Lucene search
K
LinuxLinux Kernel

14330 matches found

CVE
CVE
added 2026/05/27 12:18 p.m.27 views

CVE-2026-45978

The CVE-2026-45978 issue affects the Linux kernel (staging: greybus: lights). The underlying problem is in gb_lights_light_config(): it stores channel_count before allocating the channels array; if kcalloc() fails, the cleanup path may dereference a NULL light->channels. The fix is to allocate...

5.5CVSS5.8AI score0.00123EPSS
CVE
CVE
added 2026/05/01 1:56 p.m.26 views

CVE-2026-31714

The CVE-2026-31714 issue affects the Linux kernel F2FS component, where a memory leak occurs in f2fs_rename() due to an unpaired call to f2fs_free_filename() after f2fs_setup_filename() was added in commit 40b2d55e0452. Exploitation details are local (AV:L/AC:L) with a high availability impact (A...

5.5CVSS5.8AI score0.00114EPSS
CVE
CVE
added 2026/05/01 2:15 p.m.26 views

CVE-2026-43024

CVE-2026-43024 affects Linux kernel nf_tables/netfilter: nf_queue. The issue is that immediate NF_QUEUE verdicts were emitted and could be misused; upstream patch rejects immediate NF_QUEUE verdicts to fix it. Downstream advisories indicate fixes implemented in kernel updates (e.g., upstream kern...

5.5CVSS5.8AI score0.00123EPSS
CVE
CVE
added 2026/05/01 2:15 p.m.26 views

CVE-2026-43033

The CVE-2026-43033 issue affects the Linux kernel crypto: authencesn module, where out-of-place decryption (src != dst) incorrectly saves high-order sequence bits in dst, requiring reordering before hashing. The vulnerability is linked to privilege escalation/DoS/info-leak risks as described in m...

7.8CVSS5.7AI score0.00129EPSS
CVE
CVE
added 2026/05/01 2:15 p.m.26 views

CVE-2026-43052

CVE-2026-43052 fixes a Linux kernel mac80211 TDLS handling flaw: NL80211_TDLS_ENABLE_LINK could run TDLS-side effects on non‑TDLS peers. A kernel patch adds an early sta->sta.tdls check to ensure only true TDLS peers proceed, preventing unintended channel HT-protection changes. Remediation is ...

7.1CVSS5.8AI score0.00117EPSS
CVE
CVE
added 2026/05/01 2:15 p.m.26 views

CVE-2026-43053

CVE-2026-43053 affects the Linux kernel XFS filesystem. The flaw arises during inode inactivation with node-format extended attributes: xfs_attr3_node_inactive() invalidates child blocks but does not remove their references from the parent, creating a window where the parent can point to cancelle...

4.7CVSS5.8AI score0.00074EPSS
CVE
CVE
added 2026/05/06 11:27 a.m.26 views

CVE-2026-43150

The CVE-2026-43150 issue affects the Linux kernel’s perf/arm-cmn component, where the kernel now rejects unsupported CMN hardware configurations. The root cause is the kernel’s prior assumptions about maximum sizes and counts for CMN models and revisions, which could allow larger or unknown confi...

7.8CVSS5.7AI score0.00139EPSS
CVE
CVE
added 2026/05/06 11:27 a.m.26 views

CVE-2026-43158

CVE-2026-43158 is a Linux kernel XFS vulnerability where freemap adjustments in leaf blocks when adding xattrs can collide with the entries area, causing an assertion and potential filesystem shutdown (DoS). The root cause is incorrect freemap sizing/update logic in xfs_attr3_leaf_add_work, leadi...

8.8CVSS5.7AI score0.00469EPSS
CVE
CVE
added 2026/05/06 11:28 a.m.26 views

CVE-2026-43203

The CVE covers a Linux kernel fore200e ATM driver use-after-free during device removal (PCA-200E/SBA-200E). Vulnerability arises when tx_tasklet/rx_tasklet run or pending after fore200e is freed, risking access to freed memory. The published fixes synchronize tasklets with device shutdown by addi...

7.5CVSS5.7AI score0.00435EPSS
CVE
CVE
added 2026/05/06 11:28 a.m.26 views

CVE-2026-43216

Summary of CVE-2026-43216 : In the Linux kernel, skb_may_tx_timestamp() could acquire sock::sk_callback_lock in IRQ context, risking a deadlock if the lock was already write-locked on the same CPU. The fix drops the lock and uses READ_ONCE() / WRITE_ONCE() to safely access and clear the pointers ...

