CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3432 matches found

Tenable Nessus•added 2024/11/08 12:0 a.m.•14 views

RockyLinux 9 : kernel (RLSA-2024:8617)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:8617 advisory. hw: cpu: intel: Native Branch History Injection BHI CVE-2024-2201 kernel: tcp: add sanity checks to rx zerocopy CVE-2024-26640 kernel: mptcp: fix data...

7.8CVSS7.7AI score0.08555EPSS

Exploits0References44

Amazon•added 2024/10/31 12:0 a.m.•0 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: inet: inetdefrag: prevent sk release while still in use CVE-2024-26921 In the Linux kernel, the following vulnerability has been resolved: netfilter: nftsetpipapo: walk over current view on netlink dump...

9.1CVSS7AI score0.01367EPSS

Exploits1

RedHat Linux•added 2024/10/30 12:39 a.m.•0 views

kernel: filelock: fix potential use-after-free in posix_lock_inode

A use-after-free vulnerability was found in the Linux kernel in traceposixlockinode. This issue occurred when the request pointer was changed to point to a lock entry added to the inode's list. Before the tracepoint could fire, another task raced in and freed the lock...

7CVSS6.8AI score0.00258EPSS

Exploits0References5

RedHat Linux•added 2024/10/30 12:15 a.m.•2 views

kernel: filelock: fix potential use-after-free in posix_lock_inode

7CVSS6.8AI score0.00258EPSS

Exploits0References5

SUSE CVE•added 2024/10/29 4:15 a.m.•2 views

SUSE CVE-2024-50088

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix uninitialized pointer free in addinoderef The addinoderef function does not initialize the "name" struct when it is declared. If any of the following calls to "readoneinode returns NULL, dir = readoneinoderoot,...

5.5CVSS7.8AI score0.00214EPSS

Exploits0References15

OSV•added 2024/10/29 1:15 a.m.•1 views

DEBIAN-CVE-2024-50088

7.8CVSS6.2AI score0.00214EPSS

Exploits0References1

OSV•added 2024/10/29 1:15 a.m.•0 views

UBUNTU-CVE-2024-50088

7.8CVSS6.5AI score0.00214EPSS

Exploits0References21

Vulnrichment•added 2024/10/29 12:50 a.m.•1 views

CVE-2024-50088 btrfs: fix uninitialized pointer free in add_inode_ref()

7.7AI score0.00214EPSS

Exploits0References4

CNNVD•added 2024/10/29 12:0 a.m.•2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A security vulnerability exists in the Linux kernel due to an uninitialized "name" structure in the addinoderef function, which results in the release of an uninitialized pointer...

7.8CVSS7.6AI score0.00214EPSS

Exploits0References6

SUSE CVE•added 2024/10/24 3:18 a.m.•7 views

SUSE CVE-2024-49996

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix buffer overflow when parsing NFS reparse points ReparseDataLength is sum of the InodeType size and DataBuffer size. So to get DataBuffer size it is needed to subtract InodeType's size from ReparseDataLength. Function...

5.5CVSS6.8AI score0.00333EPSS

Exploits0References25

BDU FSTEC•added 2024/10/23 12:0 a.m.•3 views

The vulnerability of the posix_lock_inode() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the posixlockinode function in the fs/locks.c module of the Linux operating system is related to the reutilization of previously freed memory due to concurrent access to resources. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

7.8CVSS7.1AI score0.00258EPSS

Exploits0References36Affected Software6

RedhatCVE•added 2024/10/22 2:48 p.m.•13 views

CVE-2024-50015

An inode corruption flaw was found in the Linux kernel's Ext4 file system functionality related to how a user can interrupt a write using the daxiomaprwfunction. This flaw allows a local user to make non-fatal mistakes with Ext4, leading to a file system denial of service...

4.4CVSS5.2AI score0.00232EPSS

Exploits0References4

RedhatCVE•added 2024/10/22 2:44 p.m.•11 views

CVE-2024-49932

In the Linux kernel, the following vulnerability has been resolved: btrfs: don't readahead the relocation inode on RST On relocation we're doing readahead on the relocation inode, but if the filesystem is backed by a RAID stripe tree we can get ENOENT e.g. due to preallocated extents not being...

5.5CVSS6.7AI score0.00201EPSS

Exploits0References4

SUSE CVE•added 2024/10/22 2:50 a.m.•6 views

SUSE CVE-2024-50015

In the Linux kernel, the following vulnerability has been resolved: ext4: dax: fix overflowing extents beyond inode size when partially writing The daxiomaprw does two things in each iteration: map written blocks and copy user data to blocks. If the process is killed by userSee signal handling in...

5.5CVSS6.4AI score0.00232EPSS

Exploits0References16

OSV•added 2024/10/21 7:15 p.m.•4 views

AZL-51766 CVE-2024-50015 affecting package kernel for versions less than 5.15.173.1-1

5.5CVSS6.7AI score0.00232EPSS

Exploits0References1

OSV•added 2024/10/21 7:15 p.m.•1 views

DEBIAN-CVE-2024-50015

5.5CVSS5.6AI score0.00232EPSS

Exploits0References1

NVD•added 2024/10/21 7:15 p.m.•9 views

CVE-2024-50015

5.5CVSS0.00232EPSS

Exploits0References11

OSV•added 2024/10/21 7:15 p.m.•2 views

UBUNTU-CVE-2024-50006

In the Linux kernel, the following vulnerability has been resolved: ext4: fix idatasem unlock order in ext4indmigrate Fuzzing reports a possible deadlock in jbd2logwaitcommit. This issue is triggered when an EXT4IOCMIGRATE ioctl is set to require synchronous updates because the file descriptor is...

4.7CVSS6.1AI score0.00184EPSS

Exploits0References50

OSV•added 2024/10/21 7:15 p.m.•0 views

UBUNTU-CVE-2024-50015

5.5CVSS6.1AI score0.00232EPSS

Exploits0References32