Lucene search
K

50 matches found

OpenVAS
OpenVAS
added 2023/09/20 12:0 a.m.17 views

Ubuntu: Security Advisory (USN-6385-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.1AI score0.16642EPSS
Exploits7References2
OSV
OSV
added 2023/07/24 4:15 p.m.6 views

CVE-2023-2860

An out-of-bounds read vulnerability was found in the SR-IPv6 implementation in the Linux kernel. The flaw exists within the processing of seg6 attributes. The issue results from the improper validation of user-supplied data, which can result in a read past the end of an allocated buffer. This fla...

4.4CVSS7.1AI score0.00353EPSS
Exploits0References3
OSV
OSV
added 2023/04/25 1:25 p.m.9 views

USN-6040-1 linux-hwe-5.15 vulnerabilities

It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-1281 It was discovered that the OverlayFS...

7.8CVSS7.1AI score0.0788EPSS
Exploits15References11
OSV
OSV
added 2023/04/11 10:55 p.m.10 views

USN-6009-1 linux-gcp vulnerabilities

It was discovered that the System V IPC implementation in the Linux kernel did not properly handle large shared memory counts. A local attacker could use this to cause a denial of service memory exhaustion. CVE-2021-3669 It was discovered that a use-after-free vulnerability existed in the SGI GRU...

7.9CVSS7AI score0.03702EPSS
Exploits5References12
OSV
OSV
added 2023/03/31 12:58 p.m.18 views

USN-5991-1 linux-gcp-4.15 vulnerabilities

It was discovered that the System V IPC implementation in the Linux kernel did not properly handle large shared memory counts. A local attacker could use this to cause a denial of service memory exhaustion. CVE-2021-3669 It was discovered that a use-after-free vulnerability existed in the SGI GRU...

7.9CVSS7AI score0.03702EPSS
Exploits5References12
OpenVAS
OpenVAS
added 2022/12/13 12:0 a.m.24 views

Ubuntu: Security Advisory (USN-5773-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.3AI score0.21314EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2022/07/14 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-2054)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.5AI score0.88106EPSS
Exploits126References4
OSV
OSV
added 2022/05/10 6:42 a.m.46 views

RLSA-2022:1975 Important: kernel-rt security and bug fix update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: fget: check that the fd still exists after getting a ref to it CVE-2021-4083 kernel: avoid cyclic entity chains due to malformed U...

7.8CVSS9.2AI score0.06846EPSS
Exploits11References38
Ubuntu
Ubuntu
added 2022/02/22 10:16 a.m.145 views

USN-5299-1: Linux kernel vulnerabilities

Mathy Vanhoef discovered that the Linux kernel’s WiFi implementation could reassemble mixed encrypted and plaintext fragments. A physically proximate attacker could possibly use this issue to inject packets or exfiltrate selected fragments. CVE-2020-26147 It was discovered that the bluetooth...

7.8CVSS8.2AI score0.07604EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2022/01/27 12:0 a.m.50 views

openSUSE 15 Security Update : kernel (openSUSE-SU-2022:0198-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0198-1 advisory. - A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain socket file handlers in the way users ca...

8.4CVSS6.9AI score0.25151EPSS
Exploits13References64
Tenable Nessus
Tenable Nessus
added 2022/01/26 12:0 a.m.70 views

openSUSE 15 Security Update : kernel (openSUSE-SU-2022:0169-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0169-1 advisory. - A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain socket file handlers in the way users ca...

8.4CVSS6.9AI score0.25151EPSS
Exploits13References63
OSV
OSV
added 2021/12/25 2:15 a.m.11 views

CVE-2021-45485

In the IPv6 implementation in the Linux kernel before 5.13.3, net/ipv6/outputcore.c has an information leak because of certain use of a hash table which, although big, doesn't properly consider that IPv6-based attackers can typically choose among many IPv6 source addresses...

7.5CVSS7.1AI score
Exploits0References5
CNNVD
CNNVD
added 2021/12/25 12:0 a.m.3 views

Linux kernel加密问题漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. The Linux kernel suffers from a security vulnerability that stems from an information leak in the net IPv6 output core.c in the IPv6 implementation of the Linux kernel prior to...

7.5CVSS6.6AI score0.03585EPSS
Exploits0References29
Positive Technologies
Positive Technologies
added 2020/06/16 12:0 a.m.3 views

PT-2020-6613 · Treck · Treck Tcp/Ip Stack

Name of the Vulnerable Software and Affected Versions: Treck TCP/IP stack versions prior to 6.0.1.66 Description: The issue is related to an Out-of-bounds Read in the IPv6 implementation of the Treck TCP/IP stack. This is due to insufficient input validation, which can allow an attacker to gain...

5.4CVSS9.6AI score0.18564EPSS
Exploits1References17
Cvelist
Cvelist
added 2020/02/20 2:16 p.m.32 views

CVE-2012-5364

The IPv6 implementation in Microsoft Windows 7 and earlier allows remote attackers to cause a denial of service via a flood of ICMPv6 Router Advertisement packets containing multiple Routing entries...

7.3AI score0.14534EPSS
Exploits0References2
Veracode
Veracode
added 2019/05/02 4:59 a.m.41 views

Sensitive Information Disclosure

The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues: A flaw was found in the way the Linux kernel's IPv6 implementation handled certain UDP packets when the UDP Fragmentation Offload UFO feature was enabled. A remot...

6.2CVSS6.9AI score0.03181EPSS
Exploits8References36Affected Software1
Veracode
Veracode
added 2019/05/02 4:56 a.m.42 views

Heap-based Out-Of-Bounds Write

The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. A flaw was found in the way IP packets with an Internet Header Length ihl of zero were processed in the skbflowdissect function in the Linux kernel. A remote attacker could use this flaw to trigger an infinit...

7.1CVSS6.9AI score0.09408EPSS
Exploits6References20Affected Software2
Ubuntu
Ubuntu
added 2016/09/19 6:41 p.m.72 views

USN-3083-2: Linux kernel (Trusty HWE) vulnerabilities

USN-3083-1 fixed vulnerabilities in the Linux kernel for Ubuntu 14.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 14.04 LTS for Ubuntu 12.04 LTS. Dmitry Vyukov discovered that the IPv6 implementation in the Linux kernel did not...

7.3CVSS6.8AI score0.00391EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2015/10/30 9:57 a.m.22 views

CVE-2014-7207

A certain Debian patch to the IPv6 implementation in the Linux kernel 3.2.x through 3.2.63 does not properly validate arguments in ipv6selectident function calls, which allows local users to cause a denial of service NULL pointer dereference and system crash by leveraging 1 tun or 2 macvtap devic...

4.9CVSS6.9AI score0.00376EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2014/11/10 12:0 a.m.27 views

CVE-2014-7207

A certain Debian patch to the IPv6 implementation in the Linux kernel 3.2.x through 3.2.63 does not properly validate arguments in ipv6selectident function calls, which allows local users to cause a denial of service NULL pointer dereference and system crash by leveraging 1 tun or 2 macvtap devic...

4.9CVSS7AI score0.00376EPSS
Exploits0References5
Rows per page
Query Builder