5.5CVSS5.8AI score0.00127EPSS
CVE
CVE
added 2026/05/06 11:28 a.m.26 views

CVE-2026-43220

The CVE-2026-43220 entry concerns the Linux kernel iommu/amd component. The issue arises under concurrent TLB invalidations when CMD_COMPL_WAIT sequencing can be broken because cmd_sem_val was incremented outside the IOMMU spinlock, causing out-of-sequence command queuing and a disrupted completi...

5.5CVSS5.7AI score0.00127EPSS
Web
CVE
CVE
added 2026/05/06 11:28 a.m.26 views

CVE-2026-43228

The CVE-2026-43228 entry concerns the Linux kernel hfs component where 64-bit CNID counts (next_id, folder_count, file_count) triggered kernel panics when MDB was corrupted. Root cause: BUG_ON-based overflow checks replaced by proper error handling. Impact: local DoS via kernel panic with a corru...

5.5CVSS5.8AI score0.00112EPSS
CVE
CVE
added 2026/05/06 11:28 a.m.26 views

CVE-2026-43266

The CVE-2026-43266 issue affects the Linux kernel’s ARM CPER/APEI handling: a CPER record with an oversized section_length can cause the kernel to read beyond the intended firmware buffer, leading to a large data dump and potential memory access issues. The fix adds a guard so the kernel stops at...

5.5CVSS5.8AI score0.00119EPSS
CVE
CVE
added 2026/05/08 1:11 p.m.26 views

CVE-2026-43299

Consolidated details show CVE-2026-43299 affects the Linux kernel btrfs filesystem. When ENOSPC can cause the filesystem to flip to read‑only in a critical path, a pending read repair may trigger an assertion failure inside btrfs_repair_io_failure(), leading to a kernel crash. The issue is docume...

5.5CVSS5.8AI score0.00117EPSS
CVE
CVE
added 2026/05/08 1:26 p.m.26 views

CVE-2026-43318

The CVE-2026-43318 entry affects the Linux kernel’s drm/amdgpu component, specifically the amdgpu_dma_buf_move_notify path. A synchronization bug arises when a dmabuf is moved and the issuing process signals the move while another process has not yet updated its page table; the ticket-based handl...

5.5CVSS5.9AI score0.00122EPSS
CVE
CVE
added 2026/05/08 1:26 p.m.26 views

CVE-2026-43321

The CVE-2026-43321 issue is in the Linux kernel BPF subsystem, where indirect jumps did not correctly mark the live registers for a gotox rX, leaving the affected register state unchecked. When the kernel fails to mark registers as used, it can enable manipulation of kernel state and potentially ...

7.8CVSS5.8AI score0.00121EPSS
CVE
CVE
added 2026/05/08 1:31 p.m.26 views

CVE-2026-43324

The CVE-2026-43324 entry covers a Linux kernel USB dummy-hcd synchronization bug. The issue stems from an emulated synchronize_irq() that ran before emulated interrupt-disable, allowing potential callback races when a gadget driver is unbound. The fix moved synchronization to the dummy_udc_async_...

7.8CVSS5.7AI score0.0013EPSS
CVE
CVE
added 2026/05/08 2:21 p.m.26 views

CVE-2026-43373

The CVE-2026-43373 entry describes a Linux kernel vulnerability in the net: ncsi subsystem. Early return paths in NCSI RX and AEN handlers fail to release received skbuffers (skb) when processing invalid AEN packets or failing to resolve NCSI devices/handlers, leading to a memory leak. The impact...

7.5CVSS5.8AI score0.00501EPSS
CVE
CVE
added 2026/05/08 2:21 p.m.26 views

CVE-2026-43405

CVE-2026-43405 affects the Linux kernel libceph component, specifically ceph_monmap_decode(). The root cause is signedness mishandling: blob_len and num_mon are int, used to hold non-negative values that should be unsigned, leading to potential large allocations when an incoming num_mon is very l...

7.5CVSS5.7AI score0.0049EPSS
CVE
CVE
added 2026/05/08 2:21 p.m.26 views

CVE-2026-43408

CVE-2026-43408 concerns the Linux kernel Ceph path handling: a missing zero-initialization of ceph_path_info before ceph_mdsc_build_path() calls can lead to crashes when ceph_mdsc_free_path_info() is invoked on error paths. Multiple code paths lacked proper initializers; the recommended fix is to...

