Lucene search
K

2571 matches found

CNNVD
CNNVD
added 2024/07/30 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from a possible concurrent list addition issue in the btrfs module when adding block groups to retry lists and unus...

5.5CVSS6.4AI score0.00242EPSS
Exploits0References6
OSV
OSV
added 2024/07/29 4:15 p.m.2 views

UBUNTU-CVE-2024-41088

In the Linux kernel, the following vulnerability has been resolved: can: mcp251xfd: fix infinite loop when xmit fails When the mcp251xfdstartxmit function fails, the driver stops processing messages, and the interrupt routine does not return, running indefinitely even after killing the running...

5.5CVSS6.3AI score0.00227EPSS
Exploits0References17
RedHat Linux
RedHat Linux
added 2024/07/25 7:26 p.m.4 views

undertow: url-encoded request path information can be broken on ajp-listener

A vulnerability was found in Undertow, where URL-encoded request paths can be mishandled during concurrent requests on the AJP listener. This issue arises because the same buffer is used to decode the paths for multiple requests simultaneously, leading to incorrect path information being processe...

7.5CVSS5.9AI score0.01702EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2024/07/16 9:24 p.m.16 views

CVE-2022-48822

In the Linux kernel, the following vulnerability has been resolved: usb: ffs: Fix use-after-free for epfile Consider a case where ffsfuncepsdisable is called from ffsfuncdisable as part of composition switch and at the same time ffsepfilerelease get called from userspace. ffsepfilerelease will fr...

4.4CVSS7AI score0.00272EPSS
Exploits0References4
NVD
NVD
added 2024/07/16 12:15 p.m.34 views

CVE-2022-48822

In the Linux kernel, the following vulnerability has been resolved: usb: ffs: Fix use-after-free for epfile Consider a case where ffsfuncepsdisable is called from ffsfuncdisable as part of composition switch and at the same time ffsepfilerelease get called from userspace. ffsepfilerelease will fr...

7.8CVSS0.00272EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2024/07/16 12:15 p.m.20 views

CVE-2022-48822

In the Linux kernel, the following vulnerability has been resolved: usb: ffs: Fix use-after-free for epfile Consider a case where ffsfuncepsdisable is called from ffsfuncdisable as part of composition switch and at the same time ffsepfilerelease get called from userspace. ffsepfilerelease will fr...

7.8CVSS6.4AI score0.00272EPSS
Exploits0References9
Cvelist
Cvelist
added 2024/07/16 11:44 a.m.25 views

CVE-2022-48830 can: isotp: fix potential CAN frame reception race in isotp_rcv()

In the Linux kernel, the following vulnerability has been resolved: can: isotp: fix potential CAN frame reception race in isotprcv When receiving a CAN frame the current code logic does not consider concurrently receiving processes which do not show up in real world usage. Ziyang Xuan writes: The...

0.00199EPSS
Exploits0References4
CVE
CVE
added 2024/07/16 11:44 a.m.86 views

CVE-2022-48822

CVE-2022-48822 — Linux kernel usb f_fs use-after-free (epfile) Technical summary: A race between ffs_func_eps_disable (which uses a local copy of epfiles) and ffs_epfile_release can lead to use-after-free of the epfile read buffer. While ffs_epfile_release frees the buffer and destroys ffs->ep...

7.8CVSS7.9AI score0.00272EPSS
Exploits0References7Affected Software1
RedhatCVE
RedhatCVE
added 2024/07/14 12:26 p.m.17 views

CVE-2024-39507

In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix kernel crash problem in concurrent scenario When link status change, the nic driver need to notify the roce driver to handle this event, but at this time, the roce driver may uninit, then cause kernel crash. To fix...

5.5CVSS6.8AI score0.0028EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/07/13 2:37 a.m.2 views

SUSE CVE-2024-39507

In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix kernel crash problem in concurrent scenario When link status change, the nic driver need to notify the roce driver to handle this event, but at this time, the roce driver may uninit, then cause kernel crash. To fix...

