1255 matches found
kernel: net: tap: NULL pointer derefence in dev_parse_header_protocol when skb->dev is null
A flaw was found in the tap module in the Linux kernel. A NULL pointer dereference can be triggered due to a missing initialization, resulting in a denial of service...
PT-2025-25999
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL pointer dereference bug has been identified in the Linux kernel, specifically in the tap driver. The issue occurs when the skb-dev field is null, which is required by the dev pars...
PT-2024-11477 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak issue has been identified in the Linux kernel, specifically in the m can read fifo function. This occurs when the second call to m can fifo read fails, causing the functi...
The vulnerabilities of SIPROTEC relay protection devices allow a intruder to execute arbitrary code.
The vulnerability of SIPROTEC relay protection devices arises from an overflow in the buffer on the socket layer. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using specially crafted packets sent to port 4443/tcp...
SUSE SLES12 Security Update : kernel (SUSE-SU-2021:3217-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3217-1 advisory. - In pppol2tpconnect, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System...
PT-2024-11233 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the Linux kernel's network component, specifically the ll temac module. It involves a use-after-free error on the DMA side when the first BD of a multi TX BD...
PT-2024-11240 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a Use-after-Free problem in the Linux kernel, specifically in the can: j1939 module. The problem occurs when a skb is taken from the per-session skb queue witho...
PT-2024-11115 · Linux +6 · Linux Kernel +6
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A use after free issue has been resolved in the Linux kernel. The issue occurs in the emac mac tx buf send function, which calls emac tx fill tpd..,skb,... If an error happens in emac ...
PT-2024-11082 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A potential use after free issue in the MHI send functionality of the Linux kernel has been resolved. The MHI ul callback may be invoked immediately after the skb is queued for...
PT-2024-11078 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the mhi queue function in the Linux kernel, which returns an error when the doorbell is not accessible in the current state. This can occur when the device is i...
kernel: SELinux netlink permission check bypass
A flaw was found in the Linux kernel’s SELinux LSM hook implementation, where it anticipated the skb would only contain a single Netlink message. The hook incorrectly validated the first Netlink message in the skb only, to allow or deny the rest of the messages within the skb with the granted...
UBUNTU-CVE-2020-0430
In skbheadlen of /include/linux/skbuff.h, there is a possible out of bounds read due to memory corruption. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndro...
Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2020-5845)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-5845 advisory. - sched/fair: Fix low cpu usage with high throttling by removing expiration of cpu-local slices Dave Chiluk Orabug: 31350999 CVE-2019-19922 - sched/fai...
UBUNTU-CVE-2020-10751
A flaw was found in the Linux kernels SELinux LSM hook implementation before version 5.7, where it incorrectly assumed that an skb would only contain a single netlink message. The hook would incorrectly only validate the first netlink message in the skb and allow or deny the rest of the messages...
EulerOS Virtualization 3.0.2.2 : kernel (EulerOS-SA-2020-1452)
According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic...
OPENSUSE-SU-2020:0142-1 Security update for shadowsocks-libev
This update for shadowsocks-libev fixes the following issues: - Update version to 3.3.3 Refine the handling of suspicious connections. Fix exploitable denial-of-service vulnerability exists in the UDPRelay functionality boo1158251, CVE-2019-5163 Fix code execution vulnerability in the ss-manager...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1586)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : shadowsocks-libev (openSUSE-2019-2667)
This update for shadowsocks-libev fixes the following issues : - Update version to 3.3.3 - Refine the handling of suspicious connections. - Fix exploitable denial-of-service vulnerability exists in the UDPRelay functionality boo1158251, CVE-2019-5163 - Fix code execution vulnerability in the...
OPENSUSE-SU-2019:2667-1 Security update for shadowsocks-libev
This update for shadowsocks-libev fixes the following issues: - Update version to 3.3.3 Refine the handling of suspicious connections. Fix exploitable denial-of-service vulnerability exists in the UDPRelay functionality boo1158251, CVE-2019-5163 Fix code execution vulnerability in the ss-manager...
kernel: SCTP socket buffer memory leak leading to denial of service
The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem. An attacker can use this flaw to cause a denial of service attack...