24h | 7d | 30d

Overview

  • Linux
  • Linux

24 Apr 2026
Published
18 May 2026
Updated

CVSS v3.1
HIGH (7.5)
EPSS
0.05%

KEV

Description

In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix oversized RESPONSE authenticator length check rxgk_verify_response() decodes auth_len from the packet and is supposed to verify that it fits in the remaining bytes. The existing check is inverted, so oversized RESPONSE authenticators are accepted and passed to rxgk_decrypt_skb(), which can later reach skb_to_sgvec() with an impossible length and hit BUG_ON(len). Decoded from the original latest-net reproduction logs with scripts/decode_stacktrace.sh: RIP: __skb_to_sgvec() [net/core/skbuff.c:5285 (discriminator 1)] Call Trace: skb_to_sgvec() [net/core/skbuff.c:5305] rxgk_decrypt_skb() [net/rxrpc/rxgk_common.h:81] rxgk_verify_response() [net/rxrpc/rxgk.c:1268] rxrpc_process_connection() [net/rxrpc/conn_event.c:266 net/rxrpc/conn_event.c:364 net/rxrpc/conn_event.c:386] process_one_work() [kernel/workqueue.c:3281] worker_thread() [kernel/workqueue.c:3353 kernel/workqueue.c:3440] kthread() [kernel/kthread.c:436] ret_from_fork() [arch/x86/kernel/process.c:164] Reject authenticator lengths that exceed the remaining packet payload.

Statistics

  • 1 Post
  • 1 Interaction

Last activity: 1 hour ago

Fediverse

Profile picture fallback

Fragnesia (CVE-2026-46300) i DirtyDecrypt (CVE-2026-31635) ( nfsec.pl/security/6722 )

youtube.com/watch?v=dWAPcXh8UEE

  • 1
  • 0
  • 0
  • 1h ago

Overview

  • F5
  • NGINX Plus

13 May 2026
Published
13 May 2026
Updated

CVSS v3.1
MEDIUM (4.8)
EPSS
0.03%

KEV

Description

NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_ssl_module module when the ssl_verify_client directive is set to "on" or "optional," and the ssl_ocsp directive is set to "on" or the leaf parameters are configured with a resolver. With this configuration, an unauthenticated attacker can send requests along with conditions beyond its control that may cause a heap-use-after-free error in the NGINX worker process. This vulnerability may result in limited modification of data or the NGINX worker process restarting.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Statistics

  • 1 Post

Last activity: 19 hours ago

Bluesky

Profile picture fallback
📢 NGINX Rift : RCE critique via un heap overflow vieux de 18 ans (CVE-2026-42945) 📝 ## 🔍 Contexte Publié le 13 mai 2026 par Zhenpeng (Leo) Lin, chercheu… https://cyberveille.ch/posts/2026-05-15-nginx-rift-rce-critique-via-un-heap-overflow-vieux-de-18-ans-cve-2026-42945/ #CVE_2026_40701 #Cyberveille
  • 0
  • 0
  • 0
  • 19h ago

Overview

  • OpenBSD
  • OpenSSH

02 Apr 2026
Published
02 Apr 2026
Updated

CVSS v3.1
MEDIUM (4.2)
EPSS
0.03%

KEV

Description

OpenSSH before 10.3 mishandles the authorized_keys principals option in uncommon scenarios involving a principals list in conjunction with a Certificate Authority that makes certain use of comma characters.

Statistics

  • 1 Post

Last activity: 2 hours ago

Bluesky

Profile picture fallback
OpenSSH vulnerabilities CVE-2026-35385 & CVE-2026-35414 affect #openSUSE. Read more -> tinyurl.com/4vxdppw6 #Security
  • 0
  • 0
  • 0
  • 2h ago

Overview

  • OpenBSD
  • OpenSSH

02 Apr 2026
Published
03 Apr 2026
Updated

CVSS v3.1
HIGH (7.5)
EPSS
0.06%

KEV

Description

In OpenSSH before 10.3, a file downloaded by scp may be installed setuid or setgid, an outcome contrary to some users' expectations, if the download is performed as root with -O (legacy scp protocol) and without -p (preserve mode).

Statistics

  • 1 Post

Last activity: 2 hours ago

Bluesky

Profile picture fallback
OpenSSH vulnerabilities CVE-2026-35385 & CVE-2026-35414 affect #openSUSE. Read more -> tinyurl.com/4vxdppw6 #Security
  • 0
  • 0
  • 0
  • 2h ago
Showing 31 to 34 of 34 CVEs