[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2026-23414":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":44,"related":45,"reserved_at":9,"published_at":52,"modified_at":53,"state":54,"summary":55,"references_raw":64,"kevs":91,"epss":92,"epss_history":95,"metrics":291,"affected":303},"CVE-2026-23414","In the Linux kernel, the following vulnerability has been resolved:\n\ntls: Purge async_hold in tls_decrypt_async_wait()\n\nThe async_hold queue pins encrypted input skbs while\nthe AEAD engine references their scatterlist data. Once\ntls_decrypt_async_wait() returns, every AEAD operation\nhas completed and the engine no longer references those\nskbs, so they can be freed unconditionally.\n\nA subsequent patch adds batch async decryption to\ntls_sw_read_sock(), introducing a new call site that\nmust drain pending AEAD operations and release held\nskbs. Move __skb_queue_purge(&ctx->async_hold) into\ntls_decrypt_async_wait() so the purge is centralized\nand every caller -- recvmsg's drain path, the -EBUSY\nfallback in tls_do_decryption(), and the new read_sock\nbatch path -- releases held skbs on synchronization\nwithout each site managing the purge independently.\n\nThis fixes a leak when tls_strp_msg_hold() fails part-way through,\nafter having added some cloned skbs to the async_hold\nqueue. tls_decrypt_sg() will then call tls_decrypt_async_wait() to\nprocess all pending decrypts, and drop back to synchronous mode, but\ntls_sw_recvmsg() only flushes the async_hold queue when one record has\nbeen processed in \"fully-async\" mode, which may not be the case here.\n\n[pabeni@redhat.com: added leak comment]",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-401","Missing Release of Memory after Effective Lifetime","The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.","weakness","Draft","Variant","Medium",[],[],[],[],[24,26,28,30,32,34,36,38,40,42],{"_key":25},"SUSE-SU-2026:21123-1",{"_key":27},"SUSE-SU-2026:21114-1",{"_key":29},"OPENSUSE-SU-2026:20572-1",{"_key":31},"SUSE-SU-2026:21237-1",{"_key":33},"SUSE-SU-2026:1573-1",{"_key":35},"SUSE-SU-2026:21255-1",{"_key":37},"DEBIAN-CVE-2026-23414",{"_key":39},"MGASA-2026-0108",{"_key":41},"MGASA-2026-0110",{"_key":43},"UBUNTU-CVE-2026-23414",[],[46,47,48,49,50,51],{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},"2026-04-02T11:40:55.746Z","2026-05-23T16:04:43.879Z","Modified",{"cisa_kev":56,"cisa_ransomware":56,"cisa_vendor":9,"epss_severity":57,"epss_score":58,"severity":59,"severity_score":60,"severity_version":61,"severity_source":62,"severity_vector":63,"severity_status":54},false,"low",0.00045,"high",7.5,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",[65,71,75,79,83,87],{"url":66,"sources":67,"tags":69},"https://git.kernel.org/stable/c/2dcf324855c34e7f934ce978aa19b645a8f3ee71",[62,68],"nvd",[70],"Patch",{"url":72,"sources":73,"tags":74},"https://git.kernel.org/stable/c/6dc11e0bd0a5466bcc76d275c09e5537bd0597dd",[62,68],[70],{"url":76,"sources":77,"tags":78},"https://git.kernel.org/stable/c/9f557c7eae127b44d2e863917dc986a4b6cb1269",[62,68],[70],{"url":80,"sources":81,"tags":82},"https://git.kernel.org/stable/c/fd8037e1f18ca5336934d0e0e7e1a4fe097e749d",[62,68],[70],{"url":84,"sources":85,"tags":86},"https://git.kernel.org/stable/c/84a8335d8300576f1b377ae24abca1d9f197807f",[62,68],[70],{"url":88,"sources":89,"tags":90},"https://git.kernel.org/stable/c/ac435be7c7613eb13a5a8ceb5182e10b50c9ce87