CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

40 matches found

AstraLinux•added 2026/06/19 11:10 a.m.•1 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: mm/pagetablecheck: A crash occurred when checking ZONEDEVICE. Not all pages apply to the pgtable check. An example is ZONEDEVICE pages: they directly map PFNs, and they never allocate pageext, even if there’s a struct page around...

5.5CVSS5.9AI score0.00249EPSS

Exploits0References2

Tenable Nessus•added 2026/06/10 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-46277

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mm/zonedevice: do not touch device folio after calling -foliofree The contents of a device folio can immediately change after calling -foliofree, as the folio m...

7.8CVSS5.8AI score0.0012EPSS

Exploits0References2

SUSE CVE•added 2026/06/09 2:21 a.m.•11 views

SUSE CVE-2026-46277

In the Linux kernel, the following vulnerability has been resolved: mm/zonedevice: do not touch device folio after calling -foliofree The contents of a device folio can immediately change after calling -foliofree, as the folio may be reallocated by a driver with a different order. Instead of...

5.5CVSS5.3AI score0.0012EPSS

Exploits0References3

RedhatCVE•added 2026/06/08 8:14 p.m.•8 views

CVE-2026-46277

A flaw was found in the Linux kernel's memory management, specifically within the mm/zonedevice component. This vulnerability arises when a device folio is accessed after it has been freed and potentially reallocated by a driver. This can lead to memory corruption, which a local attacker could...

7.8CVSS5.3AI score0.0012EPSS

Exploits0References4

NVD•added 2026/06/08 5:16 p.m.•9 views

CVE-2026-46277

7.8CVSS0.0012EPSS

Exploits0References2

OSV•added 2026/06/08 5:16 p.m.•5 views

UBUNTU-CVE-2026-46277

7.8CVSS5.3AI score0.0012EPSS

Exploits0References5

CVE•added 2026/06/08 3:41 p.m.•16 views

CVE-2026-46277

CVE-2026-46277 in the Linux kernel fixes a use-after-free-like condition in mm/zone_device where a device folio can change after calling folio_free(), risking invalid extraction of the pgmap if touched again. The issue arises because a folio may be reallocated by a driver with a different order, ...

7.8CVSS5.4AI score0.0012EPSS

Exploits0References2

EUVD•added 2026/06/08 3:41 p.m.•8 views

EUVD-2026-35142

5.4AI score0.0012EPSS

Exploits0References2

ATTACKERKB•added 2026/06/08 3:41 p.m.•6 views

CVE-2026-46277

5.3AI score0.0012EPSS

Exploits0References3Affected Software1

SUSE CVE•added 2026/05/29 1:16 a.m.•10 views

SUSE CVE-2026-46115

In the Linux kernel, the following vulnerability has been resolved: block: add pgmap check to biovecphysmergeable biovecphysmergeable is used by the request merge, DMA mapping, and integrity merge paths to decide if two physically contiguous bvec segments can be coalesced into one. It currently h...

5.5CVSS5.7AI score0.00491EPSS

Exploits0References3

NVD•added 2026/05/28 10:16 a.m.•12 views

CVE-2026-46115

9.8CVSS0.00491EPSS

Exploits0References5

OSV•added 2026/05/28 10:16 a.m.•10 views

UBUNTU-CVE-2026-46115

9.8CVSS5.7AI score0.00491EPSS

Exploits0References8

CVE•added 2026/05/28 9:35 a.m.•35 views

CVE-2026-46115

In the Linux kernel block subsystem, CVE-2026-46115 was addressed by adding a check so that zone_device_pages_have_same_pgmap() prevents merging bvec segments that span different dev_pagemaps in biovec_phys_mergeable. Root cause: biovec_phys_mergeable() did not verify that two physically contiguo...

9.8CVSS5.7AI score0.00491EPSS

Exploits0References5Affected Software1

Cvelist•added 2026/05/28 9:35 a.m.•29 views

CVE-2026-46115 block: add pgmap check to biovec_phys_mergeable

9.8CVSS0.00491EPSS

Exploits0References5

EUVD•added 2026/05/28 9:35 a.m.•11 views

EUVD-2026-32874

5.7AI score0.00491EPSS

Exploits0References5

Positive Technologies•added 2026/05/28 12:0 a.m.•24 views

PT-2026-44238

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.11-1.1 Description The biovec phys mergeable function, used in request merge, DMA mapping, and integrity merge paths, fails to verify if physically contiguous bvec segments belong to different dev pagemaps...

9.8CVSS5.9AI score0.03663EPSS

Exploits14References281

AstraLinux•added 2026/05/20 5:53 a.m.•8 views

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: mm/kmemleak: Avoid scanning potential huge holes. When using devmrequestfreememregion and devmmemremappages to add ZONEDEVICE memory, if the end PFN of the requested free memory region is huge e.g., 0x400000000, the nodeendpfn wi...

5.5CVSS5.6AI score0.00168EPSS

Exploits0References2

UbuntuCve•added 2026/05/08 2:16 p.m.•9 views

CVE-2026-43332

In the Linux kernel, the following vulnerability has been resolved: thermal: core: Fix thermal zone device registration error path If thermalzonedeviceregisterwithtrips fails after registering a thermal zone device, it needs to wait for the tz-removal completion like thermalzonedeviceunregister, ...

7.8CVSS5.7AI score0.00129EPSS

Exploits0References7

OSV•added 2026/05/08 2:16 p.m.•11 views

UBUNTU-CVE-2026-43332

7.8CVSS5.7AI score0.00129EPSS

Exploits0References8