CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

561 matches found

Debian CVE•added 2024/07/30 7:47 a.m.•13 views

CVE-2024-42230

In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries: Fix scv instruction crash with kexec kexec on pseries disables AIL reloconexc, required for scv instruction support, before other CPUs have been shut down. This means they can execute scv instructions after AIL i...

4.4CVSS5.7AI score0.00205EPSS

Exploits0

CVE•added 2024/07/30 7:47 a.m.•332 views

CVE-2024-42230

In CVE-2024-42230, the Linux kernel on pseries PowerPC is affected by a scv instruction crash when kexec is used. The root cause is that kexec on pseries disables AIL (reloc_on_exc), required for scv instruction support, before all CPUs have been shut down, allowing scv instructions to execute af...

4.4CVSS7AI score0.00205EPSS

Exploits0References5Affected Software1

Vulnrichment•added 2024/07/30 7:46 a.m.•16 views

CVE-2024-42140 riscv: kexec: Avoid deadlock in kexec crash path

In the Linux kernel, the following vulnerability has been resolved: riscv: kexec: Avoid deadlock in kexec crash path If the kexec crash code is called in the interrupt context, the machinekexecmaskinterrupts function will trigger a deadlock while trying to acquire the irqdesc spinlock and then...

6.8AI score0.00199EPSS

Exploits0References5

Debian CVE•added 2024/07/30 7:46 a.m.•12 views

CVE-2024-42140

5.5CVSS5.7AI score0.00199EPSS

Exploits0

Cvelist•added 2024/07/30 7:46 a.m.•17 views

CVE-2024-42140 riscv: kexec: Avoid deadlock in kexec crash path

0.00199EPSS

Exploits0References5

CVE•added 2024/07/30 7:46 a.m.•104 views

CVE-2024-42140

The CVE-2024-42140 issue affects the Linux kernel following kexec crash handling on riscv. The root cause is a deadlock when kexec crash code runs in interrupt context, caused by acquiring the irqdesc spinlock and deactivating irqchip in irq_set_irqchip_state(). The fix removes the unnecessary ir...

5.5CVSS6.6AI score0.00199EPSS

Exploits0References6Affected Software1

CNNVD•added 2024/07/30 12:0 a.m.•0 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates in the riscv:kexec module where the machinekexecmaskinterrupts function triggers a deadlock when attempting ...

5.5CVSS6.7AI score0.00199EPSS

Exploits0References6

SUSE CVE•added 2024/07/17 3:33 a.m.•3 views

SUSE CVE-2024-40944

In the Linux kernel, the following vulnerability has been resolved: x86/kexec: Fix bug with call depth tracking The call to ccplatformhas triggers a fault and system crash if call depth tracking is active because the GS segment has been reset by loadsegments and GSBASE is now 0 but call depth...

5.5CVSS6.5AI score0.00239EPSS

Exploits0References10

RedhatCVE•added 2024/07/16 4:26 p.m.•22 views

CVE-2024-40944

A vulnerability was found in the Linux kernel's x86/kexec component, where the function call to ccplatformhas could lead to a system crash when call depth tracking is active. This issue occurs because the GS segment is reset by loadsegments, setting GSBASE to 0, while call depth tracking relies o...

4.1CVSS8.2AI score0.00239EPSS

Exploits0References4

OSV•added 2024/07/12 1:15 p.m.•1 views

DEBIAN-CVE-2024-40944

5.5CVSS4.8AI score0.00239EPSS

Exploits0References1

NVD•added 2024/07/12 1:15 p.m.•21 views

CVE-2024-40944

5.5CVSS0.00239EPSS

Exploits0References3

OSV•added 2024/07/12 1:15 p.m.•1 views

UBUNTU-CVE-2024-40944

5.5CVSS5.7AI score0.00239EPSS

Exploits0References13

UbuntuCve•added 2024/07/12 1:15 p.m.•25 views

CVE-2024-40944

5.5CVSS5.7AI score0.00239EPSS

Exploits0References12

OSV•added 2024/07/12 12:25 p.m.•18 views

CVE-2024-40944 x86/kexec: Fix bug with call depth tracking

5.5CVSS5.8AI score0.00239EPSS

Exploits0References6

Vulnrichment•added 2024/07/12 12:25 p.m.•16 views

CVE-2024-40944 x86/kexec: Fix bug with call depth tracking

6.8AI score0.00239EPSS

Exploits0References3

Debian CVE•added 2024/07/12 12:25 p.m.•18 views

CVE-2024-40944

5.5CVSS5.7AI score0.00239EPSS

Exploits0

Cvelist•added 2024/07/12 12:25 p.m.•30 views

CVE-2024-40944 x86/kexec: Fix bug with call depth tracking

0.00239EPSS

Exploits0References3

CVE•added 2024/07/12 12:25 p.m.•94 views

CVE-2024-40944

CVE-2024-40944 affects the Linux kernel (x86/kexec). The vulnerability is a bug in call depth tracking where calling cc_platform_has() may fault if depth tracking is active because GS_BASE is reset to 0 by load_segments(). The mitigation described in the documentation is to invoke cc_platform_has...

5.5CVSS6.5AI score0.00239EPSS

Exploits0References3Affected Software1

CNNVD•added 2024/07/12 12:0 a.m.•3 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from an error in the x86/kexec component when invoking deep trace...

5.5CVSS8.1AI score0.00239EPSS

Exploits0References5

Rockylinux•added 2024/06/14 1:59 p.m.•23 views

kexec-tools bug fix and enhancement update

An update is available for kexec-tools. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux...

6.8AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by