Lucene search
K

1060 matches found

SUSE CVE
SUSE CVE
added 2024/05/23 3:4 a.m.6 views

SUSE CVE-2021-47318

In the Linux kernel, the following vulnerability has been resolved: archtopology: Avoid use-after-free for scalefreqdata Currently topologyscalefreqtick which gets called from schedulertick may end up using a pointer to "struct scalefreqdata", which was previously cleared by...

7.8CVSS6.5AI score0.0023EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/05/23 2:57 a.m.4 views

SUSE CVE-2023-52769

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix htt mlo-offset event locking The ath12k active pdevs are protected by RCU but the htt mlo-offset event handling code calling ath12kmacgetarbypdevid was not marked as a read-side critical section. Mark the code i...

6.4CVSS6.8AI score0.00238EPSS
Exploits0References10
OSV
OSV
added 2024/05/22 7:15 a.m.4 views

DEBIAN-CVE-2021-47448

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix possible stall on recvmsg recvmsg can enter an infinite loop if the caller provides the MSGWAITALL, the data present in the receive queue is not sufficient to fulfill the request, and no more data is received by the...

5.5CVSS5.9AI score0.00196EPSS
Exploits0References1
OSV
OSV
added 2024/05/21 4:15 p.m.2 views

DEBIAN-CVE-2023-52800

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix htt pktlog locking The ath11k active pdevs are protected by RCU but the htt pktlog handling code calling ath11kmacgetarbypdevid was not marked as a read-side critical section. Mark the code in question as an RCU...

4.4CVSS5.2AI score0.00227EPSS
Exploits0References1
OSV
OSV
added 2024/05/21 4:15 p.m.1 views

DEBIAN-CVE-2023-52777

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix gtk offload status event locking The ath11k active pdevs are protected by RCU but the gtk offload status event handling code calling ath11kmacgetarvifbyvdevid was not marked as a read-side critical section. Mark...

7.8CVSS5.9AI score0.00241EPSS
Exploits0References1
OSV
OSV
added 2024/05/21 4:15 p.m.8 views

UBUNTU-CVE-2023-52776

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix dfs-radar and temperature event locking The ath12k active pdevs are protected by RCU but the DFS-radar and temperature event handling code calling ath12kmacgetarbypdevid was not marked as a read-side critical...

5.9CVSS5.9AI score0.00707EPSS
Exploits0References6
OSV
OSV
added 2024/05/21 3:15 p.m.3 views

UBUNTU-CVE-2021-47318

In the Linux kernel, the following vulnerability has been resolved: archtopology: Avoid use-after-free for scalefreqdata Currently topologyscalefreqtick which gets called from schedulertick may end up using a pointer to "struct scalefreqdata", which was previously cleared by...

7.8CVSS5.7AI score0.0023EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/05/21 1:59 a.m.3 views

SUSE CVE-2024-35898

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: Fix potential data-race in nftflowtabletypeget nftunregisterflowtabletype within nfflowinetmoduleexit can concurrent with nftflowtabletypeget within nftablesnewflowtable. And thhere is not any protection when...

5.5CVSS6.2AI score0.00193EPSS
Exploits0References14
CNNVD
CNNVD
added 2024/05/21 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that originates from a failure in the KVM:x86 module to handle SRCU initialization during page track initialization...

5.5CVSS6.3AI score0.0025EPSS
Exploits0References5
OSV
OSV
added 2024/05/20 10:15 a.m.5 views

DEBIAN-CVE-2024-35959

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix mlx5eprivinit cleanup flow When mlx5eprivinit fails, the cleanup flow calls mlx5eselqcleanup which calls mlx5eselqapply that assures that the priv-statelock is held using lockdepisheld. Acquire the statelock in...

5.5CVSS5.7AI score0.00253EPSS
Exploits0References1
OSV
OSV
added 2024/05/20 10:15 a.m.3 views

UBUNTU-CVE-2024-36008

In the Linux kernel, the following vulnerability has been resolved: ipv4: check for NULL idev in iprouteusehint syzbot was able to trigger a NULL deref in fibvalidatesource in an old tree 1. It appears the bug exists in latest trees. All calls to indevgetrcu must be checked for a NULL result. 1...

