Lucene search
+L
RedhatcveRecent

206748 matches found

redhatcve
redhatcve
•added 2026/05/28 2:43 a.m.•12 views

CVE-2026-45900

A flaw was found in the Linux kernel's crypto: caam module. When the dpaa2caamprobe function attempts to set up network devices netdevs and the dpaa2dpsecidpiosetup function fails, the allocated netdevs are not properly freed. This oversight in the error handling can lead to memory leaks,...

5.5CVSS5.8AI score0.00155EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 2:25 a.m.•16 views

CVE-2026-45903

A flaw was found in the Linux kernel's Berkeley Packet Filter BPF verifier. This vulnerability occurs because several BPF helper functions lack proper memory access flags, such as MEMRDONLY or MEMWRITE. Consequently, the verifier may incorrectly assume that buffer contents remain unchanged across...

7.1CVSS5.9AI score0.00157EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 2:12 a.m.•11 views

CVE-2025-68710

Easyelife App lock aka Fingerprint,Applock or locker.app.safe.applocker 1.9.2 for Android allows a local attacker with physical access to bypass the PIN lock. The lock is implemented as an overlay rather than by using Android's secure authentication APIs. By navigating cascading interface flows -...

2.4CVSS5.8AI score0.00179EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 2:12 a.m.•14 views

CVE-2026-42782

Improper Isolation or Compartmentalization vulnerability in Apache Syncope. An administrator with adequate entitlements for Implementations can create a malicious Groovy class containing untrusted code reaching a non-sandboxed execution path via the class static initializer. This issue affects...

7.2CVSS6AI score0.00652EPSS
Exploits0References1
redhatcve
redhatcve
•added 2026/05/28 2:12 a.m.•13 views

CVE-2026-45904

A flaw was found in the Linux kernel's PowerPC Enhanced Error Handling EEH driver. This issue involves a recursive locking mechanism where the system attempts to acquire a Peripheral Component Interconnect PCI bus lock multiple times. This can lead to a system deadlock, causing unresponsiveness a...

5.5CVSS5.8AI score0.00156EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 2:7 a.m.•11 views

CVE-2026-45906

A flaw was found in the Linux kernel's power supply driver for the pf1550 component. A race condition during system shutdown or startup could lead to a use-after-free vulnerability. This issue allows an interrupt to access memory that has been deallocated or not yet initialized, potentially causi...

7.8CVSS5.7AI score0.0012EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 2:7 a.m.•15 views

CVE-2026-45905

A flaw was found in the Linux kernel's networking subsystem, specifically within the xfrm IPsec component. A race condition can occur during the processing of Internet Control Message Protocol ICMP error messages. This vulnerability allows a local attacker to trigger a kernel warning, which could...

5.5CVSS5.8AI score0.00111EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 2:3 a.m.•10 views

CVE-2026-45908

A flaw was found in the Linux kernel's accel/amdxdna component. The amdxdnaubufmap function allocates memory for scatter-gather SG and internal SG table structures. However, it fails to free this allocated memory if subsequent operations, such as sgalloctablefrompages or dmamapsgtable, encounter ...

5.5CVSS5.8AI score0.00153EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 2:3 a.m.•16 views

CVE-2026-45907

A flaw was found in the Linux kernel's mlx5e network driver. Incorrect lock ordering between devlink and netdev instance locks can lead to deadlocks. This issue can be triggered during various work tasks related to devlink health reporter recovery or concurrent channel tear down. A local attacker...

5.5CVSS5.8AI score0.00118EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 1:58 a.m.•10 views

CVE-2026-45910

A flaw was found in the Linux kernel's Remote Direct Memory Access RDMA RXE component. A race condition exists between the retransmittimer and rxedestroyqp functions. This can cause a Queue Pair QP reference count to underflow, leading to a use-after-free vulnerability. A local attacker could...

7.8CVSS6AI score0.00102EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 1:53 a.m.•17 views

CVE-2026-45912

A flaw was found in the Linux kernel's ext4 filesystem. During certain file operations, specifically when splitting data extents, an issue with caching can lead to incorrect tracking of disk space. This can result in errors in space accounting, potentially impacting data integrity and the overall...

7CVSS5.8AI score0.00123EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 1:53 a.m.•14 views

CVE-2026-45911

A flaw was found in the Linux kernel's Cadence Design Systems USB3 cdns3 driver. During system resume, if the USB role is switched to host mode, the driver attempts to access an uninitialized device, leading to a NULL pointer dereference. This can be exploited by a local user to cause a system...

