Lucene search
K

121 matches found

Cvelist
Cvelist
added 2024/08/22 1:32 a.m.41 views

CVE-2022-48916 iommu/vt-d: Fix double list_add when enabling VMD in scalable mode

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix double listadd when enabling VMD in scalable mode When enabling VMD and IOMMU scalable mode, the following kernel panic call trace/kernel log is shown in Eagle Stream platform Sapphire Rapids CPU during booting: p...

0.0021EPSS
Exploits0References3
OSV
OSV
added 2024/07/29 4:15 p.m.1 views

UBUNTU-CVE-2024-41085

In the Linux kernel, the following vulnerability has been resolved: cxl/mem: Fix no cxlnvd during pmem region auto-assembling When CXL subsystem is auto-assembling a pmem region during cxl endpoint port probing, always hit below calltrace. BUG: kernel NULL pointer dereference, address:...

5.5CVSS6.6AI score0.002EPSS
Exploits0References15
OSV
OSV
added 2024/07/16 12:15 p.m.1 views

DEBIAN-CVE-2022-48790

In the Linux kernel, the following vulnerability has been resolved: nvme: fix a possible use-after-free in controller reset during load Unlike .queuerq, in .submitasyncevent drivers may not check the ctrl readiness for AER submission. This may lead to a use-after-free condition that was observed...

7CVSS5.6AI score0.00259EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2024/07/12 7:0 a.m.4 views

Kernel: nvme: info leak due to out-of-bounds read in nvmet_ctrl_find_get

...

4.3CVSS6.2AI score0.01657EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/06/11 5:33 p.m.5 views

kernel: NULL pointer dereference in nvmet_tcp_build_iovec

A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver and causing kernel panic and a denial of service...

7.5CVSS6.6AI score0.01448EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/05/22 10:3 a.m.3 views

kernel: NVMe: info leak due to out-of-bounds read in nvmet_ctrl_find_get

An out-of-bounds read vulnerability was found in the NVMe-oF/TCP subsystem in the Linux kernel. This issue may allow a remote attacker to send a crafted TCP packet, triggering a heap-based buffer overflow that results in kmalloc data being printed and potentially leaked to the kernel ring buffer...

4.3CVSS7AI score0.01657EPSS
Exploits0References4
OSV
OSV
added 2024/05/03 4:15 p.m.7 views

DEBIAN-CVE-2022-48697

In the Linux kernel, the following vulnerability has been resolved: nvmet: fix a use-after-free Fix the following use-after-free complaint triggered by blktests nvme/004: BUG: KASAN: user-memory-access in blkmqcompleterequestremote+0xac/0x350 Read of size 4 at addr 0000607bd1835943 by task...

5.3CVSS5.5AI score0.00228EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/04/05 12:0 a.m.6 views

PT-2024-12064 · Lenovo · Smart Edge +2

Name of the Vulnerable Software and Affected Versions: Lenovo Desktop, Smart Edge, and ThinkStation products affected versions not specified Description: A potential issue was reported in the BIOS of some Lenovo products, including Desktop, Smart Edge, and ThinkStation, that could allow a local...

6.7CVSS6.7AI score0.00179EPSS
Exploits0References5
OSV
OSV
added 2024/02/07 9:15 p.m.5 views

DEBIAN-CVE-2023-6356

A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver and causing kernel panic and a denial of service...

7.5CVSS6.3AI score0.01448EPSS
Exploits0References1
OSV
OSV
added 2024/02/07 9:15 p.m.2 views

UBUNTU-CVE-2023-6356

A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver and causing kernel panic and a denial of service...

7.5CVSS6.6AI score0.01448EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2024/02/07 4:33 p.m.2 views

kernel: NULL pointer dereference in nvmet_tcp_execute_request

A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver, causing kernel panic and a denial of service...

7.5CVSS6.6AI score0.01549EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2023/12/22 12:0 a.m.5 views

The vulnerability of the __nvmet_reqComplete() function in the drivers/nvme/target/tcp.c file of the Linux NVMe kernel driver allows a hacker to trigger a service failure.