",[62,68],[70],[],{"date":93,"score":58,"percentile":94},"2026-06-04",0.14279,[96,100,103,106,109,111,114,118,121,124,127,131,134,137,140,143,146,149,152,155,159,162,165,168,172,175,178,182,185,188,191,194,196,200,203,206,209,212,215,218,221,224,227,230,233,236,239,242,245,248,251,254,257,260,263,266,269,272,275,278,281,284,287,290],{"date":97,"score":98,"percentile":99},"2026-04-02",0.00018,0.04588,{"date":101,"score":98,"percentile":102},"2026-04-03",0.04601,{"date":104,"score":98,"percentile":105},"2026-04-04",0.04609,{"date":107,"score":98,"percentile":108},"2026-04-05",0.04603,{"date":110,"score":98,"percentile":102},"2026-04-06",{"date":112,"score":98,"percentile":113},"2026-04-07",0.04614,{"date":115,"score":116,"percentile":117},"2026-04-08",0.00024,0.06363,{"date":119,"score":116,"percentile":120},"2026-04-09",0.06405,{"date":122,"score":116,"percentile":123},"2026-04-10",0.06409,{"date":125,"score":116,"percentile":126},"2026-04-11",0.06398,{"date":128,"score":129,"percentile":130},"2026-04-12",0.00032,0.09236,{"date":132,"score":129,"percentile":133},"2026-04-13",0.09222,{"date":135,"score":129,"percentile":136},"2026-04-14",0.09095,{"date":138,"score":129,"percentile":139},"2026-04-15",0.0911,{"date":141,"score":129,"percentile":142},"2026-04-16",0.09117,{"date":144,"score":129,"percentile":145},"2026-04-17",0.09101,{"date":147,"score":129,"percentile":148},"2026-04-18",0.09098,{"date":150,"score":129,"percentile":151},"2026-04-19",0.09068,{"date":153,"score":129,"percentile":154},"2026-04-20",0.09055,{"date":156,"score":157,"percentile":158},"2026-04-21",0.00056,0.17455,{"date":160,"score":157,"percentile":161},"2026-04-22",0.17522,{"date":163,"score":157,"percentile":164},"2026-04-23",0.17538,{"date":166,"score":157,"percentile":167},"2026-04-24",0.17368,{"date":169,"score":170,"percentile":171},"2026-04-25",0.00017,0.04151,{"date":173,"score":170,"percentile":174},"2026-04-26",0.04148,{"date":176,"score":170,"percentile":177},"2026-04-27",0.04138,{"date":179,"score":180,"percentile":181},"2026-04-28",0.00035,0.10161,{"date":183,"score":180,"percentile":184},"2026-04-29",0.1016,{"date":186,"score":180,"percentile":187},"2026-04-30",0.10154,{"date":189,"score":180,"percentile":190},"2026-05-01",0.10145,{"date":192,"score":180,"percentile":193},"2026-05-02",0.10179,{"date":195,"score":180,"percentile":181},"2026-05-03",{"date":197,"score":198,"percentile":199},"2026-05-04",0.0004,0.119,{"date":201,"score":198,"percentile":202},"2026-05-05",0.11895,{"date":204,"score":198,"percentile":205},"2026-05-06",0.11886,{"date":207,"score":198,"percentile":208},"2026-05-07",0.12031,{"date":210,"score":198,"percentile":211},"2026-05-08",0.12045,{"date":213,"score":198,"percentile":214},"2026-05-09",0.12086,{"date":216,"score":198,"percentile":217},"2026-05-10",0.12068,{"date":219,"score":198,"percentile":220},"2026-05-11",0.1206,{"date":222,"score":198,"percentile":223},"2026-05-12",0.12087,{"date":225,"score":198,"percentile":226},"2026-05-13",0.12111,{"date":228,"score":198,"percentile":229},"2026-05-14",0.12152,{"date":231,"score":198,"percentile":232},"2026-05-15",0.12158,{"date":234,"score":198,"percentile":235},"2026-05-16",0.12197,{"date":237,"score":198,"percentile":238},"2026-05-17",0.12173,{"date":240,"score":198,"percentile":241},"2026-05-18",0.12116,{"date":243,"score":198,"percentile":244},"2026-05-19",0.1208,{"date":246,"score":198,"percentile":247},"2026-