Lucene search
K

132 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:27 a.m.1 views

SUSE CVE-2018-12021

Singularity 2.3.0 through 2.5.1 is affected by an incorrect access control on systems supporting overlay file system. When using the overlay option, a malicious user may access sensitive information by exploiting a few specific Singularity features...

6.5CVSS6.7AI score0.01596EPSS
Exploits0References8
Github Security Blog
Github Security Blog
added 2022/05/14 1:1 a.m.12 views

Singularity Incorrect Access Control

Singularity 2.3.0 through 2.5.1 is affected by an incorrect access control on systems supporting overlay file system. When using the overlay option, a malicious user may access sensitive information by exploiting a few specific Singularity features...

6.8CVSS6.6AI score0.01596EPSS
Exploits0References4Affected Software1
Amazon
Amazon
added 2022/01/28 12:0 a.m.4 views

Medium: kernel

Issue Overview: A flaw was found in the Linux kernel. A memory leak in the ccp-ops crypto driver can allow attackers to cause a denial of service. This vulnerability is similar with the older CVE-2019-18808. The highest threat from this vulnerability is to system availability. CVE-2021-3744 A...

7.8CVSS6.6AI score0.00537EPSS
Exploits1
Ubuntu
Ubuntu
added 2022/01/12 9:6 p.m.120 views

USN-5210-2: Linux kernel regression

USN-5210-1 fixed vulnerabilities in the Linux kernel. Unfortunately, that update introduced a regression that caused failures to boot in environments with AMD Secure Encrypted Virtualization SEV enabled. This update fixes the problem. We apologize for the inconvenience. Original advisory details:...

7.4AI score0.00674EPSS
Exploits3References1
OpenVAS
OpenVAS
added 2022/01/12 12:0 a.m.36 views

Ubuntu: Security Advisory (USN-5218-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.57853EPSS
Exploits5References3
OSV
OSV
added 2022/01/11 4:58 a.m.9 views

USN-5218-1 linux-oem-5.13 vulnerabilities

Nadav Amit discovered that the hugetlb implementation in the Linux kernel did not perform TLB flushes under certain conditions. A local attacker could use this to leak or alter data from other processes that use huge pages. CVE-2021-4002 It was discovered that the eBPF implementation in the Linux...

9.8CVSS7.2AI score0.57853EPSS
Exploits5References10
Ubuntu
Ubuntu
added 2022/01/06 2:26 a.m.142 views

USN-5209-1: Linux kernel vulnerabilities

Nadav Amit discovered that the hugetlb implementation in the Linux kernel did not perform TLB flushes under certain conditions. A local attacker could use this to leak or alter data from other processes that use huge pages. CVE-2021-4002 It was discovered that a race condition existed in the time...

7.8CVSS7.2AI score0.00674EPSS
Exploits2
Gitee
Gitee
added 2021/11/21 6:31 p.m.28 views

Exploit for Privilege Context Switching Error in Canonical Ubuntu_Linux

PoC exploit for CVE-2021-3493, a local privilege escalation vulnerability in Ubuntu OverlayFS. The target is the Linux kernel, specifically the overlayfs file system, which did not properly validate the application of file system capabilities with respect to user namespaces. A local attacker coul...

8.8CVSS6.8AI score0.43988EPSS
Exploits27
OpenVAS
OpenVAS
added 2021/10/21 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-5115-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.9AI score0.01476EPSS
Exploits11References2
Ubuntu
Ubuntu
added 2021/10/20 6:42 p.m.114 views

USN-5116-1: Linux kernel vulnerabilities

It was discovered that a race condition existed in the Atheros Ath9k WiFi driver in the Linux kernel. An attacker could possibly use this to expose sensitive information WiFi network traffic. CVE-2020-3702 Alois Wohlschlager discovered that the overlay file system in the Linux kernel did not...

7.8CVSS6.7AI score0.01476EPSS
Exploits4
Ubuntu
Ubuntu
added 2021/10/20 6:39 p.m.140 views

USN-5115-1: Linux kernel (OEM) vulnerabilities

It was discovered that a race condition existed in the Atheros Ath9k WiFi driver in the Linux kernel. An attacker could possibly use this to expose sensitive information WiFi network traffic. CVE-2020-3702 Ofek Kirzner, Adam Morrison, Benedict Schlueter, and Piotr Krysiuk discovered that the BPF...

