Exploit for Improper Initialization in Linux Linux_Kernel

CVE-2022-0847-Exploit-Implementation This is a POC showing ho...

PT-2025-54172

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the PCI endpoint test driver where IRQs are freed after the device is removed. This creates a race condition where IRQs could be received with the test device’s memory...

CVE-2023-1998 affecting package kernel for versions less than 5.15.111.1-1

CVE-2023-1998 affecting package kernel for versions less than 5.15.111.1-1. A patched version of the package is available...

CVE-2023-2177 affecting package kernel for versions less than 5.15.111.1-1

CVE-2023-2177 affecting package kernel for versions less than 5.15.111.1-1. A patched version of the package is available...

[Important] [Security] Virtuozzo ReadyKernel Patch 156.4 for Virtuozzo Hybrid Server 7.5

The cumulative Virtuozzo ReadyKernel patch was updated with security fixes. The patch applies to all supported kernels of Virtuozzo Hybrid Server 7.5. Vulnerability id: CVE-2022-24448 3.10.0-1160.41.1.vz7.183.5 to 3.10.0-1160.80.1.vz7.191.4 Handle case where the lookup of a directory but the file...

kernel: RDMA/srpt: Fix a use-after-free

In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Fix a use-after-free Change the LIO port members inside struct srptport from regular members into pointers. Allocate the LIO port data structures from inside srptmaketport and free these from inside srptmaketport. Keep...

kernel: ASoC: Intel: avs: Fix potential buffer overflow by snprintf()

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: avs: Fix potential buffer overflow by snprintf snprintf returns the would-be-filled size when the string overflows the given buffer size, hence using this value may result in a buffer overflow although it's...

kernel: crypto: ccp - Use kzalloc for sev ioctl interfaces to prevent kernel memory leak

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Use kzalloc for sev ioctl interfaces to prevent kernel memory leak For some sev ioctl interfaces, input may be passed that is less than or equal to SEVFWBLOBMAXSIZE, but larger than the data that PSP firmware return...

kernel: blk-mq: avoid double ->queue_rq() because of early timeout

In the Linux kernel, the following vulnerability has been resolved: blk-mq: avoid double -queuerq because of early timeout David Jeffery found one double -queuerq issue, so far it can be triggered in VM use case because of long vmexit latency or preempt latency of vCPU pthread or long page fault ...

kernel: ASoC: Intel: avs: Fix potential buffer overflow by snprintf()

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: avs: Fix potential buffer overflow by snprintf snprintf returns the would-be-filled size when the string overflows the given buffer size, hence using this value may result in a buffer overflow although it's...

kernel: sctp: handle the error returned from sctp_auth_asoc_init_active_key

In the Linux kernel, the following vulnerability has been resolved: sctp: handle the error returned from sctpauthasocinitactivekey When it returns an error from sctpauthasocinitactivekey, the activekey is actually not updated. The old shkey will be freeed while it's still used as active key in...

PT-2025-8335

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the version where the fix for the buffer overflow issue in mm/page owner.c is included. Description A buffer overflow issue has been identified in the Linux kernel, specifically in the mm/page owner.c file. The...

DEBIAN-CVE-2023-0045

The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ibprctlset function updates the Thread Information Flags TIFs for the task and updates the SPECCTRL MSR on the function speculationctrlupdate, but the IBPB is only issued on the next...

CLSA-2023-1682418814 Fix CVE(s): CVE-2023-1281, CVE-2022-3903, CVE-2023-26545

Ubuntu: 4.15.0-209.220 bionic/linux: 4.15.0-209.220 -proposed tracker LP: 2011989 CVE-2023-26545 - net: mpls: fix stale pointer if allocation fails during device rename CVE-2023-1281 - rcu: Upgrade rcuswapprotected to rcureplacepointer - net/sched: tcindex: update imperfect hash filters respectin...

Solaris 10 (sparc) : 153153-07

SunOS 5.10: kernel patch. Date this patch was last updated by Sun : Apr/13/23 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include"compat.inc"; if description...

CVE-2023-1079 affecting package kernel 5.10.174.1-1

CVE-2023-1079 affecting package kernel 5.10.174.1-1. A patched version of the package is available...

A use-after-free flaw was found in the Linux kernel’s Ext4 File System in how a user triggers several file operations simultaneously with the overlay FS usage. This flaw allows a local user to crash or potentially escalate their privileges on the system. Only if patch 9a2544037600 ("ovl: fix use after free in struct ovl_aio_req") not applied yet the kernel could be affected.

...

CVE-2023-0590

A use-after-free flaw was found in qdiscgraft in net/sched/schapi.c in the Linux Kernel due to a race problem. This flaw leads to a denial of service issue. If patch ebda44da44f6 "net: sched: fix race condition in qdiscgraft" not applied yet, then kernel could be affected...

Solaris 10 (sparc) : 153153-06

SunOS 5.10: kernel patch. Date this patch was last updated by Sun : Jul/18/22 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include"compat.inc"; if description...

SUSE CVE-2007-5494

Memory leak in the Red Hat Content Accelerator kernel patch in Red Hat Enterprise Linux RHEL 4 and 5 allows local users to cause a denial of service memory consumption via a large number of open requests involving OATOMICLOOKUP...