Lucene search
+L

211 matches found

Amazon
Amazon
added 2024/08/15 12:0 a.m.10 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: bonding: Fix out-of-bounds read in bondoptionarpiptargetsset CVE-2024-39487 In the Linux kernel, the following vulnerability has been resolved: ima: Avoid blocking in RCU read-side critical section CVE-2024-40947 ...

7.8CVSS7AI score0.00299EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/07/24 2:3 p.m.4 views

kernel: smb: client: fix potential OOBs in smb2_parse_contexts()

A flaw was found in the smb client in the Linux kernel. A potential out-of-bounds error was seen in the smb2parsecontexts function. Validate offsets and lengths before dereferencing create contexts in smb2parsecontexts...

8CVSS6.8AI score0.00561EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/07/09 9:24 a.m.2 views

kernel: smb: client: fix potential OOBs in smb2_parse_contexts()

A flaw was found in the smb client in the Linux kernel. A potential out-of-bounds error was seen in the smb2parsecontexts function. Validate offsets and lengths before dereferencing create contexts in smb2parsecontexts...

8CVSS6.8AI score0.00561EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/07/09 9:23 a.m.3 views

kernel: smb: client: fix potential OOBs in smb2_parse_contexts()

A flaw was found in the smb client in the Linux kernel. A potential out-of-bounds error was seen in the smb2parsecontexts function. Validate offsets and lengths before dereferencing create contexts in smb2parsecontexts...

8CVSS6.8AI score0.00561EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2024/05/23 3:5 a.m.7 views

SUSE CVE-2021-47243

In the Linux kernel, the following vulnerability has been resolved: schcake: Fix out of bounds when parsing TCP options and header The TCP option parser in cake qdisc cakegettcpopt and caketcphmaydrop could read one byte out of bounds. When the length is 1, the execution flow gets into the loop,...

7.1CVSS6.6AI score0.00259EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/05/22 10:16 a.m.2 views

kernel: smb: client: fix potential OOBs in smb2_parse_contexts()

A flaw was found in the smb client in the Linux kernel. A potential out-of-bounds error was seen in the smb2parsecontexts function. Validate offsets and lengths before dereferencing create contexts in smb2parsecontexts...

8CVSS6.8AI score0.00561EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2024/05/22 10:3 a.m.2 views

kernel: smb: client: fix potential OOBs in smb2_parse_contexts()

A flaw was found in the smb client in the Linux kernel. A potential out-of-bounds error was seen in the smb2parsecontexts function. Validate offsets and lengths before dereferencing create contexts in smb2parsecontexts...

8CVSS6.8AI score0.00561EPSS
Exploits0References7
OSV
OSV
added 2024/05/21 4:15 p.m.8 views

AZL-47639 CVE-2023-52755 affecting package kernel for versions less than 6.6.3.1-1

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix slab out of bounds write in smbinheritdacl slab out-of-bounds write is caused by that offsets is bigger than pntsd allocation size. This patch add the check to validate 3 offsets using allocation size...

8.4CVSS6.8AI score0.26864EPSS
Exploits0References1
OSV
OSV
added 2024/05/21 4:15 p.m.4 views

DEBIAN-CVE-2023-52755

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix slab out of bounds write in smbinheritdacl slab out-of-bounds write is caused by that offsets is bigger than pntsd allocation size. This patch add the check to validate 3 offsets using allocation size...

8.4CVSS6.3AI score0.26864EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/04/30 10:33 a.m.3 views

freerdp: missing offset validation leading to Out Of Bound Read

A flaw was found in FreeRDP. In the libfreerdp/codec/rfx.c file, there is no offset validation in tile-quantIdxY, tile-quantIdxCb, and tile-quantIdxCr. As a result, crafted input can lead to an out-of-bounds read, which may result in a crash...

9.1CVSS5.8AI score0.01247EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2024/02/22 3:6 a.m.3 views

SUSE CVE-2023-52434

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential OOBs in smb2parsecontexts Validate offsets and lengths before dereferencing create contexts in smb2parsecontexts. This fixes following oops when accessing invalid create contexts from server: BUG: unabl...

6.5CVSS6.2AI score0.00561EPSS
Exploits0References10
CNNVD
CNNVD
added 2024/02/22 12:0 a.m.4 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a security vulnerability that stems from not checking the offset of variables...

7.8CVSS7.7AI score0.00239EPSS
Exploits0References7
OSV
OSV
added 2024/02/20 6:15 p.m.0 views

DEBIAN-CVE-2023-52434

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential OOBs in smb2parsecontexts Validate offsets and lengths before dereferencing create contexts in smb2parsecontexts. This fixes following oops when accessing invalid create contexts from server: BUG: unabl...

8CVSS5.5AI score0.00561EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2023/11/14 3:46 p.m.4 views

kernel: bus: mhi: host: Range check CHDBOFF and ERDBOFF

A missing bounds check flaw was found in the Linux kernel's Modem Host Interface bus driver in the channel doorbell offset validation logic. A local user can trigger this issue on systems with MHI devices typically Qualcomm modems or wireless cards by using a device that provides malformed or...

5.5CVSS7.2AI score0.00137EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.27 views

Fedora 39 : freerdp (2023-74108ca60d)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-74108ca60d advisory. Update to 2.11.1 ---- Update to 2.11.0 CVE-2023-39350, CVE-2023-39351, CVE-2023-39352, CVE-2023-39353, CVE-2023-39354, CVE-2023-39356, CVE-2023-4018...

9.8CVSS6.5AI score0.01529EPSS
Exploits12References13
Tenable Nessus
Tenable Nessus
added 2023/09/21 12:0 a.m.38 views

Fedora 37 : freerdp (2023-5e6796cb83)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-5e6796cb83 advisory. Update to 2.11.1 ---- Update to 2.11.0 CVE-2023-39350, CVE-2023-39351, CVE-2023-39352, CVE-2023-39353, CVE-2023-39354, CVE-2023-39356, CVE-2023-4018...

9.8CVSS6.5AI score0.01529EPSS
Exploits12References13
Veracode
Veracode
added 2023/09/11 10:28 a.m.25 views

Out-of-bounds Write

libfreerdp.so is vulnerable to Out-of-bounds Write. The vulnerability is due to a missing offset validation check in the cleardecompressbandsdata function leading to Denial Of Service DoS attacks...

9.8CVSS6.8AI score0.0127EPSS
Exploits1References9Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/09/10 12:0 a.m.23 views

Fedora 38 : freerdp (2023-10e43bcebb)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-10e43bcebb advisory. Update to 2.11.1 ---- Update to 2.11.0 CVE-2023-39350, CVE-2023-39351, CVE-2023-39352, CVE-2023-39353, CVE-2023-39354, CVE-2023-39356, CVE-2023-4018...

9.8CVSS6.5AI score0.01529EPSS
Exploits12References13
RedhatCVE
RedhatCVE
added 2023/09/05 3:14 p.m.20 views

CVE-2023-39353

A flaw was found in FreeRDP. In the libfreerdp/codec/rfx.c file, there is no offset validation in tile-quantIdxY, tile-quantIdxCb, and tile-quantIdxCr. As a result, crafted input can lead to an out-of-bounds read, which may result in a crash...

6.5CVSS9.1AI score0.01247EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/09/02 1:54 a.m.4 views

SUSE CVE-2023-39352

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions are subject to an invalid offset validation leading to Out Of Bound Write. This can be triggered when the values rect-left and rect-top are exactly equal to surface-width and...

5.3CVSS9.4AI score0.01297EPSS
Exploits1References5
Rows per page
Query Builder