Lucene search
K
RedhatcveRecent

206304 matches found

RedhatCVE
RedhatCVE
•added 2026/06/25 6:38 p.m.•4 views

CVE-2026-49980

A flaw was found in Rclone, a command-line program for cloud storage synchronization. When the rcd --rc-serve option is enabled, an unauthenticated remote attacker can send specially crafted GET or HEAD requests to execute arbitrary commands as the Rclone process user. This vulnerability allows f...

9.8CVSS6.5AI score0.00701EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:37 p.m.•5 views

CVE-2026-49851

A flaw was found in Mistune, a Python Markdown parser. A remote attacker can exploit this vulnerability by providing a specially crafted Markdown input containing many consecutive bracket characters. This can lead to excessive CPU usage, causing a denial-of-service DoS condition on the affected...

8.7CVSS5.8AI score0.0035EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:34 p.m.•7 views

CVE-2026-50556

A flaw was found in @angular/platform-server. This Cross-Site Scripting XSS vulnerability exists in its DOM emulation dependency, domino, when handling the content of elements during server-side rendering. A remote attacker could exploit this by injecting unescaped closing tags within dynamic tex...

8.6CVSS6.1AI score0.00228EPSS
Exploits0References6
RedhatCVE
RedhatCVE
•added 2026/06/25 6:19 p.m.•4 views

CVE-2026-52960

A flaw was found in the Linux kernel's Ceph component. This vulnerability occurs due to improper handling of memory pages, known as folios, that are not suitable for writeback. When certain folios are removed, their references are not properly released, leading to a resource leak. A local attacke...

7.5CVSS5.8AI score0.00359EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:19 p.m.•6 views

CVE-2026-52959

A flaw was found in the Linux kernel's Secure Encrypted Virtualization SEV guest module. This vulnerability allows a malicious host to provide an invalid buffer size during an extended guest request. This incorrect handling of host-controlled page order during the cleanup process can lead to a...

7.8CVSS6AI score0.00093EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:18 p.m.•5 views

CVE-2026-52984

A flaw was found in the Linux kernel's networking scheduler netem. The queue limit check in the netemenqueue function does not properly account for reordered packets, allowing the total queue occupancy to exceed its configured limit. This oversight can lead to a Denial of Service DoS condition,...

5.5CVSS5.8AI score0.00184EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:18 p.m.•4 views

CVE-2026-52985

A flaw was found in the Linux kernel's netdevsim module. An uninitialized memory vulnerability exists in the handling of struct iphdr within a dummy skbuff due to the use of skbput instead of skbputzero. This could lead to unpredictable system behavior, including crashes Denial of Service, or...

5.5CVSS5.8AI score0.00176EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:18 p.m.•7 views

CVE-2026-52965

A flaw was found in the Linux kernel's TTM Trusted Memory Manager component. When the ttmttswapout function fails, a resource is incorrectly added to the Least Recently Used LRU list. This misplacement can lead to an infinite loop during subsequent list processing, causing the system to become...

5.5CVSS5.8AI score0.00167EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:18 p.m.•4 views

CVE-2026-53001

A flaw was identified in the Linux kernel's netfilter xtables component. This vulnerability allowed certain network filtering rules, specifically those involving xtmac, xtowner, xtphysdev, and xtrealm matches, to be applied outside of their intended internet protocol IPv4 and IPv6 contexts. This...

5.5CVSS5.8AI score0.00176EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:18 p.m.•4 views

CVE-2026-53007

A flaw was found in the Linux kernel's ice driver. This vulnerability occurs due to a potential NULL pointer dereference in the icesetringparam function. When tstampring of temporary txrings is nullified without clearing the ICETXRINGFLAGSTXTIME bit, and a subsequent icesetuptxring call fails, it...

5.5CVSS5.8AI score0.00155EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:18 p.m.•7 views

CVE-2026-53015

A flaw was found in the Linux kernel's erofs filesystem. On 32-bit platforms, the lcn variable, used for logical cluster numbers, was defined as a 32-bit integer. This could lead to truncation when calculating offsets larger than 4 Gigabytes GiB, potentially causing incorrect data handling within...

5.5CVSS5.8AI score0.00168EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:18 p.m.•7 views

CVE-2026-53018

A flaw was found in the Linux kernel's f2fs filesystem. During garbage collection, a race condition can occur when a page is moved and updated, but the system attempts to read it again from an outdated location. This can trigger a kernel bug, leading to a system crash and a denial of service DoS....

