Lucene search
K

2057 matches found

RedHat Linux
RedHat Linux
added 2022/11/15 11:55 a.m.4 views

kernel: netfilter: nf_tables: possible module reference underflow in error path

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: possible module reference underflow in error path dst-ops is set on when nftexprclone fails, but module refcount has not been bumped yet, therefore nftexprdestroy leads to module reference underflow...

5.5CVSS6.2AI score0.00154EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/11/15 11:55 a.m.1 views

kernel: net: nexthop: fix null pointer dereference when IPv6 is not enabled

In the Linux kernel, the following vulnerability has been resolved: net: nexthop: fix null pointer dereference when IPv6 is not enabled When we try to add an IPv6 nexthop and IPv6 is not enabled !CONFIGIPV6 we'll hit a NULL pointer dereference1 in the error path of nhcreateipv6 due to calling...

5.5CVSS6.3AI score0.00207EPSS
Exploits0References5
OSV
OSV
added 2022/11/14 7:48 p.m.11 views

GSD-2022-1007559 iommu/vt-d: Clean up si_domain in the init_dmars() error path

iommu/vt-d: Clean up sidomain in the initdmars error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.298 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/11/14 7:29 p.m.12 views

GSD-2022-1007357 iommu/vt-d: Clean up si_domain in the init_dmars() error path

iommu/vt-d: Clean up sidomain in the initdmars error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.221 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/11/14 7:14 p.m.17 views

GSD-2022-1007190 iommu/vt-d: Clean up si_domain in the init_dmars() error path

iommu/vt-d: Clean up sidomain in the initdmars error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.152 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/11/14 6:57 p.m.8 views

GSD-2022-1006993 cpufreq: qcom: fix memory leak in error path

cpufreq: qcom: fix memory leak in error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.76 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/11/14 6:48 p.m.8 views

GSD-2022-1006898 slimbus: qcom-ngd: cleanup in probe error path

slimbus: qcom-ngd: cleanup in probe error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.3 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/11/14 6:34 p.m.8 views

GSD-2022-1006700 cpufreq: qcom: fix memory leak in error path

cpufreq: qcom: fix memory leak in error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.6 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/11/14 6:31 p.m.12 views

GSD-2022-1006674 iommu/vt-d: Clean up si_domain in the init_dmars() error path

iommu/vt-d: Clean up sidomain in the initdmars error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.6 by commit...

7.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2022/11/14 12:0 a.m.3 views

PT-2022-35553 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.150 Description: A memory leak was discovered in an error handling path in the nfsd component. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions...

7.2AI score
Exploits0References1
UbuntuCve
UbuntuCve
added 2022/11/01 1:15 p.m.32 views

CVE-2022-42309

Xenstore: Guests can crash xenstored Due to a bug in the fix of XSA-115 a malicious guest can cause xenstored to use a wrong pointer during node creation in an error path, resulting in a crash of xenstored or a memory corruption in xenstored causing further damage. Entering the error path can be...

8.8CVSS7.2AI score0.00272EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2022/11/01 1:15 p.m.4 views

CVE-2022-42309

Xenstore: Guests can crash xenstored Due to a bug in the fix of XSA-115 a malicious guest can cause xenstored to use a wrong pointer during node creation in an error path, resulting in a crash of xenstored or a memory corruption in xenstored causing further damage. Entering the error path can be...

8.8CVSS5.8AI score0.00272EPSS
Exploits0References12
ATTACKERKB
ATTACKERKB
added 2022/10/11 1:15 p.m.5 views

CVE-2022-33748

lock order inversion in transitive grant copy handling As part of XSA-226 a missing cleanup call was inserted on an error handling path. While doing so, locking requirements were not paid attention to. As a result two cooperating guests granting each other transitive grants can cause locks to be...

5.6CVSS5.7AI score0.00247EPSS
Exploits0References12
OSV
OSV
added 2022/10/11 1:15 p.m.5 views

UBUNTU-CVE-2022-33748

lock order inversion in transitive grant copy handling As part of XSA-226 a missing cleanup call was inserted on an error handling path. While doing so, locking requirements were not paid attention to. As a result two cooperating guests granting each other transitive grants can cause locks to be...

5.6CVSS7.2AI score0.00247EPSS
Exploits0References6
OSV
OSV
added 2022/09/30 2:15 p.m.5 views

CVE-2022-37461

Multiple cross-site scripting XSS vulnerabilities in Canon Medical Vitrea View 7.x before 7.7.6 allow remote attackers to inject arbitrary web script or HTML via 1 the input after the error subdirectory to the /vitrea-view/error/ subdirectory, or the 2 groupID, 3 offset, or 4 limit parameter to a...

6.1CVSS5.8AI score0.00923EPSS
Exploits1References3
OSV
OSV
added 2022/09/17 1:3 a.m.10 views

GSD-2022-1006175 x86/pmem: Fix platform-device leak in error path

x86/pmem: Fix platform-device leak in error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.256 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/09/17 12:51 a.m.9 views

GSD-2022-1006049 x86/pmem: Fix platform-device leak in error path

x86/pmem: Fix platform-device leak in error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.211 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/09/17 12:39 a.m.8 views

GSD-2022-1005923 ALSA: bcd2000: Fix a UAF bug on the error path of probing

ALSA: bcd2000: Fix a UAF bug on the error path of probing This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.137 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/09/17 12:37 a.m.11 views

GSD-2022-1005901 x86/pmem: Fix platform-device leak in error path

x86/pmem: Fix platform-device leak in error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.137 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/09/17 12:19 a.m.8 views

GSD-2022-1005699 ALSA: bcd2000: Fix a UAF bug on the error path of probing

ALSA: bcd2000: Fix a UAF bug on the error path of probing This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...

7.2AI score
Exploits0
Rows per page
Query Builder