Lucene search
K

914 matches found

RedHat Linux
RedHat Linux
added 2024/01/25 9:45 a.m.5 views

kernel: Slab-out-of-bound read in compare_netdev_and_ip

A vulnerability was found in comparenetdevandip in drivers/infiniband/core/cma.c in RDMA in the Linux kernel. An improper cleanup results in an out-of-boundary read. This flaw allows a local user to crash or escalate privileges on the system...

7.8CVSS6.6AI score0.0024EPSS
Exploits0References5
OSV
OSV
added 2023/12/08 11:6 a.m.5 views

OESA-2023-1896 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to allocate and initialize a huge number of page tables to be used...

6.3CVSS6.5AI score0.00309EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/11/07 9:3 a.m.5 views

kernel: RDMA/rxe: Fix BUG: KASAN: null-ptr-deref in rxe_qp_do_cleanup

A flaw was found in the rdmarxe module in the Linux kernel. A NULL pointer dereference can be triggered when an error occurs due to an improper check, resulting in a denial of service...

5.5CVSS6.5AI score0.00179EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/11/07 9:3 a.m.10 views

kernel: RDMA/rxe: Fix error unwind in rxe_create_qp()

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix error unwind in rxecreateqp In the function rxecreateqp, rxeqpfrominit is called to initialize qp, internally things like the spin locks are not setup until rxeqpinitreq. If an error occures before this point then t...

5.5CVSS6.3AI score0.00161EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/11/02 2:45 a.m.2 views

SUSE CVE-2023-5482

Insufficient data validation in USB in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...

8.8CVSS8.7AI score0.07094EPSS
Exploits0References4
OSV
OSV
added 2023/08/11 3:15 a.m.3 views

UBUNTU-CVE-2023-25775

Improper access control in the IntelR Ethernet Controller RDMA driver for linux before version 1.9.30 may allow an unauthenticated user to potentially enable escalation of privilege via network access...

9.8CVSS6.6AI score0.00978EPSS
Exploits0References13
OSV
OSV
added 2023/08/06 11:5 a.m.5 views

OESA-2023-1474 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to execute HW commands when shared buffers are not yet allocated,...

8.8CVSS6.8AI score0.00376EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.2 views

kernel: RDMA/siw: Fix duplicated reported IW_CM_EVENT_CONNECT_REPLY event

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix duplicated reported IWCMEVENTCONNECTREPLY event If siwrecvmparr returns -EAGAIN, it means that the MPA reply hasn't been received completely, and should not report IWCMEVENTCONNECTREPLY in this case. This may trigge...

5.5CVSS6.3AI score0.00203EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.8 views

kernel: RDMA/rxe: Fix error unwind in rxe_create_qp()

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix error unwind in rxecreateqp In the function rxecreateqp, rxeqpfrominit is called to initialize qp, internally things like the spin locks are not setup until rxeqpinitreq. If an error occures before this point then t...

5.5CVSS6.3AI score0.00161EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.4 views

kernel: RDMA/rxe: Fix mr->map double free

A double-free vulnerability was found in the Linux kernel RDMA RXE soft-RoCE driver's memory region handling. A local user with access to RDMA userspace verbs can register a memory region with parameters that cause initialization to fail, triggering error handling code that frees the mr-map...

7.8CVSS7.1AI score0.00151EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.4 views

kernel: RDMA/rxe: Fix BUG: KASAN: null-ptr-deref in rxe_qp_do_cleanup

A flaw was found in the rdmarxe module in the Linux kernel. A NULL pointer dereference can be triggered when an error occurs due to an improper check, resulting in a denial of service...

5.5CVSS6.5AI score0.00179EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.3 views

kernel: RDMA/hfi1: Prevent panic when SDMA is disabled

A possible NULL pointer dereference was observed in the Linux kernel in hfil module. This may lead to kernel panic and then crash...

5.5CVSS6.7AI score0.00253EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2023/05/15 12:0 a.m.12 views

The vulnerability of the Linux operating system’s kernel InfiniBand driver allows a hacker to trigger a service failure or increase their privileges.

The vulnerability in the Linux operating system’s kernel InfiniBand driver is related to the improper preparation of parameters for the rdmabindaddr function. This leads to reading beyond the allocated memory boundary in the comparenetdevandip function within the drivers/infiniband/core/cma.c...

7.8CVSS6.6AI score0.0024EPSS
Exploits0References18Affected Software3
OSV
OSV
added 2023/05/12 11:5 a.m.5 views

OESA-2023-1276 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: The specific flaw exists within the DPT I2O Controller driver. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this in conjunction with other vulnerabilities to...

7.8CVSS7AI score0.00587EPSS
Exploits0References7
OSV
OSV
added 2023/05/04 9:15 p.m.4 views

CVE-2023-21503

Potential buffer overflow vulnerability in mmLteInterRatManagement.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackers to cause invalid memory access...

9.8CVSS7.6AI score0.00624EPSS
Exploits0References1
OSV
OSV
added 2023/05/04 9:15 p.m.3 views

CVE-2023-21504

Potential buffer overflow vulnerability in mmPlmncoordination.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackers to cause invalid memory access...

9.8CVSS6.1AI score0.00624EPSS
Exploits0References1
OSV
OSV
added 2023/05/04 9:15 p.m.5 views

CVE-2023-21494

Potential buffer overflow vulnerability in auth api in mmAuthentication.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackers to cause invalid memory access...

9.8CVSS7.6AI score0.0066EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/05/04 12:0 a.m.4 views

PT-2023-18259 · Unknown · Shannon Baseband

Name of the Vulnerable Software and Affected Versions: Shannon baseband versions prior to SMR May-2023 Release 1 Description: A potential buffer overflow issue in the mm Plmncoordination.c file allows remote attackers to cause invalid memory access. Recommendations: For versions prior to SMR...

9.8CVSS9.6AI score0.00624EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/05/04 12:0 a.m.3 views

PT-2023-18258 · Unknown · Shannon Baseband

Name of the Vulnerable Software and Affected Versions: Shannon baseband versions prior to SMR May-2023 Release 1 Description: The issue is related to a potential buffer overflow vulnerability in the mm LteInterRatManagement.c file. This vulnerability allows remote attackers to cause invalid memor...

9.8CVSS9.4AI score0.00624EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/05/04 12:0 a.m.4 views

SAMSUNG Mobile devices 安全漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability in SAMSUNG Mobile devices SMR May-2023 Release 1 version 1 previously existed in the auth api in mmAuthentication.c in the...

9.8CVSS8.5AI score0.0066EPSS
Exploits0References2
Rows per page
Query Builder