Lucene search
K

63 matches found

Positive Technologies
Positive Technologies
added 2025/04/22 12:0 a.m.7 views

PT-2025-28994

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A potential null pointer dereference issue was identified in the fpga mgr test img load sgt function. The function allocates memory for sgt using kunit kzalloc, but fails to verify if...

5.5CVSS6.1AI score0.00155EPSS
Exploits0
OSV
OSV
added 2025/04/18 7:15 a.m.2 views

DEBIAN-CVE-2025-38575

In the Linux kernel, the following vulnerability has been resolved: ksmbd: use aeadrequestfree to match aeadrequestalloc Use aeadrequestfree instead of kfree to properly free memory allocated by aeadrequestalloc. This ensures sensitive crypto data is zeroed before being freed...

5.5CVSS5.7AI score0.00219EPSS
Exploits0References1
OSV
OSV
added 2025/04/18 7:15 a.m.12 views

UBUNTU-CVE-2025-38575

In the Linux kernel, the following vulnerability has been resolved: ksmbd: use aeadrequestfree to match aeadrequestalloc Use aeadrequestfree instead of kfree to properly free memory allocated by aeadrequestalloc. This ensures sensitive crypto data is zeroed before being freed...

5.5CVSS6.2AI score0.00219EPSS
Exploits0References40
OSV
OSV
added 2024/11/25 10:15 p.m.1 views

UBUNTU-CVE-2024-53097

In the Linux kernel, the following vulnerability has been resolved: mm: krealloc: Fix MTE false alarm in dokrealloc This patch addresses an issue introduced by commit 1a83a716ec233 "mm: krealloc: consider spare memory for GFPZERO" which causes MTE Memory Tagging Extension to falsely report a...

5.5CVSS6.2AI score0.00227EPSS
Exploits0References24
RedHat Linux
RedHat Linux
added 2024/11/12 9:11 a.m.3 views

kernel: platform/chrome: cros_ec_chardev: fix kernel data leak from ioctl

In the Linux kernel, the following vulnerability has been resolved: platform/chrome: crosecchardev: fix kernel data leak from ioctl It is possible to peep kernel page's data by providing larger insize in struct croseccommand1 when invoking EC host commands. Fix it by using zeroed memory. 1:...

7.1CVSS6.3AI score0.0017EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/11/05 1:22 a.m.4 views

kernel: lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc()

In the Linux kernel, the following vulnerability has been resolved: lib/generic-radix-tree.c: Fix rare race in genradixptralloc If we need to increase the tree depth, allocate a new node, and then race with another thread that increased the tree depth before us, we'll still have a preallocated no...

4.7CVSS6.5AI score0.00161EPSS
Exploits0References5
OSV
OSV
added 2024/10/21 6:15 p.m.7 views

AZL-52969 CVE-2024-49885 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: mm, slub: avoid zeroing kmalloc redzone Since commit 946fa0dbf2d8 "mm/slub: extend redzone check to extra allocated kmalloc space than requested", setting origsize treats the wasted space objectsize - origsize as a redzone. Howev...

5.5CVSS6.3AI score0.00233EPSS
Exploits0References1
OSV
OSV
added 2024/07/29 3:15 p.m.1 views

UBUNTU-CVE-2024-41059

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix uninit-value in copyname syzbot reported BUG: KMSAN: uninit-value in sizedstrscpy+0xc4/0x160 sizedstrscpy+0xc4/0x160 copyname+0x2af/0x320 fs/hfsplus/xattr.c:411 hfspluslistxattr+0x11e9/0x1a50 fs/hfsplus/xattr.c:750...

7.1CVSS6.3AI score0.00269EPSS
Exploits0References36
OSV
OSV
added 2023/05/09 7:15 p.m.4 views

CVE-2021-26354

Insufficient bounds checking in ASP may allow an attacker to issue a system call from a compromised ABL which may cause arbitrary memory values to be initialized to zero, potentially leading to a loss of integrity...

5.5CVSS5.8AI score0.00178EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/05/09 12:0 a.m.5 views

PT-2023-12088 · Microsoft · Asp

Name of the Vulnerable Software and Affected Versions: ASP affected versions not specified Description: Insufficient bounds checking in ASP may allow an attacker to issue a system call from a compromised ABL, which may cause arbitrary memory values to be initialized to zero, potentially leading t...

5.5CVSS6.6AI score0.00178EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/02/15 3:27 a.m.3 views

SUSE CVE-2022-26365

Linux disk/nic frontends data leaks This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend CVE-2022-26365,...

6.6CVSS7.3AI score0.00322EPSS
Exploits0References33
SUSE CVE
SUSE CVE
added 2023/02/15 3:25 a.m.7 views

SUSE CVE-2022-33740

Linux disk/nic frontends data leaks This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend CVE-2022-26365,...

6.6CVSS7.3AI score0.00322EPSS
Exploits0References33
SUSE CVE
SUSE CVE
added 2023/02/15 3:25 a.m.3 views

SUSE CVE-2022-33741

Linux disk/nic frontends data leaks This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend CVE-2022-26365,...

6.6CVSS7.3AI score0.00322EPSS
Exploits0References33
Amazon
Amazon
added 2022/07/21 12:0 a.m.33 views

Important: kernel

Issue Overview: Linux disk/nic frontends data leaks This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend...

7.8CVSS6.1AI score0.05451EPSS
Exploits10
OSV
OSV
added 2022/07/05 1:15 p.m.2 views

ALPINE-CVE-2022-26365

Linux disk/nic frontends data leaks This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend CVE-2022-26365,...

7.1CVSS7.1AI score0.00322EPSS
Exploits0References1
OSV
OSV
added 2022/07/05 1:15 p.m.79 views

CVE-2022-33741

Linux disk/nic frontends data leaks This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend CVE-2022-26365,...

7.1CVSS1.8AI score
Exploits0References7
OSV
OSV
added 2022/07/05 1:15 p.m.9 views

ALPINE-CVE-2022-33742

Linux disk/nic frontends data leaks This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend CVE-2022-26365,...

7.1CVSS7.1AI score0.00325EPSS
Exploits0References1
OSV
OSV
added 2022/07/05 1:15 p.m.3 views

ALPINE-CVE-2022-33741

Linux disk/nic frontends data leaks This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend CVE-2022-26365,...

7.1CVSS7.1AI score0.00322EPSS
Exploits0References1
OSV
OSV
added 2022/07/05 1:15 p.m.5 views

UBUNTU-CVE-2022-33740

Linux disk/nic frontends data leaks This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend CVE-2022-26365,...

7.1CVSS6.7AI score0.00322EPSS
Exploits0References29
ATTACKERKB
ATTACKERKB
added 2022/07/05 1:15 p.m.2 views

CVE-2022-26365

Linux disk/nic frontends data leaks This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend CVE-2022-26365,...

7.1CVSS6.7AI score0.00325EPSS
Exploits0References10
Rows per page
Query Builder