Lucene search
K
RedhatRecent

115831 matches found

RedHat Linux
RedHat Linux
•added 2026/05/19 9:5 a.m.•10 views

NetworkManager: NetworkManager File Access

A flaw was found in NetworkManager. The NetworkManager package allows access to files that may belong to other users. NetworkManager allows non-root users to configure the system's network. The daemon runs with root privileges and can access files owned by users different from the one who added t...

3.3CVSS5.7AI score0.00162EPSS
Exploits0References7
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•18 views

Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.8CVSS6.7AI score0.00344EPSS
Exploits8References46
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•9 views

kernel: tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg

In the Linux kernel, the following vulnerability has been resolved: tcpbpf: Fix the skmemuncharge logic in tcpbpfsendmsg The current sk memory accounting logic in SKREDIRECT is pre-uncharging tosend bytes, which is either msg-sg.size or a smaller value applybytes. Potential problems with this...

7.8CVSS6.3AI score0.00273EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•8 views

kernel: phy: qcom-qmp-usb: Fix an NULL vs IS_ERR() bug

In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp-usb: Fix an NULL vs ISERR bug The qmpusbiomap helper function currently returns the raw result of devmioremap for non-exclusive mappings. Since devmioremap may return a NULL pointer and the caller only checks error...

5.5CVSS6.2AI score0.00169EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•12 views

kernel: xfrm: Duplicate SPI Handling

In the Linux kernel, the following vulnerability has been resolved: xfrm: Duplicate SPI Handling The issue originates when Strongswan initiates an XFRMMSGALLOCSPI Netlink message, which triggers the kernel function xfrmallocspi. This function is expected to ensure uniqueness of the Security...

7.8CVSS5.6AI score0.00147EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•21 views

kernel: Linux kernel: Denial of service and memory corruption in RDMA umad

A flaw was found in the Linux kernel's Remote Direct Memory Access RDMA umad User Mode Access Device component. A local user can exploit this vulnerability by manipulating input, causing an integer underflow that leads to an out-of-bounds memory write. This memory corruption can result in a denia...

7.8CVSS5.7AI score0.00125EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•11 views

kernel: Linux kernel: Denial of Service in ice driver due to race condition during VSI rebuild

A flaw was found in the Linux kernel's ice network driver. A local attacker could exploit a race condition during the Virtual Station Interface VSI rebuild process. This flaw occurs when the Precision Time Protocol PTP periodic work attempts to access uninitialized memory, leading to a NULL point...

4.7CVSS5.8AI score0.00106EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•8 views

kernel: Kernel: Privilege escalation or denial of service in nf_tables via inverted element activity check

A flaw was found in the Linux kernel's nftables component. A logic bug in nftmapcatchallactivate causes an inverted element activity check during the abort path of a failed transaction. This can lead to a use-after-free vulnerability, as catchall verdict elements may still reference a freed chain...

7.8CVSS5.8AI score0.00344EPSS
Exploits7References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•8 views

kernel: wifi: mac80211_hwsim: fix typo in frequency notification

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211hwsim: fix typo in frequency notification The NAN notification is for 5745 MHz which corresponds to channel 149 and not 5475 which is not actually a valid channel. This could result in a NULL pointer dereference in...

5.8AI score0.00145EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•9 views

kernel: smb: client: fix potential cfid UAF in smb2_query_info_compound

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential cfid UAF in smb2queryinfocompound When smb2queryinfocompound retries, a previously allocated cfid may have been freed in the first attempt. Because cfid wasn't reset on replay, later cleanup could act o...

5.8AI score0.00162EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•8 views

kernel: PCI/AER: Avoid NULL pointer dereference in aer_ratelimit()

A flaw was found in the Linux kernel PCI/AER Advanced Error Reporting subsystem. When platform firmware reports error information via the ACPI APEI GHES mechanism for a device that does not advertise an AER capability, dev-aerinfo remains NULL. The function aerratelimit does not check for this...

6AI score0.00182EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•14 views

kernel: netfilter: flowtable: account for Ethernet header in nf_flow_pppoe_proto()

In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: account for Ethernet header in nfflowpppoeproto syzbot found a potential access to uninit-value in nfflowpppoeproto Blamed commit forgot the Ethernet header. BUG: KMSAN: uninit-value in...

5.5CVSS6.3AI score0.00156EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•8 views

kernel: nvmet: fix memory leak of bio integrity

In the Linux kernel, the following vulnerability has been resolved: nvmet: fix memory leak of bio integrity If nvmet receives commands with metadata there is a continuous memory leak of kmalloc-128 slab or more precisely bio-biintegrity. Since commit bf4c89fc8797 "block: don't call biouninit from...

