Lucene search
K

10860 matches found

CNVD
CNVD
added 2021/06/08 12:0 a.m.13 views

Linux kernel post-release reuse vulnerability (CNVD-2021-43523)

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A post-release reuse vulnerability exists in the XFRM subsystem in Linux kernel versions prior to 5.0.19. An attacker...

7.8CVSS6.3AI score0.00503EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2021/06/08 12:0 a.m.6 views

PT-2021-8196 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.19 LTS Description: The issue is related to a memory corruption problem in the Linux kernel, specifically in the tracing subsystem. It causes severe kernel crashes due to memory corruption. The problem is due ...

10CVSS6.9AI score0.17563EPSS
Exploits8References1219
OSV
OSV
added 2021/06/07 8:15 p.m.1 views

DEBIAN-CVE-2019-25045

An issue was discovered in the Linux kernel before 5.0.19. The XFRM subsystem has a use-after-free, related to an xfrmstatefini panic, aka CID-dbb2483b2a46...

7.8CVSS6.4AI score0.00503EPSS
Exploits1References1
OSV
OSV
added 2021/06/07 8:15 p.m.3 views

CVE-2019-25045

An issue was discovered in the Linux kernel before 5.0.19. The XFRM subsystem has a use-after-free, related to an xfrmstatefini panic, aka CID-dbb2483b2a46...

7.8CVSS7.2AI score
Exploits0References5
UbuntuCve
UbuntuCve
added 2021/06/07 8:15 p.m.29 views

CVE-2019-25045

An issue was discovered in the Linux kernel before 5.0.19. The XFRM subsystem has a use-after-free, related to an xfrmstatefini panic, aka CID-dbb2483b2a46...

7.8CVSS6.8AI score0.00503EPSS
Exploits1References6
Prion
Prion
added 2021/06/07 8:15 p.m.18 views

Design/Logic Flaw

An issue was discovered in the Linux kernel before 5.0.19. The XFRM subsystem has a use-after-free, related to an xfrmstatefini panic, aka CID-dbb2483b2a46...

4.6CVSS7.2AI score0.00503EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2021/06/07 8:15 p.m.3 views

UBUNTU-CVE-2019-25045

An issue was discovered in the Linux kernel before 5.0.19. The XFRM subsystem has a use-after-free, related to an xfrmstatefini panic, aka CID-dbb2483b2a46...

7.8CVSS6.7AI score0.00503EPSS
Exploits1References7
Cvelist
Cvelist
added 2021/06/07 7:19 p.m.26 views

CVE-2019-25045

An issue was discovered in the Linux kernel before 5.0.19. The XFRM subsystem has a use-after-free, related to an xfrmstatefini panic, aka CID-dbb2483b2a46...

7.2AI score0.00503EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2021/06/06 1:0 p.m.57 views

CVE-2021-3573

A use-after-free in function hcisockboundioctl of the Linux kernel HCI subsystem was found in the way user calls ioct HCIUNBLOCKADDR or other way triggers race condition of the call hciunregisterdev together with one of the calls hcisockblacklistadd, hcisockblacklistdel, hcigetconninfo,...

6.9CVSS6.7AI score0.0037EPSS
Exploits1References8
OSV
OSV
added 2021/06/06 1:0 p.m.1 views

UBUNTU-CVE-2021-3573

A use-after-free in function hcisockboundioctl of the Linux kernel HCI subsystem was found in the way user calls ioct HCIUNBLOCKADDR or other way triggers race condition of the call hciunregisterdev together with one of the calls hcisockblacklistadd, hcisockblacklistdel, hcigetconninfo,...

6.4CVSS6.6AI score0.0037EPSS
Exploits1References9
Ubuntu
Ubuntu
added 2021/06/04 7:4 p.m.239 views

USN-4979-1: Linux kernel vulnerabilities

Kiyin 尹亮 discovered that the NFC LLCP protocol implementation in the Linux kernel contained a reference counting error. A local attacker could use this to cause a denial of service system crash. CVE-2020-25670 Kiyin 尹亮 discovered that the NFC LLCP protocol implementation in the Linux kernel did n...