7.8CVSS5.7AI score0.00129EPSS
CVE
CVE
added 2026/05/08 2:22 p.m.26 views

CVE-2026-43456

CVE-2026-43456 affects the Linux kernel bonding driver. When a non-Ethernet device (e.g., GRE tunnel) is enslaved to a bond, bond_setup_by_slave() copies the slave’s header_ops to the bond device, causing a type confusion in header callbacks (e.g., ipgre_header) that use netdev_priv(dev). The res...

7.8CVSS5.8AI score0.00157EPSS
CVE
CVE
added 2026/05/13 3:8 p.m.26 views

CVE-2026-43485

CVE-2026-43485 is a Linux kernel issue where WARN_ON checks in the nouveau/gsp ACPI probe were dropped to avoid noisy warnings. The advisory notes this is likely harmless and does not describe a functional vulnerability. Multiple OSV entries indicate patches and available fixed versions in rootio...

5.5CVSS5.8AI score0.00112EPSS
CVE
CVE
added 2026/05/19 10:44 a.m.26 views

CVE-2026-43491

CVE-2026-43491 affects the Linux kernel net:qrtr:ns by not bounding the number of server registrations per node. The fixed limit is 256 per node; messages for an old port are not restricted. The issue can cause memory exhaustion. Upstream fix is included in kernel 6.6.141+ (and related advisories...

5.5CVSS5.8AI score0.00144EPSS
CVE
CVE
added 2026/05/27 12:15 p.m.26 views

CVE-2026-45870

CVE-2026-45870 affects the Linux kernel’s SUNRPC auth_gss path. The issue is memory leaks in XDR decoding error paths caused by gssx_dec_ctx(), gssx_dec_status(), and gssx_dec_name() allocating buffers via gssx_dec_buffer()/kmemdup() and returning on error without freeing previously allocated mem...

5.5CVSS5.8AI score0.0016EPSS
CVE
CVE
added 2026/05/27 12:15 p.m.26 views

CVE-2026-45875

The CVE-2026-45875 issue is in the Linux kernel mfd: arizona driver where wm5102_clear_write_sequencer() may fail and bypass cleanup, leaving regulators enabled and causing a resource leak. The fix changes the function to jump to the err_reset cleanup path to properly free resources. Debian/Ubunt...

5.5CVSS5.8AI score0.00166EPSS
CVE
CVE
added 2026/05/27 12:16 p.m.26 views

CVE-2026-45879

The CVE-2026-45879 entry describes a race condition in the Linux kernel power subsystem (bq25980) where a devm_ IRQ request and devm_ power_supply handle registration order can lead to use-after-free in power_supply_changed(), potentially triggering a crash or memory corruption. The root cause is...

7.8CVSS5.8AI score0.0016EPSS
CVE
CVE
added 2026/05/27 12:16 p.m.26 views

CVE-2026-45880

CVE-2026-45880 – Linux kernel PCI/P2PDMA issue : When vm_insert_page() fails during p2pmem_alloc_mmap(), the code does not release the per-CPU ref for pgmap acquired after gen_pool_alloc_owner(), causing memunmap_pages() to hang when removing a PCI device. The patch fixes this by adding the missi...

5.5CVSS5.8AI score0.00155EPSS
CVE
CVE
added 2026/05/27 12:17 p.m.26 views

CVE-2026-45900

The CVE-2026-45900 issue is in the Linux kernel crypto: caam module. During dpaa2_caam_probe, netdevs allocated for DPIO setup could leak if dpaa2_dpseci_dpio_setup() fails and the cleanup path in dpaa2_dpseci_free() did not consider previously allocated nets. The fix preserves the CPU mask of al...

5.5CVSS5.7AI score0.00155EPSS
CVE
CVE
added 2026/05/27 12:17 p.m.26 views

CVE-2026-45924

Summary: CVE-2026-45924 affects ksmbd in the Linux kernel. The vulnerability arises because ksmbd_vfs_kern_path_end_removing() is not called on certain error paths, leaving inode locks and references unbalanced after a prior ksmbd_vfs_kern_path_start_removing(). This can cause potential deadlocks...

5.5CVSS5.8AI score0.0012EPSS
CVE
CVE
added 2026/05/27 12:17 p.m.26 views

CVE-2026-45943

The CVE-2026-45943 issue affects the Linux kernel's erofs filesystem, specifically a NULL pointer dereference when handling ztailpacking pclusters due to inline data not being validated before adding pclusters to I/O chains. The provided sources confirm the root cause and a fix: reading the inlin...

