CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added 2026/05/20 5:53 a.m.•0 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: rustbinder: Check ownership before using vma When installing missing pages or updating them, Rust Binder will look up the vma in the memory management unit by address, and then call vminsertpage or zappagerangesingle. However, if...

7.8CVSS5.7AI score0.00013EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: drm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD After i915vmapinww is completed, a synchronous variant of dmafenceworkcommit is called. When pinning a VMA to GGTT address space on a Cherry View family processor...

5.9AI score0.00058EPSS

Tenable Nessus•added 2026/05/20 12:0 a.m.•3 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-021605)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021605 advisory. In the Linux kernel, the following vulnerability has been resolved: mm/mempolicy: fix migratetonode assuming there is at least one VMA in a MM We currently assume th...

5.5CVSS5.8AI score0.00019EPSS

Tenable Nessus•added 2026/05/20 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-43434

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: rustbinder: check ownership before using vma When installing missing pages or zapping them,...

7.8CVSS5.7AI score0.00013EPSS

RedhatCVE•added 2026/05/08 11:51 p.m.•3 views

CVE-2026-43433

A flaw was found in the Linux kernel's rustbinder component. If a local process gains the ability to write to its own virtual memory area VMA, it could exploit a time-of-check to time-of-use TOCTOU vulnerability. This allows the process to alter the offsets array during a transaction before it is...

7.8CVSS5.8AI score0.00012EPSS

Exploits0References4

NVD•added 2026/05/08 3:16 p.m.•2 views

CVE-2026-43434

In the Linux kernel, the following vulnerability has been resolved: rustbinder: check ownership before using vma When installing missing pages or zapping them, Rust Binder will look up the vma in the mm by address, and then call vminsertpage or zappagerangesingle. However, if the vma is closed an...

7.8CVSS0.00013EPSS

NVD•added 2026/05/08 3:16 p.m.•1 views

CVE-2026-43433

In the Linux kernel, the following vulnerability has been resolved: rustbinder: avoid reading the written value in offsets array When sending a transaction, its offsets array is first copied into the target proc's vma, and then the values are read back from there. This is normally fine because th...

7.8CVSS0.00012EPSS

UbuntuCve•added 2026/05/08 3:16 p.m.•4 views

CVE-2026-43433

7.8CVSS5.7AI score0.00012EPSS

Exploits0References5

OSV•added 2026/05/08 3:16 p.m.•3 views

UBUNTU-CVE-2026-43434

7.8CVSS5.6AI score0.00013EPSS

Exploits0References6

Cvelist•added 2026/05/08 2:22 p.m.•24 views

CVE-2026-43433 rust_binder: avoid reading the written value in offsets array

7.8CVSS0.00012EPSS

ATTACKERKB•added 2026/05/08 2:22 p.m.•2 views

CVE-2026-43433

5.7AI score0.00012EPSS

Exploits0References4Affected Software1

Positive Technologies•added 2026/05/08 12:0 a.m.•4 views

PT-2026-39095

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in Rust Binder where the system fails to verify ownership before using a Virtual Memory Area VMA. When installing or zapping missing pages, Rust Binder looks up the VMA b...

7.8CVSS5.8AI score0.00013EPSS

Exploits0References6

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: comedi: Flush partial mappings in error case If some remappfnrange calls succeeded before one failed, we still have buffer pages mapped into the userspace page tables when we drop the buffer reference with comedibufmapputbm. The...

5.5CVSS6.4AI score0.00015EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: mm/rmap: fix potential out-of-bounds page table access during batched unmap As pointed out by David1, the batched unmap logic in trytounmapone may read past the end of a PTE table when a large folio's PTE mappings are not fully...

7.1CVSS6.2AI score0.00119EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: Avoid corrupting the page-mapping in hugetlbmcopyatomicpte. In the MCOPYATOMICCONTINUE case with a non-shared VMA, the pages in the page cache are stored in the ptes. However, hugepageaddnewanonrmap is called for them...

5.5CVSS6.2AI score0.00049EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: ksm: The range-walk function is used to skip over unmapped regions during the scangetnextrmapitem operation. Currently, scangetnextrmapitem iterates through every page address in a virtual memory area to locate mergeable pages...

5.5CVSS5.8AI score0.00023EPSS