The vulnerability of the nvmetreqComplete function in the drivers/nvme/target/tcp.c file of the Linux NVMe driver kernel involves the assignment of a null pointer. Exploiting this vulnerability could allow a remote attacker to cause a service failure...

7.8CVSS6.6AI score0.01537EPSS
Exploits0References27Affected Software4
RedHat Linux
RedHat Linux
added 2023/11/14 3:46 p.m.3 views

kernel: scsi: qla2xxx: Fix DMA-API call trace on NVMe LS requests

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix DMA-API call trace on NVMe LS requests The following message and call trace was seen with debug kernels: DMA-API: qla2xxx 0000:41:00.0: device driver failed to check map error device address=0x00000002a3ff38d8...

5.7AI score0.0018EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/11/14 12:0 a.m.4 views

Intel(R) Optane(TM) SSD Security Vulnerability

Intel Optane SSD is a new type of non-volatile memory from Intel Corporation USA. A security vulnerability exists in Intel Optane SSD and Intel Optane SSD DC. Exploitation of this vulnerability by an attacker could result in privilege escalation, information disclosure, or denial of service...

6.5CVSS6.6AI score0.00205EPSS
Exploits0References3
RustSec
RustSec
added 2023/09/01 12:0 p.m.5 views

Default functions in VolatileMemory trait lack bounds checks, potentially leading to out-of-bounds memory accesses

An issue was discovered in the default implementations of the VolatileMemory::getatomicref, alignedasref, alignedasmut, getref, getarrayref trait functions, which allows out-of-bounds memory access if the VolatileMemory::getslice function returns a VolatileSlice whose length is less than the...

4.7CVSS7AI score0.00237EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2023/09/01 12:0 a.m.6 views

PT-2023-27763 · Vm-Memory +1 · Vm-Memory +1

Name of the Vulnerable Software and Affected Versions: vm-memory versions 0.1.0 through 0.12.1 Description: An issue was discovered in the default implementations of the VolatileMemory::get atomic ref, aligned as ref, aligned as mut, get ref, get array ref trait functions, which allows...

4.7CVSS4.4AI score0.00237EPSS
Exploits0References23
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.3 views

kernel: nvme: fix multipath crash caused by flush request when blktrace is enabled

In the Linux kernel, the following vulnerability has been resolved: nvme: fix multipath crash caused by flush request when blktrace is enabled The flush request initialized by blkkickflush has NULL bio, and it may be dealt with nvmeendreq during io completion. When blktrace is enabled,...

5.5CVSS6.6AI score0.00145EPSS
Exploits0References5
OSV
OSV
added 2023/03/16 9:21 p.m.19 views

USN-5962-1 linux-intel-iotg vulnerabilities

It was discovered that the Upper Level Protocol ULP subsystem in the Linux kernel did not properly handle sockets entering the LISTEN state in certain protocols, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execut...

7.8CVSS7AI score0.06346EPSS
Exploits8References19
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.28 views

K71612511: Kernel vulnerability CVE-2016-8106

Security Advisory Description A Denial of Service in Intel Ethernet Controller's X710/XL710 with Non-Volatile Memory Images before version 5.05 allows a remote attacker to stop the controller from processing network traffic working under certain network use conditions. CVE-2016-8106 Impact There ...

5.9CVSS6.2AI score0.05129EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2022/12/14 12:0 a.m.5 views

The vulnerability of the NVMe (Non-Volatile Memory Express) driver for Linux operating systems allows a hacker to cause a service failure.

The vulnerability of the NVMe Non-Volatile Memory Express kernel driver for Linux operating systems is related to insufficient validation of input data during the processing of NVMEIOCTLRESET and NVMEIOCTLSUBSYSRESET requests. Exploiting this vulnerability can allow an attacker to trigger a servi...

5.5CVSS6.1AI score0.0023EPSS
Exploits0References11Affected Software3
Rows per page
Query Builder