169 matches found
USN-6821-4 linux-azure, linux-azure-fde vulnerabilities
It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2023-6270 It was discovered that the Atheros 802.11ac...
Ubuntu 22.04 LTS : Linux kernel (Azure) vulnerabilities (USN-6821-4)
The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6821-4 advisory. It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An...
USN-6831-1 linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-xilinx-zynqmp vulnerabilities
It was discovered that the HugeTLB file system component of the Linux Kernel contained a NULL pointer dereference vulnerability. A privileged attacker could possibly use this to to cause a denial of service. CVE-2024-0841 Several security issues were discovered in the Linux kernel. An attacker...
Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-6831-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6831-1 advisory. It was discovered that the HugeTLB file system component of the Linux Kernel contained a NULL pointer dereference vulnerability. A privileged...
USN-6821-3: Linux kernel (AWS) vulnerabilities
It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2023-6270 It was discovered that the Atheros 802.11ac...
Ubuntu 22.04 LTS : Linux kernel (NVIDIA) vulnerabilities (USN-6820-2)
The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6820-2 advisory. It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-1764)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
BELL-CVE-2024-0841
Bulletin has no description...
CVE-2024-0841
creationtimestamp| type| source ---|---|--- 2024-01-28 13:26:38+00:00| seen| https://t.me/ctinow/174933 2024-01-31 05:36:57+00:00| seen| https://t.me/ctinow/176480 2024-02-21 09:36:23+00:00| seen| https://t.me/ctinow/189396 2025-08-14 10:00:00+00:00| seen|...
CVE-2024-0841
A null pointer dereference flaw was found in the hugetlbfsfillsuper function in the Linux kernel hugetlbfs HugeTLB pages functionality. This issue may allow a local user to crash the system or potentially escalate their privileges on the system...
CVE-2024-0841
A null pointer dereference flaw was found in the hugetlbfsfillsuper function in the Linux kernel hugetlbfs HugeTLB pages functionality. This issue may allow a local user to crash the system or potentially escalate their privileges on the system...
CVE-2024-0841
CVE-2024-0841 : A null pointer dereference in the Linux kernel hugetlbfs (HugeTLB pages) causes local crash and could potentially enable privilege escalation via hugetlbfs_fill_super. Connected sources confirm the flaw is in the hugetlbfs path of the kernel. The available documents do not provide...
CVE-2024-0841
A null pointer dereference flaw was found in the hugetlbfsfillsuper function in the Linux kernel hugetlbfs HugeTLB pages functionality. This issue may allow a local user to crash the system or potentially escalate their privileges on the system. Mitigation Mitigation for this issue is either not...
SUSE SLES15: dpdk / dpdk-devel / dpdk-kmp-default / dpdk-thunderx / etc (SUSE-SU-2023:0841-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0841-1 advisory. - rebuild the package with the new secure boot key bsc1209188. Tenable has extracted the preceding description block directly from the SUSE...
CVE-2023-0841
creationtimestamp| type| source ---|---|--- 2023-02-18 00:55:21+00:00| seen| https://t.me/cibsecurity/58221...
DEBIAN-CVE-2023-0841
A vulnerability, which was classified as critical, has been found in GPAC 2.3-DEV-rev40-g3602a5ded. This issue affects the function mp3dmxprocess of the file filters/reframemp3.c. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The exploit has been...
CVE-2023-0841 GPAC reframe_mp3.c mp3_dmx_process heap-based overflow
A vulnerability, which was classified as critical, has been found in GPAC 2.3-DEV-rev40-g3602a5ded. This issue affects the function mp3dmxprocess of the file filters/reframemp3.c. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The exploit has been...
CVE-2023-0841
GPAC 2.3-DEV-rev40-g3602a5ded is affected by a vulnerability in the mp3_dmx_process function (filters/reframe_mp3.c) that causes a heap-based buffer overflow. The issue is exploitable remotely, with public disclosure of exploits. Affected component appears to be the mp3 demuxing path inside GPAC....
SUSE: Security Advisory (SUSE-SU-2022:0841-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2022-0841
A flaw was found in npm-lockfile, where npm-lockfile v2 did not sanitize the only parameter before invoking sensitive command execution API with the input. This issue leads to a command injection vulnerability...