5.5CVSS5.8AI score0.00156EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 1:48 a.m.•12 views

CVE-2026-45913

A flaw was found in the Linux kernel's bridge multicast module. This vulnerability arises from an inconsistency in how the system tracks multicast database entries mdbnentries for virtual local area network VLAN contexts. A local user with network configuration privileges could exploit this by...

5.5CVSS5.8AI score0.00155EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 1:44 a.m.•10 views

CVE-2026-45914

A flaw was found in the Linux kernel's hwmon: ibmpex driver. A race condition exists where a userspace process reading a sensor file can attempt to access freed memory if it races with a device deletion operation. This use-after-free vulnerability could allow a local attacker to cause a system...

7.8CVSS5.8AI score0.00126EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 1:37 a.m.•12 views

CVE-2026-45916

A flaw was found in the Linux kernel's sbs-battery power supply driver. A race condition exists where an interrupt can occur after the powersupply handle has been freed but before the interrupt handler is unregistered. This can lead to the interrupt handler attempting to use a freed powersupply...

7.8CVSS5.7AI score0.0016EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 1:37 a.m.•13 views

CVE-2026-45915

A flaw was found in the Linux kernel's handling of FAT File Allocation Table filesystems. When processing corrupted FAT images, the rmdir function can incorrectly decrement the parent directory's link count. This underflow can lead to a system instability or a denial of service DoS by triggering ...

5.5CVSS5.8AI score0.0016EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 1:32 a.m.•13 views

CVE-2026-45917

A flaw was found in the Linux kernel's IP Virtual Server IPVS component. A race condition exists between the network device notifier and the destination cache when a device is shutting down. This can lead to a leaked device reference, potentially causing system instability or a denial of service...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 1:32 a.m.•12 views

CVE-2026-45918

A flaw was found in the Linux kernel's handling of OpenVPN Open Virtual Private Network TCP Transmission Control Protocol connections. A race condition can occur when a userspace process closes a socket while a peer is in the kernel's release list. This can lead to a null pointer dereference when...

5.5CVSS5.8AI score0.00163EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 1:28 a.m.•25 views

CVE-2026-45919

A flaw was found in the Linux kernel's real-time RT scheduler. Under specific heavy load conditions, a vulnerability in the rtonextcpu function can cause a CPU to repeatedly interrupt itself. This leads to a CPU hardlockup, resulting in a Denial of Service DoS for the system. This issue can be...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 1:23 a.m.•12 views

CVE-2026-45920

A flaw was found in the Linux kernel's ext4 filesystem. This vulnerability allows a local user to trigger an inconsistency in the dirty clusters count during filesystem shutdown. The issue stems from a double decrement in the error handling path, which can lead to system instability and a denial ...

7.8CVSS5.8AI score0.00146EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 1:23 a.m.•11 views

CVE-2026-45921

A flaw was found in the Linux kernel's mtd: parsers component. A memory leak occurs in the mtdparsertplinksafeloaderparse function. This happens when a buffer is allocated but not freed if a subsequent allocation for a part name fails, leading to unreleased memory. This could potentially lead to...

5.5CVSS6AI score0.00122EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 1:17 a.m.•13 views

CVE-2026-45922

A flaw was found in the Linux kernel, specifically within the RDMA/mlx5 component. When the GETDATADIRECTSYSFSPATH handler processes a device path, it allocates memory. If the device path's length exceeds the designated output buffer, the allocated memory is not properly released. This oversight...

5.5CVSS5.8AI score0.00155EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 1:12 a.m.•12 views

CVE-2026-45923

A flaw was found in the Linux kernel's net: usb: catc driver. A malformed Universal Serial Bus USB device can present endpoint descriptors with transfer types that differ from what the driver expects. This can lead to the driver attempting to use incorrect endpoint types, potentially causing...

5.5CVSS5.8AI score0.0016EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 1:12 a.m.•16 views

CVE-2026-45924

A flaw was found in ksmbd, a component of the Linux kernel. This vulnerability occurs because ksmbdvfskernpathendremoving is not called on certain error paths, leading to unbalanced inode locks and references. This can result in potential deadlocks and unbalanced locks, which may cause system...

5.5CVSS5.8AI score0.0012EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 1:7 a.m.•14 views

CVE-2026-45926

A flaw was found in the Linux kernel. When initializing a Pulse Width Modulation PWM chip, a memory leak can occur if the pwmchipalloc function fails. This happens because the allocated pwmchip's initial reference is not properly released, leading to unmanaged memory consumption. This vulnerabili...

