnerable Software and Affected Versions Twig versions prior to 3.27.0 Description In the template language for PHP, the allow-list verdict for filters, tags, and functions is computed during the construction of a Template instance and cached. This allows a sandboxed render to reuse ...

8.7CVSS6.1AI score0.00414EPSS
Exploits0References7
mscve
mscve
added 2026/06/27 8:10 a.m.8 views

udp: clear skb->dev before running a sockmap verdict

...

7.5CVSS5.8AI score0.00506EPSS
Exploits0
osv
osv
added 2026/06/25 9:16 a.m.3 views

UBUNTU-CVE-2026-53184

In the Linux kernel, the following vulnerability has been resolved: udp: clear skb-dev before running a sockmap verdict On the UDP receive path skb-dev is repurposed as devscratch the truesize/state cache set by udpsetdevscratch, through the union struct netdevice dev; unsigned long devscratch; i...

7.5CVSS5.7AI score0.00506EPSS
Exploits0References9
osv
osv
added 2026/06/25 8:38 a.m.2 views

CVE-2026-53184 udp: clear skb->dev before running a sockmap verdict

In the Linux kernel, the following vulnerability has been resolved: udp: clear skb-dev before running a sockmap verdict On the UDP receive path skb-dev is repurposed as devscratch the truesize/state cache set by udpsetdevscratch, through the union struct netdevice dev; unsigned long devscratch; i...

7.5CVSS5.8AI score0.00506EPSS
Exploits0References9
debiancve
debiancve
added 2026/06/25 8:38 a.m.6 views

CVE-2026-53184

In the Linux kernel, the following vulnerability has been resolved: udp: clear skb-dev before running a sockmap verdict On the UDP receive path skb-dev is repurposed as devscratch the truesize/state cache set by udpsetdevscratch, through the union struct netdevice dev; unsigned long devscratch; i...

7.5CVSS5.7AI score0.00506EPSS
Exploits0
cve
cve
added 2026/06/25 8:38 a.m.15 views

CVE-2026-53184

The CVE-2026-53184 issue affects the Linux kernel UDP sockmap path. On UDP receive, skb->dev is repurposed as dev_scratch; when a SK_SKB verdict program uses BPF socket-lookup helpers (bpf_sk_lookup_tcp/udp, bpf_skc_lookup_tcp), skb->dev may still hold the dev_scratch value, and dev_net(skb...

7.5CVSS5.7AI score0.00506EPSS
Exploits0References6Affected Software1
euvd
euvd
added 2026/06/25 8:38 a.m.6 views

EUVD-2026-39275

In the Linux kernel, the following vulnerability has been resolved: udp: clear skb-dev before running a sockmap verdict On the UDP receive path skb-dev is repurposed as devscratch the truesize/state cache set by udpsetdevscratch, through the union struct netdevice dev; unsigned long devscratch; i...

5.7AI score0.00506EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2026/06/25 12:0 a.m.8 views

PT-2026-52280

Name of the Vulnerable Software and Affected Versions Linux kernel version 7.1.0-rc6 Description An issue exists in the UDP receive path where the skb-dev field is repurposed as dev scratch via a union in sk buff. When a UDP socket is in a sockmap, the sk psock verdict recv function runs an...

7.5CVSS6AI score0.00506EPSS
Exploits0References20
ptsecurity
ptsecurity
added 2026/06/10 12:0 a.m.12 views

PT-2026-48478

Affected: @hulumi/drift 1.4.0 — Fixed in: 1.4.0 — Severity: Medium — CWE-755 Improper Handling of Exceptional Conditions Summary @hulumi/drift runs four adapters that each ask a different question about whether a resource has drifted Pulumi-state diff, provider-version change, CloudTrail event,...

8.4CVSS5.4AI score0.0004EPSS
Exploits0References4
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fixed repeated calls to sockput when msg has moredata In the tcpbpfsendverdict redirection, the eval variable is assigned to SKREDIRECT after the applybytes data is sent. If msg has moredata, sockput will be called...

7.8CVSS6.1AI score0.00158EPSS
Exploits0References2
redhat
redhat
added 2026/05/19 9:4 a.m.20 views

kernel: bpf: fix ktls panic with sockmap

In the Linux kernel, the following vulnerability has been resolved: bpf: fix ktls panic with sockmap 2172.936997 ------------ cut here ------------ 2172.936999 kernel BUG at lib/ioviter.c:629! ...... 2172.944996 PKRU: 55555554 2172.945155 Call Trace: 2172.945299 2172.945428 ? die+0x36/0x90...

5.5CVSS6.2AI score0.00147EPSS
Exploits0References5
susecve
susecve
added 2026/05/13 3:33 a.m.15 views

SUSE CVE-2026-43451

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkqueue: fix entry leak in bridge verdict error path nfqnlrecvverdict calls finddequeueentry to remove the queue entry from the queue data structures, taking ownership of the entry. For PFBRIDGE packets, it then...

5.7AI score0.00123EPSS
Exploits0References3
euvd
euvd
added 2026/05/08 3:31 p.m.15 views

EUVD-2026-28757

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkqueue: fix entry leak in bridge verdict error path nfqnlrecvverdict calls finddequeueentry to remove the queue entry from the queue data structures, taking ownership of the entry. For PFBRIDGE packets, it then...

5.8AI score0.00123EPSS
Exploits0References9
ubuntucve
ubuntucve
added 2026/05/08 3:16 p.m.11 views

CVE-2026-43451

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkqueue: fix entry leak in bridge verdict error path nfqnlrecvverdict calls finddequeueentry to remove the queue entry from the queue data structures, taking ownership of the entry. For PFBRIDGE packets, it then...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References10
osv
osv
added 2026/05/08 3:16 p.m.6 views

UBUNTU-CVE-2026-43451

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkqueue: fix entry leak in bridge verdict error path nfqnlrecvverdict calls finddequeueentry to remove the queue entry from the queue data structures, taking ownership of the entry. For PFBRIDGE packets, it then...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References11
attackerkb
attackerkb
added 2026/05/08 2:22 p.m.10 views

CVE-2026-43451

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkqueue: fix entry leak in bridge verdict error path nfqnlrecvverdict calls finddequeueentry to remove the queue entry from the queue data structures, taking ownership of the entry. For PFBRIDGE packets, it then...

5.8AI score0.00123EPSS
Exploits0References9Affected Software1
cve
cve
added 2026/05/08 2:22 p.m.22 views

CVE-2026-43451

Summary of CVE-2026-43451 (Linux kernel): The nfnetlink_queue entry leak occurs in the bridge verdict error path. When nfqnl_recv_verdict() dequeues an entry for PF_BRIDGE packets and nfqa_parse_bridge() returns an error (for example VLAN TCI missing when VLAN is present), the code returns withou...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References8Affected Software1
osv
osv
added 2026/05/08 2:22 p.m.1 views

CVE-2026-43451 netfilter: nfnetlink_queue: fix entry leak in bridge verdict error path

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkqueue: fix entry leak in bridge verdict error path nfqnlrecvverdict calls finddequeueentry to remove the queue entry from the queue data structures, taking ownership of the entry. For PFBRIDGE packets, it then...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References11
Rows per page
Query Builder