11 matches found
NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2021-0025)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has kernel packages installed that are affected by multiple vulnerabilities: - An issue was discovered in the Linux kernel before 5.2.3. There is a NULL pointer dereference caused by a malicious USB device in the...
Oracle Linux 7 : kernel (ELSA-2020-5023)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-5023 advisory. - net bluetooth: l2cap: Fix calling skfilter on non-socket based channel Gopal Tiwari 1888253 CVE-2020-12351 - net bluetooth: a2mp: Fix not initializin...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-2311)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP5 : kernel (EulerOS-SA-2020-2303)
According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A TOCTOU mismatch in the NFS client code in the Linux kernel before 5.8.3 could be used by local attackers to corrupt memory or possibly have...
Important: kernel
Issue Overview: An issue in the HID driver in the Linux kernel may lead to invalid memory access. CVE-2022-20565 In the Linux kernel 5.0.21 and 5.3.11, mounting a crafted btrfs filesystem image, performing some operations, and then making a syncfs system call can lead to a use-after-free in...
kernel: kernel: buffer over write in vgacon_scroll
A flaw was found in the Linux kernel’s implementation of the invert video code on VGA consoles when a local attacker attempts to resize the console, calling an ioctl VTRESIZE, which causes an out-of-bounds write to occur. This flaw allows a local user with access to the VGA console to crash the...
Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2020-5885)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-5885 advisory. - ext4: fix potential negative array index in dosplit Eric Sandeen Orabug: 31895330 CVE-2020-14314 - mm/hugetlb: fix a race between hugetlb sysctl...
Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2020-5878)
The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-5878 advisory. - media: rc: prevent memory leak in cx23888irprobe Navid Emamdoost Orabug: 31351676 CVE-2019-19054 - vgacon: Fix for missing check in scrollback...
CVE-2020-14331
A flaw was found in the Linux kernel’s implementation of the invert video code on VGA consoles when a local attacker attempts to resize the console, calling an ioctl VTRESIZE, which causes an out-of-bounds write to occur. This flaw allows a local user with access to the VGA console to crash the...
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2020-5841)
The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-5841 advisory. - sunrpc: use SVCNET in svcauthgss functions Vasily Averin Orabug: 31351996 CVE-2018-16884 - sunrpc: use-after-free in svcprocesscommon Vasily Aver...
CVE-2020-8649
A flaw was found in the Linux kernel’s implementation of the invert video code on VGA consoles when a local attacker attempts to resize the console. An out-of-bounds read can occur, leaking information to the console. Mitigation Mitigation for this issue is either not available or the currently...