Lucene search
K

75 matches found

OSV
OSV
added 2024/05/01 6:15 a.m.3 views

UBUNTU-CVE-2024-26983

In the Linux kernel, the following vulnerability has been resolved: bootconfig: use memblockfreelate to free xbc memory to buddy On the time to free xbc memory in xbcexit, memblock may has handed over memory to buddy allocator. So it doesn't make sense to free memory back to memblock. memblockfre...

7.8CVSS6.6AI score0.0023EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2024/04/14 12:0 a.m.7 views

PT-2024-21605

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.37 Description A vulnerability in the Linux kernel has been resolved, related to the bootconfig feature. The issue occurs when freeing xbc memory in the xbc exit function, where memblock may have already hand...

7.8CVSS5.4AI score0.0023EPSS
Exploits0
OSV
OSV
added 2024/04/03 3:15 p.m.2 views

DEBIAN-CVE-2024-26712

In the Linux kernel, the following vulnerability has been resolved: powerpc/kasan: Fix addr error caused by page alignment In kasaninitregion, when kstart is not page aligned, at the begin of for loop, kcur = kstart & PAGEMASK is less than kstart, and then va = block + kcur - kstart is less than...

4.4CVSS5.3AI score0.00223EPSS
Exploits0References1
OSV
OSV
added 2024/04/03 3:15 p.m.2 views

UBUNTU-CVE-2024-26712

In the Linux kernel, the following vulnerability has been resolved: powerpc/kasan: Fix addr error caused by page alignment In kasaninitregion, when kstart is not page aligned, at the begin of for loop, kcur = kstart & PAGEMASK is less than kstart, and then va = block + kcur - kstart is less than...

4.4CVSS6AI score0.00223EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2024/03/05 4:31 a.m.3 views

SUSE CVE-2023-52576

In the Linux kernel, the following vulnerability has been resolved: x86/mm, kexec, ima: Use memblockfreelate from imafreekexecbuffer The code calling imafreekexecbuffer runs long after the memblock allocator has already been torn down, potentially resulting in a use after free in...

5.5CVSS6AI score0.00219EPSS
Exploits0References12
BDU FSTEC
BDU FSTEC
added 2024/03/05 12:0 a.m.6 views

The vulnerability of the memblock_free_late function in the ima component of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the memblockfreelate function in the ima component of the Linux operating system’s kernel is related to the use of memory after it has been freed. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

5.5CVSS6.2AI score0.00219EPSS
Exploits0References15Affected Software6
OSV
OSV
added 2024/03/02 10:15 p.m.2 views

DEBIAN-CVE-2023-52576

In the Linux kernel, the following vulnerability has been resolved: x86/mm, kexec, ima: Use memblockfreelate from imafreekexecbuffer The code calling imafreekexecbuffer runs long after the memblock allocator has already been torn down, potentially resulting in a use after free in...

5.5CVSS5.5AI score0.00219EPSS
Exploits0References1
Prion
Prion
added 2024/03/02 10:15 p.m.19 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Set all reserved memblocks on Node0 at initialization After commit 61167ad5fecdea "mm: pass nid to reservebootmemregion" we get a panic if DEFERREDSTRUCTPAGEINIT is enabled: 0.000000 CPU 0 Unable to handle kernel pagin...

7.2AI score0.00222EPSS
Exploits0References3
OSV
OSV
added 2024/03/02 10:15 p.m.1 views

UBUNTU-CVE-2023-52576

In the Linux kernel, the following vulnerability has been resolved: x86/mm, kexec, ima: Use memblockfreelate from imafreekexecbuffer The code calling imafreekexecbuffer runs long after the memblock allocator has already been torn down, potentially resulting in a use after free in...

5.5CVSS6.2AI score0.00219EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/03/02 9:59 p.m.18 views

CVE-2023-52576 x86/mm, kexec, ima: Use memblock_free_late() from ima_free_kexec_buffer()

In the Linux kernel, the following vulnerability has been resolved: x86/mm, kexec, ima: Use memblockfreelate from imafreekexecbuffer The code calling imafreekexecbuffer runs long after the memblock allocator has already been torn down, potentially resulting in a use after free in...

6.7AI score0.00219EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2024/03/02 9:59 p.m.18 views

CVE-2023-52576

In the Linux kernel, the following vulnerability has been resolved: x86/mm, kexec, ima: Use memblockfreelate from imafreekexecbuffer The code calling imafreekexecbuffer runs long after the memblock allocator has already been torn down, potentially resulting in a use after free in...

5.5CVSS5.6AI score0.00219EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2023/09/18 12:0 a.m.2 views

PT-2023-8734

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to a use-after-free vulnerability in the Linux kernel, specifically in the ima free kexec buffer function. This function runs after the memblock allocator has been...

5.5CVSS6.2AI score0.00219EPSS
Exploits0References473
Positive Technologies
Positive Technologies
added 2023/02/13 12:0 a.m.1 views

PT-2023-35087 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.7 Description: The issue is related to the memblock free late function, where pages are not always released to the buddy allocator. This could potentially lead to security vulnerabilities, although the actu...

7.3AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/01/31 12:0 a.m.1 views

PT-2023-34894 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.229 Description: The issue is related to the memblock free late function, where pages are not always released to the buddy allocator. This could potentially lead to security vulnerabilities, although the...

7.3AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/01/31 12:0 a.m.3 views

PT-2023-34796 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.7 Description: The issue is related to the memblock free late function, where pages are not always released to the buddy allocator. This could potentially lead to security vulnerabilities, although the actu...

7.3AI score
Exploits0References1
Rows per page
Query Builder