Lucene search
K

85 matches found

RedHat Linux
RedHat Linux
added 2026/02/04 6:39 p.m.8 views

kernel: tcp: fix a signed-integer-overflow bug in tcp_add_backlog()

A flaw was found in the Linux kernel’s TCP implementation in the function tcpaddbacklog. When calculating the maximum acceptable backlog for TCP sockets, the sum of the receive buffer skrcvbuf, the send buffer sksndbuf, and a fixed constant may exceed the maximum value of a signed integer due to...

5.9AI score0.00168EPSS
Exploits0References5
OSV
OSV
added 2026/01/20 8:9 a.m.11 views

CLSA-2026-1768110920 kernel: Fix of 16 CVEs

crypto: lzo - Fix compression buffer overrun CVE-2025-38068 - wifi: brcmfmac: fix use-after-free when rescheduling brcmfbtcoexinfo work CVE-2025-39863 - NFSD: Protect against send buffer overflow in NFSv2 READ CVE-2022-43945 - tcp: Clear tcpsksk-fastopenrsk in tcpdisconnect. CVE-2025-40186 - can:...

7.8CVSS6AI score0.21314EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000807)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000807 advisory. The socksetsockopt function in net/core/sock.c in the Linux kernel before 3.5 mishandles negative values of sksndbuf and skrcvbuf, which allows local users to cause ...

7.8CVSS7.1AI score0.00412EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001958)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001958 advisory. The socksetsockopt function in net/core/sock.c in the Linux kernel before 3.5 mishandles negative values of sksndbuf and skrcvbuf, which allows local users to cause ...

7.8CVSS7.1AI score0.00412EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.5 views

PT-2026-26046

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel’s RDMA/umad component where a negative data len value can occur in the ib umad write function. This happens when there is a mismatch between the...

7.8CVSS6AI score0.00125EPSS
Exploits0
EUVD
EUVD
added 2025/12/30 3:30 p.m.3 views

EUVD-2022-55837

In the Linux kernel, the following vulnerability has been resolved: NFSD: Finish converting the NFSv2 GETACL result encoder The xdrstream conversion inadvertently left some code that set the pagelen of the send buffer. The XDR stream encoders should handle this automatically now. This oversight...

6.2AI score0.002EPSS
Exploits0References6
NVD
NVD
added 2025/12/30 1:16 p.m.6 views

CVE-2022-50865

In the Linux kernel, the following vulnerability has been resolved: tcp: fix a signed-integer-overflow bug in tcpaddbacklog The type of skrcvbuf and sksndbuf in struct sock is int, and in tcpaddbacklog, the variable limit is caculated by adding skrcvbuf, sksndbuf and 64 1024, it may exceed the ma...

0.00168EPSS
Exploits0References5
CVE
CVE
added 2025/12/30 12:15 p.m.17 views

CVE-2022-50865

CVE-2022-50865 is a Linux kernel issue: tcp_add_backlog() could overflow an int when computing limit as the sum of sk_rcvbuf, sk_sndbuf, and 64KiB. The fix halves the sndbuf to reduce the limit budget (ACKs smaller than payload). Concrete references appear in multiple OS advisories (e.g., RHSA/EL...

6.1AI score0.00168EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/22 5:4 p.m.3 views

kernel: NFSD: Protect against send buffer overflow in NFSv2 READ

In the Linux kernel, the following vulnerability has been resolved: NFSD: Protect against send buffer overflow in NFSv2 READ Since before the git era, NFSD has conserved the number of pages held by each nfsd thread by combining the RPC receive and send buffers into a single array of pages. This...

7.8CVSS7AI score0.0017EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/11/19 12:10 a.m.4 views

CVE-2025-36463

Multiple out-of-bounds read and write vulnerabilities exist in the ControlVault WBDI Driver Broadcom Storage Adapter functionality of Dell ControlVault3 prior to 5.15.14.19 and Dell ControlVault3 Plus prior to 6.2.36.47. A specially crafted WinBioControlUnit call can lead to memory corruption. An...

7.3CVSS6.9AI score0.00123EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/17 10:51 p.m.5 views

CVE-2025-36463 Dell ControlVault3 ControlVault WBDI Driver Broadcom Storage Adapter out-of-bounds write vulnerability

Multiple out-of-bounds read and write vulnerabilities exist in the ControlVault WBDI Driver Broadcom Storage Adapter functionality of Dell ControlVault3 prior to 5.15.14.19 and Dell ControlVault3 Plus prior to 6.2.36.47. A specially crafted WinBioControlUnit call can lead to memory corruption. An...

7.3CVSS0.00123EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/11/17 10:51 p.m.2 views

CVE-2025-36463 Dell ControlVault3 ControlVault WBDI Driver Broadcom Storage Adapter out-of-bounds write vulnerability

Multiple out-of-bounds read and write vulnerabilities exist in the ControlVault WBDI Driver Broadcom Storage Adapter functionality of Dell ControlVault3 prior to 5.15.14.19 and Dell ControlVault3 Plus prior to 6.2.36.47. A specially crafted WinBioControlUnit call can lead to memory corruption. An...

7.3CVSS6.4AI score0.00123EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/22 3:31 p.m.4 views

EUVD-2022-55667

In the Linux kernel, the following vulnerability has been resolved: iio: fix memory leak in iiodeviceregistereventset When iiodeviceregistersysfsgroup returns failed, iiodeviceregistereventset needs to free attrs array. Otherwise, kmemleak would scan & report memory leak as below: unreferenced...

5.7AI score0.00195EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/10/08 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2022-50487

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NFSD: Protect against send buffer overflow in NFSv3 READDIR Since before the git era, NFSD has conserved the number of pages held by each nfsd thread by combini...

6.9AI score
Exploits0References3
CVE
CVE
added 2025/10/04 3:16 p.m.8 views

CVE-2022-50487

CVE-2022-50487 is rejected/not used and does not represent an active vulnerability entry.

6.4AI score
Exploits0
Cvelist
Cvelist
added 2025/10/04 3:16 p.m.27 views

CVE-2022-50487

...

Exploits0
Positive Technologies
Positive Technologies
added 2025/10/04 12:0 a.m.4 views

PT-2025-40674

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's Network File System Daemon NFSD related to handling RPC calls in NFSv3 READDIR operations. The issue stems from a potential send buffer overflow that...

6.5AI score
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2022-55617

Malicious code in bioql PyPI...

6.3AI score
Exploits0References6
SUSE CVE
SUSE CVE
added 2025/09/18 11:43 p.m.3 views

SUSE CVE-2022-50410

In the Linux kernel, the following vulnerability has been resolved: NFSD: Protect against send buffer overflow in NFSv2 READ Since before the git era, NFSD has conserved the number of pages held by each nfsd thread by combining the RPC receive and send buffers into a single array of pages. This...

5.5CVSS6.8AI score0.0017EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2025/09/18 7:19 p.m.5 views

CVE-2022-50410

In the Linux kernel, the following vulnerability has been resolved: NFSD: Protect against send buffer overflow in NFSv2 READ Since before the git era, NFSD has conserved the number of pages held by each nfsd thread by combining the RPC receive and send buffers into a single array of pages. This...

7.1CVSS6.1AI score0.0017EPSS
Exploits0References4
Rows per page
Query Builder