Lucene search
K

382 matches found

Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.4 views

PT-2025-32554

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The clone private mnt function did not properly verify that the caller has CAP SYS ADMIN privileges within the correct user namespace. This could potentially allow exposure of hidden...

6.2CVSS6.6AI score0.00137EPSS
Exploits0
GithubExploit
GithubExploit
added 2024/12/16 5:33 p.m.541 views

Exploit for Use After Free in Linux Linux_Kernel

CVE-2024-1086 For learning purpose. Refer: - https://pwning...

7.8CVSS7.6AI score0.28058EPSS
Exploits16
RedHat Linux
RedHat Linux
added 2024/11/26 6:52 a.m.2 views

Podman: Buildah: CRI-O: symlink traversal vulnerability in the containers/storage library can cause Denial of Service (DoS)

A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of service via OOM kill when running a malicious image using an automatically assigned user namespace...

6.5CVSS5.8AI score0.01345EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/11/19 1:54 a.m.2 views

Podman: Buildah: CRI-O: symlink traversal vulnerability in the containers/storage library can cause Denial of Service (DoS)

A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of service via OOM kill when running a malicious image using an automatically assigned user namespace...

6.5CVSS5.8AI score0.01345EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/11/12 10:25 a.m.4 views

Podman: Buildah: CRI-O: symlink traversal vulnerability in the containers/storage library can cause Denial of Service (DoS)

A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of service via OOM kill when running a malicious image using an automatically assigned user namespace...

6.5CVSS5.8AI score0.01345EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/11/11 1:34 a.m.1 views

Podman: Buildah: CRI-O: symlink traversal vulnerability in the containers/storage library can cause Denial of Service (DoS)

A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of service via OOM kill when running a malicious image using an automatically assigned user namespace...

6.5CVSS5.8AI score0.01345EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/11/08 3:4 p.m.2 views

Podman: Buildah: CRI-O: symlink traversal vulnerability in the containers/storage library can cause Denial of Service (DoS)

A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of service via OOM kill when running a malicious image using an automatically assigned user namespace...

6.5CVSS5.8AI score0.01345EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/11/07 3:33 a.m.2 views

Podman: Buildah: CRI-O: symlink traversal vulnerability in the containers/storage library can cause Denial of Service (DoS)

A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of service via OOM kill when running a malicious image using an automatically assigned user namespace...

6.5CVSS5.8AI score0.01345EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/10/30 1:33 a.m.1 views

Podman: Buildah: CRI-O: symlink traversal vulnerability in the containers/storage library can cause Denial of Service (DoS)

A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of service via OOM kill when running a malicious image using an automatically assigned user namespace...

6.5CVSS5.8AI score0.01345EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/10/29 6:1 p.m.1 views

Podman: Buildah: CRI-O: symlink traversal vulnerability in the containers/storage library can cause Denial of Service (DoS)

A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of service via OOM kill when running a malicious image using an automatically assigned user namespace...

6.5CVSS5.8AI score0.01345EPSS
Exploits0References6
Redos
Redos
added 2024/10/29 12:0 a.m.7 views

ROS-20241029-03

The vulnerability in the Podman OCI container management and launching software tool is related to issues with the symbolic link issues when running a malicious image using the automatically assigned user namespace --userns=auto. Exploitation of the vulnerability could allow an attacker to create...

6.5CVSS7.3AI score0.01345EPSS
Exploits0
Redos
Redos
added 2024/10/29 12:0 a.m.5 views

ROS-20241029-15

The vulnerability in the Podman OCI container management and launching software tool is related to issues with the symbolic link issues when running a malicious image using the automatically assigned user namespace --userns=auto. Exploitation of the vulnerability could allow an attacker to create...

6.5CVSS7.3AI score0.01345EPSS
Exploits0
Redos
Redos
added 2024/10/29 12:0 a.m.6 views

ROS-20241029-14

The vulnerability in the Podman OCI container management and launching software tool is related to issues with the symbolic link issues when running a malicious image using the automatically assigned user namespace --userns=auto. Exploitation of the vulnerability could allow an attacker to create...

6.5CVSS7.3AI score0.01345EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/10/22 2:23 p.m.0 views

SUSE CVE-2022-48970

In the Linux kernel, the following vulnerability has been resolved: afunix: Get userns from inskb in unixdiaggetexact. Wei Chen reported a NULL deref in skuserns 01, and Paolo diagnosed the root cause: in unixdiaggetexact, the newly allocated skb does not have sk. 2 We must get the userns from th...

5.5CVSS7.7AI score0.00245EPSS
Exploits0References11
OSV
OSV
added 2024/10/21 8:15 p.m.0 views

DEBIAN-CVE-2022-48970

In the Linux kernel, the following vulnerability has been resolved: afunix: Get userns from inskb in unixdiaggetexact. Wei Chen reported a NULL deref in skuserns 01, and Paolo diagnosed the root cause: in unixdiaggetexact, the newly allocated skb does not have sk. 2 We must get the userns from th...

5.5CVSS5.5AI score0.00245EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 8:15 p.m.8 views

UBUNTU-CVE-2022-48970

In the Linux kernel, the following vulnerability has been resolved: afunix: Get userns from inskb in unixdiaggetexact. Wei Chen reported a NULL deref in skuserns 01, and Paolo diagnosed the root cause: in unixdiaggetexact, the newly allocated skb does not have sk. 2 We must get the userns from th...

5.5CVSS6.2AI score0.00245EPSS
Exploits0References8
CNNVD
CNNVD
added 2024/10/21 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to properly fetch userns in the unixdiaggetexact function, which could result in a null pointer...

5.5CVSS6.5AI score0.00245EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2024/10/17 3:10 a.m.2 views

SUSE CVE-2024-9676

A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of service via OOM kill when running a malicious image using an automatically assigned user namespace...

4.7CVSS6.8AI score0.01345EPSS
Exploits0References18
OSV
OSV
added 2024/10/15 4:15 p.m.6 views

AZL-50614 CVE-2024-9676 affecting package buildah for versions less than 1.41.4-2

A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of service via OOM kill when running a malicious image using an automatically assigned user namespace...

6.5CVSS7AI score0.01345EPSS
Exploits0References1
OSV
OSV
added 2024/10/15 4:15 p.m.6 views

AZL-50629 CVE-2024-9676 affecting package skopeo for versions less than 1.14.4-3

A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of service via OOM kill when running a malicious image using an automatically assigned user namespace...

6.5CVSS7AI score0.01345EPSS
Exploits0References1
Rows per page
Query Builder