CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3786 matches found

UbuntuCve•added 2024/05/21 4:15 p.m.•15 views

CVE-2023-52701

In the Linux kernel, the following vulnerability has been resolved: net: use a bounce buffer for copying skb-mark syzbot found arm64 builds would crash in sockrecvmark when CONFIGHARDENEDUSERCOPY=y x86 and powerpc are not detecting the issue because they define useraccessbegin. This will be handl...

7.1CVSS6AI score0.00086EPSS

Exploits0References4

Cvelist•added 2024/05/21 3:31 p.m.•27 views

CVE-2023-52796 ipvlan: add ipvlan_route_v6_outbound() helper

In the Linux kernel, the following vulnerability has been resolved: ipvlan: add ipvlanroutev6outbound helper Inspired by syzbot reports using a stack of multiple ipvlan devices. Reduce stack size needed in ipvlanprocessv6outbound by moving the flowi6 struct used for the route lookup in an non...

6.4AI score0.00012EPSS

Exploits0References8

OSV•added 2024/05/21 3:31 p.m.•25 views

CVE-2023-52796 ipvlan: add ipvlan_route_v6_outbound() helper

7.8CVSS6AI score0.00012EPSS

Exploits0References11

Vulnrichment•added 2024/05/21 3:31 p.m.•29 views

CVE-2023-52796 ipvlan: add ipvlan_route_v6_outbound() helper

6.8AI score0.00012EPSS

Exploits0References8

Debian CVE•added 2024/05/21 3:31 p.m.•20 views

CVE-2023-52796

7.8CVSS7AI score0.00012EPSS

Exploits0

Cvelist•added 2024/05/21 3:30 p.m.•18 views

CVE-2023-52772 af_unix: fix use-after-free in unix_stream_read_actor()

In the Linux kernel, the following vulnerability has been resolved: afunix: fix use-after-free in unixstreamreadactor syzbot reported the following crash 1 After releasing unix socket lock, u-oobskb can be changed by another thread. We must temporarily increase skb refcount to make sure this othe...

7.5AI score0.00026EPSS

Exploits0References5

CVE•added 2024/05/21 3:23 p.m.•88 views

CVE-2023-52742

The CVE-2023-52742 entry concerns the Linux kernel USB plusb driver. The vulnerability arises from treating a zero-length control-OUT transfer as a read instead of a write, triggering a WARNING in urb.c when usb_submit_urb is executed. The provided connected details specify the root cause as inco...

5.5CVSS6.5AI score0.00014EPSS

Exploits0References7Affected Software1

Cvelist•added 2024/05/21 3:22 p.m.•17 views

CVE-2023-52701 net: use a bounce buffer for copying skb->mark

6.6AI score0.00086EPSS

Exploits0References2

NVD•added 2024/05/21 3:15 p.m.•13 views

CVE-2021-47376

In the Linux kernel, the following vulnerability has been resolved: bpf: Add oversize check before call kvcalloc Commit 7661809d493b "mm: don't allow oversized kvmalloc calls" add the oversize check. When the allocation is larger than what kmalloc supports, the following warning triggered: WARNIN...

5.5CVSS6.5AI score0.00009EPSS

Exploits0References4

OSV•added 2024/05/21 3:15 p.m.•10 views

CVE-2021-47370

In the Linux kernel, the following vulnerability has been resolved: mptcp: ensure tx skbs always have the MPTCP ext Due to signed/unsigned comparison, the expression: info-sizegoal - skb-len 0 evaluates to true when the size goal is smaller than the skb size. That results in lack of tx cache...

5.5CVSS7.1AI score

Exploits0References2

UbuntuCve•added 2024/05/21 3:15 p.m.•19 views

CVE-2021-47419

In the Linux kernel, the following vulnerability has been resolved: net/sched: schtaprio: properly cancel timer from tapriodestroy There is a comment in qdisccreate about us not calling ops-reset in some cases. errout4: / Any broken qdiscs that would require a ops-reset here? The qdisc was never ...

5.5CVSS5.8AI score0.00028EPSS

Exploits0References6

UbuntuCve•added 2024/05/21 3:15 p.m.•14 views

CVE-2021-47395

In the Linux kernel, the following vulnerability has been resolved: mac80211: limit injected vht mcs/nss in ieee80211parsetxradiotap Limit max values for vht mcs and nss in ieee80211parsetxradiotap routine in order to fix the following warning reported by syzbot: WARNING: CPU: 0 PID: 10717 at...

5.5CVSS6.2AI score0.00012EPSS

Exploits0References9

UbuntuCve•added 2024/05/21 3:15 p.m.•18 views

CVE-2021-47230

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Immediately reset the MMU context when the SMM flag is cleared Immediately reset the MMU context when the vCPU's SMM flag is cleared so that the SMM flag in the MMU role is always synchronized with the vCPU's flag. If R...

6.6CVSS6.3AI score0.00018EPSS

Exploits0References6

CVE•added 2024/05/21 3:4 p.m.•92 views

CVE-2021-47418

CVE-2021-47418 refers to a Linux kernel vulnerability in net_sched: a NULL pointer dereference inside fifo_set_limit() that could OOPS when adjusting limits on certain qdiscs (notably pfifo_fast, which lacks a change() operation). The issue was reproduced via syzbot and the fix makes fifo_set_lim...

5.5CVSS6.5AI score0.00021EPSS

Exploits0References8Affected Software1

Vulnrichment•added 2024/05/21 3:4 p.m.•12 views

CVE-2021-47418 net_sched: fix NULL deref in fifo_set_limit()

In the Linux kernel, the following vulnerability has been resolved: netsched: fix NULL deref in fifosetlimit syzbot reported another NULL deref in fifosetlimit 1 I could repro the issue with : unshare -n tc qd add dev lo root handle 1:0 tbf limit 200000 burst 70000 rate 100Mbit tc qd replace dev ...

6.5AI score0.00021EPSS

Exploits0References8

Vulnrichment•added 2024/05/21 3:4 p.m.•16 views

CVE-2021-47419 net/sched: sch_taprio: properly cancel timer from taprio_destroy()

6.8AI score0.00028EPSS

Exploits0References4

Debian CVE•added 2024/05/21 3:4 p.m.•18 views

CVE-2021-47418

5.5CVSS6.9AI score0.00021EPSS

Exploits0

Cvelist•added 2024/05/21 3:4 p.m.•18 views

CVE-2021-47418 net_sched: fix NULL deref in fifo_set_limit()