Lucene search
K
LinuxLinux Kernel6.6.26

7 matches found

CVE
CVE
added 2024/05/20 9:41 a.m.150 views

CVE-2024-35962

CVE-2024-35962 (Linux kernel netfilter nf_tables) involves incomplete validation of user input in netfilter: complete validation of user input. Root cause: do_replace() handlers use copy_from_sockptr() followed by unsafe copy_from_sockptr_offset() without validating optlen early enough; the patch...

5.5CVSS6.7AI score0.0023EPSS
CVE
CVE
added 2024/06/21 10:18 a.m.127 views

CVE-2024-38381

CVE-2024-38381 affects the Linux kernel vulnerability in the NFC NFC-NCI path. The issue is an uninitialized-value access in nci_rx_work, which parses a received packet from ndev->rx_q without validating header size, payload size, and total packet size before processing. An invalid packet coul...

7.1CVSS8.1AI score0.00258EPSS
CVE
CVE
added 2024/08/17 9:9 a.m.125 views

CVE-2024-42307

Technical details about CVE-2024-42307 (affected product, vulnerable component, impact, or remediation) are not provided in the supplied documents. Monitor for updates from official advisories.

5.5CVSS6.6AI score0.0021EPSS
CVE
CVE
added 2024/07/12 12:20 p.m.111 views

CVE-2024-40909

CVE-2024-40909 is a Linux kernel vulnerability resolved in the bpf subsystem. After commit 1a80dbcb2dba, a race could cause a use-after-free when bpf_link is freed by link->ops->dealloc_deferred but the code still tests and uses link->ops->dealloc afterward. The fix ensures only one o...

7.8CVSS8.3AI score0.00278EPSS
CVE
CVE
added 2024/05/30 3:28 p.m.94 views

CVE-2024-36887

CVE-2024-36887 affects the Linux kernel: the e1000e PHY mdic access code originally used usleep_range inside atomic contexts, causing potential kernel panics. A partial revert of a prior workaround reintroduced this by switching usleep_range calls to udelay. The fix is to revert to using usleep_r...

5.5CVSS6.4AI score0.00239EPSS
CVE
CVE
added 2025/07/28 11:21 a.m.80 views

CVE-2025-38489

CVE-2025-38489: In the Linux kernel (s390/BPF), the on-disk description notes that bpf_arch_text_poke() with new_addr == NULL caused intermittent panics; the fix re‑instates the previously removed correction from commit c730fce7c70c, restoring the intended behavior and adding a clarifying comment...

5.5CVSS6.3AI score0.00136EPSS
CVE
CVE
added 2026/01/23 3:24 p.m.28 views

CVE-2026-22979

CVE-2026-22979 is a Linux kernel vulnerability affecting memory accounting for GRO-fragmented SKBs. The issue arose because skb_segment_list() continued to add each fragment’s truesize to delta_truesize while subtracting it from the parent SKB, even though fragments are no longer charged to the s...

5.5CVSS5.3AI score0.0012EPSS