Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cloudlinuxCloudLinuxCLSA-2024:1724774331
HistoryAug 27, 2024 - 3:58 p.m.

kernel: Fix of 11 CVEs

2024-08-2715:58:54
repo.cloudlinux.com
10
kernel
cve
race conditions
use-after-free
invalid reads

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:P/I:P/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8

Confidence

Low

JSON
  • drm/vmwgfx: Fix invalid reads in fence signaled events {CVE-2024-36960}
  • af_unix: Fix garbage collector racing against connect() {CVE-2024-26923}
  • ipv6: remove max_size check inline with ipv4 {CVE-2023-52340}
  • aoe: fix the potential use-after-free problem in aoecmd_cfg_pkts {CVE-2023-6270}
  • smb: client: fix use-after-free bug in cifs_debug_data_proc_show() {CVE-2023-52752}
  • hdlc_ppp: add range checks in ppp_cp_parse_cr() {CVE-2020-25643}
  • perf/core: Fix race in the perf_mmap_close() function {CVE-2020-14351}
  • media: xirlink_cit: add missing descriptor sanity checks {CVE-2020-11668}
  • vt: selection, close sel_buffer race {CVE-2020-8648}
  • net: sched: sch_qfq: Fix UAF in qfq_dequeue() {CVE-2023-4921}
  • media: pvrusb2: fix use after free on context disconnection {CVE-2023-52445}

Related

cve 12
redhatcve 12
cvelist 12
nvd 12
debiancve 12
ubuntucve 12
vulnrichment 7
nessus 60
osv 7
cbl_mariner 6
ibm 4
prion 7
veracode 4
f5 4
redhat 8
zdi 1
cnvd 1
amazon 2
openvas 7
cloudfoundry 2
almalinux 1
photon 1
oraclelinux 1
ubuntu 4
cve
cve
CVE-2023-52752
2024-05-21 16:15:14
CVE-2024-36960
2024-06-03 08:15:09
CVE-2020-11668
2020-04-09 21:15:15
redhatcve
redhatcve
CVE-2023-52752
2024-06-12 00:27:44
CVE-2020-11668
2020-04-16 13:03:37
CVE-2020-8648
2020-02-13 12:15:08
cvelist
cvelist
CVE-2023-52752 smb: client: fix use-after-free bug in cifs_debug_data_proc_show()
2024-05-21 15:30:40
CVE-2020-11668
2020-04-09 20:13:02
CVE-2020-14351
2020-12-03 16:43:22
nvd
nvd
CVE-2023-52752
2024-05-21 16:15:14
CVE-2020-14351
2020-12-03 17:15:12
CVE-2024-36960
2024-06-03 08:15:09
debiancve
debiancve
CVE-2024-36960
2024-06-03 08:15:09
CVE-2023-52752
2024-05-21 16:15:14
CVE-2020-11668
2020-04-09 21:15:15
ubuntucve
ubuntucve
CVE-2023-52752
2024-05-21 00:00:00
CVE-2023-52340
2024-01-29 00:00:00
CVE-2020-25643
2020-10-06 00:00:00
vulnrichment
vulnrichment
CVE-2023-52752 smb: client: fix use-after-free bug in cifs_debug_data_proc_show()
2024-05-21 15:30:40
CVE-2023-52340
2024-07-05 00:00:00
CVE-2024-36960 drm/vmwgfx: Fix invalid reads in fence signaled events
2024-06-03 07:49:58
nessus
nessus
SUSE SLES12 / SLES15 Security Update : kernel (Live Patch 41 for SLE 15 SP3) (SUSE-SU-2024:1207-1)
2024-04-12 00:00:00
SUSE SLES15 Security Update : kernel (Live Patch 23 for SLE 15 SP4) (SUSE-SU-2024:1280-1)
2024-04-16 00:00:00
SUSE SLES15 Security Update : kernel (Live Patch 15 for SLE 15 SP5) (SUSE-SU-2024:2853-1)
2024-08-09 00:00:00
osv
osv
CVE-2023-52752
2024-05-21 16:15:00
CVE-2024-36960
2024-06-03 08:15:00
Vulnerability: Local privilege escalation in LTS 6.6.27, COS 105 17412.294.62 (kernelCTF)
2024-07-01 00:00:00
cbl_mariner
cbl_mariner
CVE-2020-11668 affecting package kernel 5.4.91-6
2021-04-06 23:51:14
CVE-2020-8648 affecting package kernel 5.4.91-6
2021-04-06 23:51:14
CVE-2020-25643 affecting package kernel 5.4.91-6
2021-03-03 03:44:27
ibm
ibm
Security Bulletin: Publicly disclosed vulnerability from Kernel affects IBM Netezza Host Management
2021-03-08 10:24:18
Security Bulletin: Publicly disclosed vulnerability from Kernel affects IBM Netezza Host Management
2021-02-02 08:40:27
Security Bulletin: There are multiple vulnerabilities in the Linux Kernel used in IBM Elastic Storage System
2021-05-24 14:12:12
prion
prion
Spoofing
2024-02-22 17:15:00
Code injection
2020-04-09 21:15:00
Memory corruption
2020-10-06 14:15:00
veracode
veracode
Arbitrary Code Execution
2020-12-06 02:23:07
Denial Of Service (DoS)
2020-11-05 03:09:53
Denial Of Service (DoS)
2020-11-05 03:09:59
f5
f5
K65234135 : Linux kernel vulnerability CVE-2020-25643
2021-04-02 00:00:00
K58022757 : Linux kernel vulnerability CVE-2020-11668
2020-05-08 00:00:00
K000140864: Linux kernel vulnerability CVE-2023-4921
2024-08-27 00:00:00
redhat
redhat
(RHSA-2021:0848) Moderate: kernel security update
2021-03-16 09:03:39
(RHSA-2021:3320) Important: kernel security update
2021-08-31 07:34:14
(RHSA-2021:1028) Important: kernel security and bug fix update
2021-03-30 07:24:35
zdi
zdi
Linux Kernel Performance Counters Race Condition Privilege Escalation Vulnerability
2020-11-22 00:00:00
cnvd
cnvd
Linux kernel code execution vulnerability (CNVD-2024-14767)
2024-01-05 00:00:00
amazon
amazon
Important: kernel
2024-02-28 23:54:00
Important: kernel
2020-03-23 16:25:00
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2021-1454)
2021-03-05 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:2499-1)
2021-04-19 00:00:00
Ubuntu: Security Advisory (USN-4658-2)
2020-12-14 00:00:00
cloudfoundry
cloudfoundry
USN-4345-1: Linux kernel vulnerabilities | Cloud Foundry
2020-05-14 00:00:00
USN-4660-2: Linux kernel regression | Cloud Foundry
2021-02-10 00:00:00
almalinux
almalinux
Important: kernel security, bug fix, and enhancement update
2021-02-16 07:36:08
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0230
2020-04-15 00:00:00
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2021-02-17 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2020-04-28 00:00:00
Kernel Live Patch Security Notice
2020-05-01 00:00:00
Linux kernel vulnerabilities
2020-12-03 00:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:P/I:P/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8

Confidence

Low

JSON
Related for CLSA-2024:1724774331
cve12redhatcve12cvelist12nvd12debiancve12ubuntucve12vulnrichment7nessus60osv7cbl_mariner6ibm4prion7veracode4f54redhat8zdi1cnvd1amazon2openvas7cloudfoundry2almalinux1photon1oraclelinux1ubuntu4