5.5CVSS5.9AI score0.00154EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•14 views

kernel: bpf: Do not include stack ptr register in precision backtracking bookkeeping

In the Linux kernel, the following vulnerability has been resolved: bpf: Do not include stack ptr register in precision backtracking bookkeeping Yi Lai reported an issue 1 where the following warning appears in kernel dmesg: 60.643604 verifier backtracking bug 60.643635 WARNING: CPU: 10 PID: 2315...

7.8CVSS6.3AI score0.00162EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•25 views

kernel: ring-buffer: Do not trigger WARN_ON() due to a commit_overrun

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Do not trigger WARNON due to a commitoverrun When reading a memory mapped buffer the reader page is just swapped out with the last page written in the write buffer. If the reader page is the same as the commit buffer...

7.8CVSS5.9AI score0.00172EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•14 views

kernel: bpf: Check rcu_read_lock_trace_held() in bpf_map_lookup_percpu_elem()

In the Linux kernel, the following vulnerability has been resolved: bpf: Check rcureadlocktraceheld in bpfmaplookuppercpuelem bpfmaplookuppercpuelem helper is also available for sleepable bpf program. When BPF JIT is disabled or under 32-bit host, bpfmaplookuppercpuelem will not be inlined. Using...

5.5CVSS6.2AI score0.00147EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•9 views

kernel: espintcp: remove encap socket caching to avoid reference leak

In the Linux kernel, the following vulnerability has been resolved: espintcp: remove encap socket caching to avoid reference leak The current scheme for caching the encap socket can lead to reference leaks when we try to delete the netns. The reference chain is: xfrmstate - enacpsk - netns Since...

5.5CVSS6.2AI score0.00157EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•9 views

kernel: block: fix resource leak in blk_register_queue() error path

In the Linux kernel, the following vulnerability has been resolved: block: fix resource leak in blkregisterqueue error path When registering a queue fails after blkmqsysfsregister is successful but the function later encounters an error, we need to clean up the blkmqsysfs resources. Add the missi...

5.5CVSS6.3AI score0.00149EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•9 views

kernel: KVM: x86: Load DR6 with guest value only before entering .vcpu_run() loop

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Load DR6 with guest value only before entering .vcpurun loop Move the conditional loading of hardware DR6 with the guest's DR6 value out of the core .vcpurun loop to fix a bug where KVM can load hardware with a stale...

5.5CVSS6.3AI score0.00206EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•8 views

kernel: ftrace: Fix UAF when lookup kallsym after ftrace disabled

In the Linux kernel, the following vulnerability has been resolved: ftrace: Fix UAF when lookup kallsym after ftrace disabled The following issue happens with a buggy module: BUG: unable to handle page fault for address: ffffffffc05d0218 PGD 1bd66f067 P4D 1bd66f067 PUD 1bd671067 PMD 101808067 PTE...

7.8CVSS6.7AI score0.00168EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•18 views

kernel: fs: writeback: fix use-after-free in __mark_inode_dirty()

In the Linux kernel, the following vulnerability has been resolved: fs: writeback: fix use-after-free in markinodedirty An use-after-free issue occurred when markinodedirty get the bdiwriteback that was in the progress of switching. CPU: 1 PID: 562 Comm: systemd-random- Not tainted...

7.8CVSS6.6AI score0.00286EPSS
Exploits1References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•11 views

kernel: ACPICA: fix acpi operand cache leak in dswstate.c

In the Linux kernel, the following vulnerability has been resolved: ACPICA: fix acpi operand cache leak in dswstate.c ACPICA commit 987a3b5cf7175916e2a4b6ea5b8e70f830dfe732 I found an ACPI cache leak in ACPI early termination and boot continuing case. When early termination occurs due to maliciou...

5.5CVSS6.3AI score0.00162EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•16 views

kernel: dmaengine: idxd: fix memory leak in error handling path of idxd_alloc

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix memory leak in error handling path of idxdalloc Memory allocated for idxd is not freed if an error occurs during idxdalloc. To fix it, free the allocated memory in the reverse order of allocation before exiti...

5.5CVSS6.3AI score0.00161EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•8 views

kernel: net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime

In the Linux kernel, the following vulnerability has been resolved: net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime Assuming the "rx-vlan-filter" feature is enabled on a net device, the 8021q module will automatically add or remove VLAN 0 when the net device is put...

5.5CVSS6.2AI score0.00161EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•19 views

kernel: bpf: fix ktls panic with sockmap

In the Linux kernel, the following vulnerability has been resolved: bpf: fix ktls panic with sockmap 2172.936997 ------------ cut here ------------ 2172.936999 kernel BUG at lib/ioviter.c:629! ...... 2172.944996 PKRU: 55555554 2172.945155 Call Trace: 2172.945299 2172.945428 ? die+0x36/0x90...

5.5CVSS6.2AI score0.00147EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•4 views

kernel: lib/buildid: use __kernel_read() for sleepable context

In the Linux kernel, the following vulnerability has been resolved: lib/buildid: use kernelread for sleepable context Prevent a "BUG: unable to handle kernel NULL pointer dereference in filemapreadfolio". For the sleepable context, convert freader to use kernelread instead of direct page cache...

5.5CVSS6AI score0.0015EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•5 views

kernel: Linux kernel MPTCP: Privilege escalation or denial of service via use-after-free in timer handling

A flaw was found in the Linux kernel's Multipath TCP MPTCP implementation. A race condition in the mptcppmdeladdtimer function allows for a use-after-free vulnerability. This can be exploited by a local attacker to cause a denial of service DoS, potentially leading to privilege escalation or...

6.3AI score0.00171EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•4 views

kernel: Linux kernel: Denial of Service via deadlock in block layer sysfs store callbacks

A flaw was found in the Linux kernel. A local user could exploit a vulnerability where freezing the request queue within certain sysfs store callbacks can lead to a deadlock. This issue may occur when combined with the device-mapper multipath dm-multipath driver and the queueifnopath option, or...

5.5CVSS5.8AI score0.00083EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•9 views

kernel: dm: fix NULL pointer dereference in __dm_suspend()

In the Linux kernel, the following vulnerability has been resolved: dm: fix NULL pointer dereference in dmsuspend There is a race condition between dm device suspend and table load that can lead to null pointer dereference. The issue occurs when suspend is invoked before table load completes: BUG...

5.8AI score0.00207EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:4 a.m.•10 views

kernel: Revert "NFSD: Remove the cap on number of operations per NFSv4 COMPOUND"

In the Linux kernel, the following vulnerability has been resolved: Revert "NFSD: Remove the cap on number of operations per NFSv4 COMPOUND" I've found that pynfs COMP6 now leaves the connection or lease in a strange state, which causes CLOSE9 to hang indefinitely. I've dug into it a little, but ...

5.8AI score0.00154EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:0 a.m.•10 views

Moderate: Red Hat Security Advisory: iputils security update

An update for iputils is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

6.5CVSS7.3AI score0.00322EPSS
Exploits0References3
RedHat Linux
RedHat Linux
•added 2026/05/19 9:0 a.m.•9 views

iputils: iputils integer overflow

An integer overflow flaw has been discovered in the ping function within the iputils package. This overflow may allow an attacker to craft an ECHO reply which can prevent iputils from operating normally...

6.5CVSS7.2AI score0.00322EPSS
Exploits0References8
RedHat Linux
RedHat Linux
•added 2026/05/19 9:0 a.m.•18 views

Important: Red Hat Security Advisory: tomcat9 security update

An update for tomcat9 is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

9.6CVSS7AI score0.09917EPSS
Exploits1References7
RedHat Linux
RedHat Linux
•added 2026/05/19 9:0 a.m.•13 views

org.apache.tomcat/tomcat-catalina: tomcat: Apache Tomcat: session fixation via rewrite valve

A session fixation vulnerability has been identified in Apache Tomcat, affecting its rewrite functionality. If the rewrite valve is enabled for a web application, an attacker can craft a specific URL. If a victim clicks on this malicious URL, their subsequent interaction with the resource will...

6.5CVSS6.5AI score0.00775EPSS
Exploits0References8
RedHat Linux
RedHat Linux
•added 2026/05/19 9:0 a.m.•10 views

tomcat: Apache Tomcat: Security constraint bypass for CGI scripts

A flaw was found in the CGI servlet component of Apache Tomcat. This vulnerability allows a security constraint bypass via improper handling of case sensitivity in the pathInfo component of a URI mapped to the CGI servlet...

7.3CVSS7.3AI score0.02736EPSS
Exploits1References5
RedHat Linux
RedHat Linux
•added 2026/05/19 9:0 a.m.•14 views

org.apache.tomcat/tomcat-juli: tomcat: Apache Tomcat: console manipulation

An improper input neutralization flaw has been discovered in Apache Tomcat. Tomcat did not escape ANSI escape sequences in log messages. If Tomcat was running in a console on a Windows operating system, and the console supported ANSI escape sequences, it was possible for an attacker to use a...

9.6CVSS7.3AI score0.09917EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/05/19 8:53 a.m.•12 views

systemd-coredump: race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump

A vulnerability was found in systemd-coredump. This flaw allows an attacker to force a SUID process to crash and replace it with a non-SUID binary to access the original's privileged process coredump, allowing the attacker to read sensitive data, such as /etc/shadow content, loaded by the origina...

