Lucene search
+L

239 matches found

OSV
OSV
added 2024/12/27 2:15 p.m.6 views

AZL-55615 CVE-2024-53210 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: s390/iucv: MSGPEEK causes memory leak in iucvsockdestruct Passing MSGPEEK flag to skbrecvdatagram increments skb refcount skb-users and iucvsockrecvmsg does not decrement skb refcount at exit. This results in skb memory leak in...

5.5CVSS6.7AI score0.00217EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/27 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a memory leak problem caused by MSGPEEK in the s390/iucv subsystem...

5.5CVSS6.5AI score0.00217EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/12/04 12:51 a.m.12 views

kernel: s390/qeth: Fix kernel panic after setting hsuid

In the Linux kernel, the following vulnerability has been resolved: s390/qeth: Fix kernel panic after setting hsuid Symptom: When the hsuid attribute is set for the first time on an IQD Layer3 device while the corresponding network interface is already UP, the kernel will try to execute a napi...

4.4CVSS6.9AI score0.0022EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2024/12/04 12:0 a.m.9 views

The vulnerabilities of the s390/cio components of Linux kernel, which allow a hacker to trigger a service failure

The vulnerability of the s390/cio components of the Linux operating system’s kernel is related to errors in reading beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.8AI score0.00233EPSS
Exploits0References15Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/11/19 12:0 a.m.6 views

The vulnerabilities of the s390/dasd components of the Linux operating system’s kernel, which allow a hacker to trigger a service failure

The vulnerability of the s390/dasd components in the Linux operating system’s kernel is related to incorrect calculations in the dasdgenericsetonline function. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.4AI score0.00273EPSS
Exploits0References35Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/11/13 12:0 a.m.11 views

The vulnerabilities of the s390/cio components of Linux kernel, which allow a hacker to trigger a service failure

The vulnerability of the s390/cio component of the Linux operating system’s kernel is related to the state of the ccwdevicesetonline function. Exploiting this vulnerability can allow an attacker to gain increased privileges within the system...

5.5CVSS6.1AI score0.00175EPSS
Exploits0References36Affected Software6
BDU FSTEC
BDU FSTEC
added 2024/09/06 12:0 a.m.6 views

The vulnerability of the `virt_to-phys` function in the S390 kernel of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the virtto-phys function in the S390 kernel of the Linux operating system is related to the use of an uninitialized pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.3AI score0.00211EPSS
Exploits0References15Affected Software5
IBM Security Bulletins
IBM Security Bulletins
added 2024/09/05 6:20 p.m.98 views

Security Bulletin: IBM HTTP Server is vulnerable to HTTP response splitting due to the included Apache HTTP Server (CVE-2024-24795, CVE-2023-38709)

Summary IBM HTTP Server used by IBM WebSphere Application Server is vulnerable to HTTP response splitting due to the included Apache HTTP Server. Vulnerability Details CVEID:CVE-2024-24795 DESCRIPTION: Apache HTTP Server is vulnerable to HTTP response splitting attacks, caused by a flaw in multip...

7.3CVSS6.5AI score0.03914EPSS
Exploits0Affected Software1
SUSE CVE
SUSE CVE
added 2024/09/05 2:46 a.m.3 views

SUSE CVE-2024-44969

In the Linux kernel, the following vulnerability has been resolved: s390/sclp: Prevent release of buffer in I/O When a task waiting for completion of a Store Data operation is interrupted, an attempt is made to halt this operation. If this attempt fails due to a hardware or firmware problem, ther...

5.5CVSS6.5AI score0.00218EPSS
Exploits0References17
OSV
OSV
added 2024/09/04 8:15 p.m.2 views

DEBIAN-CVE-2024-45005

In the Linux kernel, the following vulnerability has been resolved: KVM: s390: fix validity interception issue when gisa is switched off We might run into a SIE validity if gisa has been disabled either via using kernel parameter "kvm.usegisa=0" or by setting the related sysfs attribute to N echo...

