CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

45 matches found

RockyLinux 9 : kernel (RLSA-2026:27789)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:27789 advisory. kernel: can: isotp: fix tx.buf use-after-free in isotpsendmsg CVE-2026-31474 kernel: mptcp: fix slab-use-after-free in inetlookupestablished...

9.8CVSS7.1AI score0.004EPSS

Exploits4References35

AstraLinux•added 2026/06/19 11:10 a.m.•4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: xen: privcmd: Fixed the possibility of accessing a freed kirqfd instance. Nothing prevents simultaneous ioctl calls to privcmdirqfdassign and privcmdirqfddeassign. If this occurs, it is possible that a kirqfd created and added to...

5.5CVSS5.4AI score0.00238EPSS

Exploits0References2

Rockylinux•added 2026/06/19 12:0 a.m.•6 views

kernel security update

An update is available for kernel. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...

9.8CVSS5.3AI score0.004EPSS

Exploits0

RedHat Linux•added 2026/06/16 7:17 p.m.•6 views

kernel: xen/privcmd: fix double free via VMA splitting

A flaw was found in the Linux kernel's xen/privcmd module. A local user could exploit this by performing a partial unmapping of a privcmd memory region. This action causes a Virtual Memory Area VMA to split, leading to duplicated internal memory pointers. As a result, the same memory can be freed...

7.8CVSS5.5AI score0.00183EPSS

Exploits0References5

RedHat Linux•added 2026/06/16 6:39 p.m.•7 views

kernel: xen/privcmd: fix double free via VMA splitting

7.8CVSS5.5AI score0.00183EPSS

Exploits0References5

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: xen/privcmd: fixed the error exit of privcmdioctldmop The error exit of privcmdioctldmop calls unlockpages, potentially with pages being NULL, leading to a NULL dereference. Additionally, lockpages does not check whether...

5.5CVSS6.2AI score0.00197EPSS

Exploits0References2

OSV•added 2026/04/30 11:16 a.m.•2 views

ALPINE-CVE-2026-31787

In the Linux kernel, the following vulnerability has been resolved: xen/privcmd: fix double free via VMA splitting privcmdvmops defines .close privcmdclose, but neither .maysplit nor .open. When userspace does a partial munmap on a privcmd mapping, the kernel splits the VMA via splitvma. Since...

7.8CVSS5.8AI score0.00183EPSS

Exploits0References1

NVD•added 2026/04/30 11:16 a.m.•4 views

CVE-2026-31787

7.8CVSS0.00183EPSS

Exploits0References10

ATTACKERKB•added 2026/04/30 10:31 a.m.•4 views

CVE-2026-31787

5.4AI score0.00183EPSS

Exploits0References9Affected Software1

EUVD•added 2026/04/30 10:31 a.m.•4 views

EUVD-2026-26365

5.3AI score0.00183EPSS

Exploits0References7

Debian CVE•added 2026/04/30 10:31 a.m.•4 views

CVE-2026-31787

7.8CVSS5.2AI score0.00183EPSS

Exploits0

CNNVD•added 2026/04/30 12:0 a.m.•8 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the VMA segmentation in the xen privcmd driver, leading to double deallocation and potentially...

7.8CVSS5.8AI score0.00183EPSS

Exploits0References1

SUSE Linux•added 2026/04/28 1:27 p.m.•5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to fix various security issues The following security issues were fixed: CVE-2025-39998: scsi: target: targetcoreconfigfs: Add length check to avoid buffer overflow bsc1252073. CVE-2026-23103: ipvlan: Make the addrslock be per port bsc1257773...

8.7CVSS5.7AI score0.00812EPSS

Exploits3References66

OSV•added 2026/04/28 1:27 p.m.•2 views

SUSE-SU-2026:1643-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2025-39998: scsi: target: targetcoreconfigfs: Add length check to avoid buffer overflow bsc1252073. - CVE-2026-23103: ipvlan: Make the addrslock be per port bsc125777...

8.2CVSS5.8AI score0.00812EPSS

Exploits3References34

Tenable Nessus•added 2026/04/17 12:0 a.m.•5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007471)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007471 advisory. In the Linux kernel, the following vulnerability has been resolved: xen/privcmd: Fix a possible warning in privcmdioctlmmapresource As 'kdata.num' is user-controlled...

5.8AI score0.002EPSS

Exploits0References4

EUVD•added 2026/03/25 12:30 p.m.•3 views

EUVD-2026-15401

In the Linux kernel, the following vulnerability has been resolved: xen/privcmd: restrict usage in unprivileged domU The Xen privcmd driver allows to issue arbitrary hypercalls from user space processes. This is normally no problem, as access is usually limited to root and the hypervisor will den...

5.8AI score0.00154EPSS

Exploits0References11

RedhatCVE•added 2026/03/25 12:17 p.m.•2 views

CVE-2026-31788

A flaw was found in the Linux kernel's Xen privcmd driver. This vulnerability allows a root user process within an unprivileged guest domU to issue arbitrary hypercalls. Such an action could enable the process to modify the kernel's memory, thereby undermining the secure boot feature designed to...

6.7CVSS5.8AI score0.00154EPSS

Exploits0References4

NVD•added 2026/03/25 11:16 a.m.•4 views

CVE-2026-31788

8.2CVSS0.00154EPSS

Exploits0References14