Lucene search
+L

248 matches found

Cvelist
Cvelist
added 2025/11/12 10:23 a.m.11 views

CVE-2025-40126 sparc: fix accurate exception reporting in copy_{from_to}_user for UltraSPARC

In the Linux kernel, the following vulnerability has been resolved: sparc: fix accurate exception reporting in copyfromtouser for UltraSPARC The referenced commit introduced exception handlers on user-space memory references in copyfromuser and copytouser. These handlers return from the respectiv...

0.00211EPSS
Exploits0References8
CVE
CVE
added 2025/11/12 10:23 a.m.23 views

CVE-2025-40126

CVE-2025-40126 affects the Linux kernel (sparc/UltraSPARC) where a faulty exception handling path in copy_from_user and copy_to_user could affect the return value in faulting scenarios. The referenced commit added exception handlers for user-space memory references and incorrectly calculated the ...

5.9AI score0.00211EPSS
Exploits0References8
OSV
OSV
added 2025/11/12 10:23 a.m.4 views

CVE-2025-40126 sparc: fix accurate exception reporting in copy_{from_to}_user for UltraSPARC

In the Linux kernel, the following vulnerability has been resolved: sparc: fix accurate exception reporting in copyfromtouser for UltraSPARC The referenced commit introduced exception handlers on user-space memory references in copyfromuser and copytouser. These handlers return from the respectiv...

6.2AI score0.00211EPSS
Exploits0References11
Cvelist
Cvelist
added 2025/11/12 10:23 a.m.11 views

CVE-2025-40124 sparc: fix accurate exception reporting in copy_{from_to}_user for UltraSPARC III

In the Linux kernel, the following vulnerability has been resolved: sparc: fix accurate exception reporting in copyfromtouser for UltraSPARC III Anthony Yznaga tracked down that a BUGON in ext4 code with large folios enabled resulted from copyfromuser returning impossibly large values greater tha...

0.00207EPSS
Exploits0References8
OSV
OSV
added 2025/11/12 10:23 a.m.3 views

CVE-2025-40124 sparc: fix accurate exception reporting in copy_{from_to}_user for UltraSPARC III

In the Linux kernel, the following vulnerability has been resolved: sparc: fix accurate exception reporting in copyfromtouser for UltraSPARC III Anthony Yznaga tracked down that a BUGON in ext4 code with large folios enabled resulted from copyfromuser returning impossibly large values greater tha...

6.3AI score0.00207EPSS
Exploits0References11
CVE
CVE
added 2025/11/12 10:23 a.m.17 views

CVE-2025-40112

In Linux kernel (SPARC Niagara), CVE-2025-40112 is addressed by fixing the exception handling for user-space memory references in copy_from_user and copy_to_user. The referenced commits correct calculations and an epilogue in the user fault path, ensuring accurate remaining-byte accounting and pr...

5.8AI score0.00211EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2025/11/12 10:23 a.m.7 views

CVE-2025-40112

In the Linux kernel, the following vulnerability has been resolved: sparc: fix accurate exception reporting in copyfromtouser for Niagara The referenced commit introduced exception handlers on user-space memory references in copyfromuser and copytouser. These handlers return from the respective...

5.2AI score0.00211EPSS
Exploits0
Cvelist
Cvelist
added 2025/11/12 10:23 a.m.12 views

CVE-2025-40112 sparc: fix accurate exception reporting in copy_{from_to}_user for Niagara

In the Linux kernel, the following vulnerability has been resolved: sparc: fix accurate exception reporting in copyfromtouser for Niagara The referenced commit introduced exception handlers on user-space memory references in copyfromuser and copytouser. These handlers return from the respective...

0.00211EPSS
Exploits0References8
OSV
OSV
added 2025/11/12 10:23 a.m.4 views

CVE-2025-40112 sparc: fix accurate exception reporting in copy_{from_to}_user for Niagara

In the Linux kernel, the following vulnerability has been resolved: sparc: fix accurate exception reporting in copyfromtouser for Niagara The referenced commit introduced exception handlers on user-space memory references in copyfromuser and copytouser. These handlers return from the respective...

