Lucene search
K

170 matches found

OSV
OSV
added 2025/09/11 5:15 p.m.4 views

UBUNTU-CVE-2025-39777

In the Linux kernel, the following vulnerability has been resolved: crypto: acomp - Fix CFI failure due to type punning To avoid a crash when control flow integrity is enabled, make the workspace "stream" free function use a consistent type, and call it through a function pointer that has that sa...

5.5CVSS5.7AI score0.00119EPSS
Exploits0References5
CVE
CVE
added 2025/09/11 4:56 p.m.18 views

CVE-2025-39777

The CVE-2025-39777 entry concerns the Linux kernel crypto: acomp component, where a control flow integrity (CFI) failure was caused by type punning. The issue could lead to a crash when CFG is enabled. The documented fix uses a consistent type for the workspace free function and ensures it is inv...

5.5CVSS6.1AI score0.00119EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/09/11 4:56 p.m.9 views

CVE-2025-39777 crypto: acomp - Fix CFI failure due to type punning

In the Linux kernel, the following vulnerability has been resolved: crypto: acomp - Fix CFI failure due to type punning To avoid a crash when control flow integrity is enabled, make the workspace "stream" free function use a consistent type, and call it through a function pointer that has that sa...

0.00119EPSS
Exploits0References2
OSV
OSV
added 2025/09/11 4:56 p.m.6 views

CVE-2025-39777 crypto: acomp - Fix CFI failure due to type punning

In the Linux kernel, the following vulnerability has been resolved: crypto: acomp - Fix CFI failure due to type punning To avoid a crash when control flow integrity is enabled, make the workspace "stream" free function use a consistent type, and call it through a function pointer that has that sa...

5.5CVSS6.2AI score0.00119EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/09/11 12:0 a.m.5 views

PT-2025-37235

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains an issue related to control flow integrity CFI. A type punning issue within the acomp component could lead to a crash when CFI is enabled. The resolution...

6.1AI score0.00119EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/09/11 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an improper type conversion, which could lead to a control flow integrity failure...

5.5CVSS6.1AI score0.00119EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2025-38033

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - x86/Kconfig: make CFIAUTODEFAULT depend on !RUST or Rust = 1.88 Calling core::fmt::write from rust code while FineIBT is enabled results in a kernel panic:...

5.5CVSS6.9AI score0.00157EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/06/20 9:23 p.m.7 views

CVE-2025-38033

In the Linux kernel, the following vulnerability has been resolved: x86/Kconfig: make CFIAUTODEFAULT depend on !RUST or Rust = 1.88 Calling core::fmt::write from rust code while FineIBT is enabled results in a kernel panic: 4614.199779 kernel BUG at arch/x86/kernel/cet.c:132! 4614.205343 Oops:...

5.5CVSS7.2AI score0.00157EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/06/19 3:15 a.m.6 views

SUSE CVE-2025-38033

In the Linux kernel, the following vulnerability has been resolved: x86/Kconfig: make CFIAUTODEFAULT depend on !RUST or Rust = 1.88 Calling core::fmt::write from rust code while FineIBT is enabled results in a kernel panic: 4614.199779 kernel BUG at arch/x86/kernel/cet.c:132! 4614.205343 Oops:...

5.5CVSS6.6AI score0.00157EPSS
Exploits0References3
OSV
OSV
added 2025/06/18 10:15 a.m.3 views

UBUNTU-CVE-2025-38033

In the Linux kernel, the following vulnerability has been resolved: x86/Kconfig: make CFIAUTODEFAULT depend on !RUST or Rust = 1.88 Calling core::fmt::write from rust code while FineIBT is enabled results in a kernel panic: 4614.199779 kernel BUG at arch/x86/kernel/cet.c:132! 4614.205343 Oops:...

