Lucene search
K

585 matches found

OSV
OSV
added 2024/12/27 2:15 p.m.10 views

UBUNTU-CVE-2024-53185

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix NULL ptr deref in cryptoaeadsetkey Neither SMB3.0 or SMB3.02 supports encryption negotiate context, so when SMB2GLOBALCAPENCRYPTION flag is set in the negotiate response, the client uses AES-128-CCM as the defaul...

7.8CVSS6.2AI score0.00171EPSS
Exploits0References13
OSV
OSV
added 2024/12/27 2:15 p.m.4 views

UBUNTU-CVE-2024-53177

In the Linux kernel, the following vulnerability has been resolved: smb: prevent use-after-free due to opencacheddir error paths If opencacheddir encounters an error parsing the lease from the server, the error handling may race with receiving a lease break, resulting in opencacheddir freeing the...

7.8CVSS6.4AI score0.00229EPSS
Exploits0References19
OSV
OSV
added 2024/11/19 2:16 a.m.5 views

AZL-53570 CVE-2024-50285 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: ksmbd: check outstanding simultaneous SMB operations If Client send simultaneous SMB operations to ksmbd, It exhausts too much memory through the "ksmbdworkcache”. It will cause OOM issue. ksmbd has a credit mechanism but it can'...

5.5CVSS6.4AI score0.0026EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/11/19 12:0 a.m.5 views

The vulnerability of the ksmbd component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the ksmbd component in the Linux operating system’s kernel is related to errors in reading beyond the allocated memory buffer in the smb2allocaterspbuf function. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.6AI score0.00234EPSS
Exploits0References30Affected Software5
Positive Technologies
Positive Technologies
added 2024/11/18 12:0 a.m.6 views

PT-2024-35624

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to a memory leak in the Linux kernel's SMB functionality. Specifically, when the open cached dir function races with the tcon reconnection, it can lead to a memory...

5.5CVSS5.6AI score0.00218EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/11/08 3:49 a.m.5 views

SUSE CVE-2024-50151

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOBs when building SMB2IOCTL request When using encryption, either enforced by the server or when using 'seal' mount option, the client will squash all compound request buffers down for encryption into a single i...

5.5CVSS7.8AI score0.00281EPSS
Exploits0References20
OSV
OSV
added 2024/11/07 10:15 a.m.7 views

AZL-53543 CVE-2024-50151 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOBs when building SMB2IOCTL request When using encryption, either enforced by the server or when using 'seal' mount option, the client will squash all compound request buffers down for encryption into a single i...

7.8CVSS6.9AI score0.00281EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/07 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an out-of-bounds write operation when building an SMB2IOCTL request...

7.8CVSS8.1AI score0.00281EPSS
Exploits0References7
SUSE Linux
SUSE Linux
added 2024/10/30 6:34 p.m.3 views

Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506008 fixes several issues. The following security issues were fixed: CVE-2024-35905: Fixed int overflow for stack access size bsc1226327. CVE-2024-42133: Bluetooth: Ignore too large handle values in BIG bsc1231419 CVE-2024-35863: Fixed potential UAF in...

7.8CVSS8AI score0.00265EPSS
Exploits0References28
SUSE Linux
SUSE Linux
added 2024/10/30 6:33 p.m.1 views

Security update for the Linux Kernel RT (Live Patch 9 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505001330 fixes several issues. The following security issues were fixed: CVE-2024-35905: Fixed int overflow for stack access size bsc1226327. CVE-2021-47598: schcake: do not call cakedestroy from cakeinit bsc1227471. CVE-2024-35863: Fixed potential UAF i...

7.8CVSS8.4AI score0.00265EPSS
Exploits0References28
Redos
Redos
added 2024/10/04 12:0 a.m.27 views

ROS-20241004-05

A vulnerability in the s390/ptrace component of the Linux kernel is related to incorrect processing of the fpc register settings. Exploitation of the vulnerability could allow an attacker to cause a denial of service Vulnerability in the sc16is7xx component of the Linux kernel is related to...

7.8CVSS8.9AI score0.01999EPSS
Exploits1
Redos
Redos
added 2024/08/13 12:0 a.m.37 views

ROS-20240813-02

Vulnerability of nvmettcpbuildpduiovec function in drivers/nvme/target/tcp.c module of NVMe driver of Linux kernel is related to null pointer dereference. of Linux operating system is related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denia...

7.8CVSS8.2AI score0.78388EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/07/19 12:0 a.m.5 views

PT-2024-7517 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the smb2 async writev function in the Linux kernel, which is responsible for handling server re-repick on subrequest retry. When a subrequest is marked for...

10CVSS8.2AI score0.00732EPSS
Exploits0References13
The Hacker News
The Hacker News
added 2024/07/08 1:15 p.m.18 views

New Ransomware-as-a-Service 'Eldorado' Targets Windows and Linux Systems

An emerging ransomware-as-a-service RaaS operation called Eldorado comes with locker variants to encrypt files on Windows and Linux systems. Eldorado first appeared on March 16, 2024, when an advertisement for the affiliate program was posted on the ransomware forum RAMP, Singapore-headquartered...

7.5AI score
Exploits0
RedHat Linux
RedHat Linux
added 2024/06/25 3:38 p.m.28 views

Moderate: Red Hat Security Advisory: samba security update

An update for samba is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

7.5CVSS6.7AI score0.62015EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/25 12:0 a.m.30 views

RHEL 9 : samba (RHSA-2024:4101)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:4101 advisory. Samba is an open-source implementation of the Server Message Block SMB protocol and the related Common Internet File System CIFS protocol, which allo...

7.5CVSS7AI score0.62015EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/06/12 3:27 a.m.3 views

SUSE CVE-2023-39179

A flaw was found within the handling of SMB2 read requests in the kernel ksmbd module. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this to disclose sensitive information on...

7.5CVSS8.1AI score0.01095EPSS
Exploits0References3
OSV
OSV
added 2024/05/21 4:15 p.m.8 views

UBUNTU-CVE-2023-52751

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in smb2queryinfocompound The following UAF was triggered when running fstests generic/072 with KASAN enabled against Windows Server 2022 and mount options...

7.8CVSS6.6AI score0.00241EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.21 views

EulerOS Virtualization 3.0.6.6 : samba (EulerOS-SA-2024-1665)

According to the versions of the samba packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An infinite loop vulnerability was found in Samba's mdssvc RPC service for Spotlight. When parsing Spotlight mdssvc RPC packets se...

7.5CVSS6.5AI score0.62606EPSS
Exploits0References4
OSV
OSV
added 2024/04/09 1:19 p.m.9 views

USN-6725-1 linux, linux-azure, linux-azure-5.15, linux-azure-fde, linux-azure-fde-5.15, linux-gcp, linux-gcp-5.15, linux-gke, linux-gkeop, linux-gkeop-5.15, linux-hwe-5.15, linux-ibm, linux-ibm-5.15, linux-intel-iotg, linux-intel-iotg-5.15, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-oracle-5.15, linux-raspi vulnerabilities

Chih-Yen Chang discovered that the KSMBD implementation in the Linux kernel did not properly validate certain data structure fields when parsing lease contexts, leading to an out-of-bounds read vulnerability. A remote attacker could use this to cause a denial of service system crash or possibly...

9.8CVSS7.1AI score0.17442EPSS
Exploits0References47
Rows per page
Query Builder