VEX records
Browse vendor VEX statements available in this Vulnerability-Lookup instance and pivot to the related vulnerability.
221830 VEX records
API response| Vulnerability | Source | Title | Product status | Imported | Links |
|---|---|---|---|---|---|
| CVE-2026-31609 | redhat_vex | kernel: smb: client: avoid double-free in smbd_free_send_io() after smbd_send_batch_flush() | known affected: 260 known not affected: 14 | 2026-07-02T17:14:42+00:00 | Vulnerability · Source |
| CVE-2026-31630 | redhat_vex | kernel: rxrpc: proc: size address buffers for %pISpc output | known affected: 260 known not affected: 14 | 2026-07-02T17:14:42+00:00 | Vulnerability · Source |
| CVE-2026-31600 | redhat_vex | kernel: arm64: mm: Handle invalid large leaf mappings correctly | known affected: 260 known not affected: 14 | 2026-07-02T17:14:41+00:00 | Vulnerability · Source |
| CVE-2026-31588 | redhat_vex | kernel: KVM: x86: Use scratch field in MMIO fragment to hold small write values | known affected: 260 known not affected: 14 | 2026-07-02T17:14:37+00:00 | Vulnerability · Source |
| CVE-2026-31570 | redhat_vex | kernel: can: gw: fix OOB heap access in cgw_csum_crc8_rel() | known affected: 260 known not affected: 14 | 2026-07-02T17:14:36+00:00 | Vulnerability · Source |
| CVE-2026-31557 | redhat_vex | kernel: nvmet: move async event work off nvmet-wq | known affected: 260 known not affected: 14 | 2026-07-02T17:14:32+00:00 | Vulnerability · Source |
| CVE-2026-31548 | redhat_vex | kernel: wifi: cfg80211: cancel pmsr_free_wk in cfg80211_pmsr_wdev_down | known affected: 232 known not affected: 42 | 2026-07-02T17:14:30+00:00 | Vulnerability · Source |
| CVE-2026-31533 | redhat_vex | kernel: net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption | known affected: 260 known not affected: 14 | 2026-07-02T17:14:27+00:00 | Vulnerability · Source |
| CVE-2026-31528 | redhat_vex | kernel: perf: Make sure to use pmu_ctx->pmu for groups | known affected: 260 known not affected: 14 | 2026-07-02T17:14:25+00:00 | Vulnerability · Source |
| CVE-2026-31516 | redhat_vex | kernel: xfrm: prevent policy_hthresh.work from racing with netns teardown | known affected: 274 | 2026-07-02T17:14:22+00:00 | Vulnerability · Source |
| CVE-2026-31525 | redhat_vex | kernel: bpf: Fix undefined behavior in interpreter sdiv/smod for INT_MIN | known affected: 184 known not affected: 90 | 2026-07-02T17:14:22+00:00 | Vulnerability · Source |
| CVE-2026-31513 | redhat_vex | kernel: Bluetooth: L2CAP: Fix stack-out-of-bounds read in l2cap_ecred_conn_req | known affected: 260 known not affected: 14 | 2026-07-02T17:14:21+00:00 | Vulnerability · Source |
| CVE-2026-31511 | redhat_vex | kernel: Bluetooth: MGMT: Fix dangling pointer on mgmt_add_adv_patterns_monitor_complete | known affected: 260 known not affected: 14 | 2026-07-02T17:14:17+00:00 | Vulnerability · Source |
| CVE-2026-31505 | redhat_vex | kernel: iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() | known affected: 260 known not affected: 14 | 2026-07-02T17:14:16+00:00 | Vulnerability · Source |
| CVE-2026-31507 | redhat_vex | kernel: net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer | known affected: 260 known not affected: 14 | 2026-07-02T17:14:16+00:00 | Vulnerability · Source |
| CVE-2026-31504 | redhat_vex | kernel: net: fix fanout UAF in packet_release() via NETDEV_UP race | known affected: 260 known not affected: 14 | 2026-07-02T17:14:11+00:00 | Vulnerability · Source |