5.5CVSS5.8AI score0.00112EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 1:7 a.m.•13 views

CVE-2026-45925

A flaw was found in the Linux kernel's thermal management module. A reference leak occurs in the thermalofcmlookup function because a device node trnp obtained through ofparsephandle is not properly released. This issue can lead to resource exhaustion over time, potentially impacting system...

5.5CVSS5.8AI score0.00155EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 1:2 a.m.•12 views

CVE-2026-45927

A flaw was found in the Linux kernel's Berkeley Packet Filter BPF subsystem. This vulnerability, a Time-of-check to time-of-use TOCTOU bug, allows a local attacker to modify the contents of a BPF map after its hash has been calculated but before it is frozen. Consequently, a trusted loader could ...

6.3CVSS5.7AI score0.00092EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:57 a.m.•13 views

CVE-2026-45928

A flaw was found in the Linux kernel's wave5 media driver. When a vpu instance is allocated, and a subsequent allocation for codecinfo fails, the driver returns an error without freeing the previously allocated vpu instance. This oversight leads to a memory leak, which could potentially impact...

5.5CVSS5.8AI score0.00127EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:57 a.m.•14 views

CVE-2026-45930

A flaw was found in the Linux kernel's Multi-Channel Transport Protocol MCTP networking implementation. When processing a RTMGETNEIGH request, the system may return uninitialized data in the ndmsg pad bytes. This can allow a local attacker to obtain sensitive information from kernel memory, leadi...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:57 a.m.•12 views

CVE-2026-45929

A flaw was found in the Linux kernel's ovpn module. A use-after-free vulnerability exists in the ovpnnetxmit function where a freed skb socket buffer pointer can be used for subsequent operations. This can occur when skbsharecheck frees the original skb if it is shared, leading to a stale pointer...

7.8CVSS5.8AI score0.00157EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:52 a.m.•21 views

CVE-2026-45931

A flaw was found in the Linux kernel's accel/amdxdna module. This vulnerability occurs when the iommusvaunbinddevice function attempts to access a memory management mm structure after it has been deallocated, leading to a use-after-free condition. This can result in a system crash, causing a Deni...

7.8CVSS5.7AI score0.00173EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:47 a.m.•14 views

CVE-2026-45932

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix tcx/netkit detach permissions when prog fd isn't given This commit fixes a security issue where BPFPROGDETACH on tcx or netkit devices could be executed by any user when no program fd was provided, bypassing permission...

7.3CVSS5.7AI score0.00133EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:42 a.m.•15 views

CVE-2026-45933

A flaw was found in the Linux kernel's BPF Berkeley Packet Filter verifier. The synclinkedregs function fails to preserve the register ID during bounds propagation, which can lead to incorrect register state. This issue may allow a local attacker to trigger a 'division by zero' error, resulting i...

7.8CVSS5.8AI score0.00172EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:37 a.m.•18 views

CVE-2026-45934

A flaw was found in the Linux kernel's btrfs filesystem. This issue occurs due to non-consecutive gaps in chunk allocation, leading to overlapping chunk maps. A local attacker could exploit this by triggering specific chunk allocation scenarios, potentially causing filesystem operations to abort...

7CVSS5.8AI score0.00121EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:37 a.m.•17 views

CVE-2026-45935

A flaw was found in the Linux kernel's NTFS3 filesystem driver. Insufficient bounds checking when processing log records in the DeleteIndexEntryRoot function allows a local attacker to provide a maliciously large entry size. This can lead to a heap buffer overflow, a type of memory corruption,...

7.8CVSS6.1AI score0.0016EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:34 a.m.•14 views

CVE-2026-45937

A flaw was found in the Linux kernel's inside-secure/eip93 cryptographic driver. This vulnerability occurs during the driver detachment process, where a programming error leads to the same hash algorithm being unregistered multiple times. This issue can cause a kernel panic, resulting in a Denial...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:34 a.m.•15 views

CVE-2026-45938

A flaw was found in the Linux kernel's pm8916lbc power supply module. A race condition exists during interrupt handling where an interrupt can fire after the powersupply handle is freed but before the interrupt handler is unregistered. This use-after-free vulnerability can lead to a system crash ...

7.8CVSS5.8AI score0.00125EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:34 a.m.•12 views

CVE-2026-45936

A flaw was found in the Linux kernel's goldfish power supply driver. A race condition during driver removal or initialization can lead to a use-after-free vulnerability. This allows an interrupt to access a freed or uninitialized power supply handle, which can cause the system to crash, resulting...