5.8AI score0.00166EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:18 p.m.•7 views

CVE-2026-53027

A flaw was found in the Linux kernel's fs/ntfs3 component. When handling compressed or sparse attributes with frame-aligned clusters, a missing run load for vcn0 can occur if vcn0 resides in a different attribute segment. This oversight can lead to a kernel warning WARNON1 during a run lookup,...

5.8AI score0.00155EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:18 p.m.•7 views

CVE-2026-53039

A flaw was found in the OCFS2 Oracle Cluster File System 2 component of the Linux kernel. A local user could exploit an input validation vulnerability in the OCFS2IOCGROUPADD ioctl. This flaw allows an attacker to trigger a kernel panic, resulting in a denial of service DoS for the affected syste...

5.8AI score0.00176EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:18 p.m.•4 views

CVE-2026-53045

A flaw was found in the Linux kernel's memory management for the tegra124-emc component. The code responsible for checking whether a specified memory timing enables the Delay-Locked Loop DLL in the EMRS register was reversed. This logic error could lead to incorrect memory timing configurations...

9.8CVSS5.8AI score0.00521EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:18 p.m.•5 views

CVE-2026-53048

A flaw was found in the Linux kernel's gfs2 filesystem. During the unmount process, a NULL pointer dereference can occur when flushing outstanding glock work. This happens because gfs2logflush is called when a critical data structure sdp-sdjdesc has already been deallocated, and a subsequent...

5.5CVSS5.8AI score0.00172EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:18 p.m.•4 views

CVE-2026-53041

A flaw was found in the Linux kernel's Oracle Cluster File System version 2 OCFS2. When an OCFS2 inode has both inline and and block-based extended attributes xattrs, the listxattr function can return a size larger than the caller's buffer. This incorrect size handling can lead to a kernel bug an...

7.1CVSS5.8AI score0.00126EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:18 p.m.•5 views

CVE-2026-53058

A flaw was found in the drm/bridge: cadence: cdns-mhdp8546-core component of the Linux kernel. This vulnerability allows for a NULL pointer dereference during error handling within the atomicenable function. If cdnsmhdplinkup or cdnsmhdpregread encounter errors, a subsequent attempt to access a...

5.5CVSS5.8AI score0.00168EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:18 p.m.•5 views

CVE-2026-53107

A flaw was found in the Linux kernel's Wi-Fi Libertas driver. This issue occurs when the system attempts to terminate USB Request Blocks URBs from an interrupt context, which can lead to the system attempting to sleep in an inappropriate context. This can cause system instability or prevent furth...

5.8AI score0.00155EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:18 p.m.•5 views

CVE-2026-53080

A flaw was found in the Linux kernel's traffic control firewall classifier clsfw module. An attacker with the ability to create traffic control filters could exploit a vulnerability where an invalid filter, created using an older method, is processed before proper validation. This can lead to a...

5.5CVSS5.8AI score0.00172EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:18 p.m.•5 views

CVE-2026-52954

A flaw was found in the Linux kernel's libceph component. A remote attacker could send a specially crafted CEPHMSGOSDMAP message containing a corrupted CRUSH map. If this map includes two crushchooseargmaps with identical indices, it triggers an assertion failure, leading to a kernel bug and a...

7.5CVSS5.9AI score0.0053EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:18 p.m.•4 views

CVE-2026-52958

A flaw was found in the Linux kernel's libceph component. This vulnerability, located within the osdmapdecode function, can lead to an out-of-bounds memory access. A remote attacker could exploit this by sending a specially crafted and corrupted osdmap message, where the maxosd value exceeds the...

9.1CVSS5.9AI score0.00544EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:18 p.m.•4 views

CVE-2026-52964

A flaw was found in the Linux kernel's ALSA USB audio component. The USB MIDI 2.0 endpoint parser, responsible for handling audio device descriptors, failed to properly validate the length of these descriptors. This vulnerability could allow a local attacker, by connecting a specially crafted...

5.5CVSS5.8AI score0.00175EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:18 p.m.•4 views

CVE-2026-52966

A flaw was found in the Linux kernel's Direct Rendering Manager DRM subsystem. A logical error in the 'change handle' logic, specifically related to the replacement of IDR ID allocator pointers, could lead to a kernel warning or system panic. This issue could allow a local attacker to trigger a...

5.5CVSS5.8AI score0.00186EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:17 p.m.•4 views

CVE-2026-52968

A flaw was found in the Linux kernel's KVM Kernel-based Virtual Machine subsystem, specifically affecting s390 PCI devices. This vulnerability arises from incorrect pointer arithmetic during the indexing of the Guest Access Instruction Table GAIT, leading to out-of-bounds memory access. A local...

