Lucene search
+L

1585 matches found

Debian CVE
Debian CVE
added 2026/06/24 4:28 p.m.5 views

CVE-2026-52971

In the Linux kernel, the following vulnerability has been resolved: net: ena: PHC: Fix potential use-after-free in gettimestamp Move the phc-active check and resp pointer assignment to after acquiring the spinlock. Previously, phc-active was checked without holding the lock, and resp was cached...

7.8CVSS5.6AI score0.00133EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/24 4:28 p.m.7 views

CVE-2026-52966

In the Linux kernel, the following vulnerability has been resolved: drm: Replace old pointer to new idr Commit 5e28b7b94408 introduced a logical error by failing to replace the newly generated IDR pointer to old id's pointer at the correct location within the "change handle" logic; this resulted ...

5.8AI score0.00134EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/24 4:28 p.m.4 views

CVE-2026-52961

In the Linux kernel, the following vulnerability has been resolved: ceph: fix BUGON in cephbuildxattrsblob due to stale blob size The generic/642 test-case can reproduce the kernel crash: 40243.605254 ------------ cut here ------------ 40243.605956 kernel BUG at fs/ceph/xattr.c:918! 40243.607142...

5.7AI score0.00144EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/24 4:28 p.m.6 views

CVE-2026-52957

In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential null-ptr-deref in decodechooseargs A message of type CEPHMSGOSDMAP contains an OSD map that itself contains a CRUSH map. When decoding this CRUSH map in crushdecode, an array of maxbuckets CRUSH buckets is...

7.5CVSS5.6AI score0.0053EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/24 4:28 p.m.5 views

CVE-2026-52956

In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds access in cephxdecrypt In cephxdecrypt, a part of the buffer p is interpreted as a cephxencryptheader, and the magic field of this struct is accessed. This happens without any guarantee that t...

7.5CVSS5.8AI score0.00359EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/24 4:28 p.m.6 views

CVE-2026-52952

In the Linux kernel, the following vulnerability has been resolved: iommu: Fix WARNON in iommugroupsetdomainnofail due to reset In iommugroupsetdomaininternal, concurrent domain attachments are rejected when any device in the group is recovering. This is necessary to fence concurrent attachments ...

8.8CVSS5.6AI score0.00138EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/24 4:26 p.m.6 views

CVE-2026-52945

In the Linux kernel, the following vulnerability has been resolved: Revert "wireguard: device: enable threaded NAPI" This reverts commit 933466fc50a8e4eb167acbd0d8ec96a078462e9c which is commit db9ae3b6b43c79b1ba87eea849fd65efa05b4b2e upstream. We have had three independent production user report...

7.5CVSS5.7AI score0.00307EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.5 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: dm-verity: properly handling failures of dmbufioclientcreate If either of the calls to dmbufioclientcreate in verityfecctr fails, then dmbufioclientdestroy is called later with an ERRPTR argument. This causes a crash. Fix this...

5.5CVSS5.7AI score0.00128EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/22 6:28 a.m.11 views

kernel: libceph: prevent potential out-of-bounds reads in handle_auth_done()

In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds reads in handleauthdone Perform an explicit bounds check on payloadlen to avoid a possible out-of-bounds access in the callout. idryomov: changelog...

9.8CVSS5.7AI score0.00351EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/06/19 2:43 p.m.5 views

CVE-2026-52910

In the Linux kernel, the following vulnerability has been resolved: bpf: Free reuseport cBPF prog after RCU grace period. Eulgyu Kim reported the splat below with a repro. 0 The repro sets up a UDP reuseport group with a cBPF prog and replaces it with a new one while another thread is sending a U...

7.8CVSS5.6AI score0.00104EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: mm: slub: Fix the invocation of flushcpuslab and freeslab in the task context. The commit 5a836bf6b09f “mm: slub: Move the invocation of flushcpuslab and freeslab out of the IRQ context” fixes this issue by moving all invocations...

7.8CVSS6AI score0.00242EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/06/08 3:50 p.m.10 views

CVE-2026-46310

In the Linux kernel, the following vulnerability has been resolved: media: renesas: vsp1: Fix NULL pointer deref on module unload When unloading the module on gen 4, we hit a NULL pointer dereference. This is caused by the cleanup code calling vsp1drmcleanup where it should be calling...

5.5CVSS5.4AI score0.00112EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/08 3:46 p.m.13 views

CVE-2026-46308

In the Linux kernel, the following vulnerability has been resolved: pmdomain: mediatek: fix use-after-free in scpsysgetbusprotectionlegacy In scpsysgetbusprotectionlegacy, offindnodewithproperty returns a device node with its reference count incremented. The function then calls ofnodeputnode befo...

7.8CVSS5.3AI score0.00115EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/08 3:46 p.m.55 views

CVE-2026-46306 flow_dissector: do not dissect PPPoE PFC frames

In the Linux kernel, the following vulnerability has been resolved: flowdissector: do not dissect PPPoE PFC frames RFC 2516 Section 7 states that Protocol Field Compression PFC is NOT RECOMMENDED for PPPoE. In practice, pppd does not support negotiating PFC for PPPoE sessions, and the flow...

7.5CVSS0.00389EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2026/06/08 3:46 p.m.10 views

CVE-2026-46294

In the Linux kernel, the following vulnerability has been resolved: dm: fix a buffer overflow in ioctl processing Tony Asleson using Claude found a buffer overflow in dm-ioctl in the function retrievestatus: 1. The code in retrievestatus checks that the output string fits into the output buffer a...

7.8CVSS5.7AI score0.00143EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/08 3:46 p.m.12 views

CVE-2026-46293

In the Linux kernel, the following vulnerability has been resolved: clk: microchip: mpfs-ccc: fix out of bounds access during output registration UBSAN reported an out of bounds access during registration of the last two outputs. This out of bounds access occurs because space is only allocated in...

7.1CVSS5.3AI score0.00126EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/08 3:41 p.m.12 views

CVE-2026-46286

In the Linux kernel, the following vulnerability has been resolved: leds: qcom-lpg: Check for array overflow when selecting the high resolution When selecting the high resolution values from the array, FIELDGET is used to pull from a 3 bit register, yet the array being indexed has only 5 values i...

5.5CVSS5.3AI score0.00122EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/08 3:41 p.m.14 views

CVE-2026-46285

In the Linux kernel, the following vulnerability has been resolved: mtd: docg3: fix use-after-free in docg3release In docg3release, the docg3 pointer is obtained from cascade-floors0-priv before the loop that calls docreleasedevice on each floor. docreleasedevice frees the docg3 struct via...

7.8CVSS5.3AI score0.00126EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/08 3:41 p.m.10 views

CVE-2026-46284

In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: fix early boot crash on parameters without '=' separator If hugepages, hugepagesz, or defaulthugepagesz are specified on the kernel command line without the '=' separator, early parameter parsing passes NULL to...

5.5CVSS5.3AI score0.00121EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/08 3:41 p.m.13 views

CVE-2026-46283

In the Linux kernel, the following vulnerability has been resolved: tpm: Use kfreesensitive to free auth session in tpmdevrelease tpmdevrelease uses plain kfree to free chip-auth, which contains sensitive cryptographic material including HMAC session keys, nonces, and passphrase data struct...

5.5CVSS5.4AI score0.00122EPSS
Exploits0
Rows per page
Query Builder