<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-05T10:53:08.530745+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/5a261938-85c9-4e4a-aa25-3140240ee834/export</id>
    <title>5a261938-85c9-4e4a-aa25-3140240ee834</title>
    <updated>2026-07-05T10:53:08.554055+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "5a261938-85c9-4e4a-aa25-3140240ee834", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46215", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mpmqv43jhn24", "content": "CVE-2026-46215: The Unprivileged Root via a DRM UAF That Bypasses KASAN +\u00a0Video\n\nIntroduction: In a concerning development for Linux security, a high-severity use-after-free (UAF) vulnerability in the Direct Rendering Manager (DRM) subsystem has been uncovered, tracked as CVE-2026-46215. This flaw,\u2026", "creation_timestamp": "2026-07-02T00:15:55.907175Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/5a261938-85c9-4e4a-aa25-3140240ee834/export"/>
    <published>2026-07-02T00:15:55.907175+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/df63485b-2457-4dcd-9ab0-c321a2977117/export</id>
    <title>df63485b-2457-4dcd-9ab0-c321a2977117</title>
    <updated>2026-07-05T10:53:08.556708+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "df63485b-2457-4dcd-9ab0-c321a2977117", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46215", "type": "seen", "source": "https://infosec.exchange/users/alexandreborges/statuses/116846270110180154", "content": "Unprivileged root via a use-after-free in DRM GEM change_handle (CVE-2026-46215):\nhttps://cyberstan.co.uk/drm-lpe-linux/\n#linux #kernel #vulnerability #cybersecurity #exploitation", "creation_timestamp": "2026-07-01T19:03:09.237002Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/df63485b-2457-4dcd-9ab0-c321a2977117/export"/>
    <published>2026-07-01T19:03:09.237002+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f4f34cf7-900f-4b54-9e8e-0c4ba3def16b/export</id>
    <title>f4f34cf7-900f-4b54-9e8e-0c4ba3def16b</title>
    <updated>2026-07-05T10:53:08.556850+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f4f34cf7-900f-4b54-9e8e-0c4ba3def16b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46215", "type": "seen", "source": "https://bsky.app/profile/alexandreborges.bsky.social/post/3mpm76d62fs2e", "content": "Unprivileged root via a use-after-free in DRM GEM change_handle (CVE-2026-46215):\n\ncyberstan.co.uk/drm-lpe-linux/\n\n#linux #kernel #vulnerability #cybersecurity #exploitation", "creation_timestamp": "2026-07-01T19:02:52.148153Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f4f34cf7-900f-4b54-9e8e-0c4ba3def16b/export"/>
    <published>2026-07-01T19:02:52.148153+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6d0bead3-1013-4c32-976c-f85078c8f9aa/export</id>
    <title>6d0bead3-1013-4c32-976c-f85078c8f9aa</title>
    <updated>2026-07-05T10:53:08.556953+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6d0bead3-1013-4c32-976c-f85078c8f9aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-46215", "type": "seen", "source": "https://bsky.app/profile/oxfemale.bsky.social/post/3mplemj2a7k2v", "content": "Original text: \u201cUnprivileged root via a use-after-free in DRM GEM change_handle (CVE-2026-46215)\u201d \u2014 cyberstan, cyberstan.co.uk (12 April 2026). Code blocks and figures below are reproduce\nhttps://core-jmp.org/2026/07/unprivileged-root-via-use-after-free-in-linux-drm-gem-change_handle-cve-2026-46215/", "creation_timestamp": "2026-07-01T11:03:43.289292Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6d0bead3-1013-4c32-976c-f85078c8f9aa/export"/>
    <published>2026-07-01T11:03:43.289292+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/33d61e03-e7ca-4ea1-a16c-2a96ad046b26/export</id>
    <title>33d61e03-e7ca-4ea1-a16c-2a96ad046b26</title>
    <updated>2026-07-05T10:53:08.557050+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cve.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "33d61e03-e7ca-4ea1-a16c-2a96ad046b26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-46216", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/debian-linux-kernel-multiple-vulnerabilities_20260630", "content": "", "creation_timestamp": "2026-07-01T02:34:31.431273Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/33d61e03-e7ca-4ea1-a16c-2a96ad046b26/export"/>
