Lucene search
K

715 matches found

CVE
CVE
added 2024/12/27 2:23 p.m.136 views

CVE-2024-56556

CVE-2024-56556 targets the Linux kernel binder: a race in binder_add_freeze_work() where proc->inner_lock is dropped while acquiring node->lock, allowing binder_node_release() to race and trigger a use-after-free. Impact is local privilege escalation/high, as indicated by multiple advisorie...

7.8CVSS6.5AI score0.00149EPSS
Exploits0References2Affected Software1
Redos
Redos
added 2024/12/05 12:0 a.m.22 views

ROS-20241205-02

A vulnerability in the drmfileupdatepid function in the drivers/gpu/drm/drmfile.c module of the kernel video driver of the of the Linux operating system is related to the reuse of previously freed memory due to competitive resource access race condition. competitive access to the resource race...

7.8CVSS7AI score0.00322EPSS
Exploits4
Redos
Redos
added 2024/11/27 12:0 a.m.20 views

ROS-20241127-02

A vulnerability in the virtio component of the Linux kernel is related to memory corruption in the functions virtioi2cpreparereqs, virtioi2ccompletereqs and virtioi2cxfer functions in drivers/i2c/busses/i2c-virtio.c. Exploitation of the vulnerability could allow an attacker to gain access to...

7.8CVSS8.6AI score0.00247EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2024/11/12 9:11 a.m.5 views

kernel: filelock: Remove locks reliably when fcntl/close race is detected

In the Linux kernel, the following vulnerability has been resolved: filelock: Remove locks reliably when fcntl/close race is detected When fcntlsetlk races with close, it removes the created lock with dolockfilewait. However, LSMs can allow the first dolockfilewait that created the lock while...

6.3CVSS6.5AI score0.00221EPSS
Exploits0References5
Redos
Redos
added 2024/10/31 12:0 a.m.30 views

ROS-20241031-02

A vulnerability in the qcom component of the Linux operating system kernel is related to read errors outside of bounds in the F function in drivers/clk/qcom/gcc-ipq9574.c. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the mm/memory-failu...

5.5CVSS7AI score0.00241EPSS
Exploits0
Redos
Redos
added 2024/10/31 12:0 a.m.28 views

ROS-20241031-01

A vulnerability in the nilfs2 component of the Linux operating system kernel is related to improper error handling in the nilfsgetblock function in fs/nilfs2/inode.c. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the nilfs2 component of...

7.8CVSS7.3AI score0.00269EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2024/10/24 4:33 p.m.10 views

CVE-2024-50066

In the Linux kernel, the following vulnerability has been resolved: mm/mremap: fix movenormalpmd/retractpagetables race In mremap, movepagetables looks at the type of the PMD entry and the specified address range to figure out by which method the next chunk of page table entries should be moved. ...

7.1CVSS6.8AI score0.00198EPSS
Exploits2References4
SUSE CVE
SUSE CVE
added 2024/10/23 1:21 p.m.2 views

SUSE CVE-2024-50066

In the Linux kernel, the following vulnerability has been resolved: mm/mremap: fix movenormalpmd/retractpagetables race In mremap, movepagetables looks at the type of the PMD entry and the specified address range to figure out by which method the next chunk of page table entries should be moved. ...

7CVSS7.6AI score0.00198EPSS
Exploits2References5
NVD
NVD
added 2024/10/23 6:15 a.m.16 views

CVE-2024-50066

In the Linux kernel, the following vulnerability has been resolved: mm/mremap: fix movenormalpmd/retractpagetables race In mremap, movepagetables looks at the type of the PMD entry and the specified address range to figure out by which method the next chunk of page table entries should be moved. ...

7CVSS0.00198EPSS
Exploits2References6
OSV
OSV
added 2024/10/23 6:15 a.m.4 views

DEBIAN-CVE-2024-50066

In the Linux kernel, the following vulnerability has been resolved: mm/mremap: fix movenormalpmd/retractpagetables race In mremap, movepagetables looks at the type of the PMD entry and the specified address range to figure out by which method the next chunk of page table entries should be moved. ...