5.5CVSS5.4AI score0.00211EPSS
Exploits0References1
OSV
OSV
added 2024/09/04 7:15 p.m.12 views

AZL-49881 CVE-2024-44969 affecting package kernel for versions less than 5.15.167.1-1

In the Linux kernel, the following vulnerability has been resolved: s390/sclp: Prevent release of buffer in I/O When a task waiting for completion of a Store Data operation is interrupted, an attempt is made to halt this operation. If this attempt fails due to a hardware or firmware problem, ther...

5.5CVSS6.8AI score0.00218EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2024/08/16 7:0 a.m.5 views

s390/mm: Add NULL pointer check to crst_table_free() base_crst_free()

...

5.5CVSS8.9AI score0.00211EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/08/13 10:8 a.m.3 views

kernel: KVM: s390: vsie: fix race during shadow creation

In the Linux kernel, the following vulnerability has been resolved: KVM: s390: vsie: fix race during shadow creation Right now it is possible to see gmap-private being zero in kvms390vsiegmapnotifier resulting in a crash. This is due to the fact that we add gmap-private == kvm after creation:...

4.7CVSS6.3AI score0.00175EPSS
Exploits0References5
OSV
OSV
added 2024/07/30 8:15 a.m.6 views

AZL-47396 CVE-2024-42158 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Use kfreesensitive to fix Coccinelle warnings Replace memzeroexplicit and kfree with kfreesensitive to fix warnings reported by Coccinelle: WARNING opportunity for kfreesensitive/kvfreesensitive line 1506 WARNING...

4.1CVSS5.8AI score0.00187EPSS
Exploits0References1
OSV
OSV
added 2024/07/30 8:15 a.m.8 views

DEBIAN-CVE-2024-42155

In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Wipe copies of protected- and secure-keys Although the clear-key of neither protected- nor secure-keys is accessible, this key material should only be visible to the calling process. So wipe all copies of protected- or...

1.9CVSS5AI score0.00188EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/07/30 12:0 a.m.10 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a warning reported by Coccinelle in the s390/pkey module when using memzeroexplicit and kfree, which should ...

4.1CVSS6.3AI score0.00187EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/07/30 12:0 a.m.7 views

The vulnerability of the `copy_to_user` function in the s390 kernel of the Linux operating system allows a hacker to disclose protected information.

The vulnerability of the copytouser function in the s390 kernel of the Linux operating system is related to buffer overflows in the stack. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by security measures...

4.9CVSS6.6AI score0.0022EPSS
Exploits0References43Affected Software4
IBM Security Bulletins
IBM Security Bulletins
added 2024/07/29 2:36 p.m.108 views

Security Bulletin: IBM HTTP Server is vulnerable to multiple vulnerabilities due to the included Apache HTTP Server (CVE-2024-40898, CVE-2024-40725)

Summary There are multiple vulnerabilities in the IBM HTTP Server, which is used by IBM WebSphere Application Server, due to the included Apache HTTP Server. Vulnerability Details CVEID:CVE-2024-40898 DESCRIPTION: Apache HTTP Server is vulnerable to server-side request forgery, caused by an error...

9.1CVSS7.1AI score0.04134EPSS
Exploits5Affected Software1
OSV
OSV
added 2024/06/25 3:15 p.m.8 views

UBUNTU-CVE-2024-38661

In the Linux kernel, the following vulnerability has been resolved: s390/ap: Fix crash in AP internal function modifybitmap A system crash like this Failing address: 200000cb7df6f000 TEID: 200000cb7df6f403 Fault in home space mode while using kernel ASCE. AS:00000002d71bc007 R3:00000003fe5b8007...

5.5CVSS6.2AI score0.00259EPSS
Exploits0References33
CNNVD
CNNVD
added 2024/05/21 12:0 a.m.7 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from a memory leak in the bpf, s390 module...

5.5CVSS6.3AI score0.00222EPSS
Exploits0References5
Rows per page
Query Builder