7.1CVSS5.7AI score0.00125EPSS
CVE
CVE
added 2026/05/27 12:18 p.m.26 views

CVE-2026-45974

Summary: CVE-2026-45974 affects the Linux kernel btrfs quota handling. A logic error in btrfs_quota_enable() can cause invalid leaf access if the search key is not found, potentially allowing instability or DoS. The root cause is improper handling when btrfs_search_slot_for_read() returns 1 (no k...

5.5CVSS5.8AI score0.00128EPSS
CVE
CVE
added 2026/05/27 12:55 p.m.26 views

CVE-2026-45990

CVE-2026-45990 concerns the Linux kernel slub/kvrealloc code, where forcing realloc with new alignment/NUMA node could trigger data loss during NUMA migration and a potential out-of-bounds write when shrinking. The root cause described is that the reallocation path could memcpy with an incorrect ...

5.5CVSS6AI score0.00133EPSS
CVE
CVE
added 2026/05/27 12:55 p.m.26 views

CVE-2026-45991

The CVE-2026-45991 entry concerns the Linux kernel UDF filesystem. The root cause is in handle_partition_descriptor() where partition descriptors are deduplicated by partition number, but appended slots do not record partnum, allowing repeated Partition Descriptors to accumulate and grow num_part...

7.8CVSS5.8AI score0.00169EPSS
CVE
CVE
added 2026/05/27 12:56 p.m.26 views

CVE-2026-46004

CVE-2026-46004 concerns the Linux kernel ALSA caiaq driver. The issue stems from the probe path in setup_card(), where error handling was insufficient: on certain errors the code could drop into non-fatal paths, risking a use-after-free (UAF) on subsequent caiaq-initiated calls. The patch introdu...

7.8CVSS5.8AI score0.00129EPSS
CVE
CVE
added 2026/05/27 12:56 p.m.26 views

CVE-2026-46009

CVE-2026-46009 – Linux kernel PCIe endpoint ntb teardown issue (mode: normal) The vulnerability arises from epf_ntb_epc_destroy() performing duplicate resource teardown, causing an oops if .allow_link fails or .drop_link is used. The fix removes this helper and also drops pci_epc_put(), tying EPC...

5.5CVSS5.8AI score0.00123EPSS
CVE
CVE
added 2026/05/27 12:56 p.m.26 views

CVE-2026-46026

CVE-2026-46026 concerns a bound-check omission in the Linux kernel’s net: qrtr: ns path, allowing a local attacker to flood LOOKUP messages; fix clamps the global maximum lookups to 64. Affected component is the qrtr ns logic, with local-privilege abuse leading to potential denial or resource exh...

5.5CVSS5.8AI score0.00128EPSS
CVE
CVE
added 2026/05/27 12:57 p.m.26 views

CVE-2026-46048

CVE-2026-46048 relates to a leak in the Linux kernel ALSA caiaq driver. The issue arises because create_card() takes a usb_get_dev() reference to a USB device and stores the corresponding usb_put_dev() in card_free(), which is registered as snd_card’s private_free destructor. However, private_fre...

5.5CVSS5.8AI score0.00123EPSS
CVE
CVE
added 2026/05/27 12:57 p.m.26 views

CVE-2026-46068

CVE-2026-46068 affects the Linux kernel's crypto nx path: bounce buffers allocated with _get_free_pages() (BOUNCE_BUFFER_ORDER) are freed with free_page() instead of free_pages(), causing memory leaks. The fix uses free_pages() with the matching order in nx842_crypto {alloc,free}_ctx. Affected: L...

7.8CVSS5.9AI score0.00129EPSS
CVE
CVE
added 2026/05/27 12:57 p.m.26 views

CVE-2026-46069

CVE-2026-46069 affects the Linux kernel mwifiex driver (wifi) where mwifiex_adapter_cleanup() used timer_delete() on wakeup_timer before freeing the adapter, risking a use-after-free if wakeup_timer_fn is running. The issue is resolved by replacing timer_delete() with timer_delete_sync() to ensur...

7.8CVSS5.7AI score0.00126EPSS
CVE
CVE
added 2026/05/27 12:57 p.m.26 views

CVE-2026-46070

CVE-2026-46070 pertains to the Linux kernel md/raid5 path where journal metadata blocks could be overrun due to missing validation of on-disk payload sizes. r5c_recovery_analyze_meta_block() and r5l_recovery_verify_data_checksum_for_mb() may read or offset beyond a page boundary when payload size...

