CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/05/08 2:16 p.m.•6 views

Exploits0References6

UBUNTU-CVE-2026-43292

5.5CVSS5.7AI score0.00122EPSS

Exploits0References7

ATTACKERKB•added 2026/05/08 1:11 p.m.•6 views

CVE-2026-43292

5.7AI score0.00122EPSS

Exploits0References5Affected Software1

CVE•added 2026/05/08 1:11 p.m.•16 views

CVE-2026-43292

The CVE-2026-43292 issue affects the Linux kernel mm/vmalloc path when CONFIG_PAGE_OWNER is enabled. During vmalloc cleanup, freeing KASAN shadow pages can trigger stack unwinding under an RCU read lock, and processing a large purge_list (kasan_release_vmalloc_node) may cause long RCU stalls (10+...

Exploits0References4Affected Software1

Cvelist•added 2026/05/08 1:11 p.m.•29 views

CVE-2026-43292 mm/vmalloc: prevent RCU stalls in kasan_release_vmalloc_node

0.00122EPSS

Exploits0References4

Debian CVE•added 2026/05/08 1:11 p.m.•8 views

CVE-2026-43292

5.5CVSS5.7AI score0.00122EPSS

Exploits0

CNNVD•added 2026/05/08 12:0 a.m.•5 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the kasanreleasevmallocnode function not rescheduling when handling large amounts of purgelist,...

Positive Technologies•added 2026/05/08 12:0 a.m.•10 views

Exploits0References3

PT-2026-38934

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description When CONFIG PAGE OWNER is enabled, freeing KASAN shadow pages during vmalloc cleanup triggers expensive stack unwinding that acquires RCU read locks. Processing a large purge list withou...

5.5CVSS5.9AI score0.00122EPSS

Exploits0References18

Tenable Nessus•added 2026/05/08 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2026-43292

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mm/vmalloc: prevent RCU stalls in kasanreleasevmallocnode When CONFIGPAGEOWNER is enabled, freeing KASAN shadow pages during vmalloc cleanup triggers expensive...

Exploits0References3

7.1CVSS5.7AI score0.00262EPSS

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: tty: Fixed out-of-bound access to vmalloc in imageblit. This issue occurs when a user-space program calls ioctl FBIOPUTVSCREENINFO, passing the fbvarscreeninfo structure containing only the fields xres, yres, and bitsperpixel wit...

7.1CVSS5.3AI score0.00238EPSS

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: BPF: Use VMMAP instead of VMALLOC for the ringbuf area. After the commit 2fd3fb0be1d1 “kasan, vmalloc: unpoison VMALLOC pages after mapping”, non-VMALLOC mappings will be marked as accessible in getvmareanode when KASAN is enable...

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: rcu: Dump vmalloc memory info safely Currently, for double invoke callrcu, the memory information of rcuhead objects will be dumped. If these objects are not allocated from the slab allocator, vmallocdumpobj will be invoked, a...

5.5AI score0.00168EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux - уязвимость в linux-5.15

In the Linux kernel, the following vulnerability has been resolved: riscv: Sync efi page table's kernel mappings before switching The EFI page table is initially created as a copy of the kernel page table. With VMAPSTACK enabled, kernel stacks are allocated in the vmalloc area: if the stack is...

5.5CVSS6.4AI score0.00243EPSS

5.5CVSS5.3AI score0.00235EPSS

Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: RISCV: Check whether the code to be patched lies within the exit section. Otherwise, we proceed to vmalloctopage, which panics because the address does not lie within the vmalloc region...

5.5CVSS5.7AI score0.00241EPSS

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: PowerPC: Fixed virtaddrvalid for 64-bit Book3E & 32-bit systems. MPE: On 64-bit Book3E, the vmalloc space starts at 0x8000000000000000. Due to the way pa works, pa0x8000000000000000 returns 0. Therefore,...

AstraLinux•added 2026/05/03 11:59 p.m.•6 views

Astra Linux – Vulnerabilities in Linux, Linux-5.15, Linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: cassini: Fixed a memory leak in the error handling path of casinitone. cassaturnfirmwareinit allocates some memory using vmalloc. This memory is freed in the .remove function, but not in the error handling path of the probe...

5.5CVSS5.6AI score0.00136EPSS

OSV•added 2026/05/01 1:12 p.m.•8 views

CLSA-2026-1777614769 kernel: Fix of 13 CVEs

crypto: algifaead - Fix minimum RX size check for decryption - crypto: afalg - Fix page reassignment overflow in afalgpulltsgl - crypto: authencesn - Fix src offset when decrypting in-place - crypto: authencesn - Do not place hiseq at end of dst for out-of-place decryption - crypto: authenc - use...

7.8CVSS7.4AI score0.00258EPSS

Exploits0References1

Tenable Nessus•added 2026/04/22 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-31494

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: macb: use the current queue number for stats There's a potential mismatch between the memory reserved for statistics and the amount of memory written...

7.8CVSS5.8AI score0.00129EPSS