Lucene search
+L

133 matches found

OSV
OSV
added 2024/05/22 7:15 a.m.16 views

UBUNTU-CVE-2021-47447

In the Linux kernel, the following vulnerability has been resolved: drm/msm/a3xx: fix error handling in a3xxgpuinit These error paths returned 1 on failure, instead of a negative error code. This would lead to an Oops in the caller. A second problem is that the check for "if ret != -ENODATA" did...

5.5CVSS5.7AI score0.00196EPSS
Exploits0References5
OSV
OSV
added 2024/05/21 4:15 p.m.9 views

UBUNTU-CVE-2023-52797

In the Linux kernel, the following vulnerability has been resolved: drivers: perf: Check findfirstbit return value We must check the return value of findfirstbit before using the return value as an index array since it happens to overflow the array and then panic: 107.318430 Kernel BUG 1 107.3194...

5.5CVSS5.7AI score0.0028EPSS
Exploits0References6
OSV
OSV
added 2024/05/21 3:15 p.m.6 views

UBUNTU-CVE-2021-47311

In the Linux kernel, the following vulnerability has been resolved: net: qcom/emac: fix UAF in emacremove adpt is netdev private data and it cannot be used after freenetdev call. Using adpt after freenetdev can cause UAF bug. Fix it by moving freenetdev at the end of the function...

7.8CVSS6.2AI score0.00251EPSS
Exploits0References10
OSV
OSV
added 2024/05/21 3:15 p.m.8 views

UBUNTU-CVE-2021-47258

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix error handling of scsihostalloc After device is initialized via deviceinitialize, or its name is set via devsetname, the device has to be freed via putdevice. Otherwise device name will be leaked because it is...

5.5CVSS6.2AI score0.00236EPSS
Exploits0References10
OSV
OSV
added 2024/05/19 11:15 a.m.8 views

UBUNTU-CVE-2024-35934

In the Linux kernel, the following vulnerability has been resolved: net/smc: reduce rtnl pressure in smcpnetcreatepnetidslist Many syzbot reports show extreme rtnl pressure, and many of them hint that smc acquires rtnl in netns creation for no good reason 1 This patch returns early from...

5.5CVSS6.2AI score0.0021EPSS
Exploits0References21
OSV
OSV
added 2024/05/19 9:15 a.m.3 views

UBUNTU-CVE-2024-35872

In the Linux kernel, the following vulnerability has been resolved: mm/secretmem: fix GUP-fast succeeding on secretmem folios folioissecretmem currently relies on secretmem folios being LRU folios, to save some cycles. However, folios might reside in a folio batch without the LRU flag set, or...

5.5CVSS6.2AI score0.00225EPSS
Exploits0References20
OSV
OSV
added 2024/05/17 2:15 p.m.13 views

UBUNTU-CVE-2024-35795

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix deadlock while reading mqd from debugfs An errant disk backup on my desktop got into debugfs and triggered the following deadlock scenario in the amdgpu debugfs files. The machine also hard-resets immediately afte...

5.5CVSS6.2AI score0.00172EPSS
Exploits0References12
OSV
OSV
added 2024/05/01 1:15 p.m.4 views

UBUNTU-CVE-2023-52653

In the Linux kernel, the following vulnerability has been resolved: SUNRPC: fix a memleak in gssimportv2context The ctx-mechused.data allocated by kmemdup is not freed in neither gssimportv2context nor it only caller gsskrb5importseccontext, which frees ctx on error. Thus, this patch reform the...

5.5CVSS6.2AI score0.00275EPSS
Exploits0References12
OSV
OSV
added 2024/05/01 6:15 a.m.7 views

UBUNTU-CVE-2024-26982

In the Linux kernel, the following vulnerability has been resolved: Squashfs: check the inode number is not the invalid value of zero Syskiller has produced an out of bounds access in fillmetaindex. That out of bounds access is ultimately caused because the inode has an inode number with the...

7.1CVSS6.2AI score0.0028EPSS
Exploits0References39
OSV
OSV
added 2024/04/17 11:15 a.m.6 views

UBUNTU-CVE-2024-26873

In the Linux kernel, the following vulnerability has been resolved: scsi: hisisas: Fix a deadlock issue related to automatic dump If we issue a disabling PHY command, the device attached with it will go offline, if a 2 bit ECC error occurs at the same time, a hung task may be found: 4613.652388...