7.8CVSS7.4AI score0.01476EPSS
Exploits11
OSV
OSV
added 2021/10/20 6:39 p.m.7 views

USN-5115-1 linux-oem-5.10 vulnerabilities

It was discovered that a race condition existed in the Atheros Ath9k WiFi driver in the Linux kernel. An attacker could possibly use this to expose sensitive information WiFi network traffic. CVE-2020-3702 Ofek Kirzner, Adam Morrison, Benedict Schlueter, and Piotr Krysiuk discovered that the BPF...

7.8CVSS7.2AI score0.01476EPSS
Exploits11References17
Ubuntu
Ubuntu
added 2021/10/19 10:30 p.m.129 views

USN-5113-1: Linux kernel vulnerabilities

It was discovered that a race condition existed in the Atheros Ath9k WiFi driver in the Linux kernel. An attacker could possibly use this to expose sensitive information WiFi network traffic. CVE-2020-3702 Alois Wohlschlager discovered that the overlay file system in the Linux kernel did not...

7.8CVSS6.8AI score0.01476EPSS
Exploits6
OSV
OSV
added 2021/10/18 12:0 a.m.2 views

UBUNTU-CVE-2021-20321

A race condition accessing file object in the Linux kernel OverlayFS subsystem was found in the way users do rename in specific way with OverlayFS. A local user could use this flaw to crash the system...

4.7CVSS6.6AI score0.00213EPSS
Exploits0References8
Ubuntu
Ubuntu
added 2021/09/30 5:4 p.m.145 views

USN-5094-2: Linux kernel (Raspberry Pi) vulnerabilities

It was discovered that the KVM hypervisor implementation in the Linux kernel did not properly perform reference counting in some situations, leading to a use-after-free vulnerability. An attacker who could start and control a VM could possibly use this to expose sensitive information or execute...

8.7CVSS7AI score0.00734EPSS
Exploits1
OpenVAS
OpenVAS
added 2021/09/30 12:0 a.m.38 views

Ubuntu: Security Advisory (USN-5094-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.7CVSS6.8AI score0.00734EPSS
Exploits2References2
Ubuntu
Ubuntu
added 2021/09/29 8:14 a.m.149 views

USN-5094-1: Linux kernel vulnerabilities

It was discovered that the KVM hypervisor implementation in the Linux kernel did not properly perform reference counting in some situations, leading to a use-after-free vulnerability. An attacker who could start and control a VM could possibly use this to expose sensitive information or execute...

8.7CVSS7.3AI score0.00734EPSS
Exploits2
OSV
OSV
added 2021/09/29 8:14 a.m.3 views

USN-5094-1 linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-dell300x, linux-gcp, linux-gcp-4.15, linux-hwe, linux-kvm, linux-oracle, linux-snapdragon vulnerabilities

It was discovered that the KVM hypervisor implementation in the Linux kernel did not properly perform reference counting in some situations, leading to a use-after-free vulnerability. An attacker who could start and control a VM could possibly use this to expose sensitive information or execute...

8.7CVSS7.1AI score0.00734EPSS
Exploits2References7
OSV
OSV
added 2021/09/23 2:19 p.m.12 views

SUSE-SU-2021:3207-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3759: Unaccounted ipc objects in Linux kernel could have lead to breaking memcg limits and DoS attacks bsc1190115. - CVE-2021-38160: Data corruption or...

8.8CVSS8.6AI score0.03354EPSS
Exploits8References131
OSV
OSV
added 2021/08/27 12:0 a.m.1 views

UBUNTU-CVE-2021-3732

A flaw was found in the Linux kernel's OverlayFS subsystem in the way the user mounts the TmpFS filesystem with OverlayFS. This flaw allows a local user to gain access to hidden files that should not be accessible...

5.5CVSS6.6AI score0.00326EPSS
Exploits0References14
Rows per page
Query Builder