7.1CVSS5.8AI score0.00126EPSS
CVE
CVE
added 2026/05/27 12:58 p.m.26 views

CVE-2026-46076

The CVE-2026-46076 entry concerns the Linux kernel KVM nSVM, where an unhandled VMMCALL can produce an Undefined Opcode (#UD) when L2 is active, L1 does not intercept, nested_svm_l2_tlb_flush_enabled() is true, and the hypercall is not among the supported Hyper-V hypercalls. The vulnerability ari...

7.9CVSS5.8AI score0.00121EPSS
CVE
CVE
added 2026/05/27 12:58 p.m.26 views

CVE-2026-46095

CVE-2026-46095 is a Linux kernel vulnerability resolved by moving the barrier raise before the llbitmap state machine transitions. The fix updates two functions, llbitmap_start_write() and llbitmap_start_discard(), to ensure the barrier is raised prior to any state changes, preventing a race wher...

5.5CVSS5.8AI score0.00121EPSS
CVE
CVE
added 2026/05/28 9:35 a.m.26 views

CVE-2026-46107

In Linux kernel dm-thin, a metadata refcount underflow in rebalance_children has been resolved. If an internal btree node with a single entry is shared (refcount > 1), downgrading the child without updating grandchildren leads to mismatched reference counts and can produce device mapper: space...

7.8CVSS5.8AI score0.00129EPSS
CVE
CVE
added 2026/05/28 9:36 a.m.26 views

CVE-2026-46144

The CVE-2026-46144 entry concerns the Linux kernel RDMA mana driver. A resource leak occurs during error unwind in mana_ib_create_qp_rss(), where mana_ib_cfg_vport_steering() is not properly cleaned up; this could cause resource exhaustion (DoS). The issue has been fixed in the kernel (patched), ...

5.5CVSS5.8AI score0.00127EPSS
CVE
CVE
added 2026/05/28 9:36 a.m.26 views

CVE-2026-46171

The CVE-2026-46171 issue affects the Linux kernel KVM for RISCV, where a second kzalloc failure in kvm_riscv_vcpu_alloc_vector_context leaks the first allocation (guest_context.vector.datap). The root cause is a vector context allocation leak that can degrade system stability if not freed. A fix ...

5.5CVSS5.8AI score0.00126EPSS
CVE
CVE
added 2026/05/28 9:40 a.m.26 views

CVE-2026-46201

CVE-2026-46201 affects the Linux kernel drm/xe: an error path in xe_gem_prime_import() leaks a dma_buf attachment when xe_dma_buf_init_obj() fails, because the attachment from dma_buf_dynamic_attach() is not detached. The fix explicitly detaches via dma_buf_detach() before returning an error, avo...

7.8CVSS5.8AI score0.00138EPSS
CVE
CVE
added 2026/05/28 9:41 a.m.26 views

CVE-2026-46240

The CVE-2026-46240 issue affects the Linux kernel iris driver. A use-after-free occurs when iris_release_internal_buffers() accesses a buffer after session_release_buf() frees it, caused by a regression from a change that destroys internal buffers after FW releases. The documented fix sets BUF_AT...

7.8CVSS5.8AI score0.00124EPSS
CVE
CVE
added 2026/06/03 3:49 p.m.26 views

CVE-2026-46251

The CVE-2026-46251 issue is a Linux kernel Btrfs vulnerability where, when EXTENT_TREE_V2 is enabled, the block_group_tree may be added to switch_commits while still on the dirty_list, causing invalid list manipulation and corruption of block_group_root->dirty_list. This corruption can propaga...

8.4CVSS5.7AI score0.00132EPSS
CVE
CVE
added 2026/06/08 3:41 p.m.26 views

CVE-2026-46278

CVE-2026-46278 : In the Linux kernel, the drm/imagination driver fixes a segfault when updating the ftrace mask and corrects invalid data handling for a debugfs entry. The vulnerability manifested as a NULL pointer dereference leading to an Oops under kernel memory access, with a trace citing pvr...

5.5CVSS5.4AI score0.00107EPSS
CVE
CVE
added 2026/06/08 3:41 p.m.26 views

CVE-2026-46286

CVE-2026-46286 describes a Linux kernel issue in leds: qcom-lpg, where selecting high-resolution values from a 5-entry array uses FIELD_GET() to pull from a 3-bit register, risking out-of-bounds reads. The referenced fix adds a bounds check before indexing, preventing overflow and potential incor...

5.5CVSS5.4AI score0.00122EPSS
Total number of security vulnerabilities14330