exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 53

CVE-2025-40248

7 месяцев назад

vsock: Ignore signal/timeout on connect() if already established

CVSS3: 6.3

EPSS: Низкий

CVE-2025-40248

7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: v ...

EPSS: Низкий

GHSA-p7jc-87rf-j283

7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipc_mon_reinit_self(). syzbot reported use-after-free of tipc_net(net)->monitors[] in tipc_mon_reinit_self(). [0] The array is protected by RTNL, but tipc_mon_reinit_self() iterates over it without RTNL. tipc_mon_reinit_self() is called from tipc_net_finalize(), which is always under RTNL except for tipc_net_finalize_work(). Let's hold RTNL in tipc_net_finalize_work(). [0]: BUG: KASAN: slab-use-after-free in __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline] BUG: KASAN: slab-use-after-free in _raw_spin_lock_irqsave+0xa7/0xf0 kernel/locking/spinlock.c:162 Read of size 1 at addr ffff88805eae1030 by task kworker/0:7/5989 CPU: 0 UID: 0 PID: 5989 Comm: kworker/0:7 Not tainted syzkaller #0 PREEMPT_{RT,(full)} Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 Workqueue: events tipc_net_finalize_work Call Trace: <TASK> dump_stac...

EPSS: Низкий

BDU:2026-05118

около 1 года назад

Уязвимость функции tipc_mon_reinit_self() ядра операционной системы Linux, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании

CVSS3: 7

EPSS: Низкий

GHSA-j4rg-4m7w-4hr3

7 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: vsock: Ignore signal/timeout on connect() if already established During connect(), acting on a signal/timeout by disconnecting an already established socket leads to several issues: 1. connect() invoking vsock_transport_cancel_pkt() -> virtio_transport_purge_skbs() may race with sendmsg() invoking virtio_transport_get_credit(). This results in a permanently elevated `vvs->bytes_unsent`. Which, in turn, confuses the SOCK_LINGER handling. 2. connect() resetting a connected socket's state may race with socket being placed in a sockmap. A disconnected socket remaining in a sockmap breaks sockmap's assumptions. And gives rise to WARNs. 3. connect() transitioning SS_CONNECTED -> SS_UNCONNECTED allows for a transport change/drop after TCP_ESTABLISHED. Which poses a problem for any simultaneous sendmsg() or connect() and may result in a use-after-free/null-ptr-deref. Do not disconnect socket on...

EPSS: Низкий

ELSA-2026-50060

5 месяцев назад

ELSA-2026-50060: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS: Низкий

BDU:2026-05107

около 1 года назад

Уязвимость функции connect() ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 5.5

EPSS: Низкий

ELSA-2025-20719

8 месяцев назад

ELSA-2025-20719: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS: Низкий

ELSA-2026-1581

4 месяца назад

ELSA-2026-1581: kernel security update (IMPORTANT)

EPSS: Низкий

ELSA-2026-50113

4 месяца назад

ELSA-2026-50113: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS: Низкий

RLSA-2026:1142

5 месяцев назад

Important: kernel security update

EPSS: Низкий

ELSA-2026-1142

5 месяцев назад

ELSA-2026-1142: kernel security update (IMPORTANT)

EPSS: Низкий

SUSE-SU-2026:1041-1

3 месяца назад

Security update for the Linux Kernel

EPSS: Низкий

RLSA-2026:1143

5 месяцев назад

Important: kernel security update

EPSS: Низкий

ELSA-2026-1143

5 месяцев назад

ELSA-2026-1143: kernel security update (IMPORTANT)