5.5CVSS6.2AI score0.00157EPSS
Exploits0References13
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.7 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: x86/Kconfig: make CFIAUTODEFAULT dependent on !RUST or Rust = 1.88 Calling core::fmt::write from Rust code while FineIBT is enabled results in a kernel panic: 4614.199779 Kernel BUG at arch/x86/kernel/cet.c:132! 4614.205343...

5.5CVSS6.5AI score0.00157EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 10:41 a.m.7 views

CVE-2024-47813

Wasmtime is an open source runtime for WebAssembly. Under certain concurrent event orderings, a wasmtime::Engine's internal type registry was susceptible to double-unregistration bugs due to a race condition, leading to panics and potentially type registry corruption. That registry corruption...

2.9CVSS3.8AI score0.00152EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/04/30 12:0 a.m.7 views

The vulnerability of Xen hypervisors relates to the incorrect sequence of processor instructions, allowing attackers to gain unauthorized access to protected information.

The vulnerability of Xen hypervisors is related to an incorrect sequence of processor instructions, due to the absence of the ENDBR instruction and a prologue/eepilog for CFI schemes based on hash. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access ...

5.7CVSS6.7AI score0.00304EPSS
Exploits0References12Affected Software7
OSV
OSV
added 2025/02/26 7:1 a.m.2 views

DEBIAN-CVE-2022-49709

In the Linux kernel, the following vulnerability has been resolved: cfi: Fix cfislowpathdiag RCU usage with cpuidle RCUNONIDLE usage during cfislowpathdiag can result in an invalid RCU state in the cpuidle code path: WARNING: CPU: 1 PID: 0 at kernel/rcu/tree.c:613 rcueqsenter+0xe4/0x138 ... Call...

5.5CVSS5.4AI score0.00243EPSS
Exploits0References1
OSV
OSV
added 2025/02/26 7:1 a.m.4 views

UBUNTU-CVE-2022-49709

In the Linux kernel, the following vulnerability has been resolved: cfi: Fix cfislowpathdiag RCU usage with cpuidle RCUNONIDLE usage during cfislowpathdiag can result in an invalid RCU state in the cpuidle code path: WARNING: CPU: 1 PID: 0 at kernel/rcu/tree.c:613 rcueqsenter+0xe4/0x138 ... Call...

5.5CVSS5.7AI score0.00243EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from CFI not properly handling RCU state in the cpuidle path...

5.5CVSS5.1AI score0.00243EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/11/12 9:11 a.m.3 views

kernel: net: ethernet: ti: Fix return type of netcp_ndo_start_xmit()

A type confusion flaw was found in the Linux kernel's Texas Instruments NETCP Ethernet driver in the packet transmit function signature. A local user can trigger this issue on systems with kernel Control Flow Integrity enabled, where the incorrect return type of the ndostartxmit function causes C...

5.5CVSS7.2AI score0.00152EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2024/10/22 7:38 a.m.24 views

CVE-2022-48994

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: Fix function prototype mismatch in sndseqexpandvarevent With clang's kernel control flow integrity kCFI, CONFIGCFICLANG, indirect call targets are validated against the expected function pointer prototype to make sure...

5.5CVSS6.7AI score0.00235EPSS
Exploits0References4
NVD
NVD
added 2024/10/21 8:15 p.m.72 views

CVE-2022-48994

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: Fix function prototype mismatch in sndseqexpandvarevent With clang's kernel control flow integrity kCFI, CONFIGCFICLANG, indirect call targets are validated against the expected function pointer prototype to make sure...

5.5CVSS0.00235EPSS
Exploits0References8
OSV
OSV
added 2024/10/21 8:15 p.m.1 views

DEBIAN-CVE-2022-48994

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: Fix function prototype mismatch in sndseqexpandvarevent With clang's kernel control flow integrity kCFI, CONFIGCFICLANG, indirect call targets are validated against the expected function pointer prototype to make sure...

5.5CVSS5.6AI score0.00235EPSS
Exploits0References1
Rows per page
Query Builder