2nd Gen AMD EPYC™ Security Vulnerabilities
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:4071-1)
The remote host is missing an update for...
7.3AI Score
0.001EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:4058-1)
The remote host is missing an update for...
7.3AI Score
0.001EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:0134-1)
The remote host is missing an update for...
7.6AI Score
0.002EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:0147-1)
The remote host is missing an update for...
7.4AI Score
0.002EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:3172-1)
The remote host is missing an update for...
7.5AI Score
0.001EPSS
openSUSE: Security Advisory for dwarves and elfutils (SUSE-SU-2022:2614-2)
The remote host is missing an update for...
6.9AI Score
0.01EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:0469-1)
The remote host is missing an update for...
7.3AI Score
0.002EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:4072-2)
The remote host is missing an update for...
7.3AI Score
0.001EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:3683-1)
The remote host is missing an update for...
7.1AI Score
0.001EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:4378-1)
The remote host is missing an update for...
7.9AI Score
0.017EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:0433-1)
The remote host is missing an update for...
7.4AI Score
0.002EPSS
openSUSE: Security Advisory for vlc (openSUSE-SU-2023:0366-1)
The remote host is missing an update for...
9.6AI Score
0.296EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:0152-1)
The remote host is missing an update for...
7.5AI Score
0.002EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:3313-1)
The remote host is missing an update for...
7.7AI Score
0.008EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:3171-1)
The remote host is missing an update for...
7.5AI Score
0.001EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:3600-1)
The remote host is missing an update for...
7.1AI Score
0.001EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:3682-1)
The remote host is missing an update for...
7.1AI Score
0.001EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:4072-1)
The remote host is missing an update for...
7.3AI Score
0.001EPSS
openSUSE: Security Advisory for kernel (SUSE-SU-2023:3360-1)
The remote host is missing an update for...
7.3AI Score
0.0004EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:4375-1)
The remote host is missing an update for...
7.9AI Score
0.017EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:3971-1)
The remote host is missing an update for...
7.1AI Score
0.001EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:3311-1)
The remote host is missing an update for...
7.6AI Score
0.008EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:3988-1)
The remote host is missing an update for...
7.3AI Score
0.001EPSS
openSUSE: Security Advisory for vlc (openSUSE-SU-2023:0365-1)
The remote host is missing an update for...
10AI Score
0.296EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:2892-1)
The remote host is missing an update for...
7.3AI Score
0.001EPSS
openSUSE: Security Advisory for xen (SUSE-SU-2023:3831-1)
The remote host is missing an update for...
7.2AI Score
0.001EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:0515-1)
The remote host is missing an update for...
7.3AI Score
0.002EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2023:4730-1)
The remote host is missing an update for...
7.2AI Score
0.001EPSS
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:0156-1)
The remote host is missing an update for...
7.3AI Score
0.002EPSS
In the Linux kernel, the following vulnerability has been resolved: btrfs: scrub: avoid use-after-free when chunk length is not 64K aligned [BUG] There is a bug report that, on a ext4-converted btrfs, scrub leads to various problems, including: - "unable to find chunk map" errors BTRFS info...
6.4AI Score
0.0004EPSS
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Wake DMCUB before sending a command [Why] We can hang in place trying to send commands when the DMCUB isn't powered on. [How] For functions that execute within a DC context or DC lock we can wrap the direct calls.....
7.2AI Score
0.0004EPSS
conmon [2.1.3-8] - address CVE-2023-39326 [2.1.3-7] - Resolve CVE-2023-39325 [2.1.3-6] - Add ol8_baseos_latest, and ol9_baseos_latest, to Jenkinsfile [2.1.3-5] - Add systemd-devel as build requirement [2.1.3-4] - Add support ARM build [2.1.3.3] - Add OL9 support [2.1.3.2] - Update inline with...
7AI Score
0.001EPSS
CVE-2024-26616 btrfs: scrub: avoid use-after-free when chunk length is not 64K aligned
In the Linux kernel, the following vulnerability has been resolved: btrfs: scrub: avoid use-after-free when chunk length is not 64K aligned [BUG] There is a bug report that, on a ext4-converted btrfs, scrub leads to various problems, including: "unable to find chunk map" errors BTRFS info...
6.2AI Score
0.0004EPSS
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Wake DMCUB before sending a command [Why] We can hang in place trying to send commands when the DMCUB isn't powered on. [How] For functions that execute within a DC context or DC lock we can wrap the direct...
7.3AI Score
0.0004EPSS
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Wake DMCUB before sending a command [Why] We can hang in place trying to send commands when the DMCUB isn't powered on. [How] For functions that execute within a DC context or DC lock we can wrap the direct calls.....
8AI Score
0.0004EPSS
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Wake DMCUB before sending a command [Why] We can hang in place trying to send commands when the DMCUB isn't powered on. [How] For functions that execute within a DC context or DC lock we can wrap the direct calls.....
7.7AI Score
0.0004EPSS
CVE-2023-52485 drm/amd/display: Wake DMCUB before sending a command
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Wake DMCUB before sending a command [Why] We can hang in place trying to send commands when the DMCUB isn't powered on. [How] For functions that execute within a DC context or DC lock we can wrap the direct calls.....
7AI Score
0.0004EPSS
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Free local data after use Fixes the following memory leak in dc_link_construct(): unreferenced object 0xffffa03e81471400 (size 1024): comm "amd_module_load", pid 2486, jiffies 4294946026 (age 10.544s) hex dump...
6.3AI Score
0.0004EPSS
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix off by one in hdmi_14_process_transaction() The hdcp_i2c_offsets[] array did not have an entry for HDCP_MESSAGE_ID_WRITE_CONTENT_STREAM_TYPE so it led to an off by one read overflow. I added an entry and...
6.5AI Score
0.0004EPSS
In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Remove WO permissions on second-level paging entries When the first level page table is used for IOVA translation, it only supports Read-Only and Read-Write permissions. The Write-Only permission is not supported as...
6.5AI Score
0.0004EPSS
Rack is a modular Ruby web server interface. Carefully crafted content type headers can cause Rack’s media type parser to take much longer than expected, leading to a possible denial of service vulnerability (ReDos 2nd degree polynomial). This vulnerability is patched in 3.0.9.1 and...
6.9AI Score
0.0004EPSS
Rack is a modular Ruby web server interface. Carefully crafted content type headers can cause Rack’s media type parser to take much longer than expected, leading to a possible denial of service vulnerability (ReDos 2nd degree polynomial). This vulnerability is patched in 3.0.9.1 and...
5.3AI Score
0.0004EPSS
Rack is a modular Ruby web server interface. Carefully crafted content type headers can cause Rack’s media type parser to take much longer than expected, leading to a possible denial of service vulnerability (ReDos 2nd degree polynomial). This vulnerability is patched in 3.0.9.1 and...
5.3CVSS
6.9AI Score
0.0004EPSS
Rack is a modular Ruby web server interface. Carefully crafted content type headers can cause Rack’s media type parser to take much longer than expected, leading to a possible denial of service vulnerability (ReDos 2nd degree polynomial). This vulnerability is patched in 3.0.9.1 and...
5.3CVSS
5.1AI Score
0.0004EPSS
CentOS 9 : kernel-5.14.0-347.el9
The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the kernel-5.14.0-347.el9 build changelog. A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose() handler could happen if removing device...
9.3AI Score
Rack is a modular Ruby web server interface. Carefully crafted content type headers can cause Rack’s media type parser to take much longer than expected, leading to a possible denial of service vulnerability (ReDos 2nd degree polynomial). This vulnerability is patched in 3.0.9.1 and...
5.1AI Score
0.0004EPSS
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Wake DMCUB before sending a command [Why] We can hang in place trying to send commands when the DMCUB isn't powered on. [How] For functions that execute within a DC context or DC lock we can wrap the direct calls.....
7.3AI Score
0.0004EPSS
CVE-2024-25126 Rack ReDos in content type parsing (2nd degree polynomial)
Rack is a modular Ruby web server interface. Carefully crafted content type headers can cause Rack’s media type parser to take much longer than expected, leading to a possible denial of service vulnerability (ReDos 2nd degree polynomial). This vulnerability is patched in 3.0.9.1 and...
6AI Score
0.0004EPSS
Rack vulnerable to ReDoS in content type parsing (2nd degree polynomial)
Summary ruby module Rack class MediaType SPLIT_PATTERN = %r{\s*[;,]\s*} The above regexp is subject to ReDos. 50K blank characters as a prefix to the header will take over 10s to split. PoC A simple HTTP request with lots of blank characters in the content-type header: ruby...
5.1AI Score
0.0004EPSS
Rack vulnerable to ReDoS in content type parsing (2nd degree polynomial)
Summary ruby module Rack class MediaType SPLIT_PATTERN = %r{\s*[;,]\s*} The above regexp is subject to ReDos. 50K blank characters as a prefix to the header will take over 10s to split. PoC A simple HTTP request with lots of blank characters in the content-type header: ruby...
5.1AI Score
0.0004EPSS