4.7CVSS6.3AI score0.0066EPSS
Exploits1References5
RedHat Linux
RedHat Linux
•added 2026/05/19 8:53 a.m.•13 views

Moderate: Red Hat Security Advisory: systemd security update

An update for systemd is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

4.7CVSS6.4AI score0.0066EPSS
Exploits1References19
RedHat Linux
RedHat Linux
•added 2026/05/19 7:45 a.m.•11 views

Moderate: Red Hat Security Advisory: mingw-glib2 security update

An update for mingw-glib2 is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

7.7CVSS6.8AI score0.00306EPSS
Exploits1References3
RedHat Linux
RedHat Linux
•added 2026/05/19 7:45 a.m.•25 views

glib: Integer overflow in in g_escape_uri_string()

A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the gescapeuristring function. If the string to escape contains a very large number of unacceptable characters which would need escaping, the calculation of the length of the escaped string...

7.7CVSS6.9AI score0.00306EPSS
Exploits1References6
RedHat Linux
RedHat Linux
•added 2026/05/19 7:44 a.m.•18 views

Important: Red Hat Security Advisory: Assisted Installer RHEL 9 components for Multicluster Engine for Kubernetes 2.9.4

Assisted installer RHEL 9 components for the multicluster engine for Kubernetes 2.9.4 General Availability release, with updates to container images. Assisted Installer RHEL 9 integrates components for the general multicluster engine for Kubernetes 2.9.4 release that simplify the process of...

9.1CVSS6.8AI score0.01557EPSS
Exploits1References4
RedHat Linux
RedHat Linux
•added 2026/05/19 7:44 a.m.•15 views

Important: Red Hat Security Advisory: Assisted Installer RHEL 8 components for Multicluster Engine for Kubernetes 2.9.4

Assisted installer RHEL 8 components for the multicluster engine for Kubernetes 2.9.4 General Availability release, with updates to container images. Assisted Installer RHEL 8 integrates components for the general multicluster engine for Kubernetes 2.9.4 release that simplify the process of...

7.5CVSS6.4AI score0.00651EPSS
Exploits0References3
RedHat Linux
RedHat Linux
•added 2026/05/18 1:12 p.m.•14 views

Important: Red Hat Security Advisory: ruby:3.3 security update

An update for the ruby:3.3 module is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.1CVSS6.2AI score0.01131EPSS
Exploits0References2
RedHat Linux
RedHat Linux
•added 2026/05/18 1:12 p.m.•9 views

erb: ERB: Arbitrary code execution via deserialization bypass

A flaw was found in ERB, a templating system for Ruby. An attacker who can trigger deserialization of untrusted data in a Ruby application can bypass existing protections. This vulnerability allows for arbitrary code execution by exploiting specific public methods that evaluate template source...

8.1CVSS6.3AI score0.01131EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/18 1:8 p.m.•31 views

nginx: NGINX: Arbitrary Code Execution Vulnerability

A flaw was found in NGINX, specifically within the ngxhttprewritemodule. An unauthenticated attacker can exploit this vulnerability by sending crafted HTTP requests under specific rewrite configurations. This can lead to a heap buffer overflow in the NGINX worker process, which may result in...

9.2CVSS6.6AI score0.61469EPSS
Exploits40References6
RedHat Linux
RedHat Linux
•added 2026/05/18 1:8 p.m.•72 views

Critical: Red Hat Security Advisory: nginx security update

An update for nginx is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

9.2CVSS6.1AI score0.61469EPSS
Exploits40References2
RedHat Linux
RedHat Linux
•added 2026/05/18 1:2 p.m.•14 views

Critical: Red Hat Security Advisory: nginx security update

An update for nginx is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

9.2CVSS6.1AI score0.61469EPSS
Exploits40References2
RedHat Linux
RedHat Linux
•added 2026/05/18 1:2 p.m.•28 views

nginx: NGINX: Arbitrary Code Execution Vulnerability

A flaw was found in NGINX, specifically within the ngxhttprewritemodule. An unauthenticated attacker can exploit this vulnerability by sending crafted HTTP requests under specific rewrite configurations. This can lead to a heap buffer overflow in the NGINX worker process, which may result in...

9.2CVSS6.6AI score0.61469EPSS
Exploits40References6
RedHat Linux
RedHat Linux
•added 2026/05/18 12:50 p.m.•13 views

Important: Red Hat Security Advisory: ruby security update

An update for ruby is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

8.1CVSS6.2AI score0.01131EPSS
Exploits0References2
RedHat Linux
RedHat Linux
•added 2026/05/18 12:50 p.m.•14 views

erb: ERB: Arbitrary code execution via deserialization bypass

A flaw was found in ERB, a templating system for Ruby. An attacker who can trigger deserialization of untrusted data in a Ruby application can bypass existing protections. This vulnerability allows for arbitrary code execution by exploiting specific public methods that evaluate template source...

8.1CVSS6.3AI score0.01131EPSS
Exploits0References5
Total number of security vulnerabilities115831