Lucene search
K

716 matches found

CVE
CVE
added 2024/09/11 3:13 p.m.66 views

CVE-2024-45024

The CVE-2024-45024 issue in the Linux kernel concerns page-table locking around hugetlb folios during GUP page-walking. The fix implements a technique to use a PTE lock pointer (ptep_lockptr) so the PTE page-table lock can be acquired consistently with core-mm locking, addressing locking mismatch...

5.5CVSS5.2AI score0.00139EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2024/09/10 12:0 a.m.8 views

Unspecified vulnerability in Linux kernel (CNVD-2024-39520)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a deadlock issue in the xen:privcmd component that may result from the use of mutually exclusive locks. No...

5.5CVSS6.5AI score0.00164EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/09/04 12:15 a.m.4 views

kernel: gfs2: Fix potential glock use-after-free on unmount

A vulnerability was found in the Linux kernel within the gfs2 component, where potential use-after-free issues could occur on unmount. When DLM lockspaces are released with remaining locks, callbacks for asynchronous lock contention may access freed objects, causing unexpected behavior...

7.8CVSS6.8AI score0.00248EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/09/04 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a deadlock issue in the xen:privcmd component that may result from the use of mutually exclusive locks. No...

5.5CVSS6.6AI score0.00164EPSS
Exploits0References5
FreeBSD Advisory
FreeBSD Advisory
added 2024/09/04 12:0 a.m.27 views

FreeBSD-SA-24:14.umtx

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-24:14.umtx Security Advisory The FreeBSD Project Topic: umtx Kernel panic or Use-After-Free Category: core Module: kern Announced: 2024-09-04 Credits: Synacktiv...

10CVSS6.2AI score0.00681EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/09/03 3:48 p.m.6 views

kernel: gfs2: Fix potential glock use-after-free on unmount

A vulnerability was found in the Linux kernel within the gfs2 component, where potential use-after-free issues could occur on unmount. When DLM lockspaces are released with remaining locks, callbacks for asynchronous lock contention may access freed objects, causing unexpected behavior...

7.8CVSS6.8AI score0.00248EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/08/22 3:29 a.m.2 views

SUSE CVE-2022-48887

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Remove rcu locks from user resources User resource lookups used rcu to avoid two extra atomics. Unfortunately the rcu paths were buggy and it was easy to make the driver crash by submitting command buffers from two...

5.5CVSS6.2AI score0.00225EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2024/08/21 7:11 p.m.22 views

CVE-2022-48887

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Remove rcu locks from user resources User resource lookups used rcu to avoid two extra atomics. Unfortunately the rcu paths were buggy and it was easy to make the driver crash by submitting command buffers from two...

4.7CVSS7.2AI score0.00225EPSS
Exploits0References4
OSV
OSV
added 2024/08/21 7:15 a.m.1 views

DEBIAN-CVE-2022-48887

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Remove rcu locks from user resources User resource lookups used rcu to avoid two extra atomics. Unfortunately the rcu paths were buggy and it was easy to make the driver crash by submitting command buffers from two...

5.5CVSS5AI score0.00225EPSS
Exploits0References1
NVD
NVD
added 2024/08/21 7:15 a.m.19 views

CVE-2022-48887

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Remove rcu locks from user resources User resource lookups used rcu to avoid two extra atomics. Unfortunately the rcu paths were buggy and it was easy to make the driver crash by submitting command buffers from two...

5.5CVSS0.00225EPSS
Exploits0References2
OSV
OSV
added 2024/08/21 7:15 a.m.6 views

AZL-48771 CVE-2022-48887 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Remove rcu locks from user resources User resource lookups used rcu to avoid two extra atomics. Unfortunately the rcu paths were buggy and it was easy to make the driver crash by submitting command buffers from two...

5.5CVSS5.8AI score0.00225EPSS
Exploits0References1
OSV
OSV
added 2024/08/21 7:15 a.m.2 views

UBUNTU-CVE-2022-48887

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Remove rcu locks from user resources User resource lookups used rcu to avoid two extra atomics. Unfortunately the rcu paths were buggy and it was easy to make the driver crash by submitting command buffers from two...

5.5CVSS5.8AI score0.00225EPSS
Exploits0References5
OSV
OSV
added 2024/08/21 6:10 a.m.21 views

CVE-2022-48887 drm/vmwgfx: Remove rcu locks from user resources

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Remove rcu locks from user resources User resource lookups used rcu to avoid two extra atomics. Unfortunately the rcu paths were buggy and it was easy to make the driver crash by submitting command buffers from two...

5.5CVSS5.8AI score0.00225EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/08/21 6:10 a.m.16 views

CVE-2022-48887 drm/vmwgfx: Remove rcu locks from user resources

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Remove rcu locks from user resources User resource lookups used rcu to avoid two extra atomics. Unfortunately the rcu paths were buggy and it was easy to make the driver crash by submitting command buffers from two...

6.9AI score0.00225EPSS
Exploits0References2
CVE
CVE
added 2024/08/21 6:10 a.m.94 views

CVE-2022-48887

CVE-2022-48887 relates to the Linux kernel DRM vmwgfx driver. The issue was caused by buggy RCU-based user-resource lookups that could crash the driver when command buffers were submitted from two threads. The fix replaces those RCU paths with a regular spin lock to resolve the race conditions in...

5.5CVSS6.5AI score0.00225EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/08/21 6:10 a.m.34 views

CVE-2022-48887 drm/vmwgfx: Remove rcu locks from user resources

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Remove rcu locks from user resources User resource lookups used rcu to avoid two extra atomics. Unfortunately the rcu paths were buggy and it was easy to make the driver crash by submitting command buffers from two...

0.00225EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2024/08/21 6:10 a.m.16 views

CVE-2022-48887

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Remove rcu locks from user resources User resource lookups used rcu to avoid two extra atomics. Unfortunately the rcu paths were buggy and it was easy to make the driver crash by submitting command buffers from two...

5.5CVSS5AI score0.00225EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2024/08/17 10:15 a.m.23 views

CVE-2024-43834

In the Linux kernel, the following vulnerability has been resolved: xdp: fix invalid wait context of pagepooldestroy If the driver uses a page pool, it creates a page pool with pagepoolcreate. The reference count of page pool is 1 as default. A page pool will be destroyed only when a reference...

5.5CVSS6.2AI score0.00247EPSS
Exploits0References18
Pen Test Partners Blog
Pen Test Partners Blog
added 2024/08/07 5:56 a.m.11 views

Key safe security, or the lack of it

A few years back we put a key safe into our office. Previously, we had used a very simple locked cabinet to ensure keys were returned, as before that, keys kept being accidentally taken home. There’s no data of significance kept at the office. Everything is hosted elsewhere, but we could do witho...

7.2AI score
Exploits0
Cvelist
Cvelist
added 2024/07/31 4:30 p.m.38 views

CVE-2024-41952 Zitadel has an "Ignoring unknown usernames" vulnerability

Zitadel is an open source identity management system. ZITADEL administrators can enable a setting called "Ignoring unknown usernames" which helps mitigate attacks that try to guess/enumerate usernames. If enabled, ZITADEL will show the password prompt even if the user doesn't exist and report...

5.3CVSS0.00633EPSS
Exploits0References13
Rows per page
Query Builder