6.1AI score0.00211EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2025/11/12 12:0 a.m.5 views

PT-2025-46588

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue was identified in the Linux kernel related to exception handling within the copy from user and copy to user functions on the Niagara architecture. The problem stemmed from...

7.2AI score0.00211EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/12 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2025-40126

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sparc: fix accurate exception reporting in copyfromtouser for UltraSPARC The referenced commit introduced exception handlers on user-space memory references in...

6.2AI score0.00211EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/12 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2025-40112

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sparc: fix accurate exception reporting in copyfromtouser for Niagara The referenced commit introduced exception handlers on user-space memory references in...

6AI score0.00211EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/11/05 10:4 p.m.10 views

CVE-2025-62520

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.27.1 and below, due to insufficient access-level checks, any non-admin user with access to manageconfigcolumnspage.php can use the Copy From action to retrieve the columns configuration from a private project they have no...

5.3CVSS6.7AI score0.00241EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.6 views

MantisBT < 2.27.2 Unauthorized Disclosure (GHSA-g582-8vwr-68h2)

The version of MantisBT installed on the remote host is prior to 2.27.2. It is, therefore, affected by a vulnerability as referenced in the GHSA-g582-8vwr-68h2 advisory. - Due to insufficient access-level checks, any non-admin user having access to manageconfigcolumnspage typically project manage...

5.3CVSS5.9AI score0.00241EPSS
Exploits1References2
CVE
CVE
added 2025/11/04 9:31 p.m.21 views

CVE-2025-62520

CVE-2025-62520 concerns MantisBT prior to 2.27.2. The issue arises from insufficient access checks in manage_config_columns_page.php, allowing any non-admin user with access to that page to use Copy From to retrieve the columns configuration from a private project they should not access. Affected...

5.3CVSS6.3AI score0.00241EPSS
Exploits1References3Affected Software1
Snyk
Snyk
added 2025/11/03 8:13 p.m.2 views

Improper Authorization

Overview mantisbt/mantisbt is a mantis bug tracker. Affected versions of this package are vulnerable to Improper Authorization due to insufficient access-level checks in the manageconfigcolumnspage.php. An attacker can retrieve configuration details from private projects by using the 'Copy From'...

5.3CVSS6.9AI score0.00241EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2025/11/03 8:13 p.m.8 views

MantisBT unauthorized disclosure of private project column configuration

Impact Due to insufficient access-level checks, any non-admin user having access to manageconfigcolumnspage.php typically project managers having MANAGER role can use the Copy From action to retrieve the columns configuration from a private project they have no access to. Access to the reverse...

5.3CVSS6.9AI score0.00241EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2025/11/03 8:13 p.m.7 views

GHSA-G582-8VWR-68H2 MantisBT unauthorized disclosure of private project column configuration

Impact Due to insufficient access-level checks, any non-admin user having access to manageconfigcolumnspage.php typically project managers having MANAGER role can use the Copy From action to retrieve the columns configuration from a private project they have no access to. Access to the reverse...

5.3CVSS6.9AI score0.00241EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/11/03 12:0 a.m.5 views

PT-2025-44805

Name of the Vulnerable Software and Affected Versions MantisBT versions 2.27.1 and below Description Mantis Bug Tracker MantisBT is an open source issue tracker. Insufficient access-level checks allow a non-admin user with access to the manage config columns page.php page to retrieve the columns...

5.3CVSS6.7AI score0.00241EPSS
Exploits1References8
SUSE CVE
SUSE CVE
added 2025/10/30 12:25 a.m.4 views

SUSE CVE-2025-40051

In the Linux kernel, the following vulnerability has been resolved: vhost: vringh: Modify the return value check The return value of copyfromiter and copytoiter can't be negative, check whether the copied lengths are equal...

5.5CVSS6.5AI score0.00197EPSS
Exploits0References19
Rows per page
Query Builder