Lucene search

K
redosRedosROS-20240814-04
HistoryAug 14, 2024 - 12:00 a.m.

ROS-20240814-04

2024-08-1400:00:00
redos.red-soft.ru
10
linux kernel
vulnerability
memory access
resource leakage
incorrect resource locking
confidentiality
integrity
availability

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

6.8

Confidence

Low

A vulnerability in the of_xudma_dev_get() function in the dmaengine component of the Linux operating system kernel is related to a
a leakage bug in of_xudma_dev_get(). Exploitation of the vulnerability could allow an attacker to cause a denial of
denial of service

A vulnerability in the scmi_domain_reset() function in the drivers/firmware/arm_scmi/reset.c module of the drivers/firmware/arm_scmi/reset.c module of the kernel of the Linux operating system is related to a memory reference in the
Linux kernel is related to memory access outside the allocated buffer. Exploitation of the vulnerability
could allow an attacker to affect the confidentiality, integrity and availability of protected information.
protected information

Vulnerability in the ipvlan component of the Linux operating system kernel is related to out-of-range errors caused by the skb pointer.
range errors caused by the skb->mac_header pointer. Exploitation of the vulnerability could allow an attacker to
Affect the confidentiality and integrity of the system

Vulnerability of the flush_all_cpus_locked() function in the mm/slub.c module of the kernel memory management subsystem of the Linux operating system is related to the use of incorrect kernel memory in the flush_all_cpus_locked() function.
of the Linux operating system is related to the use of an incorrect queue for executing jobs.
Exploitation of the vulnerability could allow an attacker to impact the confidentiality,
integrity and availability of protected information

Vulnerability of the nf_osf_find() function in the netfilter component of the Linux operating system kernel is related to
copying an uninitialized memory location in nft_osf, which can be used to leak
obsolete kernel stack data. Exploitation of the vulnerability could allow an attacker to impact
confidentiality and integrity of the system

A vulnerability in the gpio component of the Linux operating system kernel is related to resource leakage during registration of a
chip. Exploitation of the vulnerability could allow an attacker to cause a denial of service

Vulnerability of kmalloc() function in mm/slub component of Linux kernel is related to failure due to
memory shortage. Exploitation of the vulnerability could allow an attacker to cause a denial of service

Vulnerability of context_close() function in drivers/gpu/drm/i915/gem/i915_gem_context.c module of Intel driver
8xx/9xx/G3x/G4x/HD Graphics kernel of the Linux operating system is related to incorrect resource locking.
Exploitation of the vulnerability could allow an attacker to impact confidentiality,
integrity and availability of protected information

Vulnerability of the request_threaded_irq() function in the gpiolib component of the Linux kernel is related to the following
memory re-release. Exploitation of the vulnerability could allow an attacker to cause a denial of
denial of service

Vulnerability of amu_fie_setup() function in arch/arm64/kernel/topology.c module of Linux operating system kernel is related to memory access outside of memory re-release limits.
is related to memory access outside the allocated buffer. Exploitation of the vulnerability could allow
an attacker to affect the confidentiality, integrity and availability of protected data

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64kernel-lt< 6.1.94-1UNKNOWN

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

6.8

Confidence

Low