Lucene search
K

17753 matches found

Cvelist
Cvelist
added 2025/10/01 11:42 a.m.11 views

CVE-2023-53485 fs: jfs: Fix UBSAN: array-index-out-of-bounds in dbAllocDmapLev

In the Linux kernel, the following vulnerability has been resolved: fs: jfs: Fix UBSAN: array-index-out-of-bounds in dbAllocDmapLev Syzkaller reported the following issue: UBSAN: array-index-out-of-bounds in fs/jfs/jfsdmap.c:1965:6 index -84 is out of range for type 's8341' aka 'signed char341'...

0.00173EPSS
Exploits0References8
Cvelist
Cvelist
added 2025/10/01 11:42 a.m.4 views

CVE-2023-53457 FS: JFS: Fix null-ptr-deref Read in txBegin

In the Linux kernel, the following vulnerability has been resolved: FS: JFS: Fix null-ptr-deref Read in txBegin Syzkaller reported an issue where txBegin may be called on a superblock in a read-only mounted filesystem which leads to NULL pointer deref. This could be solved by checking if the...

0.00146EPSS
Exploits0References8
CVE
CVE
added 2025/10/01 11:42 a.m.15 views

CVE-2023-53457

CVE-2023-53457 : In Linux kernel, JFS txBegin can NULL-deref when called on a read-only superblock; fix adds a read-only filesystem check before txBegin and returns an appropriate error code. Exploitation status and exact patch details beyond this description are not provided in the supplied docu...

5.5CVSS6AI score0.00146EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2025/10/01 11:42 a.m.7 views

CVE-2022-50442 fs/ntfs3: Validate buffer length while parsing index

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Validate buffer length while parsing index indxread is called when we have some NTFS directory operations that need more information from the index buffers. This adds a sanity check to make sure the returned index buffe...

0.00149EPSS
Exploits0References4
OSV
OSV
added 2025/10/01 8:17 a.m.8 views

USN-7775-3 linux-azure-5.15 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Serial ATA and Parallel ATA...

7.8CVSS6.5AI score0.01345EPSS
Exploits8References144
CVE
CVE
added 2025/10/01 8:7 a.m.24 views

CVE-2025-39927

CVE-2025-39927 is addressed in the Linux kernel via a Ceph client race fix. The issue occurred when validating r_parent before applying MDS replies, risking stale parent inode references and applying state changes to the wrong directory inode. The fix adds validation to ensure the cached parent i...

4.7CVSS5.8AI score0.001EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/10/01 8:7 a.m.2 views

CVE-2025-39924 erofs: fix invalid algorithm for encoded extents

In the Linux kernel, the following vulnerability has been resolved: erofs: fix invalid algorithm for encoded extents The current algorithm sanity checks do not properly apply to new encoded extents. Unify the algorithm check with ZEROFSCOMPRESSIONRUNTIMEMAX and ensure consistency with...

6.1AI score0.00119EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/10/01 12:0 a.m.4 views

PT-2025-40127

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.0.0-rc6 Description The Linux kernel contains a flaw in the NTFS3 implementation related to buffer length validation during index parsing. Specifically, the indx read function lacks proper bounds checking when...

7.1CVSS7.3AI score0.00149EPSS
Exploits0References32
Positive Technologies
Positive Technologies
added 2025/10/01 12:0 a.m.6 views

PT-2025-40180

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue was identified in the Linux kernel related to error handling within the ext4 dirhash function. Specifically, the function may fail when handling encrypted, casefolded file names...

6.1AI score0.00154EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/10/01 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to check for jh-btransaction i.e. remove from checkpoint, which could lead to file system corrupti...

5.9AI score0.00135EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/10/01 12:0 a.m.4 views

PT-2025-40210

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the ext4 filesystem implementation. Specifically, the ext4 get group info function previously triggered a kernel BUG when encountering an invalid...

6.2AI score0.00145EPSS
Exploits0References7
Veracode
Veracode
added 2025/09/30 11:4 a.m.8 views

Sensitive Information Disclosure

local-deep-research is vulnerable to Sensitive Information Disclosure. The vulnerability is due to insecure local storage because confidential data API keys, etc. are kept in an unencrypted SQLite database with a fixed, non-configurable location, allowing anyone with container or host filesystem...

6.9CVSS6.5AI score0.00065EPSS
Exploits0References5Affected Software1
RedHat Linux
RedHat Linux
added 2025/09/29 12:19 p.m.8 views

Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.8CVSS6.7AI score0.00172EPSS
Exploits0References5
OSV
OSV
added 2025/09/29 12:0 a.m.7 views

ALSA-2025:16919 Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: nfsd: don't ignore the return code of svcprocregister CVE-2025-22026 kernel: netsched: hfsc: Fix a UAF vulnerability in class handling CVE-2025-37797 kernel: firmware: armscpi: Ensure...

7.8CVSS6.4AI score0.00168EPSS
Exploits0References10
Amazon
Amazon
added 2025/09/29 12:0 a.m.5 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix the behavior of READ near OFFSETMAX CVE-2022-48827 In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix iasize underflow CVE-2022-48828 In the Linux kernel, the following...

7.8CVSS7AI score0.00263EPSS
Exploits0
OSV
OSV
added 2025/09/29 12:0 a.m.8 views

ALSA-2025:16920 Moderate: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: nfsd: don't ignore the return code of svcprocregister CVE-2025-22026 kernel: netsched: hfsc: Fix a UAF vulnerability in class...

7.8CVSS7.2AI score0.00168EPSS
Exploits0References10
AlmaLinux
AlmaLinux
added 2025/09/29 12:0 a.m.2 views

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: nfsd: don't ignore the return code of svcprocregister CVE-2025-22026 kernel: netsched: hfsc: Fix a UAF vulnerability in class handling CVE-2025-37797 kernel: firmware: armscpi: Ensure...

7.8CVSS7.9AI score0.00168EPSS
Exploits0References10
AlmaLinux
AlmaLinux
added 2025/09/29 12:0 a.m.4 views

Moderate: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: nfsd: don't ignore the return code of svcprocregister CVE-2025-22026 kernel: netsched: hfsc: Fix a UAF vulnerability in class...

7.8CVSS8.8AI score0.00168EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2025/09/28 12:0 a.m.2 views

PT-2025-44122

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.12.30-android16-5 Description The Linux kernel contains a use-after-free UAF issue within the f2fs merge page bio function. This flaw arises from a race condition during writeback operations, specifically when...

4.6CVSS5.5AI score0.00182EPSS
Exploits0
OSV
OSV
added 2025/09/26 7:57 a.m.8 views

USN-7775-2 linux-azure vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Serial ATA and Parallel ATA...

7.8CVSS6.5AI score0.01345EPSS
Exploits8References144
Rows per page
Query Builder