05-20",0.12071,{"date":249,"score":198,"percentile":250},"2026-05-21",0.12053,{"date":252,"score":198,"percentile":253},"2026-05-22",0.12238,{"date":255,"score":198,"percentile":256},"2026-05-23",0.12225,{"date":258,"score":198,"percentile":259},"2026-05-24",0.12208,{"date":261,"score":198,"percentile":262},"2026-05-25",0.1219,{"date":264,"score":198,"percentile":265},"2026-05-26",0.12178,{"date":267,"score":58,"percentile":268},"2026-05-27",0.1413,{"date":270,"score":58,"percentile":271},"2026-05-28",0.14289,{"date":273,"score":58,"percentile":274},"2026-05-29",0.1436,{"date":276,"score":58,"percentile":277},"2026-05-30",0.14334,{"date":279,"score":58,"percentile":280},"2026-05-31",0.14309,{"date":282,"score":58,"percentile":283},"2026-06-01",0.14273,{"date":285,"score":58,"percentile":286},"2026-06-02",0.14269,{"date":288,"score":58,"percentile":289},"2026-06-03",0.14258,{"date":93,"score":58,"percentile":94},[292,299],{"source":68,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":293,"cvss_v4_0":9},{"baseScore":294,"baseSeverity":295,"vectorString":296,"impactScore":297,"exploitabilityScore":298},5.5,"MEDIUM","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",6,4.6,{"source":62,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":300,"cvss_v4_0":9},{"baseScore":60,"baseSeverity":301,"vectorString":63,"impactScore":297,"exploitabilityScore":302},"HIGH",10,[304,354],{"ecosystem":9,"name":305,"vendor":306,"product":306,"cpe_part":307,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":308},"Linux","linux","a",[309,312,317,321,325,329,332,335,337,341,345,349,353],{"version":310,"is_range":56,"range_type":62,"version_start":310,"version_start_type":311,"version_end":310,"version_end_type":311,"fixed_in":9},"9f83fd0c179e0f458e824e417f9d5ad53443f685","including",{"version":313,"is_range":314,"range_type":62,"version_start":310,"version_start_type":311,"version_end":315,"version_end_type":316,"fixed_in":9},">= 9f83fd0c179e0f458e824e417f9d5ad53443f685, \u003C ac435be7c7613eb13a5a8ceb5182e10b50c9ce87",true,"ac435be7c7613eb13a5a8ceb5182e10b50c9ce87","excluding",{"version":318,"is_range":314,"range_type":62,"version_start":319,"version_start_type":311,"version_end":320,"version_end_type":316,"fixed_in":9},">= c61d4368197d65c4809d9271f3b85325a600586a, \u003C 2dcf324855c34e7f934ce978aa19b645a8f3ee71","c61d4368197d65c4809d9271f3b85325a600586a","2dcf324855c34e7f934ce978aa19b645a8f3ee71",{"version":322,"is_range":314,"range_type":62,"version_start":323,"version_start_type":311,"version_end":324,"version_end_type":316,"fixed_in":9},">= 39dec4ea3daf77f684308576baf483b55ca7f160, \u003C 6dc11e0bd0a5466bcc76d275c09e5537bd0597dd","39dec4ea3daf77f684308576baf483b55ca7f160","6dc11e0bd0a5466bcc76d275c09e5537bd0597dd",{"version":326,"is_range":314,"range_type":62,"version_start":327,"version_start_type":311,"version_end":328,"version_end_type":316,"fixed_in":9},">= b8a6ff84abbcbbc445463de58704686011edc8e1, \u003C 9f557c7eae127b44d2e863917dc986a4b6cb1269","b8a6ff84abbcbbc445463de58704686011edc8e1","9f557c7eae127b44d2e863917dc986a4b6cb1269",{"version":330,"is_range":314,"range_type":62,"version_start":327,"version_start_type":311,"version_end":331,"version_end_type":316,"fixed_in":9},">= b8a6ff84abbcbbc445463de58704686011edc8e1, \u003C fd8037e1f18ca5336934d0e0e7e1a4fe097e749d","fd8037e1f18ca5336934d0e0e7e1a4fe097e749d",{"version":333,"is_range":314,"range_type":62,"version_start":327,"version_start_type":311,"version_end":334,"version_end_type":316,"fixed_in":9},">= b8a6ff84abbcbbc445463de58704686011edc8e1, \u003C 