Lucene search
K

210 matches found

OSV
OSV
added 2024/10/21 8:6 p.m.10 views

CVE-2022-49001 riscv: fix race when vmap stack overflow

In the Linux kernel, the following vulnerability has been resolved: riscv: fix race when vmap stack overflow Currently, when detecting vmap stack overflow, riscv firstly switches to the so called shadow stack, then use this shadow stack to call the getoverflowstack to get the overflow stack...

7CVSS6.2AI score0.00191EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/10/21 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a race condition in the riscv subsystem that occurs during a vmap stack overflow, which could cause the kern...

7CVSS6.3AI score0.00191EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2024/10/16 7:0 a.m.4 views

mm: vmalloc: ensure vmap_block is initialised before adding to queue

...

5.5CVSS6.3AI score0.00217EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/09/28 2:51 a.m.3 views

SUSE CVE-2024-46847

In the Linux kernel, the following vulnerability has been resolved: mm: vmalloc: ensure vmapblock is initialised before adding to queue Commit 8c61291fd850 "mm: fix incorrect vbq reference in purgefragmentedblock" extended the 'vmapblock' structure to contain a 'cpu' field which is set at...

5.5CVSS7.7AI score0.00217EPSS
Exploits0References3
OSV
OSV
added 2024/09/27 1:15 p.m.3 views

DEBIAN-CVE-2024-46847

In the Linux kernel, the following vulnerability has been resolved: mm: vmalloc: ensure vmapblock is initialised before adding to queue Commit 8c61291fd850 "mm: fix incorrect vbq reference in purgefragmentedblock" extended the 'vmapblock' structure to contain a 'cpu' field which is set at...

5.5CVSS5.7AI score0.00217EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/09/27 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not ensuring that a vmapblock is initialized before adding it to a queue...

5.5CVSS6.5AI score0.00217EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2024/09/12 2:51 a.m.3 views

SUSE CVE-2024-45022

In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc: fix page mapping if vmareaallocpages with high order fallback to order 0 The vmappagesrangenoflush assumes its argument pages contains pages with the same page shift. However, since commit e9c3cda4d86e "mm, vmalloc: f...

5.5CVSS7.2AI score0.0022EPSS
Exploits0References12
OSV
OSV
added 2024/09/11 4:15 p.m.1 views

UBUNTU-CVE-2024-45022

In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc: fix page mapping if vmareaallocpages with high order fallback to order 0 The vmappagesrangenoflush assumes its argument pages contains pages with the same page shift. However, since commit e9c3cda4d86e "mm, vmalloc: f...

5.5CVSS6.7AI score0.0022EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2024/08/18 2:2 a.m.3 views

SUSE CVE-2024-42275

In the Linux kernel, the following vulnerability has been resolved: drm/client: Fix error code in drmclientbuffervmaplocal This function accidentally returns zero/success on the failure path. It leads to locking issues and an uninitialized mapcopy in the caller...

6.4CVSS6.8AI score0.00193EPSS
Exploits0References3
OSV
OSV
added 2024/08/17 9:15 a.m.4 views

DEBIAN-CVE-2024-42275

In the Linux kernel, the following vulnerability has been resolved: drm/client: Fix error code in drmclientbuffervmaplocal This function accidentally returns zero/success on the failure path. It leads to locking issues and an uninitialized mapcopy in the caller...

5.5CVSS5.9AI score0.00193EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/08/17 12:0 a.m.4 views

PT-2024-29826 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the drm client buffer vmap local function, which accidentally returns zero or success on the failure path. This leads to locking issues and an uninitialized map...

6.6AI score0.00193EPSS
Exploits0References11
CNNVD
CNNVD
added 2024/08/17 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from incorrectly returning zero or success on the failure path in the drmclientbuffervmaplocal function, leading ...

5.5CVSS6.3AI score0.00193EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/08/12 12:0 a.m.7 views

PT-2024-32245 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the initialization of the vmap block structure in the Linux kernel. When a new vmap block is being instantiated by new vmap block, the partially initialized...

8.8CVSS6.5AI score0.00879EPSS
Exploits13References1252
NVD
NVD
added 2024/06/20 11:15 a.m.19 views

CVE-2022-48714

In the Linux kernel, the following vulnerability has been resolved: bpf: Use VMMAP instead of VMALLOC for ringbuf After commit 2fd3fb0be1d1 "kasan, vmalloc: unpoison VMALLOC pages after mapping", non-VMALLOC mappings will be marked as accessible in getvmareanode when KASAN is enabled. But now the...

7.1CVSS0.00238EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/06/20 11:13 a.m.30 views

CVE-2022-48714 bpf: Use VM_MAP instead of VM_ALLOC for ringbuf

In the Linux kernel, the following vulnerability has been resolved: bpf: Use VMMAP instead of VMALLOC for ringbuf After commit 2fd3fb0be1d1 "kasan, vmalloc: unpoison VMALLOC pages after mapping", non-VMALLOC mappings will be marked as accessible in getvmareanode when KASAN is enabled. But now the...

0.00238EPSS
Exploits0References4
CVE
CVE
added 2024/06/20 11:13 a.m.75 views

CVE-2022-48714

Summary of CVE-2022-48714 : The Linux kernel vulnerability arises in the ringbuffer mapping used by BPF. The root cause is a Kasan-related mislabeling where mappings created from allocated pages were treated as VM_ALLOC, triggering out-of-bounds reports after vmap() when KASAN is enabled. The fix...

7.1CVSS6.6AI score0.00238EPSS
Exploits0References4Affected Software1
SUSE CVE
SUSE CVE
added 2024/05/28 3:1 p.m.2 views

SUSE CVE-2023-52761

In the Linux kernel, the following vulnerability has been resolved: riscv: VMAPSTACK overflow detection thread-safe commit 31da94c25aea "riscv: add VMAPSTACK overflow detection" added support for CONFIGVMAPSTACK. If overflow is detected, CPU switches to shadowstack temporarily before switching...

5.5CVSS6.6AI score0.00254EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2024/05/27 11:30 a.m.24 views

CVE-2021-47567

In the Linux kernel, the following vulnerability has been resolved: powerpc/32: Fix hardlockup on vmap stack overflow Since the commit c118c7303ad5 "powerpc/32: Fix vmap stack - Do not activate MMU before reading task struct" a vmap stack overflow results in a hard lockup. This is because...

5.5CVSS6.2AI score0.00224EPSS
Exploits0References4
OSV
OSV
added 2024/05/24 3:15 p.m.3 views

DEBIAN-CVE-2021-47567

In the Linux kernel, the following vulnerability has been resolved: powerpc/32: Fix hardlockup on vmap stack overflow Since the commit c118c7303ad5 "powerpc/32: Fix vmap stack - Do not activate MMU before reading task struct" a vmap stack overflow results in a hard lockup. This is because...

5.5CVSS5.3AI score0.00224EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/05/24 3:15 p.m.6 views

CVE-2021-47567

In the Linux kernel, the following vulnerability has been resolved: powerpc/32: Fix hardlockup on vmap stack overflow Since the commit c118c7303ad5 "powerpc/32: Fix vmap stack - Do not activate MMU before reading task struct" a vmap stack overflow results in a hard lockup. This is because...

5.5CVSS5.9AI score0.00224EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder