UBUNTU-CVE-2022-47939

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2pdu.c has a use-after-free and OOPS for SMB2TREEDISCONNECT...

AZL-11609 CVE-2022-3108 affecting package kernel for versions less than 5.15.86.1-1

An issue was discovered in the Linux kernel through 5.16-rc6. kfdparsesubtypeiolink in drivers/gpu/drm/amd/amdkfd/kfdcrat.c lacks check of the return value of kmemdup...

PT-2022-35958 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v6.0.7 through v6.0.10 Description: The issue concerns missing SIGTRAP checking, which may potentially lead to security vulnerabilities. However, the actual impact and attack plausibility have not yet been proven. It was...

PT-2022-35305 · Marvell · Marvell Octeontx

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.75 Description: The issue is related to preventing integer overflows in the crypto module of the Marvell OcteonTX driver. The actual impact and attack plausibility have not yet been proven. Recommendations...

PT-2022-34842 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.146 Description: The issue is related to the taprio component in the Linux Kernel, where offload can be disabled even if it was never enabled. The actual impact and attack plausibility have not yet been...

PT-2022-34583 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.10 Description: The issue is related to the addition of RC code in the cc2520 tx function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions pri...

PT-2022-34183 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.212 Description: The issue is related to the drm/amd/display component, where an optc underflow is not properly cleared before turning off the odm clock. The actual impact and attack plausibility have not y...

PT-2022-33509 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v5.5 through v5.19.1 Description: The issue is related to the addition of multithread support for a DMA channel in the sf-pdma driver. It was introduced in version v5.5 and fixed in version v5.19.2. The actual impact and...

PT-2022-33520 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions 2.6.29 through 5.19.1 Description: A refcount leak was discovered in the ehci hcd ppc of probe function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions 2.6....

AZL-12132 CVE-2022-29581 affecting package kernel for versions less than 5.15.86.1-1

Improper Update of Reference Count vulnerability in net/sched of Linux Kernel allows local attacker to cause privilege escalation to root. This issue affects: Linux Kernel versions prior to 5.18; version 4.14 and later versions...

CVE-2021-4095

A NULL pointer dereference was found in the Linux kernel's KVM when dirty ring logging is enabled without an active vCPU context. An unprivileged local attacker on the host may use this flaw to cause a kernel oops condition and thus a denial of service by issuing a KVMXENHVMSETATTR ioctl. This fl...

PT-2022-7231

Name of the Vulnerable Software and Affected Versions Linux Kernel versions prior to 5.18-rc1 Linux Kernel versions 5.4.y Linux Kernel versions 5.10.y Linux Kernel versions 5.15.y Description The issue is related to an out-of-bounds access vulnerability in the nf tables newtable function of the...

Linux kernel array index out-of-bounds vulnerability

Linux kernel is a computer operating system kernel written in C and assembly language, POSIX-compliant, and distributed under the GNU General Public License. detachcapictr function in drivers/isdn/capi/kcapi.c in versions of Linux kernel prior to 5.14.15 is vulnerable to array index out-of-bounds...

CVE-2021-3653

A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB virtual machine control block provided by the L1 guest to spawn/handle a nested guest L2. Due to improper validation of the "intctl" field, this issue could allow a malicious ...

DEBIAN-CVE-2021-21781

An information disclosure vulnerability exists in the ARM SIGPAGE functionality of Linux Kernel v5.4.66 and v5.4.54. The latest version 5.11-rc4 seems to still be vulnerable. A userland application can read the contents of the sigpage, which can leak kernel memory contents. An attacker can read a...

Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2021-9419)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9419 advisory. - KVM: nSVM: always intercept VMLOAD/VMSAVE when nested Maxim Levitsky Orabug: 33205367 CVE-2021-3656 CVE-2021-3656 Tenable has extracted the preceding...

CVE-2021-3564

A flaw double-free memory corruption in the Linux kernel HCI device initialization subsystem was found in the way user attach malicious HCI TTY Bluetooth device. A local user could use this flaw to crash the system. This flaw affects all the Linux kernel versions starting from 3.13...

CVE-2021-3573

A use-after-free in function hcisockboundioctl of the Linux kernel HCI subsystem was found in the way user calls ioct HCIUNBLOCKADDR or other way triggers race condition of the call hciunregisterdev together with one of the calls hcisockblacklistadd, hcisockblacklistdel, hcigetconninfo,...

CVE-2020-24490

Improper buffer restrictions in BlueZ may allow an unauthenticated user to potentially enable denial of service via adjacent access. This affects all Linux kernel versions that support BlueZ...

CVE-2020-24490

Improper buffer restrictions in BlueZ may allow an unauthenticated user to potentially enable denial of service via adjacent access. This affects all Linux kernel versions that support BlueZ...