84a8335d8300576f1b377ae24abca1d9f197807f","84a8335d8300576f1b377ae24abca1d9f197807f",{"version":336,"is_range":56,"range_type":62,"version_start":336,"version_start_type":311,"version_end":336,"version_end_type":311,"fixed_in":9},"4fc109d0ab196bd943b7451276690fb6bb48c2e0",{"version":338,"is_range":314,"range_type":62,"version_start":339,"version_start_type":311,"version_end":340,"version_end_type":316,"fixed_in":9},">= 6.1.158, \u003C 6.1.168","6.1.158","6.1.168",{"version":342,"is_range":314,"range_type":62,"version_start":343,"version_start_type":311,"version_end":344,"version_end_type":316,"fixed_in":9},">= 6.6.114, \u003C 6.6.131","6.6.114","6.6.131",{"version":346,"is_range":314,"range_type":62,"version_start":347,"version_start_type":311,"version_end":348,"version_end_type":316,"fixed_in":9},">= 6.12.55, \u003C 6.12.80","6.12.55","6.12.80",{"version":350,"is_range":314,"range_type":62,"version_start":351,"version_start_type":311,"version_end":352,"version_end_type":316,"fixed_in":9},">= 6.17.5, \u003C 6.18","6.17.5","6.18",{"version":352,"is_range":56,"range_type":62,"version_start":352,"version_start_type":311,"version_end":352,"version_end_type":311,"fixed_in":9},{"ecosystem":9,"name":355,"vendor":306,"product":356,"cpe_part":357,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":358},"linux kernel","linux_kernel","o",[359,362,364,366,368,372,376,377,379,381,383,385,387,389],{"version":360,"is_range":314,"range_type":361,"version_start":339,"version_start_type":311,"version_end":340,"version_end_type":316,"fixed_in":9},"gte6.1.158_lt6.1.168","cpe",{"version":363,"is_range":314,"range_type":361,"version_start":343,"version_start_type":311,"version_end":344,"version_end_type":316,"fixed_in":9},"gte6.6.114_lt6.6.131",{"version":365,"is_range":314,"range_type":361,"version_start":347,"version_start_type":311,"version_end":348,"version_end_type":316,"fixed_in":9},"gte6.12.55_lt6.12.80",{"version":367,"is_range":314,"range_type":361,"version_start":351,"version_start_type":311,"version_end":352,"version_end_type":316,"fixed_in":9},"gte6.17.5_lt6.18",{"version":369,"is_range":314,"range_type":361,"version_start":370,"version_start_type":311,"version_end":371,"version_end_type":316,"fixed_in":9},"gte6.18.1_lt6.18.21","6.18.1","6.18.21",{"version":373,"is_range":314,"range_type":361,"version_start":374,"version_start_type":311,"version_end":375,"version_end_type":316,"fixed_in":9},"gte6.19_lt6.19.11","6.19","6.19.11",{"version":352,"is_range":56,"range_type":361,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":378,"is_range":56,"range_type":361,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0:rc1",{"version":380,"is_range":56,"range_type":361,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0:rc2",{"version":382,"is_range":56,"range_type":361,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0:rc3",{"version":384,"is_range":56,"range_type":361,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0:rc4",{"version":386,"is_range":56,"range_type":361,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0:rc5",{"version":388,"is_range":56,"range_type":361,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0:rc6",{"version":390,"is_range":56,"range_type":361,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0:rc7"]