5.5CVSS5.7AI score0.00171EPSS
Exploits0References11
OSV
OSV
added 2024/04/17 10:15 a.m.6 views

UBUNTU-CVE-2023-52642

In the Linux kernel, the following vulnerability has been resolved: media: rc: bpf attach/detach requires write permission Note that bpf attach/detach also requires CAPNETADMIN...

7.8CVSS6.1AI score0.00205EPSS
Exploits0References19
OSV
OSV
added 2024/04/04 9:15 a.m.2 views

UBUNTU-CVE-2024-26780

In the Linux kernel, the following vulnerability has been resolved: afunix: Fix task hung while purging oobskb in GC. syzbot reported a task hung; at the same time, GC was looping infinitely in listforeachentrysafe for OOB skb. 0 syzbot demonstrated that the listforeachentrysafe was not actually...

5.5CVSS5.7AI score0.00222EPSS
Exploits0References5
OSV
OSV
added 2024/03/25 10:15 a.m.2 views

UBUNTU-CVE-2021-47175

In the Linux kernel, the following vulnerability has been resolved: net/sched: fqpie: fix OOB access in the traffic path the following script: tc qdisc add dev eth0 handle 0x1 root fqpie flows 2 tc qdisc add dev eth0 clsact tc filter add dev eth0 egress matchall action skbedit priority 0x10002 pi...

7.1CVSS6.2AI score0.00241EPSS
Exploits0References5
OSV
OSV
added 2024/03/02 10:15 p.m.5 views

UBUNTU-CVE-2023-52532

In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix TX CQE error handling For an unknown TX CQE error type probably from a newer hardware, still free the SKB, update the queue tail, etc., otherwise the accounting will be wrong. Also, TX errors can be triggered by...

5.5CVSS6.1AI score0.0023EPSS
Exploits0References10
OSV
OSV
added 2024/03/02 10:15 p.m.4 views

UBUNTU-CVE-2023-52582

In the Linux kernel, the following vulnerability has been resolved: netfs: Only call foliostartfscache one time for each folio If a network filesystem using netfs implements a clamplength function, it can set subrequest lengths smaller than a page size. When we loop through the folios in...

5.5CVSS6.1AI score0.00225EPSS
Exploits0References3
OSV
OSV
added 2024/03/01 10:15 p.m.3 views

UBUNTU-CVE-2021-47072

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix removed dentries still existing after log is synced When we move one inode from one directory to another and both the inode and its previous parent directory were logged before, we are not supposed to have the dentry f...

5.5CVSS5.7AI score0.00193EPSS
Exploits0References3
OSV
OSV
added 2024/02/23 3:15 p.m.8 views

UBUNTU-CVE-2023-52464

In the Linux kernel, the following vulnerability has been resolved: EDAC/thunderx: Fix possible out-of-bounds string access Enabling -Wstringop-overflow globally exposes a warning for a common bug in the usage of strncat: drivers/edac/thunderxedac.c: In function 'thunderxocxcomthreadedisr':...

7.8CVSS6.3AI score0.00266EPSS
Exploits0References25
OSV
OSV
added 2023/06/23 12:15 p.m.5 views

UBUNTU-CVE-2023-30362

Buffer Overflow vulnerability in coapsend function in libcoap library 4.3.1-103-g52cfd56 fixed in 4.3.1-120-ge242200 allows attackers to obtain sensitive information via malformed pdu...

7.5CVSS5.8AI score0.00754EPSS
Exploits1References4
OSV
OSV
added 2023/06/07 1:37 p.m.6 views

USN-6145-1 sysstat vulnerabilities

It was discovered that Sysstat incorrectly handled certain arithmetic multiplications. An attacker could use this issue to cause Sysstat to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue was only fixed for Ubuntu 16.04 LTS. CVE-2022-39377 It was discovered...

7.8CVSS7.2AI score0.01096EPSS
Exploits1References3
NCSC
NCSC
added 2022/09/27 12:0 a.m.2 views

Vulnerabilities fixed in Squid

Vulnerabilities have been fixed in Squid. The vulnerabilities allow a malicious party the ability to access sensitive data obtain or cause a denial-of-service. The developers of Squid have released an update to fix the vulnerability with reference CVE-2022-41317. For more information, see:...

8.6CVSS7.2AI score0.0282EPSS
Exploits0
Rows per page
Query Builder