Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.7 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007224)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007224 advisory. In the Linux kernel, the following vulnerability has been resolved: net/tls: Fix use-after-free after the TLS device goes down and up When a netdev with active TLS...

7.8CVSS6.3AI score0.00257EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 7 : nss-3.28.4-12.el7 (AXSA:2017-2308:05)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2017-2308:05 advisory. A use-after-free flaw was found in the TLS 1.2 implementation in the NSS library when client authentication was used. A malicious client could use this flaw ...

7.5CVSS8.4AI score0.03153EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/20 12:0 a.m.16 views

CVE-2025-47917

Mbed TLS before 3.6.4 allows a use-after-free in certain situations of applications that are developed in accordance with the documentation. The function mbedtlsx509stringtonames takes a head argument that is documented as an output argument. The documentation does not suggest that the function...

8.9CVSS0.0199EPSS
Exploits2References2
Ubuntu
Ubuntu
added 2024/12/19 11:12 a.m.34 views

LSN-0108-1: Kernel Live Patch Security Notice

In the Linux kernel, the following vulnerability has been resolved: tls: fix use-after-free on failed backlog decryption When the decrypt request goes to the backlog and cryptoaeaddecrypt returns -EBUSY, tlsdodecryption will wait until all async decryptions have completed. If one of them fails,...

8.4CVSS6.9AI score0.00757EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2024/08/19 12:0 a.m.60 views

EulerOS Virtualization 2.10.1 : kernel (EulerOS-SA-2024-2140)

"According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : In the Linux kernel, the following vulnerability has been resolved: kyber: fix out of bounds access when preempted...

7.8CVSS6.6AI score0.00983EPSS
Exploits1References90
RedHat Linux
RedHat Linux
added 2024/04/30 9:57 a.m.5 views

kernel: tls: use-after-free with partial reads and async decrypt

A use-after-free vulnerability was found in the tls subsystem of the Linux kernel. The tlsdecryptsg function doesn't take references on the pages from clearskb, so the putpage in tlsdecryptdone releases them and a use-after-free can be triggered in processrxlist when trying to read from the...

7.8CVSS6.9AI score0.00254EPSS
Exploits0References5
OSV
OSV
added 2024/03/15 9:15 p.m.2 views

UBUNTU-CVE-2021-47131

In the Linux kernel, the following vulnerability has been resolved: net/tls: Fix use-after-free after the TLS device goes down and up When a netdev with active TLS offload goes down, tlsdevicedown is called to stop the offload and tear down the TLS context. However, the socket stays alive, and it...

7.8CVSS6.1AI score0.00257EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2024/02/23 3:20 a.m.5 views

SUSE CVE-2024-26582

In the Linux kernel, the following vulnerability has been resolved: net: tls: fix use-after-free with partial reads and async decrypt tlsdecryptsg doesn't take a reference on the pages from clearskb, so the putpage in tlsdecryptdone releases them, and we trigger a use-after-free in processrxlist...

7.8CVSS6.2AI score0.00254EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2021/01/13 12:0 a.m.48 views

SUSE SLES12 Security Update : nodejs12 (SUSE-SU-2021:0068-1)

This update for nodejs12 fixes the following issues : New upstream LTS version 12.20.1 : - CVE-2020-8265: use-after-free in TLSWrap High bug in TLS implementation. When writing to a TLS enabled socket, node::StreamBase::Write calls node::TLSWrap::DoWrite with a freshly allocated WriteWrap object ...

8.1CVSS6.9AI score0.16296EPSS
Exploits6References11
Rows per page
Query Builder