5.5CVSS6.1AI score0.00214EPSS
Exploits0References21
OSV
OSV
added 2024/05/19 11:15 a.m.3 views

DEBIAN-CVE-2024-35929

In the Linux kernel, the following vulnerability has been resolved: rcu/nocb: Fix WARNONONCE in the rcunocbbypasslock For the kernels built with CONFIGRCUNOCBCPUDEFAULTALL=y and CONFIGRCULAZY=y, the following scenarios will trigger WARNONONCE in the rcunocbbypasslock and rcunocbwaitcontended...

7.8CVSS5.6AI score0.0022EPSS
Exploits0References1
OSV
OSV
added 2024/05/19 9:15 a.m.2 views

DEBIAN-CVE-2024-35860

In the Linux kernel, the following vulnerability has been resolved: bpf: support deferring bpflink dealloc to after RCU grace period BPF link for some program types is passed as a "context" which can be used by those BPF programs to look up additional information. E.g., for multi-kprobes and...

5.5CVSS5.3AI score0.00225EPSS
Exploits0References1
OSV
OSV
added 2024/05/19 9:15 a.m.3 views

UBUNTU-CVE-2024-35860

In the Linux kernel, the following vulnerability has been resolved: bpf: support deferring bpflink dealloc to after RCU grace period BPF link for some program types is passed as a "context" which can be used by those BPF programs to look up additional information. E.g., for multi-kprobes and...

5.5CVSS5.7AI score0.00225EPSS
Exploits0References10
OSV
OSV
added 2024/05/19 9:15 a.m.7 views

UBUNTU-CVE-2024-35892

In the Linux kernel, the following vulnerability has been resolved: net/sched: fix lockdep splat in qdisctreereducebacklog qdisctreereducebacklog is called with the qdisc lock held, not RTNL. We must use qdisclookuprcu instead of qdisclookup syzbot reported: WARNING: suspicious RCU usage...

5.5CVSS6.6AI score0.00171EPSS
Exploits0References11
OSV
OSV
added 2024/05/17 3:15 p.m.2 views

DEBIAN-CVE-2024-35857

In the Linux kernel, the following vulnerability has been resolved: icmp: prevent possible NULL dereferences from icmpbuildprobe First problem is a double call to indevgetrcu, because the second one could return NULL. if indevgetrcudev && indevgetrcudev-ifalist Second problem is a read from...

5.3CVSS5.6AI score0.00888EPSS
Exploits0References1
OSV
OSV
added 2024/05/17 3:15 p.m.2 views

DEBIAN-CVE-2024-35839

In the Linux kernel, the following vulnerability has been resolved: netfilter: bridge: replace physindev with physinif in nfbridgeinfo An skb can be added to a neigh-arpqueue while waiting for an arp reply. Where original skb's skb-dev can be different to neigh's neigh-dev. For instance in case o...

5.5CVSS5.8AI score0.00223EPSS
Exploits0References1
OSV
OSV
added 2024/05/14 3:12 p.m.10 views

DEBIAN-CVE-2024-27395

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: Fix Use-After-Free in ovsctexit Since kfreercu, which is called in the hlistforeachentryrcu traversal of ovsctlimitexit, is not part of the RCU read critical section, it is possible that the RCU grace period wil...

7.8CVSS5.8AI score0.00244EPSS
Exploits0References1
OSV
OSV
added 2024/05/14 3:12 p.m.14 views

AZL-40565 CVE-2024-27396 affecting package hyperv-daemons for versions less than 6.6.35.1-1

In the Linux kernel, the following vulnerability has been resolved: net: gtp: Fix Use-After-Free in gtpdellink Since callrcu, which is called in the hlistforeachentryrcu traversal of gtpdellink, is not part of the RCU read critical section, it is possible that the RCU grace period will pass durin...

7.8CVSS6.3AI score0.00244EPSS
Exploits0References1
OSV
OSV
added 2024/05/14 3:12 p.m.7 views

DEBIAN-CVE-2024-27396

In the Linux kernel, the following vulnerability has been resolved: net: gtp: Fix Use-After-Free in gtpdellink Since callrcu, which is called in the hlistforeachentryrcu traversal of gtpdellink, is not part of the RCU read critical section, it is possible that the RCU grace period will pass durin...

7.8CVSS5.7AI score0.00244EPSS
Exploits0References1
Rows per page
Query Builder