6.4CVSS5.8AI score0.0018EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:17 p.m.•5 views

CVE-2026-52988

A flaw was found in the Linux kernel's netfilter component. This vulnerability involves a concurrency issue during updates to netfilter rulesets. When multiple updates occur simultaneously, improper synchronization could lead to unsafe data access during netlink dump list traversal. This could...

7.1CVSS5.7AI score0.00122EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:17 p.m.•7 views

CVE-2026-52994

A flaw was found in the Linux kernel's vsock/virtio component. This vulnerability involves an accounting error in the MSGZEROCOPY pinned-pages mechanism, where the system's resource limit for locked memory RLIMITMEMLOCK may not be properly enforced. This could allow a local attacker or a maliciou...

5.5CVSS5.8AI score0.00173EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:17 p.m.•5 views

CVE-2026-53011

A flaw was found in the Linux kernel's networking scheduler, specifically within the taprio module. When the system attempts to switch schedules, a use-after-free vulnerability occurs in the advancesched function. This happens because a pointer to an old schedule entry is still used after the...

7.8CVSS6AI score0.00125EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:17 p.m.•6 views

CVE-2026-53003

A flaw was found in the Linux kernel's Point-to-Point Protocol over Ethernet PPPoE driver. A remote attacker or a peer with a misconfigured implementation could send specially crafted Protocol Field Compression PFC frames. This could lead to a one-byte shift in the PPP payload, causing a four-byt...

7.5CVSS5.8AI score0.00508EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:17 p.m.•6 views

CVE-2026-53004

A flaw was found in the Linux kernel's Stream Control Transmission Protocol SCTP implementation. An unprivileged local user could exploit an out-of-bounds write vulnerability in the sctpgetsockoptpeerauthchunks function. This occurs due to an incorrect size check, allowing the kernel to write pas...

5.5CVSS6AI score0.00176EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:17 p.m.•5 views

CVE-2026-53026

A flaw was found in the Linux kernel's Network File System Daemon NFSD. An issue with file access counting in the nfsd4addrdaccesstowrdeleg function can lead to an extra access count for nfs4file objects. This prevents the proper freeing of associated resources when the NFS server service is...

7.5CVSS5.8AI score0.00432EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:17 p.m.•5 views

CVE-2026-53031

A flaw was found in the Linux kernel. The arenaallocpages function within the Berkeley Packet Filter BPF subsystem does not properly validate the nodeid parameter. A local attacker could exploit this vulnerability by supplying an invalid nodeid, which is then used without bounds checking during...

7.8CVSS5.8AI score0.00128EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:17 p.m.•5 views

CVE-2026-53047

A flaw was found in the Linux kernel's EFI Extensible Firmware Interface capsule loader. An incorrect size calculation during memory reallocation for physical addresses can lead to an undersized buffer. This issue, specifically on 32-bit systems with Physical Address Extension PAE, may result in ...

5.5CVSS6.3AI score0.00195EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:17 p.m.•7 views

CVE-2026-53049

A flaw was found in the Linux kernel's Global File System 2 GFS2 component. The gfs2logd function, responsible for log flushing, calls several log flushing functions without holding the required lock. This omission allows concurrent transactions to access shared resources without proper exclusion...

9.8CVSS5.8AI score0.00509EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:17 p.m.•5 views

CVE-2026-53079

A flaw was found in the Linux kernel's networking scheduler netsched. When the network stack cleans up deferred packet lists, if the root queueing discipline qdisc does not implement the TCQFDEQUEUEDROPS flag, packets intended for release are not freed. This can lead to a memory leak, potentially...

5.8AI score0.00145EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:17 p.m.•4 views

CVE-2026-53050

A flaw was found in the Linux kernel. A race condition exists between the dquotscanactive function and quota deactivation within quotareleaseworkfn. This vulnerability could allow a local attacker to cause memory corruption by manipulating quota operations, potentially leading to system instabili...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:17 p.m.•8 views

CVE-2026-53062

A flaw was found in the Linux kernel's device-mapper dm cache policy, specifically within the smq module. In passthrough mode, the invalidatemapping operation lacks proper locking, allowing for concurrent access. This can lead to data races, resulting in data corruption or use-after-free issues,...