    <published>2026-07-01T02:34:31.431273+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e6943163-162d-4848-8766-61dc04cc2bdd/export</id>
    <title>e6943163-162d-4848-8766-61dc04cc2bdd</title>
    <updated>2026-07-05T10:53:08.559652+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e6943163-162d-4848-8766-61dc04cc2bdd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46215", "type": "seen", "source": "https://bsky.app/profile/lobsters-feed.bsky.social/post/3mph3j2di5p2j", "content": "Unprivileged root via a use-after-free in DRM GEM change_handle (CVE-2026-46215) https://lobste.rs/s/hh5yyq #security #linux ", "creation_timestamp": "2026-06-29T18:10:36.582352Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e6943163-162d-4848-8766-61dc04cc2bdd/export"/>
    <published>2026-06-29T18:10:36.582352+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e1df7bb2-87ec-44c2-b902-c8f473a8ab3a/export</id>
    <title>e1df7bb2-87ec-44c2-b902-c8f473a8ab3a</title>
    <updated>2026-07-05T10:53:08.560015+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e1df7bb2-87ec-44c2-b902-c8f473a8ab3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46215", "type": "seen", "source": "https://bsky.app/profile/news.karthihegde.dev/post/3mph3gvbl7t2i", "content": "Unprivileged root via a use-after-free in DRM GEM change_handle (CVE-2026-46215)\nDiscussion | lobsters | Author: fro", "creation_timestamp": "2026-06-29T18:08:50.914035Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e1df7bb2-87ec-44c2-b902-c8f473a8ab3a/export"/>
    <published>2026-06-29T18:08:50.914035+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/79c5b41f-4199-4bc6-a42e-d09936d8efb2/export</id>
    <title>79c5b41f-4199-4bc6-a42e-d09936d8efb2</title>
    <updated>2026-07-05T10:53:08.560175+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "79c5b41f-4199-4bc6-a42e-d09936d8efb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46215", "type": "seen", "source": "https://bsky.app/profile/linkersec.bsky.social/post/3mpgjlgty6s2o", "content": "Unprivileged root via a use-after-free in DRM GEM change_handle (CVE-2026-46215)\n\nStan Shaw published an article about exploiting UAF in a DRM GEM ioctl. The researcher reallocated freed memory as a pipe_buffer array to perform the Dirty Pipe attack.\n\ncyberstan.co.uk/drm-lpe-linux/", "creation_timestamp": "2026-06-29T12:49:24.670789Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/79c5b41f-4199-4bc6-a42e-d09936d8efb2/export"/>
    <published>2026-06-29T12:49:24.670789+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/a444859d-882a-4c6b-9688-d6f7b697d1ad/export</id>
    <title>a444859d-882a-4c6b-9688-d6f7b697d1ad</title>
    <updated>2026-07-05T10:53:08.560290+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "a444859d-882a-4c6b-9688-d6f7b697d1ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46215", "type": "seen", "source": "https://bsky.app/profile/linkersec.bsky.social/post/3mpgjkues7s2o", "content": "Unprivileged root via a use-after-free in DRM GEM change_handle (CVE-2026-46215)\n\nStan Shaw published an article about exploiting UAF in a DRM GEM ioctl. The researcher reallocated freed memory as a pipe_buffer array to perform the Dirty Pipe attack.\n\ncyberstan.co.uk/drm-lpe-linux/", "creation_timestamp": "2026-06-29T12:49:04.085495Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/a444859d-882a-4c6b-9688-d6f7b697d1ad/export"/>
    <published>2026-06-29T12:49:04.085495+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/678392ec-0113-4bb5-b646-94b79ceca770/export</id>
    <title>678392ec-0113-4bb5-b646-94b79ceca770</title>
    <updated>2026-07-05T10:53:08.560398+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cve.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "678392ec-0113-4bb5-b646-94b79ceca770", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-4621", "type": "seen", "source": "https://jvn.jp/en/jp/JVN89339669/", "content": "", "creation_timestamp": "2026-04-02T20:00:00.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/678392ec-0113-4bb5-b646-94b79ceca770/export"/>
    <published>2026-04-02T20:00:00+00:00</published>
  </entry>
</feed>