| CVE-2026-31479 | redhat_vex | kernel: drm/xe: always keep track of remap prev/next | known affected: 184 known not affected: 90 | 2026-07-02T17:14:07+00:00 | Vulnerability · Source |
| CVE-2026-31502 | redhat_vex | kernel: team: fix header_ops type confusion with non-Ethernet ports | known affected: 108 known not affected: 166 | 2026-07-02T17:14:07+00:00 | Vulnerability · Source |
| CVE-2026-31473 | redhat_vex | kernel: media: mc, v4l2: serialize REINIT and REQBUFS with req_queue_mutex | known affected: 260 known not affected: 14 | 2026-07-02T17:14:03+00:00 | Vulnerability · Source |
| CVE-2026-31470 | redhat_vex | kernel: virt: tdx-guest: Fix handling of host controlled 'quote' buffer length | known affected: 260 known not affected: 14 | 2026-07-02T17:14:01+00:00 | Vulnerability · Source |
| CVE-2026-31469 | redhat_vex | kernel: virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false | known affected: 260 known not affected: 14 | 2026-07-02T17:13:58+00:00 | Vulnerability · Source |
| CVE-2026-31468 | redhat_vex | kernel: vfio/pci: Fix double free in dma-buf feature | known affected: 260 known not affected: 14 | 2026-07-02T17:13:57+00:00 | Vulnerability · Source |
| CVE-2026-31464 | redhat_vex | kernel: scsi: ibmvfc: Fix OOB access in ibmvfc_discover_targets_done() | known affected: 260 known not affected: 14 | 2026-07-02T17:13:54+00:00 | Vulnerability · Source |
| CVE-2026-31454 | redhat_vex | kernel: xfs: save ailp before dropping the AIL lock in push callbacks | known affected: 260 known not affected: 14 | 2026-07-02T17:13:53+00:00 | Vulnerability · Source |
| CVE-2026-31453 | redhat_vex | kernel: xfs: avoid dereferencing log items after push callbacks | known affected: 260 known not affected: 14 | 2026-07-02T17:13:50+00:00 | Vulnerability · Source |
| CVE-2026-31450 | redhat_vex | kernel: ext4: publish jinode after initialization | known affected: 260 known not affected: 14 | 2026-07-02T17:13:49+00:00 | Vulnerability · Source |
| CVE-2026-31449 | redhat_vex | kernel: ext4: validate p_idx bounds in ext4_ext_correct_indexes | known affected: 260 known not affected: 14 | 2026-07-02T17:13:45+00:00 | Vulnerability · Source |
| CVE-2026-31448 | redhat_vex | kernel: ext4: avoid infinite loops caused by residual data | known affected: 260 known not affected: 14 | 2026-07-02T17:13:44+00:00 | Vulnerability · Source |
| CVE-2026-31447 | redhat_vex | kernel: ext4: reject mount if bigalloc with s_first_data_block != 0 | known affected: 274 | 2026-07-02T17:13:42+00:00 | Vulnerability · Source |
| CVE-2026-31446 | redhat_vex | kernel: ext4: fix use-after-free in update_super_work when racing with umount | known affected: 260 known not affected: 14 | 2026-07-02T17:13:40+00:00 | Vulnerability · Source |
| CVE-2026-31442 | redhat_vex | kernel: dmaengine: idxd: Fix possible invalid memory access after FLR | known affected: 184 known not affected: 90 | 2026-07-02T17:13:39+00:00 | Vulnerability · Source |
| CVE-2026-31436 | redhat_vex | kernel: dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() | known affected: 260 known not affected: 14 | 2026-07-02T17:13:37+00:00 | Vulnerability · Source |
| CVE-2026-31426 | redhat_vex | kernel: ACPI: EC: clean up handlers on probe failure in acpi_ec_setup() | known affected: 246 known not affected: 28 | 2026-07-02T17:13:34+00:00 | Vulnerability · Source |
