Lucene search
K

2566 matches found

RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.4 views

kernel: memory leak in ipv6_renew_options()

A memory leak flaw was found in the Linux kernel’s IPv6 functionality in how a user triggers the setsockopt of the IPV6ADDRFORM and IPV6DSTOPTS type. This flaw allows a user to crash the system if the setsockopt function is being called simultaneously with the IPV6ADDRFORM type and other processe...

5.5CVSS6.6AI score0.00733EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.4 views

kernel: dm integrity: Fix UAF in dm_integrity_dtr()

A use-after-free vulnerability was found in the Linux kernel's device mapper integrity subsystem. When dmresume and dmdestroy execute concurrently, a timer may fire and access freed memory because dmintegritydtr did not properly cancel the timer before freeing resources. The fix adds an additiona...

5.8AI score0.00176EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.9 views

kernel: drm/i915/reset: Fix error_state_read ptr + offset use

In the Linux kernel, the following vulnerability has been resolved: drm/i915/reset: Fix errorstateread ptr + offset use Fix our pointer offset usage in errorstateread when there is no i915gpucoredump but buf offset is non-zero. This fixes a kernel page fault can happen when multiple tests are...

5.5CVSS6.3AI score0.00259EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.9 views

kernel: race condition in xfrm_probe_algs can lead to OOB read/write

A race condition was found in the Linux kernel's IP framework for transforming packets XFRM subsystem when multiple calls to xfrmprobealgs occurred simultaneously. This flaw could allow a local attacker to potentially trigger an out-of-bounds write or leak kernel heap memory by performing an...

7CVSS6.6AI score0.002EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.2 views

kernel: dm cache: Fix UAF in destroy()

In the Linux kernel, the following vulnerability has been resolved: dm cache: Fix UAF in destroy Dmcache also has the same UAF problem when dmresume and dmdestroy are concurrent. Therefore, cancelling timer again in destroy...

7.8CVSS6.7AI score0.00157EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.2 views

kernel: dm thin: Fix UAF in run_timer_softirq()

In the Linux kernel, the following vulnerability has been resolved: dm thin: Fix UAF in runtimersoftirq When dmresume and dmdestroy are concurrent, it will lead to UAF, as follows: BUG: KASAN: use-after-free in runtimers+0x173/0x710 Write of size 8 at addr ffff88816d9490f0 by task swapper/0/0 Cal...

6.6AI score0.00229EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/05/09 12:0 a.m.16 views

PT-2025-26012 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved, related to the block layer and the blk-rq-qos framework. The issue occurs when the io.cost.qos file is written by two CPUs...

8.8CVSS7.3AI score0.12746EPSS
Exploits29References926
Positive Technologies
Positive Technologies
added 2023/05/09 12:0 a.m.10 views

PT-2025-8531 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A data-race issue exists in the Linux kernel related to sysctl tcp mtu probing. This issue occurs because the value of sysctl tcp mtu probing can be changed concurrently while it is...

8.8CVSS6.6AI score0.03763EPSS
Exploits13References286
Positive Technologies
Positive Technologies
added 2023/05/09 12:0 a.m.8 views

PT-2025-8519 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A data-race issue exists around sysctl tcp fastopen in the Linux kernel. The value of sysctl tcp fastopen can be changed concurrently while it is being read, which requires the use of...

8.8CVSS6.6AI score0.03763EPSS
Exploits13References286
Positive Technologies
Positive Technologies
added 2023/05/09 12:0 a.m.6 views

PT-2025-8513 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A data-race issue exists around sysctl fib multipath use neigh. The value of sysctl fib multipath use neigh can be changed concurrently while it is being read, which requires the use o...

8.8CVSS6.8AI score0.03763EPSS
Exploits13References285
Positive Technologies
Positive Technologies
added 2023/05/09 12:0 a.m.5 views

PT-2025-8532 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A data-race issue exists in the Linux kernel related to the sysctl tcp l3mdev accept variable. This issue occurs because the variable can be changed concurrently while being read, whic...

8.8CVSS6.6AI score0.03763EPSS
Exploits13References284
OSV
OSV
added 2023/05/08 9:15 p.m.2 views

UBUNTU-CVE-2023-31141

OpenSearch is open-source software suite for search, analytics, and observability applications. Prior to versions 1.3.10 and 2.7.0, there is an issue with the implementation of fine-grained access control rules document-level security, field-level security and field masking where they are not...

5.9CVSS5.8AI score0.0046EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/05/02 12:0 a.m.35 views

Siemens SCALANCE XCM332 Concurrent Execution Using Shared Resource with Improper Synchronization (CVE-2022-1729)

A race condition was found the Linux kernel in perfeventopen which can be exploited by an unprivileged user to gain root privileges. The bug allows to build several exploit primitives such as kernel address information leak, arbitrary execution, etc. This plugin only works with Tenable.ot. Please...

7CVSS6.7AI score0.0031EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2023/05/02 12:0 a.m.24 views

Siemens TIM 4R-IE Devices Concurrent Execution Using Shared Resource with Improper Synchronization (CVE-2016-4954)

The processpacket function in ntpproto.c in ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service peer- variable modification by sending spoofed packets from many source IP addresses in a certain scenario, as demonstrated by triggering an incorrect leap indication...

7.5CVSS6.3AI score0.13314EPSS
Exploits0References18
Positive Technologies
Positive Technologies
added 2023/04/24 12:0 a.m.6 views

PT-2025-53177

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the qedi driver within the Linux kernel. The issue occurs in the qedi remove function, potentially triggered by concurrent execution of qedi recovery...

7.8CVSS6.4AI score0.00465EPSS
Exploits2References906
OSV
OSV
added 2023/04/14 1:15 a.m.2 views

DEBIAN-CVE-2023-29132

Irssi 1.3.x and 1.4.x before 1.4.4 has a use-after-free because of use of a stale special collector reference. This occurs when printing of a non-formatted line is concurrent with printing of a formatted line...

5.3CVSS6.1AI score0.00808EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2023/04/14 12:0 a.m.24 views

CVE-2023-29132

Irssi 1.3.x and 1.4.x before 1.4.4 has a use-after-free because of use of a stale special collector reference. This occurs when printing of a non-formatted line is concurrent with printing of a formatted line...

5.3CVSS5.6AI score0.00808EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/04/11 12:0 a.m.30 views

Siemens SCALANCE W1750D Concurrent Execution Using Shared Resource with Improper Synchronization (CVE-2021-25158)

A remote arbitrary file read vulnerability was discovered in some Aruba Instant Access Point IAP products in versions: Aruba Instant 6.5.x: 6.5.4.18 and below; Aruba Instant 8.3.x: 8.3.0.14 and below; Aruba Instant 8.5.x: 8.5.0.11 and below; Aruba Instant 8.6.x: 8.6.0.7 and below; Aruba Instant...

5.9CVSS7AI score0.3058EPSS
Exploits3References5
OSV
OSV
added 2023/03/31 12:0 p.m.10 views

RUSTSEC-2023-0031 Initialisation failure in `Once::try_call_once` can lead to undefined behaviour for other initialisers

Once::trycallonce is unsound if invoked more than once concurrently and any call fails to initialise successfully...

7.1AI score
Exploits0References3
RustSec
RustSec
added 2023/03/31 12:0 p.m.16 views

Initialisation failure in `Once::try_call_once` can lead to undefined behaviour for other initialisers

Once::trycallonce is unsound if invoked more than once concurrently and any call fails to initialise successfully...

6.7AI score
Exploits0Affected Software1
Rows per page
Query Builder