Lucene search
K

2521 matches found

NVD
NVD
added 2025/05/01 3:16 p.m.12 views

CVE-2022-49907

In the Linux kernel, the following vulnerability has been resolved: net: mdio: fix undefined behavior in bit shift for mdiobusregister Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN: shift-out-of-bounds ...

7.8CVSS0.00196EPSS
Exploits0References8
NVD
NVD
added 2025/05/01 3:16 p.m.8 views

CVE-2022-49870

In the Linux kernel, the following vulnerability has been resolved: capabilities: fix undefined behavior in bit shift for CAPTOMASK Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN: shift-out-of-bounds in...

7.1CVSS0.0019EPSS
Exploits0References8
OSV
OSV
added 2025/05/01 3:16 p.m.1 views

DEBIAN-CVE-2022-49870

In the Linux kernel, the following vulnerability has been resolved: capabilities: fix undefined behavior in bit shift for CAPTOMASK Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN: shift-out-of-bounds in...

7.1CVSS5.5AI score0.0019EPSS
Exploits0References1
OSV
OSV
added 2025/05/01 2:10 p.m.6 views

CVE-2022-49907 net: mdio: fix undefined behavior in bit shift for __mdiobus_register

In the Linux kernel, the following vulnerability has been resolved: net: mdio: fix undefined behavior in bit shift for mdiobusregister Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN: shift-out-of-bounds ...

7.8CVSS5.9AI score0.00196EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2025/05/01 2:10 p.m.6 views

CVE-2022-49907

In the Linux kernel, the following vulnerability has been resolved: net: mdio: fix undefined behavior in bit shift for mdiobusregister Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN: shift-out-of-bounds ...

7.8CVSS5.5AI score0.00196EPSS
Exploits0
CVE
CVE
added 2025/05/01 2:10 p.m.74 views

CVE-2022-49907

CVE-2022-49907 is a Linux kernel issue in net: mdio related to undefined behavior from shifting a signed 32-bit value by 31 bits in __mdiobus_register. The root cause is an out-of-bounds bit shift in mdiobus initialization; the code was changed to use an unsigned type to avoid UB. A UBSAN warning...

7.8CVSS6.5AI score0.00196EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2025/05/01 2:10 p.m.12 views

CVE-2022-49907 net: mdio: fix undefined behavior in bit shift for __mdiobus_register

In the Linux kernel, the following vulnerability has been resolved: net: mdio: fix undefined behavior in bit shift for mdiobusregister Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN: shift-out-of-bounds ...

0.00196EPSS
Exploits0References8
CVE
CVE
added 2025/05/01 2:10 p.m.89 views

CVE-2022-49870

In CVE-2022-49870, the Linux kernel fixes undefined behavior in the CAP_TO_MASK bit-shift operation. The issue arises when shifting a signed 32-bit value by 31 bits, triggering UBSAN warnings (shift-out-of-bounds) reported in security/commoncap.c. The vulnerability stems from shifting a value tha...

7.1CVSS6.5AI score0.0019EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2025/05/01 2:10 p.m.16 views

CVE-2022-49870 capabilities: fix undefined behavior in bit shift for CAP_TO_MASK

In the Linux kernel, the following vulnerability has been resolved: capabilities: fix undefined behavior in bit shift for CAPTOMASK Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN: shift-out-of-bounds in...

0.0019EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2025/05/01 2:10 p.m.7 views

CVE-2022-49870

In the Linux kernel, the following vulnerability has been resolved: capabilities: fix undefined behavior in bit shift for CAPTOMASK Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN: shift-out-of-bounds in...

7.1CVSS5.5AI score0.0019EPSS
Exploits0
OSV
OSV
added 2025/05/01 2:10 p.m.7 views

CVE-2022-49870 capabilities: fix undefined behavior in bit shift for CAP_TO_MASK

In the Linux kernel, the following vulnerability has been resolved: capabilities: fix undefined behavior in bit shift for CAPTOMASK Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN: shift-out-of-bounds in...

7.1CVSS6AI score0.0019EPSS
Exploits0References11
OSV
OSV
added 2025/05/01 1:54 p.m.7 views

USN-7474-1 docker.io vulnerabilities

Cory Snider discovered that Docker incorrectly handled networking packet encapsulation. An attacker could use this issue to inject internet packets in established connection, possibly causing a denial of service or bypassing firewall protections. This issue only affected Ubuntu 22.04 LTS, Ubuntu...

10CVSS7AI score0.02733EPSS
Exploits2References8
OSV
OSV
added 2025/05/01 1:15 p.m.1 views

UBUNTU-CVE-2025-37739

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid out-of-bounds access in f2fstruncateinodeblocks syzbot reports an UBSAN issue as below: ------------ cut here ------------ UBSAN: array-index-out-of-bounds in fs/f2fs/node.h:381:10 index 18446744073709550692 is...

7.1CVSS6.2AI score0.00167EPSS
Exploits0References40
Positive Technologies
Positive Technologies
added 2025/05/01 12:0 a.m.5 views

PT-2025-18464 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the function dpu plane virtual atomic check in the Linux kernel, which was dereferencing pointers returned by drm atomic get plane state without checking for...

7.8CVSS4.8AI score0.23278EPSS
Exploits0References683
Positive Technologies
Positive Technologies
added 2025/05/01 12:0 a.m.7 views

PT-2025-18587 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns undefined behavior in bit shift for CAP TO MASK in the Linux kernel. Specifically, shifting a signed 32-bit value by 31 bits is undefined. To address this, the...

8.8CVSS7.5AI score0.0129EPSS
Exploits3References468
Positive Technologies
Positive Technologies
added 2025/05/01 12:0 a.m.5 views

PT-2025-18624 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns undefined behavior in the bit shift operation for mdiobus register in the Linux kernel's MDIO driver. Specifically, shifting a signed 32-bit value by 31 bits is...

7.8CVSS7.4AI score0.0129EPSS
Exploits1References372
CNNVD
CNNVD
added 2025/05/01 12:0 a.m.1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a signed displacement leading to undefined behavior that may result in a UBSAN warning...

7.8CVSS6.3AI score0.00196EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2025/04/30 3:18 a.m.2 views

SUSE CVE-2025-4087

A vulnerability was identified in Thunderbird where XPath parsing could trigger undefined behavior due to missing null checks during attribute access. This could lead to out-of-bounds read access and potentially, memory corruption. This vulnerability was fixed in Firefox 138, Firefox ESR 128.10,...

5CVSS6.7AI score0.00267EPSS
Exploits0References12
AlpineLinux
AlpineLinux
added 2025/04/29 2:15 p.m.2 views

CVE-2025-4087

A vulnerability was identified in Thunderbird where XPath parsing could trigger undefined behavior due to missing null checks during attribute access. This could lead to out-of-bounds read access and potentially, memory corruption. This vulnerability affects Firefox 138, Firefox ESR 128.10,...

4.8CVSS6.3AI score0.00267EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2025/04/29 1:13 p.m.15 views

CVE-2025-4087

A vulnerability was identified in Thunderbird where XPath parsing could trigger undefined behavior due to missing null checks during attribute access. This could lead to out-of-bounds read access and potentially, memory corruption. This vulnerability was fixed in Firefox 138, Firefox ESR 128.10,...

4.8CVSS6.9AI score0.00267EPSS
Exploits0
Rows per page
Query Builder