4.7CVSS6.1AI score0.0028EPSS
Exploits0References16
OSV
OSV
added 2024/07/12 1:15 p.m.1 views

DEBIAN-CVE-2024-39507

In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix kernel crash problem in concurrent scenario When link status change, the nic driver need to notify the roce driver to handle this event, but at this time, the roce driver may uninit, then cause kernel crash. To fix...

5.5CVSS5.7AI score0.0028EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/07/12 1:15 p.m.4 views

CVE-2024-39500

In the Linux kernel, the following vulnerability has been resolved: sockmap: avoid race between sockmapclose and skpsockput skpsockget will return NULL if the refcount of psock has gone to 0, which will happen when the last call of skpsockput is done. However, skpsockdrop may not have finished ye...

4.7CVSS6.4AI score0.00197EPSS
Exploits0References6Affected Software1
Vulnrichment
Vulnrichment
added 2024/07/12 12:20 p.m.19 views

CVE-2024-39507 net: hns3: fix kernel crash problem in concurrent scenario

In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix kernel crash problem in concurrent scenario When link status change, the nic driver need to notify the roce driver to handle this event, but at this time, the roce driver may uninit, then cause kernel crash. To fix...

6.6AI score0.0028EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/07/12 12:20 p.m.34 views

CVE-2024-39507 net: hns3: fix kernel crash problem in concurrent scenario

In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix kernel crash problem in concurrent scenario When link status change, the nic driver need to notify the roce driver to handle this event, but at this time, the roce driver may uninit, then cause kernel crash. To fix...

0.0028EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2024/07/12 12:20 p.m.13 views

CVE-2024-39507

In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix kernel crash problem in concurrent scenario When link status change, the nic driver need to notify the roce driver to handle this event, but at this time, the roce driver may uninit, then cause kernel crash. To fix...

5.5CVSS5.7AI score0.0028EPSS
Exploits0
GithubExploit
GithubExploit
added 2024/07/11 2:17 p.m.435 views

Exploit for SQL Injection in Valvepress Automatic

Wordpress SQLI-2-RCE Exploit - This Python script exploits CVE...

9.9CVSS10AI score0.93971EPSS
Exploits16
NVD
NVD
added 2024/07/10 11:15 p.m.25 views

CVE-2024-39554

A Concurrent Execution using Shared Resource with Improper Synchronization 'Race Condition' vulnerability the Routing Protocol Daemon rpd of Juniper Networks Junos OS and Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to inject incremental routing updates when...

8.2CVSS0.00366EPSS
Exploits0References1
CVE
CVE
added 2024/07/10 10:32 p.m.55 views

CVE-2024-39554

CVE-2024-39554 affects Juniper Networks Junos OS and Junos OS Evolved when BGP multipath is enabled. The vulnerability is in the Routing Protocol Daemon (rpd) caused by a race condition from concurrent execution using shared resources during the BGP multipath incremental calculation, which can al...

8.2CVSS5.8AI score0.00366EPSS
Exploits0References1Affected Software2
RedHat Linux
RedHat Linux
added 2024/07/08 3:3 a.m.5 views

kernel: net: hns3: do not allow call hns3_nic_net_open repeatedly

A vulnerability was discovered in the Linux kernel's hns3 network driver. The hns3nicnetopen function is designed to be called only once per device instance. However, due to insufficient checks, multiple calls to this function are possible. This can lead to scenarios where hns3nicnetopen is invok...

5.5CVSS7.2AI score0.00244EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/06/26 12:24 a.m.5 views

kernel: race condition in snd_pcm_hw_free leading to use-after-free

A use-after-free flaw was found in the Linux kernel’s sound subsystem in the way a user triggers concurrent calls of PCM hwparams. The hwfree ioctls or similar race condition happens inside ALSA PCM for other ioctls. This flaw allows a local user to crash or potentially escalate their privileges ...

7CVSS7.1AI score0.00238EPSS
Exploits0References5
Rows per page
Query Builder