7.8CVSS5.8AI score0.00126EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:29 a.m.•11 views

CVE-2026-45939

A flaw was found in the Linux kernel's gpib module. Improper error handling within the niusbinit function can lead to a memory leak. This occurs when the niusbsetupinit function fails to initialize, causing an allocated buffer to not be freed. Over time, this could result in reduced system...

5.5CVSS5.9AI score0.00121EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:29 a.m.•16 views

CVE-2026-45940

A flaw was found in the Linux kernel's stmmac Ethernet driver. When split header functionality is enabled for GMAC4, the hardware may not fully populate a buffer in the first descriptor. This can lead to an incorrect calculation of buffer length in subsequent descriptors, resulting in a kernel...

5.5CVSS6AI score0.00153EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:24 a.m.•12 views

CVE-2026-45941

A flaw was found in the Linux kernel's tpmi2cinfineon module. This vulnerability occurs when the getburstcount function fails due to a timeout, causing the system to not release an acquired locality. An attacker could potentially exploit this to cause a resource exhaustion, leading to a Denial of...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:19 a.m.•18 views

CVE-2026-45942

A flaw was found in the Linux kernel's ext4 filesystem. A race condition exists between page migration and bitmap modification within the loadbuddy function. This can lead to bitmap inconsistencies and false positive corruption reports during certain workloads. This issue can affect data integrit...

7.8CVSS5.8AI score0.00099EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:7 a.m.•12 views

CVE-2026-45943

A flaw was found in the Linux kernel's erofs filesystem. This issue occurs when compressed folios for ztailpacking pclusters are not validated before being added to I/O chains. An attacker could potentially trigger a NULL pointer dereference, leading to a system crash and a Denial of Service DoS...

7.1CVSS5.8AI score0.00125EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:7 a.m.•15 views

CVE-2026-45944

A flaw was found in the Linux kernel's IOMMU Input/Output Memory Management Unit VT-d Virtualization Technology for Directed I/O component. When a context entry is being torn down, the 'Present' bit might not be cleared before other parts of the entry are zeroed. This can lead to the hardware...

7.5CVSS5.8AI score0.00125EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:2 a.m.•12 views

CVE-2026-45945

A flaw was found in the Linux kernel's Intel VT-d Virtualization Technology for Directed I/O implementation. A race condition occurs during the replacement of an active PASID Process Address Space ID entry. This can lead to the IOMMU Input/Output Memory Management Unit hardware reading an...

8.8CVSS5.8AI score0.00128EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/28 12:2 a.m.•15 views

CVE-2026-45946

A flaw was found in the Linux kernel's ab8500 power supply driver. A race condition exists during the deallocation of a power supply component and the unregistration of its interrupt handler. This can lead to the interrupt handler attempting to access memory that has already been freed, a conditi...

7.8CVSS5.8AI score0.0016EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/27 11:57 p.m.•15 views

CVE-2026-45948

A flaw was found in the Linux kernel's ext4 filesystem. This vulnerability occurs in the ext4extshiftextents function, where a memory leak can happen if the function returns prematurely without releasing a previously obtained path. A local attacker could potentially exploit this to cause a denial...

5.5CVSS5.8AI score0.0016EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/27 11:57 p.m.•12 views

CVE-2026-45947

A flaw was found in the Linux kernel's AMD GPU display drm/amdgpu component. This vulnerability involves a memory leak within the amdgpuacpienumeratexcc function. When certain errors occur during the initialization process, the system fails to properly release allocated memory. This oversight can...

5.5CVSS5.8AI score0.00162EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/27 11:52 p.m.•10 views

CVE-2026-45950

A flaw was found in the Linux kernel's starfiveaesaeaddoonereq function within the crypto: starfive component. This vulnerability occurs because memory allocated for rctx-adata is not properly freed if sgcopytobuffer or starfiveaeshwinit operations fail. This can lead to memory leaks, potentially...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References4
redhatcve
redhatcve
•added 2026/05/27 11:52 p.m.•16 views

CVE-2026-45949

A flaw was found in the Linux kernel's hardware random number generator hwrng core. A race condition exists where concurrent or rapid calls to the hwrngunregister function can lead to a use-after-free vulnerability. This issue allows the system to attempt to access freed memory, potentially causi...

5.5CVSS6AI score0.00088EPSS
Exploits0References4
Total number of security vulnerabilities206748