CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 3 days ago•6 views

CVE-2026-53027

A flaw was found in the Linux kernel's fs/ntfs3 component. When handling compressed or sparse attributes with frame-aligned clusters, a missing run load for vcn0 can occur if vcn0 resides in a different attribute segment. This oversight can lead to a kernel warning WARNON1 during a run lookup,...

5.8AI score0.00155EPSS

Exploits0References4

Tenable Nessus•added 3 days ago•7 views

RockyLinux 9 : kernel (RLSA-2026:27789)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:27789 advisory. kernel: can: isotp: fix tx.buf use-after-free in isotpsendmsg CVE-2026-31474 kernel: mptcp: fix slab-use-after-free in inetlookupestablished...

9.8CVSS7.1AI score0.004EPSS

Exploits4References35

EUVD•added 4 days ago•4 views

EUVD-2026-38820

In the Linux kernel, the following vulnerability has been resolved: iommu: Fix WARNON in iommugroupsetdomainnofail due to reset In iommugroupsetdomaininternal, concurrent domain attachments are rejected when any device in the group is recovering. This is necessary to fence concurrent attachments ...

5.7AI score0.00162EPSS

Exploits0References3

Cvelist•added 4 days ago•27 views

CVE-2026-52952 iommu: Fix WARN_ON in __iommu_group_set_domain_nofail() due to reset

8.8CVSS0.00162EPSS

CVE•added 4 days ago•5 views

CVE-2026-52952

Summary: CVE-2026-52952 affects the Linux kernel IOMMU subsystem. A race occurs during device recovery when multiple memory domains are attached concurrently, which can trigger a Use-After-Free (UAF) due to concurrent domain detachment and re-attachment in a multi-device group sharing the same RI...

8.8CVSS5.7AI score0.00162EPSS

5.5CVSS5.9AI score0.0022EPSS

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: KEYS: prevented NULL pointer dereference in findasymmetrickey. In findasymmetrickey, if all NULL values are passed as arguments to id0,1,2, the kernel will first emit a WARN message, but then there will be an oops because id2 wil...

AstraLinux•added 2026/06/19 11:10 a.m.•4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Avoid using NULL after WARNONONCE. There is a WARNONONCE to catch an unlikely situation where domainremovedevpasid cannot find the pasid. If this still happens, we must avoid using a NULL pointer...

5.5CVSS5.8AI score0.0018EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•5 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: Timers: A race condition involving NULL function pointers was fixed in timershutdownsync. There is a race condition between timershutdownsync and timerexpiration, which can lead to a WARNON being triggered in expiretimers. The...

4.7CVSS6AI score0.00117EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: BPF: The unnecessary user-triggable WARNONCE message in the verifier log was removed. It is trivial for a user to trigger the “verifier log line truncated” warning. The verifier has a fixed-size buffer of 1024 bytes currently...

5.7AI score0.00166EPSS

7.8CVSS5.6AI score0.00123EPSS

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: netfilter: xtIDLETIMER: Rejects the reuse of ALARM timer labels in revision 0 rules. In revision 0 rules, reusing timers by label always involves calling modtimer on the uninitialized timer-timer. If the label was created first i...

AstraLinux•added 2026/06/19 11:10 a.m.•1 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: Bonding: Unnecessary warnings and logs from bondxdpgetxmitslave have been fixed. syzbot reported a warning in bondxdpgetxmitslave. To reproduce this issue1, one bonding device bond1 should have xdpdrv, which increases...

5.5CVSS6.4AI score0.00239EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Wifi: iwlwifi: mvm: cleanup of ROC upon failure If the firmware fails to initiate session protection, we do not call iwlmvmrocfinished here, as this will have no effect, since IWLMVMSTATUSROCP2PRUNNING was never set. Set...

5.5CVSS6.1AI score0.00174EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•9 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: mISDN: A possible memory leak in mISDNregisterdevice has been fixed. After committing 1fa5ae857bb1 "driver core: get rid of struct device’s busid string array", the name of the device is allocated dynamically. The putdevice...

5.5CVSS6.1AI score0.00168EPSS

5.5CVSS6AI score0.0021EPSS

Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: KEYS: Trusted – Do not use WARN when encode fails When asn1encodesequence fails, using WARN is not the correct solution. 1. asn1encodesequence is not an internal function located in lib/asn1encode.c. 2. Its location is known,...

AstraLinux•added 2026/06/19 11:10 a.m.•5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: mm/mremap: Fixed the WARN message emitted by uffd when remap events are disabled. Registering userfaultd on a VMA that spans at least one PMD, and then using mremap to remap that VMA, may trigger a WARN message when recovering fr...

5.5CVSS5.8AI score0.00119EPSS

5.5CVSS6.2AI score0.00214EPSS

Astra Linux – Vulnerability in Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: Closures: Change BUGON to WARNON If a BUGON function is actually executed, it shouldn’t be considered a real BUG. For reference, this issue has occurred once during the continuous integration process. We will need more informatio...

AstraLinux•added 2026/06/19 11:10 a.m.•3 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: kprobes: Do not call disarmkprobe for disabled kprobes The assumption in disablekprobe is incorrect, and it may attempt to disarm a kprobe that is already disarmed, thereby triggering WARNONCE below. This issue can be easily...

5.5CVSS6.1AI score0.00204EPSS

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: nvme-multipath: fixed the lockdep warning due to the partition scan operation. The test cases nvme/014, 057, and 058 occasionally fail due to the lockdep warning. As reported in the Closes tag URL, this warning indicates that ...

5.9AI score0.00168EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: fsverity: Rejects FSIOCENABLEVERITY when mode 3 is used for file descriptors. Commit 56124d6c87fd “fsverity: Supports enabling with tree block size fmode & FMODEREAD condition in kernelread became reachable through fuzz tests. Th...

5.5CVSS5.6AI score0.00128EPSS