Lucene search
K

159 matches found

Oracle linux
Oracle linux
added 2025/12/01 12:0 a.m.11 views

kernel security update

5.14.0-611.11.1 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...

7.2AI score0.00194EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/11/21 12:0 a.m.4 views

PT-2025-53006

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the Integrity Measurement Architecture IMA subsystem. Specifically, the ima match rules function incorrectly handles error codes returned by ima...

4.6CVSS6.4AI score0.00189EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/11/11 9:13 a.m.7 views

kernel: ima: Fix potential memory leak in ima_init_crypto()

In the Linux kernel, the following vulnerability has been resolved: ima: Fix potential memory leak in imainitcrypto On failure to allocate the SHA1 tfm, IMA fails to initialize and exits without freeing the imaalgoarray. Add the missing kfree for imaalgoarray to avoid the potential memory leak...

5.5CVSS6.8AI score0.00252EPSS
Exploits0References5
OSV
OSV
added 2025/10/22 1:23 p.m.6 views

CVE-2022-50577 ima: Fix memory leak in __ima_inode_hash()

In the Linux kernel, the following vulnerability has been resolved: ima: Fix memory leak in imainodehash Commit f3cc6b25dcc5 "ima: always measure and audit files in policy" lets measurement or audit happen even if the file digest cannot be calculated. As a result, iint-imahash could have been...

6.4AI score0.00193EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-1999-0646

Malware in sbrugna...

10CVSS6.4AI score0.01904EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2025/08/19 12:0 a.m.4 views

kernel security update

5.14.0-570.35.1.0.16.OL9 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...

7.8CVSS6.8AI score0.00371EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/05/07 12:0 a.m.2 views

Enable IMA Measurement

Integrity Measurement Architecture IMA is an integrity protection function of the kernel. When IMA is enabled, integrity measurement is provided for important system files based on user-defined policies. The measurement results can be used for local and remote integrity attestation. If IMA is...

6.7AI score
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/02/27 3:3 a.m.1 views

SUSE CVE-2022-49627

In the Linux kernel, the following vulnerability has been resolved: ima: Fix potential memory leak in imainitcrypto On failure to allocate the SHA1 tfm, IMA fails to initialize and exits without freeing the imaalgoarray. Add the missing kfree for imaalgoarray to avoid the potential memory leak...

5.5CVSS7.8AI score0.00252EPSS
Exploits0References10
OSV
OSV
added 2025/02/26 7:1 a.m.1 views

DEBIAN-CVE-2022-49627

In the Linux kernel, the following vulnerability has been resolved: ima: Fix potential memory leak in imainitcrypto On failure to allocate the SHA1 tfm, IMA fails to initialize and exits without freeing the imaalgoarray. Add the missing kfree for imaalgoarray to avoid the potential memory leak...

5.5CVSS5.6AI score0.00252EPSS
Exploits0References1
OSV
OSV
added 2025/02/26 7:1 a.m.10 views

UBUNTU-CVE-2022-49627

In the Linux kernel, the following vulnerability has been resolved: ima: Fix potential memory leak in imainitcrypto On failure to allocate the SHA1 tfm, IMA fails to initialize and exits without freeing the imaalgoarray. Add the missing kfree for imaalgoarray to avoid the potential memory leak...

5.5CVSS6.2AI score0.00252EPSS
Exploits0References7
Fedora
Fedora
added 2025/02/08 2:18 a.m.9 views

[SECURITY] Fedora 41 Update: keyring-ima-signer-0.1.0-17.fc41

The IMA Integrity Measurement Architecture is a key component of the Linux integrity subsystem designed to ensure integrity, authenticity, and confidentiality of systems including hardware root of trusts TPM. This tool allows signing of files in userspace, inclusding options of including the...

7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.4 views

PT-2026-2900

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to kexec and the Integrity Measurement Architecture IMA. Specifically, the issue arises when the kexec target address is allocated within the CM...

9.8CVSS5.8AI score0.96267EPSS
Exploits264References63
OSV
OSV
added 2024/12/02 2:15 p.m.3 views

UBUNTU-CVE-2024-53106

In the Linux kernel, the following vulnerability has been resolved: ima: fix buffer overrun in imaeventdigestinitcommon Function imaeventdigestinit calls imaeventdigestinitcommon with HASHALGOLAST which is then used to access the array hashdigestsize leading to buffer overrun. Have a conditional...

7.8CVSS6.8AI score0.00242EPSS
Exploits0References19
AstraLinux
AstraLinux
added 2024/11/23 3:4 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: ima: Fixed a use-after-free issue related to the dname.name of a dentry. – dname.name can be changed during a rename operation, and the previous value can be freed. There are conditions that could potentially stabilize this...

7.8CVSS6.4AI score0.00306EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2024/11/14 4:8 p.m.18 views

USN-7110-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - HW tracing; - ISDN/mISDN subsystem; - Media drivers; - Network drivers; - SCSI drivers; - USB...

7.8CVSS6.9AI score0.00622EPSS
Exploits1
OpenVAS
OpenVAS
added 2024/11/01 12:0 a.m.14 views

Ubuntu: Security Advisory (USN-7021-5)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.4AI score0.00306EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2024/10/31 12:7 p.m.33 views

USN-7021-5: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - BTRFS file system; - F2FS file system; - GFS2 file system; - BPF subsystem; - Netfilter; - RxRPC...

7.8CVSS6.9AI score0.00306EPSS
Exploits0
OSV
OSV
added 2024/10/31 12:7 p.m.7 views

USN-7021-5 linux-azure-fde vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - BTRFS file system; - F2FS file system; - GFS2 file system; - BPF subsystem; - Netfilter; - RxRPC...

7.8CVSS6.7AI score0.00306EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/10/31 12:0 a.m.21 views

Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-7021-5)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7021-5 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in...

7.8CVSS7AI score0.00306EPSS
Exploits0References9
OSV
OSV
added 2024/10/15 10:13 p.m.12 views

USN-7069-1 linux, linux-aws, linux-aws-hwe, linux-azure-4.15, linux-gcp, linux-gcp-4.15, linux-hwe, linux-kvm, linux-oracle vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - x86 architecture; - Cryptographic API; - CPU frequency scaling framework; - HW tracing; - ISDN/mISDN subsystem; -...

7.8CVSS6.6AI score0.02701EPSS
Exploits2References36
Rows per page
Query Builder