8.8CVSS7.6AI score0.03233EPSS
Exploits4
CVE
CVE
added 2021/06/04 1:40 a.m.361 views

CVE-2021-3491

CVE-2021-3491 concerns the Linux kernel io_uring PROVIDE_BUFFERS path, where the MAX_RW_COUNT limit could be bypassed, causing negative values to be used in mem_rw during /proc//mem reads. This could enable a heap overflow and potential arbitrary code execution in the kernel. The issue was addres...

8.8CVSS8.2AI score0.00629EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2021/06/04 1:40 a.m.29 views

CVE-2021-3491 Linux kernel io_uring PROVIDE_BUFFERS MAX_RW_COUNT bypass

The iouring subsystem in the Linux kernel allowed the MAXRWCOUNT limit to be bypassed in the PROVIDEBUFFERS operation, which led to negative values being usedin memrw when reading /proc//mem. This could be used to create a heap overflow leading to arbitrary code execution in the kernel. It was...

7.8CVSS8.8AI score0.00629EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2021/06/04 1:40 a.m.44 views

CVE-2021-3491

The iouring subsystem in the Linux kernel allowed the MAXRWCOUNT limit to be bypassed in the PROVIDEBUFFERS operation, which led to negative values being usedin memrw when reading /proc//mem. This could be used to create a heap overflow leading to arbitrary code execution in the kernel. It was...

8.8CVSS7.4AI score0.00629EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/06/04 12:0 a.m.57 views

EulerOS Virtualization 2.9.0 : kernel (EulerOS-SA-2021-1971)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - There is a flaw reported in drivers/gpu/drm/nouveau/nouveausgdma.c in nouveausgdmacreatettm in Nouveau DRM subsystem. The issue...

8.8CVSS7.5AI score0.01316EPSS
Exploits1References17
RedHat Linux
RedHat Linux
added 2021/06/01 8:52 a.m.3 views

kernel: locking issue in drivers/tty/tty_jobctrl.c can lead to an use-after-free

A locking vulnerability was found in the tty subsystem of the Linux kernel in drivers/tty/ttyjobctrl.c. This flaw allows a local attacker to possibly corrupt memory or escalate privileges. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS6.7AI score0.01129EPSS
Exploits2References4
Positive Technologies
Positive Technologies
added 2021/06/01 12:0 a.m.5 views

PT-2024-11327 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a use-after-free vulnerability in the Linux kernel's iSCSI subsystem. If a unbind target call has not been made, there is a potential race condition where iscsi...

9.8CVSS6.7AI score0.67994EPSS
Exploits10References714
Positive Technologies
Positive Technologies
added 2021/05/31 12:0 a.m.8 views

PT-2021-4240 · Linux +8 · Linux Kernel +8

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.13-rc5 Description: A use-after-free in the function hci sock bound ioctl of the Linux kernel HCI subsystem was found. This occurs when a user calls ioct HCIUNBLOCKADDR or triggers a race condition with the ca...

9.8CVSS7.3AI score0.88106EPSS
Exploits222References1044
OSV
OSV
added 2021/05/28 11:15 a.m.2 views

DEBIAN-CVE-2021-20292

There is a flaw reported in the Linux kernel in versions before 5.9 in drivers/gpu/drm/nouveau/nouveausgdma.c in nouveausgdmacreatettm in Nouveau DRM subsystem. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker with ...

6.7CVSS6.4AI score0.00872EPSS
Exploits0References1
CNVD
CNVD
added 2021/05/28 12:0 a.m.11 views

Apple macOS Big Sur Input Validation Error Vulnerability

Apple macOS Big Sur is a mobile application app from Apple USA. The macOS Big Sur vulnerability is an input validation error vulnerability that arises from a failure to adequately validate user-supplied input within the TCC subsystem, which could allow a malicious application to bypass privacy...

7.8CVSS6.4AI score0.0658EPSS
Exploits0References1
Rows per page
Query Builder