Lucene search
K

382 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001499)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001499 advisory. A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/xtables.c. This allows an attacker to gain privileges or cause a DoS via...

8.3CVSS6.7AI score0.78684EPSS
Exploits21References4
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000837)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000837 advisory. fs/namespace.c in the Linux kernel before 4.0.2 processes MNTDETACH umount2 system calls without verifying that the MNTLOCKED flag is unset, which allows local users...

6.1CVSS7.4AI score0.00331EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001063)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001063 advisory. The networking implementation in the Linux kernel through 4.3.3, as used in Android and other products, does not validate protocol identifiers for certain protocol...

7CVSS6.5AI score0.0123EPSS
Exploits0References23
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002088)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002088 advisory. The doremount function in fs/namespace.c in the Linux kernel through 3.16.1 does not maintain the MNTLOCKREADONLY bit across a remount of a bind mount, which allows...

7.2CVSS7.1AI score0.00368EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001909)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001909 advisory. The doremount function in fs/namespace.c in the Linux kernel through 3.16.1 does not maintain the MNTLOCKREADONLY bit across a remount of a bind mount, which allows...

7.2CVSS7.1AI score0.00368EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.2 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002082)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002082 advisory. fs/namespace.c in the Linux kernel before 4.0.2 processes MNTDETACH umount2 system calls without verifying that the MNTLOCKED flag is unset, which allows local users...

6.1CVSS7.4AI score0.00331EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003140)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003140 advisory. In the Linux kernel 4.15.x through 4.19.x before 4.19.2, mapwrite in kernel/usernamespace.c allows privilege escalation because it mishandles nested user namespaces...

7CVSS7.4AI score0.07611EPSS
Exploits24References18
SUSE CVE
SUSE CVE
added 2026/01/14 12:26 a.m.4 views

SUSE CVE-2025-71066

In the Linux kernel, the following vulnerability has been resolved: net/sched: ets: Always remove class from active list before deleting in etsqdiscchange [email protected] says: The vulnerability is a race condition between etsqdiscdequeue and etsqdiscchange. It leads to UAF on stru...

7CVSS6.2AI score0.00151EPSS
Exploits0References105
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001697)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001697 advisory. In the Linux kernel before 5.17.3, fs/iouring.c has a use-after-free due to a race condition in iouring timeouts. This can be triggered by a local user who has no...

7CVSS6.6AI score0.00773EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2026/01/09 12:0 a.m.3 views

Siemens Ruggedcom ROX Privilege Dropping (CVE-2018-7169)

An issue was discovered in shadow 4.5. newgidmap in shadow-utils is setuid and allows an unprivileged user to be placed in a user namespace where setgroups2 is permitted. This allows an attacker to remove themselves from a supplementary group, which may allow access to certain filesystem paths if...

5.3CVSS6.2AI score0.01596EPSS
Exploits1References3
OSV
OSV
added 2025/12/24 9:9 a.m.6 views

RLSA-2025:23279 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns CVE-2025-38499 kernel: net: tun: Update napi-skb after XDP process CVE-2025-39984 For more details about the...

7.8CVSS6.7AI score0.0018EPSS
Exploits0References3
OSV
OSV
added 2025/12/23 9:9 a.m.4 views

RLSA-2025:23241 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns CVE-2025-38499 kernel: iommufd: Fix race during abort for file descriptors CVE-2025-39966 kernel: tls: wait for...

7.8CVSS7.9AI score0.00166EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/12/22 12:37 a.m.7 views

Important: Red Hat Security Advisory: kpatch-patch-5_14_0-611_9_1 security update

An update for kpatch-patch-5140-61191 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

5.5CVSS6.8AI score0.00137EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/12/22 12:37 a.m.4 views

kernel: clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns

A vulnerability was found in cloneprivatemount in fs/namespace.c in filesystem subsystem in the Linux Kernel.This flaw could allow a local attacker to crash the system or leak kernel internal information...

5.5CVSS6.7AI score0.00137EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.2 views

Oracle Linux 10 : kernel (ELSA-2025-23279)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-23279 advisory. - CVE-2025-38499 kernel: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns Abhi Das RHEL-129282 CVE-2025-38499 Tenable has...

5.5CVSS7AI score0.0018EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2025/12/17 11:51 a.m.2 views

kernel: clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns

A vulnerability was found in cloneprivatemount in fs/namespace.c in filesystem subsystem in the Linux Kernel.This flaw could allow a local attacker to crash the system or leak kernel internal information...

5.5CVSS5.8AI score0.00137EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/17 5:39 a.m.3 views

kernel: clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns

A vulnerability was found in cloneprivatemount in fs/namespace.c in filesystem subsystem in the Linux Kernel.This flaw could allow a local attacker to crash the system or leak kernel internal information...

5.5CVSS5.8AI score0.00137EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/17 5:37 a.m.11 views

kernel: clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns

A vulnerability was found in cloneprivatemount in fs/namespace.c in filesystem subsystem in the Linux Kernel.This flaw could allow a local attacker to crash the system or leak kernel internal information...

5.5CVSS6.7AI score0.00137EPSS
Exploits0References5
OSV
OSV
added 2025/12/16 12:0 a.m.11 views

ALSA-2025:23241 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns CVE-2025-38499 kernel: iommufd: Fix race during abort for file descriptors CVE-2025-39966 kernel: tls: wait for...

7CVSS6.2AI score0.00166EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.1 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989072)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989072 advisory. In the Linux kernel, the following vulnerability has been resolved: afunix: Get userns from inskb in unixdiaggetexact. Wei Chen reported a NULL deref in skuserns 01,...

5.5CVSS5.9AI score0.00245EPSS
Exploits0References4
Rows per page
Query Builder