7.8CVSS5.8AI score0.00125EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:17 p.m.•4 views

CVE-2026-53061

A flaw was found in the Linux kernel's device-mapper dm cache component. This vulnerability arises from an incorrect assumption that table reloads only occur after suspension, which is violated by Logical Volume Manager LVM table preloading. The dirty mapping check for passthrough mode, performed...

5.5CVSS5.8AI score0.00176EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:17 p.m.•6 views

CVE-2026-52976

A flaw was found in the Linux kernel. Specifically, within the drm/xe graphics driver, two error handling issues in the xeexecqueuecreateioctl function could lead to memory corruption. This could result in a dangling pointer or a use-after-free vulnerability. A local attacker could potentially...

7.8CVSS5.8AI score0.00128EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:17 p.m.•4 views

CVE-2026-53000

A flaw was found in the Linux kernel's netfilter component, specifically within the Network Address Translation NAT subsystem. This vulnerability involves improper memory management when releasing network filter operation structures. This could potentially allow an attacker to cause a system cras...

7.8CVSS5.8AI score0.00123EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:17 p.m.•4 views

CVE-2026-52989

A flaw was found in the nvmet-tcp component of the Linux kernel. The nvmettcpbuildpduiovec function fails to propagate errors when detecting out-of-bounds PDU lengths or offsets. This can lead to uninitialized memory being used by subsequent operations, such as reading incoming network data into ...

9.8CVSS6.1AI score0.00342EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:17 p.m.•5 views

CVE-2026-53016

A flaw was found in the Linux kernel's cryptographic coprocessor CCP driver. When processing AFALG rfc3686-ctr-aes-ccp requests, the ccpaescomplete function attempts to restore more data than the allocated buffer for the Initialization Vector IV can hold. This leads to a buffer overrun, which can...

7.8CVSS6AI score0.00132EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:16 p.m.•5 views

CVE-2026-53033

A flaw was found in the Linux kernel's sockmap functionality. A race condition exists in the unixstreambpfupdateproto function when a BPF Berkeley Packet Filter iterator program updates a sockmap. This can lead to a use-after-free UaF vulnerability, where memory is accessed after it has been free...

7.8CVSS6AI score0.00131EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:16 p.m.•4 views

CVE-2026-53059

A flaw was found in the Linux kernel's device-mapper log dm log component. A local attacker could exploit an integer overflow vulnerability where a 64-bit value is truncated to 32 bits, leading to undersized memory allocations. This allows for out-of-bounds writes to kernel memory during log...

6.3CVSS5.8AI score0.0013EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:2 p.m.•8 views

CVE-2026-53066

A flaw was found in the Linux kernel's drm/sun4i backend component. This vulnerability occurs because the drmatomicgetplanestate function can return an error pointer, which is not properly checked before being dereferenced. An attacker could potentially trigger this unchecked dereference, leading...

5.8AI score0.00161EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:2 p.m.•5 views

CVE-2026-53065

A flaw was found in the Linux kernel, specifically within the ASoC STI driver. This vulnerability occurs because regmapfield objects, allocated during player initialization, are not properly freed when the driver is removed. This oversight can lead to a resource leak, potentially impacting system...

5.8AI score0.00172EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:2 p.m.•5 views

CVE-2026-53068

A flaw was found in the Linux kernel's drm/komeda component, specifically within the AFBC framebuffer size validation. An integer overflow occurs when calculating the required buffer size, which could allow a local attacker to provide an undersized graphics memory object. This can lead to...

7.1CVSS6AI score0.00117EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:2 p.m.•6 views

CVE-2026-53082

A flaw was found in the 6pack hamradio driver within the Linux kernel. This vulnerability occurs because the system does not properly handle data with communication errors, causing it to process uninitialized information. An attacker with local access could potentially exploit this to gain...

5.8AI score0.00164EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:2 p.m.•5 views

CVE-2026-53102

A flaw was found in the Linux kernel's mt76 Wi-Fi driver. This vulnerability, a memory leak, occurs when the mt76connacmcuallocstareq function allocates a socket buffer skb that is not properly freed if subsequent operations, such as mt76connacmcustawedupdate or mt76connacmcustakeytlv, fail. This...

5.5CVSS6AI score0.00156EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2026/06/25 6:2 p.m.•6 views

CVE-2026-53112

A flaw was found in the Linux kernel's rtlwifi PCI driver. This vulnerability, a use-after-free, occurs when a rtlwifi wireless card is detached or fails to initialize, and a related background task is not properly shut down. This can lead to the system attempting to access memory that has alread...

5.7AI score0.00164EPSS
Exploits0References4
Total number of security vulnerabilities206304