Lucene search
K

1255 matches found

CVE
CVE
added 2025/01/11 2:47 p.m.131 views

CVE-2024-57874

Mode C — Normal (details available) CVE-2024-57874 affects the Linux kernel on arm64 where the function tagged_addr_ctrl_set() uses a temporary variable that is not initialized when performing a zero-length SETREGSET, potentially leaking memory from the kernel stack (up to 64 bits). The issue ari...

6.1CVSS6.3AI score0.00201EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2025/01/11 2:47 p.m.14 views

CVE-2024-57874 arm64: ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL

In the Linux kernel, the following vulnerability has been resolved: arm64: ptrace: fix partial SETREGSET for NTARMTAGGEDADDRCTRL Currently taggedaddrctrlset doesn't initialize the temporary 'ctrl' variable, and a SETREGSET call with a length of zero will leave this uninitialized. Consequently...

6.1CVSS6AI score0.00201EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2025/01/11 2:47 p.m.7 views

CVE-2024-57874

In the Linux kernel, the following vulnerability has been resolved: arm64: ptrace: fix partial SETREGSET for NTARMTAGGEDADDRCTRL Currently taggedaddrctrlset doesn't initialize the temporary 'ctrl' variable, and a SETREGSET call with a length of zero will leave this uninitialized. Consequently...

6.1CVSS6AI score0.00201EPSS
Exploits0
CNNVD
CNNVD
added 2025/01/11 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates in ptrace for the ARM64 architecture that fails to initialize the temporary variable ctrl when processing...

6.1CVSS6.3AI score0.00175EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/01/11 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates in ptrace for the ARM64 architecture that fails to initialize the temporary variable fpmr when processing...

6.1CVSS6.5AI score0.00178EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.3 views

PT-2025-49794

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to the handling of robust list pointers during an exec operation. Specifically, the sys get robust list and compat get robust list functions may...

5.3AI score0.00191EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/12/05 12:0 a.m.7 views

PT-2025-3603 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the Linux kernel's ptrace system call, specifically the arm64 architecture. The problem arises from the fpmr set function not initializing the temporary fpmr...

8.1CVSS7.6AI score0.00737EPSS
Exploits3References884
Positive Technologies
Positive Technologies
added 2024/12/05 12:0 a.m.5 views

PT-2025-3602 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the Linux kernel's ptrace functionality, specifically with the arm64 architecture. The problem arises when the poe set function does not initialize a temporary...

6.1CVSS6.2AI score0.00175EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2024/06/28 12:0 a.m.73 views

EulerOS 2.0 SP12 : kernel (EulerOS-SA-2024-1859)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In the Linux kernel, the following vulnerability has been resolved: crypto: lib/mpi - Fix unexpected pointer access in mpiecinit When the mpiecctx...

8CVSS6.7AI score0.02224EPSS
Exploits2References63
RedHat Linux
RedHat Linux
added 2024/06/05 12:36 a.m.2 views

kernel: s390/ptrace: handle setting of fpc register correctly

In the Linux kernel, the following vulnerability has been resolved: s390/ptrace: handle setting of fpc register correctly If the content of the floating point control fpc register of a traced process is modified with the ptrace interface the new value is tested for validity by temporarily loading...

7.1CVSS6.7AI score0.00244EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2024/05/20 9:15 p.m.15 views

CVE-2024-33901

Issue in KeePassXC 2.7.7 allows an attacker who has the privileges of the victim to recover some passwords stored in the .kdbx database via a memory dump. NOTE: the vendor disputes this because memory-management constraints make this unavoidable in the current design and other realistic designs...

6.5CVSS5.9AI score0.00699EPSS
Exploits2References3
UbuntuCve
UbuntuCve
added 2024/05/20 9:15 p.m.13 views

CVE-2024-33900

KeePassXC 2.7.7 allows an attacker who has the privileges of the victim to recover cleartext credentials via a memory dump. NOTE: the vendor disputes this because memory-management constraints make this unavoidable in the current design and other realistic designs...

6.5CVSS5.9AI score0.00344EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2024/05/20 1:44 p.m.24 views

CVE-2024-35871

A vulnerability was found in the Linux kernel affecting the RISC-V architecture, where the kernel global pointer gp can be leaked to user space. This issue occurs when a user-mode helper thread, such as /sbin/init starts a new process via execve without clearing the kernel registers, allowing...

5.5CVSS8.5AI score0.00264EPSS
Exploits0References4
NVD
NVD
added 2024/05/19 9:15 a.m.19 views

CVE-2024-35871

In the Linux kernel, the following vulnerability has been resolved: riscv: process: Fix kernel gp leakage childregs represents the registers which are active for the new thread in user context. For a kernel thread, childregs-gp is never used since the kernel gp is not touched by switchto. For a...

7.1CVSS6.6AI score0.00264EPSS
Exploits0References7
OSV
OSV
added 2024/05/19 9:15 a.m.1 views

DEBIAN-CVE-2024-35871

In the Linux kernel, the following vulnerability has been resolved: riscv: process: Fix kernel gp leakage childregs represents the registers which are active for the new thread in user context. For a kernel thread, childregs-gp is never used since the kernel gp is not touched by switchto. For a...

7.1CVSS6.1AI score0.00264EPSS
Exploits0References1
OSV
OSV
added 2024/05/19 9:15 a.m.2 views

UBUNTU-CVE-2024-35871

In the Linux kernel, the following vulnerability has been resolved: riscv: process: Fix kernel gp leakage childregs represents the registers which are active for the new thread in user context. For a kernel thread, childregs-gp is never used since the kernel gp is not touched by switchto. For a...

7.1CVSS6.4AI score0.00264EPSS
Exploits0References21
Vulnrichment
Vulnrichment
added 2024/05/19 8:34 a.m.20 views

CVE-2024-35871 riscv: process: Fix kernel gp leakage

In the Linux kernel, the following vulnerability has been resolved: riscv: process: Fix kernel gp leakage childregs represents the registers which are active for the new thread in user context. For a kernel thread, childregs-gp is never used since the kernel gp is not touched by switchto. For a...

6.9AI score0.00264EPSS
Exploits0References7
Cvelist
Cvelist
added 2024/05/19 8:34 a.m.39 views

CVE-2024-35871 riscv: process: Fix kernel gp leakage

In the Linux kernel, the following vulnerability has been resolved: riscv: process: Fix kernel gp leakage childregs represents the registers which are active for the new thread in user context. For a kernel thread, childregs-gp is never used since the kernel gp is not touched by switchto. For a...

6.6AI score0.00264EPSS
Exploits0References6
OSV
OSV
added 2024/05/19 8:34 a.m.18 views

CVE-2024-35871 riscv: process: Fix kernel gp leakage

In the Linux kernel, the following vulnerability has been resolved: riscv: process: Fix kernel gp leakage childregs represents the registers which are active for the new thread in user context. For a kernel thread, childregs-gp is never used since the kernel gp is not touched by switchto. For a...

7.1CVSS6.3AI score0.00264EPSS
Exploits0References10
Rockylinux
Rockylinux
added 2024/05/10 2:32 p.m.13 views

container-selinux bug fix update

An update is available for container-selinux. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The container-selinux package provides SELinux policies for contain...

7.3AI score
Exploits0
Rows per page
Query Builder