7CVSS6.2AI score0.00198EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2024/10/23 5:20 a.m.18 views

CVE-2024-50066 mm/mremap: fix move_normal_pmd/retract_page_tables race

In the Linux kernel, the following vulnerability has been resolved: mm/mremap: fix movenormalpmd/retractpagetables race In mremap, movepagetables looks at the type of the PMD entry and the specified address range to figure out by which method the next chunk of page table entries should be moved. ...

6.5AI score0.00198EPSS
Exploits2References4
CVE
CVE
added 2024/10/23 5:20 a.m.149 views

CVE-2024-50066

CVE-2024-50066 is a Linux kernel race in mm/mremap where move_page_tables can race with retract_page_tables under THP/rmap locking. The flaw stems from reading the PMD type before acquiring rmap locks, potentially creating bogus PMD entries (e.g., mapping page 0 as a page table on x86) and enabli...

7CVSS6.6AI score0.00198EPSS
Exploits2References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/10/23 12:0 a.m.4 views

The vulnerability of the posix_lock_inode() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the posixlockinode function in the fs/locks.c module of the Linux operating system is related to the reutilization of previously freed memory due to concurrent access to resources. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

7.8CVSS7.1AI score0.00258EPSS
Exploits0References36Affected Software6
OSV
OSV
added 2024/10/21 8:15 p.m.1 views

DEBIAN-CVE-2024-50060

In the Linux kernel, the following vulnerability has been resolved: iouring: check if we need to reschedule during overflow flush In terms of normal application usage, this list will always be empty. And if an application does overflow a bit, it'll have a few entries. However, nothing obviously...

5.5CVSS5.8AI score0.00219EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 8:15 p.m.14 views

AZL-51198 CVE-2024-50041 affecting package kernel for versions less than 6.6.57.1-1

In the Linux kernel, the following vulnerability has been resolved: i40e: Fix macvlan leak by synchronizing access to macfilterhash This patch addresses a macvlan leak issue in the i40e driver caused by concurrent access to vsi-macfilterhash. The leak occurs when multiple threads attempt to modif...

5.5CVSS6.8AI score0.00219EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 8:15 p.m.7 views

UBUNTU-CVE-2024-50060

In the Linux kernel, the following vulnerability has been resolved: iouring: check if we need to reschedule during overflow flush In terms of normal application usage, this list will always be empty. And if an application does overflow a bit, it'll have a few entries. However, nothing obviously...

5.5CVSS6.2AI score0.00219EPSS
Exploits0References30
Vulnrichment
Vulnrichment
added 2024/10/21 8:6 p.m.16 views

CVE-2022-49018 mptcp: fix sleep in atomic at close time

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix sleep in atomic at close time Matt reported a splat at msk close time: BUG: sleeping function called from invalid context at net/mptcp/protocol.c:2877 inatomic: 1, irqsdisabled: 0, nonblock: 0, pid: 155, name:...

7.1AI score0.00152EPSS
Exploits0References2
OSV
OSV
added 2024/10/21 8:6 p.m.19 views

CVE-2022-48997 char: tpm: Protect tpm_pm_suspend with locks

In the Linux kernel, the following vulnerability has been resolved: char: tpm: Protect tpmpmsuspend with locks Currently tpm transactions are executed unconditionally in tpmpmsuspend function, which may lead to races with other tpm accessors in the system. Specifically, the hwrandom tpm driver...

4.7CVSS5.8AI score0.00236EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2024/10/21 8:6 p.m.15 views

CVE-2022-48997 char: tpm: Protect tpm_pm_suspend with locks

In the Linux kernel, the following vulnerability has been resolved: char: tpm: Protect tpmpmsuspend with locks Currently tpm transactions are executed unconditionally in tpmpmsuspend function, which may lead to races with other tpm accessors in the system. Specifically, the hwrandom tpm driver...

6.7AI score0.00236EPSS
Exploits0References5
CVE
CVE
added 2024/10/21 7:39 p.m.141 views

CVE-2024-50060

CVE-2024-50060 is documented in the IBM bulletin as a Linux kernel vulnerability fix for the io_uring subsystem. The issue involved the need to reschedule during overflow flush in io_uring handling. The described root cause notes that overflow entries can accumulate and flushing could take a long...

5.5CVSS5.4AI score0.00219EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder