Lucene search
K

159 matches found

OSV
OSV
added 2025/03/20 11:46 a.m.10 views

CLSA-2025-1742471200 kernel: Fix of 19 CVEs

net: defer final 'struct net' free in netns dismantle CVE-2024-56658 - smb: client: fix potential deadlock when releasing mids CVE-2023-52757 - tcp/dccp: Don't use timerpending in reqskqueueunlink. CVE-2024-50154 - ALSA: 6fire: Release resources at card release CVE-2024-53239 - smb: client: fix...

7.8CVSS7.3AI score0.00809EPSS
Exploits0References1
SUSE Linux
SUSE Linux
added 2025/03/18 9:58 p.m.3 views

Security update for the Linux Kernel (Live Patch 35 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024147 fixes one issue. The following security issue was fixed: CVE-2024-56648: net: hsr: avoid potential out-of-bound access in fillframeinfo bsc1235452. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods li...

8.6CVSS7.7AI score0.00244EPSS
Exploits0References4
OSV
OSV
added 2025/02/03 2:23 p.m.8 views

CLSA-2025-1738592614 kernel: Fix of 26 CVEs

xsk: fix OOB map writes when deleting elements CVE-2024-56614 - hvsock: Initializing vsk-trans to NULL to prevent a dangling pointer CVE-2024-53103 - scsi: sg: Fix slab-use-after-free read in sgrelease CVE-2024-56631 - net: inet: do not leave a dangling sk pointer in inetcreate CVE-2024-56601 -...

7.8CVSS7.4AI score0.01325EPSS
Exploits1References1
OSV
OSV
added 2025/01/11 1:15 p.m.1 views

DEBIAN-CVE-2024-56372

In the Linux kernel, the following vulnerability has been resolved: net: tun: fix tunnapiallocfrags syzbot reported the following crash 1 Issue came with the blamed commit. Instead of going through all the iov components, we keep using the first one and end up with a malformed skb. 1 kernel BUG a...

5.5CVSS5.7AI score0.0024EPSS
Exploits0References1
OSV
OSV
added 2025/01/09 1:12 p.m.10 views

USN-7185-2 linux-azure, linux-azure-4.15 vulnerabilities

Ziming Zhang discovered that the VMware Virtual GPU DRM driver in the Linux kernel contained an integer overflow vulnerability. A local attacker could use this to cause a denial of service system crash. CVE-2022-36402 Zheng Wang discovered a use-after-free in the Renesas Ethernet AVB driver in th...

7.8CVSS6.8AI score0.00879EPSS
Exploits3References39
Microsoft CVE
Microsoft CVE
added 2024/12/12 8:0 a.m.13 views

net: avoid potential underflow in qdisc_pkt_len_init() with UFO

...

5.5CVSS6.8AI score0.00277EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/12/11 12:0 a.m.7 views

PT-2024-37030

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, specifically in the net/smc component. The issue arises when "link down" work is scheduled before lgr is freed but executes after l...

5.5CVSS5.5AI score0.00202EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/12/03 12:0 a.m.12 views

PT-2024-36949

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.74 Description A use-after-free issue was encountered in the Linux kernel, specifically in the net/smc component. This issue manifested as the LGR/link refcnt reaching 0 early and entering the clear process,...

7.8CVSS6.8AI score0.00222EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/11/19 3:49 a.m.5 views

SUSE CVE-2024-50293

In the Linux kernel, the following vulnerability has been resolved: net/smc: do not leave a dangling sk pointer in smccreate Thanks to commit 4bbd360a5084 "socket: Print pf-create when it does not clear sock-sk on failure.", syzbot found an issue with AFSMC: smccreate must clear sock-sk on failur...

8.1CVSS7.6AI score0.00213EPSS
Exploits0References7
OSV
OSV
added 2024/11/12 5:16 p.m.10 views

CLSA-2024-1731431756 kernel: Fix of 30 CVEs

tty: ngsm: Fix use-after-free in gsmcleanupmux CVE-2024-50073 - drm/amdkfd: amdkfdfreegttmem clear the correct pointer CVE-2024-49991 - ext4: fix timer use-after-free on failed mount CVE-2024-49960 - ext4: avoid use-after-free in ext4extshowleaf CVE-2024-49889 - ext4: fix slab-use-after-free in...

9.1CVSS7AI score0.01367EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/10/21 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an inconsistent lock state issue in the pppchannelbridgeinput function in the ppp subsystem...

5.5CVSS6.7AI score0.00235EPSS
Exploits0References8
CNNVD
CNNVD
added 2024/10/21 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper handling of the dsa driver in the net subsystem during shutdown, which could lead to a race conditi...

4.7CVSS7.4AI score0.00173EPSS
Exploits0References6
Amazon
Amazon
added 2024/10/02 12:0 a.m.4 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: ima: Fix use-after-free on a dentry's dname.name CVE-2024-39494 In the Linux kernel, the following vulnerability has been resolved: net, sunrpc: Remap EPERM in case of connection failure in xstcpsetupsocket...

7.8CVSS6.6AI score0.00306EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/09/24 1:17 a.m.5 views

kernel: net: fix possible store tearing in neigh_periodic_work()

A flaw was found in the Linux kernel that allows for potential store tearing within the neighperiodicwork function, meaning a write operation on a value is not protected properly and could result in inconsistencies if another process or thread reads from that value before the operation is complet...

5.5CVSS6.8AI score0.00228EPSS
Exploits0References5
OSV
OSV
added 2024/09/18 10:24 a.m.5 views

CLSA-2024-1726655093 kernel: Fix of 8 CVEs

blktrace: fix dereference after null check CVE-2019-19768 - blktrace: Protect q-blktrace with RCU CVE-2019-19768 - blktrace: fix unlocked access to init/start-stop/teardown - blktrace: Fix potential deadlock between delete & sysfs ops - net: fix out-of-bounds access in opsinit CVE-2024-36883 -...

7.8CVSS7AI score0.0415EPSS
Exploits4References1
Microsoft CVE
Microsoft CVE
added 2024/09/11 7:0 a.m.12 views

net: phy: fix phy_get_internal_delay accessing an empty array

...

5.5CVSS6.3AI score0.00281EPSS
Exploits0
OSV
OSV
added 2024/09/04 8:15 p.m.3 views

DEBIAN-CVE-2024-44988

In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Fix out-of-bound access If an ATU violation was caused by a CPU Load operation, the SPID could be larger than DSAMAXPORTS the size of mv88e6xxxchip.ports array...

5.5CVSS5.6AI score0.00237EPSS
Exploits0References1
OSV
OSV
added 2024/09/04 7:15 p.m.0 views

DEBIAN-CVE-2024-44971

In the Linux kernel, the following vulnerability has been resolved: net: dsa: bcmsf2: Fix a possible memory leak in bcmsf2mdioregister bcmsf2mdioregister calls ofphyfinddevice and then phydeviceremove in a loop to remove existing PHY devices. ofphyfinddevice eventually calls busfinddevice, which...

5.5CVSS5.6AI score0.0021EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2024/08/16 7:0 a.m.4 views

net: dsa: mv88e6xxx: Correct check for empty list

...

6.1CVSS7.3AI score0.00233EPSS
Exploits0
OSV
OSV
added 2024/08/14 8:7 a.m.6 views

CLSA-2024-1723622869 Fix of 29 CVEs

CVE-url: https://ubuntu.com/security/CVE-2024-42236 - usb: gadget: configfs: Prevent OOB read/write in usbstringcopy CVE-url: https://ubuntu.com/security/CVE-2024-41095 - drm/nouveau/dispnv04: fix null pointer dereference in nv17tvgetldmodes CVE-url: https://ubuntu.com/security/CVE-2024-41098 -...

8.1CVSS6.7AI score0.01305EPSS
Exploits1References1
Rows per page
Query Builder