| CVE-2026-31414 | redhat_vex | kernel: Linux kernel (netfilter): Denial of Service via unsafe connection tracking helper operations | known affected: 274 | 2026-07-02T17:13:32+00:00 | Vulnerability · Source |
| CVE-2026-28755 | redhat_vex | NGINX: NGINX: Certificate revocation bypass when OCSP is enabled | fixed: 4 known affected: 54 | 2026-07-02T17:13:30+00:00 | Vulnerability · Source |
| CVE-2026-28420 | redhat_vex | vim: Vim: Information disclosure and denial of service via crafted Unicode characters in terminal emulator | known affected: 33 | 2026-07-02T17:13:27+00:00 | Vulnerability · Source |
| CVE-2026-28419 | redhat_vex | vim: Vim: Information disclosure and denial of service via malformed tags file | known affected: 33 | 2026-07-02T17:13:25+00:00 | Vulnerability · Source |
| CVE-2026-28418 | redhat_vex | vim: Vim: Information disclosure via heap-based buffer overflow in Emacs-style tags file parsing | known affected: 33 | 2026-07-02T17:13:25+00:00 | Vulnerability · Source |
| CVE-2026-28296 | redhat_vex | gvfs: FTP GVfs backend: Arbitrary FTP command injection via CRLF sequences in file paths | known affected: 48 | 2026-07-02T17:13:21+00:00 | Vulnerability · Source |
| CVE-2026-25941 | redhat_vex | freerdp: FreeRDP: Information disclosure or client crash via out-of-bounds read in RDPGFX channel | known affected: 31 | 2026-07-02T17:13:18+00:00 | Vulnerability · Source |
| CVE-2026-25645 | redhat_vex | requests: Requests: Security bypass due to predictable temporary file creation | known affected: 291 | 2026-07-02T17:13:17+00:00 | Vulnerability · Source |
| CVE-2026-24401 | redhat_vex | avahi: Avahi: Denial of Service via recursive CNAME record in mDNS response | fixed: 3 known affected: 89 | 2026-07-02T17:13:13+00:00 | Vulnerability · Source |
| CVE-2026-23865 | redhat_vex | freetype: Information disclosure or denial of service via specially crafted font files | fixed: 3231 known affected: 91 known not affected: 8 | 2026-07-02T17:13:06+00:00 | Vulnerability · Source |
| CVE-2026-2625 | redhat_vex | rust-rpm-sequoia: rust-rpm-sequoia: Denial of Service via crafted RPM file during signature verification | fixed: 3 known affected: 4 | 2026-07-02T17:13:04+00:00 | Vulnerability · Source |
| CVE-2026-2604 | redhat_vex | evolution-data-server: Evolution Data Server: Arbitrary file deletion via inconsistent URI handling | known affected: 32 | 2026-07-02T17:13:00+00:00 | Vulnerability · Source |
| CVE-2026-2581 | redhat_vex | undici: Undici: Denial of Service due to uncontrolled resource consumption | fixed: 111 known affected: 59 | 2026-07-02T17:12:59+00:00 | Vulnerability · Source |
| CVE-2026-2436 | redhat_vex | libsoup: libsoup: Denial of Service via use-after-free in SoupServer during TLS handshake | known affected: 16 | 2026-07-02T17:12:58+00:00 | Vulnerability · Source |
| CVE-2026-23395 | redhat_vex | kernel: Bluetooth: L2CAP: Fix accepting multiple L2CAP_ECRED_CONN_REQ | known affected: 232 known not affected: 42 | 2026-07-02T17:12:40+00:00 | Vulnerability · Source |
| CVE-2026-23391 | redhat_vex | kernel: netfilter: xt_CT: drop pending enqueued packets on template removal | known affected: 274 | 2026-07-02T17:12:39+00:00 | Vulnerability · Source |
| CVE-2026-23351 | redhat_vex | kernel: netfilter: nft_set_pipapo: split gc into unlink and reclaim phase | known affected: 232 known not affected: 42 | 2026-07-02T17:12:36+00:00 | Vulnerability · Source |