Lucene search
K

1086 matches found

OSV
OSV
added 2025/12/24 1:6 p.m.6 views

CVE-2023-54134 autofs: fix memory leak of waitqueues in autofs_catatonic_mode

In the Linux kernel, the following vulnerability has been resolved: autofs: fix memory leak of waitqueues in autofscatatonicmode Syzkaller reports a memory leak: BUG: memory leak unreferenced object 0xffff88810b279e00 size 96: comm "syz-executor399", pid 3631, jiffies 4294964921 age 23.870s hex...

6.2AI score0.00199EPSS
Exploits0References11
OSV
OSV
added 2025/12/24 1:6 p.m.4 views

CVE-2023-54124 f2fs: fix to drop all dirty pages during umount() if cp_error is set

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to drop all dirty pages during umount if cperror is set xfstest generic/361 reports a bug as below: f2fsbugonsbi, sbi-fsyncnodenum; kernel BUG at fs/f2fs/super.c:1627! RIP: 0010:f2fsputsuper+0x3a8/0x3b0 Call Trace:...

6.3AI score0.0018EPSS
Exploits0References10
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not waiting for a page write-back to complete, which could result in multiple write-backs of the same page and...

6.2AI score0.00173EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/12/24 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-54134

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - autofs: fix memory leak of waitqueues in autofscatatonicmode Syzkaller reports a memory leak: BUG: memory leak unreferenced object 0xffff88810b279e00 size 96:...

6.2AI score0.00199EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an unreleased wait queue in autofscatatonicmode, which could lead to a memory leak...

6.1AI score0.00199EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.5 views

PT-2025-53201

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to drop all dirty pages during umount if cp error is set xfstest generic/361 reports a bug as below: f2fs bug onsbi, sbi-fsync node num; kernel BUG at fs/f2fs/super.c:1627! RIP: 0010:f2fs put super+0x3a8/0x3b0 Call Trac...

6.3AI score0.0018EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.1 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991279)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991279 advisory. In the Linux kernel, the following vulnerability has been resolved: net: If sock is dead don't access sock's skwq in skstreamwaitmemory Fixes the below NULL pointer...

5.5CVSS5.7AI score0.00147EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/12/17 12:25 a.m.4 views

SUSE CVE-2025-68223

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: delete radeonfenceprocess in issignaled, no deadlock Delete the attempt to progress the queue when checking if fence is signaled. This avoids deadlock. dma-fenceops::signaled can be called with the fence lock in unkno...

4.7CVSS6.4AI score0.00099EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2025/12/17 12:23 a.m.4 views

SUSE CVE-2025-68314

In the Linux kernel, the following vulnerability has been resolved: drm/msm: make sure lastfence is always updated Update lastfence in the vm-bind path instead of kernel managed path. lastfence is used to wait for work to finish in vmbind contexts but not used for kernel managed contexts. This...

6.4AI score0.00145EPSS
Exploits0References3
OSV
OSV
added 2025/12/16 4:16 p.m.3 views

UBUNTU-CVE-2025-68314

In the Linux kernel, the following vulnerability has been resolved: drm/msm: make sure lastfence is always updated Update lastfence in the vm-bind path instead of kernel managed path. lastfence is used to wait for work to finish in vmbind contexts but not used for kernel managed contexts. This...

5.7AI score0.00145EPSS
Exploits0References10
CVE
CVE
added 2025/12/16 3:39 p.m.14 views

CVE-2025-68314

The CVE-2025-68314 entry concerns the Linux kernel component drm/msm. The vulnerability stems from last_fence not being updated in the vm-bind path, causing last_fence to not be waited on at context close for certain contexts, which can lead to faults as resources are freed while still in use. A ...

6AI score0.00145EPSS
Exploits0References2
OSV
OSV
added 2025/12/16 2:15 p.m.2 views

UBUNTU-CVE-2025-68223

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: delete radeonfenceprocess in issignaled, no deadlock Delete the attempt to progress the queue when checking if fence is signaled. This avoids deadlock. dma-fenceops::signaled can be called with the fence lock in unkno...

5.5CVSS5.7AI score0.00099EPSS
Exploits0References22
ATTACKERKB
ATTACKERKB
added 2025/12/16 1:57 p.m.4 views

CVE-2025-68223

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: delete radeonfenceprocess in issignaled, no deadlock Delete the attempt to progress the queue when checking if fence is signaled. This avoids deadlock. dma-fenceops::signaled can be called with the fence lock in unkno...

5.2AI score0.00099EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2025/12/16 1:57 p.m.4 views

CVE-2025-68223 drm/radeon: delete radeon_fence_process in is_signaled, no deadlock

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: delete radeonfenceprocess in issignaled, no deadlock Delete the attempt to progress the queue when checking if fence is signaled. This avoids deadlock. dma-fenceops::signaled can be called with the fence lock in unkno...

5.5CVSS6.2AI score0.00099EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/12/16 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from an uninitialized TxBlock0.waitor wait queue, which could lead to a system crash...

6AI score0.00177EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/12/16 12:0 a.m.4 views

PT-2025-51620

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s DRM/XE/GUC subsystem where a Dead CT worker may not be properly synchronized during device unbinding. This can lead to the worker attempting to use...

5.5AI score0.00517EPSS
Exploits4References386
OSV
OSV
added 2025/12/16 12:0 a.m.11 views

ALSA-2025:23241 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns CVE-2025-38499 kernel: iommufd: Fix race during abort for file descriptors CVE-2025-39966 kernel: tls: wait for...

7CVSS6.2AI score0.00166EPSS
Exploits0References8
AlmaLinux
AlmaLinux
added 2025/12/16 12:0 a.m.14 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns CVE-2025-38499 kernel: iommufd: Fix race during abort for file descriptors CVE-2025-39966 kernel: tls: wait for...

7CVSS6.3AI score0.00166EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/12/15 11:9 a.m.8 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 kernel was updated to fix various security issues The following security issues were fixed: CVE-2022-50253: bpf: make sure skb-len != 0 when redirecting to a tunneling device bsc1249912. CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in...

8.7CVSS8.2AI score0.00338EPSS
Exploits1References320
Cvelist
Cvelist
added 2025/12/10 11:55 p.m.29 views

CVE-2025-67648 Shopware's inproper input validation can lead to Reflected XSS through Storefront Login Page

Shopware is an open commerce platform. Versions 6.4.6.0 through 6.6.10.9 and 6.7.0.0 through 6.7.5.0 have a Reflected XSS vulnerability in AuthController.php. A request parameter from the login page URL is directly rendered within the Twig template of the Storefront login page without further...

7.1CVSS0.00158EPSS
Exploits0References2
Rows per page
Query Builder