Lucene search
K

35 matches found

Ubuntu
Ubuntu
added 5 days ago6 views

USN-8529-1: Linux kernel vulnerabilities

It was discovered that a logic flaw existed in the XFRM ESP-in-TCP subsystem in the Linux kernel when handling socket buffer fragments. This flaw is known as Fragnesia. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-43503 Several security issues...

9.8CVSS6.9AI score0.00563EPSS
Exploits11
Cvelist
Cvelist
added 2026/05/08 3:11 p.m.56 views

CVE-2026-44499 ZEBRA: Permanent Block Discovery Halt via Gossip Queue Saturation and Syncer Poisoning

ZEBRA is a Zcash node written entirely in Rust. Prior to version 4.4.0, a composite denial-of-service vulnerability in Zebra's block discovery pipeline allows an unauthenticated remote attacker to permanently halt all new block discovery on a targeted node. The attack exploits three independent...

8.7CVSS0.00351EPSS
Exploits0References1
OSV
OSV
added 2025/11/07 9:1 a.m.9 views

USN-7864-1 linux-gcp, linux-gcp-6.8, linux-gke vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS6.7AI score0.01345EPSS
Exploits8References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-18320

Malware in sbrugna...

4.1CVSS6.4AI score0.00434EPSS
Exploits1References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2018-6526

Malware in sbrugna...

7.8CVSS6.6AI score0.0043EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-34838

Malicious code in bioql PyPI...

7CVSS7.1AI score0.00901EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/07/10 12:0 a.m.9 views

PT-2025-29021

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw was identified in the Linux kernel's nvmem subsystem, specifically within the zynqmp nvmem driver. A recent change introduced an expectation for the device pointer to be passed ...

7.8CVSS7.8AI score0.01345EPSS
Exploits8References576
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2023-39193

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Netfilter subsystem in the Linux kernel. The sctpmtcheck did not validate the flagcount field. This flaw allows a local privileged...

6.1CVSS6.6AI score0.00415EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2021-42739

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The firewire subsystem in the Linux kernel through 5.14.13 has a buffer overflow related to drivers/media/firewire/firedtv-avc.c and...

6.7CVSS7AI score0.0044EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.9 views

PT-2025-30753

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the drm/xe subsystem related to handling device wedges. Specifically, the issue occurs when a device wedges during a GuC upload, leading to an...

6CVSS6.5AI score0.00117EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/03/05 12:0 a.m.9 views

The vulnerability of the kvm_for_each_vcpu() function in the KVM virtualization subsystem of Linux kernels allows a attacker to cause a service failure.

The vulnerability of the kvmforeachvcpu function in the KVM virtualization subsystem of Linux operating systems is related to errors in pointer manipulation when processing the createdvcpus parameter. Exploiting this vulnerability can allow a remote attacker to trigger a service failure...

5.5CVSS5.5AI score0.00222EPSS
Exploits0References15Affected Software2
OSV
OSV
added 2024/02/07 6:24 a.m.8 views

LSN-0100-1 Kernel Live Patch Security Notice

It was discovered that the SMB network file sharing protocol implementation in the Linux kernel did not properly handle certain error conditions, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary...

7.8CVSS7.1AI score0.0047EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/12/11 12:0 a.m.45 views

Ubuntu 18.04 ESM / 20.04 LTS : Linux kernel vulnerabilities (USN-6548-1)

The remote Ubuntu 18.04 ESM / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6548-1 advisory. It was discovered that Spectre-BHB mitigations were missing for Ampere processors. A local attacker could potentially use this to expose...

8.8CVSS7.3AI score0.09141EPSS
Exploits4References11
OSV
OSV
added 2023/09/14 9:5 p.m.10 views

SUSE-SU-2023:3607-1 Security update for the Linux Kernel (Live Patch 23 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-1503005990 fixes several issues. The following security issues were fixed: - CVE-2023-32233: Fixed a use-after-free in Netfilter nftables when processing batch requests bsc1211187. - CVE-2023-2156: Fixed a flaw in the networking subsystem within the handlin...

7.8CVSS8AI score0.12966EPSS
Exploits10References15
RedHat Linux
RedHat Linux
added 2023/05/16 8:43 a.m.6 views

kernel: u8 overflow problem in cfg80211_update_notlisted_nontrans()

A buffer overflow flaw was found in the u8 overflow in cfg80211updatenotlistednontrans in net/wireless/scan.c in the Linux kernel’s wifi subcomponent. This flaw allows an attacker to crash the system or leak internal kernel information...

8.1CVSS6.8AI score0.03763EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2023/05/14 12:0 a.m.97 views

Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6071-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6071-1 advisory. It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel did not properly perform filter deactivation in some...

7.8CVSS7.6AI score0.0788EPSS
Exploits18References13
Positive Technologies
Positive Technologies
added 2022/12/13 12:0 a.m.5 views

PT-2022-6586 · Apple · Macos Big Sur +5

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 15.7.2 iPadOS versions prior to 15.7.2 macOS Big Sur versions prior to 11.7.2 macOS Monterey versions prior to 12.6.2 macOS Ventura versions prior to 13.1 Description: A logic issue was addressed with improved...

5.5CVSS5.7AI score0.00357EPSS
Exploits0References22
OSV
OSV
added 2022/10/23 8:35 p.m.18 views

MGASA-2022-0379 Updated kernel packages fix security vulnerabilities

This kernel update is based on upstream 5.15.74 and fixes at least the following security issues: A flaw was found in the Linux kernel. The existing KVM SEV API has a vulnerability that allows a non-root host user-level application to crash the host kernel by creating a confidential guest VM...

8.8CVSS7.3AI score0.03763EPSS
Exploits8References11
OSV
OSV
added 2022/08/22 3:8 p.m.6 views

SUSE-SU-2022:2869-1 Security update for u-boot

This update for u-boot fixes the following issues: - CVE-2022-33103: Fixed a flaw in the squashfs subsystem that could lead to arbitrary code execution bsc1201213...

7.8CVSS7.8AI score0.00453EPSS
Exploits0References3
OSV
OSV
added 2022/08/22 3:8 p.m.5 views

SUSE-SU-2022:2868-1 Security update for u-boot

This update for u-boot fixes the following issues: - CVE-2022-33103: Fixed a flaw in the squashfs subsystem that could lead to arbitrary code execution bsc1201213...

7.8CVSS7.8AI score0.00453EPSS
Exploits0References3
Rows per page
Query Builder