Lucene search
K

10863 matches found

Tenable Nessus
Tenable Nessus
added 2021/05/18 12:0 a.m.65 views

openSUSE Security Update : the Linux Kernel (openSUSE-2021-716)

The openSUSE Leap 15.2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2021-29650: The netfilter subsystem allowed attackers to cause a denial of service panic because net/netfilter/xtables.c and include/linux/netfilter/xtables.h lack a...

5.5CVSS7AI score0.01071EPSS
Exploits0References59
OSV
OSV
added 2021/05/14 11:15 p.m.21 views

CVE-2019-25044

The block subsystem in the Linux kernel before 5.2 has a use-after-free that can lead to arbitrary code execution in the kernel context and privilege escalation, aka CID-c3e2219216c9. This is related to blkmqfreerqs and blkcleanupqueue...

7.8CVSS7.7AI score0.00645EPSS
Exploits1References5
NVD
NVD
added 2021/05/14 11:15 p.m.28 views

CVE-2019-25044

The block subsystem in the Linux kernel before 5.2 has a use-after-free that can lead to arbitrary code execution in the kernel context and privilege escalation, aka CID-c3e2219216c9. This is related to blkmqfreerqs and blkcleanupqueue...

7.8CVSS0.00645EPSS
Exploits1References5
OSV
OSV
added 2021/05/14 11:15 p.m.3 views

UBUNTU-CVE-2019-25044

The block subsystem in the Linux kernel before 5.2 has a use-after-free that can lead to arbitrary code execution in the kernel context and privilege escalation, aka CID-c3e2219216c9. This is related to blkmqfreerqs and blkcleanupqueue...

7.8CVSS7.6AI score0.00645EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2021/05/13 12:0 a.m.55 views

SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2021:1574-1)

The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2021-29650: Fixed an issue with the netfilter subsystem that allowed attackers to cause a denial of service panic because net/netfilter/xtables.c and...

5.5CVSS6.6AI score0.01071EPSS
Exploits0References59
Tenable Nessus
Tenable Nessus
added 2021/05/13 12:0 a.m.53 views

RHEL 7 : kpatch-patch (RHSA-2021:1532)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:1532 advisory. This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel...

8.1CVSS7.3AI score0.06563EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2021/05/12 12:0 a.m.323 views

Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-4945-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4945-1 advisory. It was discovered that the Nouveau GPU driver in the Linux kernel did not properly handle error conditions in some situations. A local attack...

8.8CVSS6.8AI score0.01316EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2021/05/12 12:0 a.m.60 views

Ubuntu 20.04 LTS : Linux kernel (OEM) vulnerabilities (USN-4947-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4947-1 advisory. Kiyin discovered that the x25 implementation in the Linux kernel contained overflows when handling addresses from user space. A local attacker could use...

7.8CVSS7.2AI score0.00417EPSS
Exploits0References6
Ubuntu
Ubuntu
added 2021/05/11 10:37 p.m.226 views

USN-4949-1: Linux kernel vulnerabilities

Ryota Shiga discovered that the eBPF implementation in the Linux kernel did not properly verify that a BPF program only reserved as much memory for a ring buffer as was allocated. A local attacker could use this to cause a denial of service system crash or execute arbitrary code. CVE-2021-3489...

8.8CVSS7.4AI score0.27477EPSS
Exploits9
Ubuntu
Ubuntu
added 2021/05/11 10:31 p.m.186 views

USN-4948-1: Linux kernel (OEM) vulnerabilities

Ryota Shiga discovered that the eBPF implementation in the Linux kernel did not properly verify that a BPF program only reserved as much memory for a ring buffer as was allocated. A local attacker could use this to cause a denial of service system crash or execute arbitrary code. CVE-2021-3489...

8.8CVSS7.6AI score0.27477EPSS
Exploits11
Ubuntu
Ubuntu
added 2021/05/11 9:41 p.m.139 views

USN-4947-1: Linux kernel (OEM) vulnerabilities

Kiyin 尹亮 discovered that the x25 implementation in the Linux kernel contained overflows when handling addresses from user space. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2020-35519 It was discovered that the fastrpc driver i...

7.8CVSS6.8AI score0.00417EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2021/05/11 8:54 p.m.42 views

CVE-2021-3489

A flaw out of bound memory write in the Linux kernel BPF subsystem was found in the way user writes to BPF ring buffer too fast, so larger buffer than available memory could be allocated. A local user could use this flaw to crash the system or possibly escalate their privileges on the system...

7.8CVSS7.8AI score0.0055EPSS
Exploits0References5
OSV
OSV
added 2021/05/11 8:52 p.m.7 views

USN-4945-1 linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gke, linux-gke-5.4, linux-gkeop, linux-gkeop-5.4, linux-hwe-5.4, linux-kvm, linux-oracle, linux-oracle-5.4 vulnerabilities

It was discovered that the Nouveau GPU driver in the Linux kernel did not properly handle error conditions in some situations. A local attacker could use this to cause a denial of service system crash. CVE-2020-25639 Jan Beulich discovered that the Xen netback backend in the Linux kernel did not...

8.8CVSS6.7AI score0.01316EPSS
Exploits1References8
OSV
OSV
added 2021/05/11 2:15 p.m.14 views

CVE-2021-32560

The Logging subsystem in OctoPrint before 1.6.0 has incorrect access control because it attempts to manage files that are not .log files...

6.5CVSS6.5AI score
Exploits0References3
Prion
Prion
added 2021/05/11 2:15 p.m.20 views

Improper access control

The Logging subsystem in OctoPrint before 1.6.0 has incorrect access control because it attempts to manage files that are not .log files...

4CVSS6.4AI score0.0149EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2021/05/11 2:15 p.m.22 views

PYSEC-2021-29

The Logging subsystem in OctoPrint before 1.6.0 has incorrect access control because it attempts to manage files that are not .log files...

6.5CVSS2.2AI score0.0149EPSS
Exploits1References4
PyPA
PyPA
added 2021/05/11 2:15 p.m.4 views

PYSEC-2021-29

The Logging subsystem in OctoPrint before 1.6.0 has incorrect access control because it attempts to manage files that are not .log files...

6.5CVSS6.9AI score0.0149EPSS
Exploits1References4Affected Software1
RedHat Linux
RedHat Linux
added 2021/05/11 12:43 p.m.2 views

kernel: heap buffer overflow in the iSCSI subsystem

A flaw was found in the Linux kernel. A heap buffer overflow in the iSCSI subsystem is triggered by setting an iSCSI string attribute to a value larger than one page and then trying to read it. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...

7.8CVSS6.9AI score0.02079EPSS
Exploits1References5
CNNVD
CNNVD
added 2021/05/11 12:0 a.m.5 views

OctoPrint 访问控制错误漏洞

OctoPrint is an application. Provides a fast web interface for controlling consumer 3D printers. A security vulnerability previously existed in OctoPrint version 1.6.0. The vulnerability stemmed from the Logging subsystem in the program having incorrect access control...

6.5CVSS6.4AI score0.0149EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2021/05/11 12:0 a.m.46 views

CVE-2021-3491

The iouring subsystem in the Linux kernel allowed the MAXRWCOUNT limit to be bypassed in the PROVIDEBUFFERS operation, which led to negative values being usedin memrw when reading /proc//mem. This could be used to create a heap overflow leading to arbitrary code execution in the kernel. It was...

8.8CVSS7.3AI score0.00629EPSS
Exploits0References6
Rows per page
Query Builder