CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

27 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: xfs: added bounds checking to xlogrecoverprocessdata There is a lack of verification of the space occupied by fixed members of xlogopheader in xlogrecoverprocessdata. We can create a crafted image to trigger an out-of-bounds read...

7.1CVSS6.3AI score0.00015EPSS

Exploits0References2

SUSE CVE•added 2026/05/06 1:40 a.m.•2 views

SUSE CVE-2026-43063

In the Linux kernel, the following vulnerability has been resolved: xfs: don't irele after failing to iget in xfsattrirecoverwork xlogrecoveryiget never set @ip to a valid pointer if they return an error, so this irele will walk off a dangling pointer. Fix that...

5.8AI score0.00014EPSS

Exploits0References3

Tenable Nessus•added 2026/05/06 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-43063

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xfs: don't irele after failing to iget in xfsattrirecoverwork xlogrecoveryiget never set @ip to a valid pointer if they return an error, so this irele will walk...

7.8CVSS5.8AI score0.00014EPSS

Exploits0References3

Cvelist•added 2026/05/05 3:23 p.m.•34 views

CVE-2026-43063 xfs: don't irele after failing to iget in xfs_attri_recover_work

7.8CVSS0.00014EPSS

Exploits0References4

Positive Technologies•added 2026/05/05 12:0 a.m.•4 views

PT-2026-37066

In the Linux kernel, the following vulnerability has been resolved: xfs: don't irele after failing to iget in xfs attri recover work xlog recovery iget never set @ip to a valid pointer if they return an error, so this irele will walk off a dangling pointer. Fix that...

5.8AI score0.00014EPSS

Exploits0References5

EUVD•added 2026/05/01 2:15 p.m.•9 views

EUVD-2026-26652

In the Linux kernel, the following vulnerability has been resolved: xfs: close crash window in attr dabtree inactivation When inactivating an inode with node-format extended attributes, xfsattr3nodeinactive invalidates all child leaf/node blocks via xfstransbinval, but intentionally does not remo...

5.8AI score0.00018EPSS

Exploits0References2

Tenable Nessus•added 2026/01/27 12:0 a.m.•4 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005100)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005100 advisory. In the Linux kernel, the following vulnerability has been resolved: xfs: add bounds checking to xlogrecoverprocessdata There is a lack of verification of the space...

7.1CVSS6.7AI score0.00015EPSS

Exploits0References3

Tenable Nessus•added 2025/08/15 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2025-38063

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dm: fix unconditional IO throttle caused by REQPREFLUSH When a bio with REQPREFLUSH is submitted to dm, sendemptyflush generates a flushbio with REQOPWRITE |...

5.5CVSS6.6AI score0.0007EPSS

Exploits0References4

OSV•added 2025/05/23 1:32 a.m.•1 views

MAL-2025-4418 Malicious code in xlog-admin-portal (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8eb60334dd4f8546278e861e3dc7e4f69a46c5ed27bfe080fb6e77841fcbe4c3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score

Exploits0References4

OSSF Malicious Packages•added 2025/05/23 1:32 a.m.•2 views

Malicious code in xlog-admin-portal (npm)

6.9AI score

Exploits0References4