Lucene search
K

9099 matches found

NVD
NVD
added 2025/05/07 9:15 a.m.14 views

CVE-2025-20963

Out-of-bounds write in memory initialization in libsavsvc.so prior to SMR May-2025 Release 1 allows local attackers to write out-of-bounds memory...

7.8CVSS0.00142EPSS
Exploits0References1
CVE
CVE
added 2025/05/07 8:24 a.m.55 views

CVE-2025-20963

CVE-2025-20963 involves an out-of-bounds write during memory initialization in the library libsavsvc.so, exposing local attackers to write past the allocated memory. This vulnerability is tied to Samsung SMR May-2025 Release 1; Samsung security update disclosures reference this patch cycle as the...

7.8CVSS6.3AI score0.00142EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/07 8:24 a.m.9 views

CVE-2025-20963

Out-of-bounds write in memory initialization in libsavsvc.so prior to SMR May-2025 Release 1 allows local attackers to write out-of-bounds memory...

6.6CVSS6.4AI score0.00142EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/07 8:24 a.m.17 views

CVE-2025-20963

Out-of-bounds write in memory initialization in libsavsvc.so prior to SMR May-2025 Release 1 allows local attackers to write out-of-bounds memory...

6.6CVSS0.00142EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/05/07 2:20 a.m.2 views

SUSE CVE-2022-49819

In the Linux kernel, the following vulnerability has been resolved: octeonep: fix potential memory leak in octepdevicesetup When occur unsupporteddev and mbox init errors, it did not free oct-conf and iounmap oct-mmioi.hwaddr. That would trigger memory leak problem. Add kfree for oct-conf and...

5.5CVSS6.5AI score0.0014EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/05/07 2:19 a.m.2 views

SUSE CVE-2022-49884

In the Linux kernel, the following vulnerability has been resolved: KVM: Initialize gfntopfncache locks in dedicated helper Move the gfntopfncache lock initialization to another helper and call the new helper during VM/vCPU creation. There are race conditions possible due to kvmgfntopfncacheinit'...

4.7CVSS6.3AI score0.00098EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/05/07 12:0 a.m.4 views

SAMSUNG SMR 安全漏洞

SAMSUNG SMR is a system patch package from the South Korean company Samsung SAMSUNG. It provides patches for Samsung cell phone applications. A security vulnerability exists in SAMSUNG SMR that stems from an out-of-bounds write during memory initialization, which could lead to a local attacker...

7.8CVSS6.4AI score0.00142EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2025/05/07 12:0 a.m.3 views

Ensure That the su Command Inherits the User Environment Variables Without Escalating Privileges

The su command enables a common user to have the permissions of the superuser or other users. It is often used for switching the user from a common user to the root user. The su command provides a convenient way for users to change their identities. However, if the su command is run without...

7.3AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/05/06 12:0 a.m.9 views

CBL Mariner 2.0 Security Update: kernel (CVE-2025-22097)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-22097 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Fix use after free and double...

7.8CVSS5.9AI score0.00171EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/05/06 12:0 a.m.8 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-21920)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-21920 advisory. - In the Linux kernel, the following vulnerability has been resolved: vlan: enforce underlying device type...

7.1CVSS6.1AI score0.00188EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/05/05 7:0 a.m.7 views

drm/vkms: Fix use after free and double free on init error

...

7.8CVSS7.4AI score0.00171EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/05/05 7:0 a.m.3 views

clk: samsung: Fix UBSAN panic in samsung_clk_init()

...

5.5CVSS7.4AI score0.00214EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/04 5:32 p.m.23 views

CVE-2023-53088

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix UaF in listener shutdown As reported by Christoph after having refactored the passive socket initialization, the mptcp listener shutdown path is prone to an UaF issue. BUG: KASAN: use-after-free in...

5.5CVSS6.7AI score0.00161EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/04 5:22 p.m.14 views

CVE-2023-53057

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: HCI: Fix global-out-of-bounds To loop a variable-length array, hciinitstagesyncstage considers that stagei is valid as long as stagei-1.func is valid. Thus, the last element of stage.func should be intentionally invali...

5.5CVSS6.5AI score0.00161EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/04 4:35 p.m.15 views

CVE-2023-53119

In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: initialize struct pn533outarg properly struct pn533outarg used as a temporary context for outurb is not initialized properly. Its uninitialized 'phy' field can be dereferenced in error cases inside pn533outcomplete...

5.5CVSS6.9AI score0.0016EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/05/03 2:53 a.m.1 views

SUSE CVE-2022-49830

In the Linux kernel, the following vulnerability has been resolved: drm/drv: Fix potential memory leak in drmdevinit drmdevinit will add drmdevinitrelease as a callback. When drmmaddaction failed, the release function won't be added. As the result, the ref cnt added by deviceget in drmdevinit won...

3.3CVSS6.2AI score0.00176EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2025/05/03 2:53 a.m.2 views

SUSE CVE-2022-49930

In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix NULL pointer problem in freemrinit Lock grab occurs in a concurrent scenario, resulting in stepping on a NULL pointer. It should be init mutexinit first before use the lock. Unable to handle kernel NULL pointer...

5.5CVSS6.4AI score0.0013EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/05/03 2:53 a.m.2 views

SUSE CVE-2022-49932

In the Linux kernel, the following vulnerability has been resolved: KVM: VMX: Do all initialization before exposing /dev/kvm to userspace Call kvminit only after all setup is complete, as kvminit exposes /dev/kvm to userspace and thus allows userspace to create VMs and call other ioctls. E.g. KVM...

5.5CVSS6.4AI score0.00169EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/05/03 2:51 a.m.1 views

SUSE CVE-2023-53049

In the Linux kernel, the following vulnerability has been resolved: usb: ucsi: Fix NULL pointer deref in ucsiconnectorchange When ucsiinit fails, ucsi-connector is NULL, yet in case of ucsiacpi we may still get events which cause the ucsacpi code to call ucsiconnectorchange, which then derefs the...

5.5CVSS6.4AI score0.00159EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2025/05/03 2:51 a.m.3 views

SUSE CVE-2023-53065

In the Linux kernel, the following vulnerability has been resolved: perf/core: Fix perfoutputbegin parameter is incorrectly invoked in perfeventbpfoutput syzkaller reportes a KASAN issue with stack-out-of-bounds. The call trace is as follows: dumpstack+0x9c/0xd3...

5.5CVSS6.3AI score0.00168EPSS
Exploits0References9
Rows per page
Query Builder