EPSS: Низкий

openSUSE-SU-2026:20145-1

5 месяцев назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2026:1078-1

3 месяца назад

Security update for the Linux Kernel

EPSS: Низкий

ELSA-2025-28048

6 месяцев назад

ELSA-2025-28048: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS: Низкий

RLSA-2026:1690

4 месяца назад

Important: kernel security update

EPSS: Низкий

ELSA-2026-1690

5 месяцев назад

ELSA-2026-1690: kernel security update (IMPORTANT)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2025-40248 vsock: Ignore signal/timeout on connect() if already established	CVSS3: 6.3	0% Низкий	7 месяцев назад
CVE-2025-40248 In the Linux kernel, the following vulnerability has been resolved: v ...		0% Низкий	7 месяцев назад
GHSA-p7jc-87rf-j283 In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipc_mon_reinit_self(). syzbot reported use-after-free of tipc_net(net)->monitors[] in tipc_mon_reinit_self(). [0] The array is protected by RTNL, but tipc_mon_reinit_self() iterates over it without RTNL. tipc_mon_reinit_self() is called from tipc_net_finalize(), which is always under RTNL except for tipc_net_finalize_work(). Let's hold RTNL in tipc_net_finalize_work(). [0]: BUG: KASAN: slab-use-after-free in __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline] BUG: KASAN: slab-use-after-free in _raw_spin_lock_irqsave+0xa7/0xf0 kernel/locking/spinlock.c:162 Read of size 1 at addr ffff88805eae1030 by task kworker/0:7/5989 CPU: 0 UID: 0 PID: 5989 Comm: kworker/0:7 Not tainted syzkaller #0 PREEMPT_{RT,(full)} Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 Workqueue: events tipc_net_finalize_work Call Trace: <TASK> dump_stac...		0% Низкий	7 месяцев назад
BDU:2026-05118 Уязвимость функции tipc_mon_reinit_self() ядра операционной системы Linux, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании	CVSS3: 7	0% Низкий	около 1 года назад
GHSA-j4rg-4m7w-4hr3 In the Linux kernel, the following vulnerability has been resolved: vsock: Ignore signal/timeout on connect() if already established During connect(), acting on a signal/timeout by disconnecting an already established socket leads to several issues: 1. connect() invoking vsock_transport_cancel_pkt() -> virtio_transport_purge_skbs() may race with sendmsg() invoking virtio_transport_get_credit(). This results in a permanently elevated `vvs->bytes_unsent`. Which, in turn, confuses the SOCK_LINGER handling. 2. connect() resetting a connected socket's state may race with socket being placed in a sockmap. A disconnected socket remaining in a sockmap breaks sockmap's assumptions. And gives rise to WARNs. 3. connect() transitioning SS_CONNECTED -> SS_UNCONNECTED allows for a transport change/drop after TCP_ESTABLISHED. Which poses a problem for any simultaneous sendmsg() or connect() and may result in a use-after-free/null-ptr-deref. Do not disconnect socket on...		0% Низкий	7 месяцев назад
ELSA-2026-50060 ELSA-2026-50060: Unbreakable Enterprise kernel security update (IMPORTANT)			5 месяцев назад
BDU:2026-05107 Уязвимость функции connect() ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании	CVSS3: 5.5	0% Низкий	около 1 года назад
ELSA-2025-20719 ELSA-2025-20719: Unbreakable Enterprise kernel security update (IMPORTANT)			8 месяцев назад
ELSA-2026-1581 ELSA-2026-1581: kernel security update (IMPORTANT)			4 месяца назад
ELSA-2026-50113 ELSA-2026-50113: Unbreakable Enterprise kernel security update (IMPORTANT)			4 месяца назад
RLSA-2026:1142 Important: kernel security update			5 месяцев назад
ELSA-2026-1142 ELSA-2026-1142: kernel security update (IMPORTANT)			5 месяцев назад
SUSE-SU-2026:1041-1 Security update for the Linux Kernel			3 месяца назад
RLSA-2026:1143 Important: kernel security update			5 месяцев назад
ELSA-2026-1143 ELSA-2026-1143: kernel security update (IMPORTANT)			5 месяцев назад
openSUSE-SU-2026:20145-1 Security update for the Linux Kernel			5 месяцев назад
SUSE-SU-2026:1078-1 Security update for the Linux Kernel			3 месяца назад
ELSA-2025-28048 ELSA-2025-28048: Unbreakable Enterprise kernel security update (IMPORTANT)			6 месяцев назад
RLSA-2026:1690 Important: kernel security update			4 месяца назад
ELSA-2026-1690 ELSA-2026-1690: kernel security update (IMPORTANT)			5 месяцев назад

Уязвимостей на страницу