Lucene search
+L

930 matches found

OSV
OSV
added 2023/01/17 5:51 p.m.10 views

GSD-2023-1000621 net: enetc: avoid buffer leaks on xdp_do_redirect() failure

net: enetc: avoid buffer leaks on xdpdoredirect failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.16 by commit...

7.4AI score
Exploits0
Veracode
Veracode
added 2022/11/25 6:46 p.m.38 views

Authorization Bypass

xen is vulnerable to authorization bypass. The vulnerability exists while adding logic to support XDP eXpress Data Path, allowing for SKBs having references pointers retained for further processing to nevertheless be freed...

7.8CVSS7.5AI score0.00349EPSS
Exploits0References6Affected Software1
RedHat Linux
RedHat Linux
added 2022/11/15 11:55 a.m.4 views

kernel: igc: avoid kernel warning when changing RX ring parameters

In the Linux kernel, the following vulnerability has been resolved: igc: avoid kernel warning when changing RX ring parameters Calling ethtool changing the RX ring parameters like this: $ ethtool -G eth0 rx 1024 on igc triggers kernel warnings like this: 225.198467 ------------ cut here...

5.5CVSS6.3AI score0.00252EPSS
Exploits0References5
Rockylinux
Rockylinux
added 2022/11/15 6:19 a.m.21 views

xdp-tools bug fix and enhancement update

An update is available for xdp-tools. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 9....

2AI score
Exploits0
Rockylinux
Rockylinux
added 2022/11/08 6:25 a.m.17 views

xdp-tools bug fix and enhancement update

An update is available for xdp-tools. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 8....

2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/09/30 12:0 a.m.37 views

Ubuntu 20.04 LTS : Linux kernel (GKE) vulnerabilities (USN-5648-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5648-1 advisory. It was discovered that the framebuffer driver on the Linux kernel did not verify size limits when changing font or screen size, leading to an out-of-...

7.8CVSS7.3AI score0.05542EPSS
Exploits1References12
Tenable Nessus
Tenable Nessus
added 2022/09/26 12:0 a.m.39 views

Ubuntu 22.04 LTS : Linux kernel (Oracle) vulnerabilities (USN-5640-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5640-1 advisory. It was discovered that the framebuffer driver on the Linux kernel did not verify size limits when changing font or screen size, leading to an out-of-...

7.8CVSS7.3AI score0.05542EPSS
Exploits1References12
Mageia
Mageia
added 2022/07/20 8:24 p.m.74 views

Updated kernel-linus packages fix security vulnerabilities

This kernel-linus update is based on upstream 5.15.55 and fixes at least the following security issues: There are use-after-free vulnerabilities caused by timer handler in net/rose/rosetimer.c of linux that allow attackers to crash linux kernel without any privileges CVE-2022-2318. Xen Block and...

7.8CVSS2.5AI score0.05496EPSS
Exploits10References9
RedhatCVE
RedhatCVE
added 2022/07/18 12:47 p.m.113 views

CVE-2022-33743

An incomplete cleanup flaw was found in the Linux kernel’s Xen networking XDP eXpress Data Path subsystem. This flaw allows a local user to crash the system...

7.8CVSS2.2AI score0.00349EPSS
Exploits0References5
NVD
NVD
added 2022/07/05 1:15 p.m.12 views

CVE-2022-33743

network backend may cause Linux netfront to use freed SKBs While adding logic to support XDP eXpress Data Path, a code label was moved in a way allowing for SKBs having references pointers retained for further processing to nevertheless be freed...

7.8CVSS0.00349EPSS
Exploits0References4
OSV
OSV
added 2022/07/05 1:15 p.m.7 views

AZL-10107 CVE-2022-33743 affecting package kernel for versions less than 5.15.67.1-4

network backend may cause Linux netfront to use freed SKBs While adding logic to support XDP eXpress Data Path, a code label was moved in a way allowing for SKBs having references pointers retained for further processing to nevertheless be freed...

7.8CVSS6.7AI score0.00349EPSS
Exploits0References1
OSV
OSV
added 2022/07/05 1:15 p.m.36 views

CVE-2022-33743

network backend may cause Linux netfront to use freed SKBs While adding logic to support XDP eXpress Data Path, a code label was moved in a way allowing for SKBs having references pointers retained for further processing to nevertheless be freed...

7.8CVSS3.1AI score
Exploits0References4
UbuntuCve
UbuntuCve
added 2022/07/05 1:15 p.m.59 views

CVE-2022-33743

network backend may cause Linux netfront to use freed SKBs While adding logic to support XDP eXpress Data Path, a code label was moved in a way allowing for SKBs having references pointers retained for further processing to nevertheless be freed...

7.8CVSS6.8AI score0.00349EPSS
Exploits0References16
Prion
Prion
added 2022/07/05 1:15 p.m.38 views

Path traversal

network backend may cause Linux netfront to use freed SKBs While adding logic to support XDP eXpress Data Path, a code label was moved in a way allowing for SKBs having references pointers retained for further processing to nevertheless be freed...

4.6CVSS7.4AI score0.00349EPSS
Exploits0References4Affected Software2
ATTACKERKB
ATTACKERKB
added 2022/07/05 1:15 p.m.1 views

CVE-2022-33743

network backend may cause Linux netfront to use freed SKBs While adding logic to support XDP eXpress Data Path, a code label was moved in a way allowing for SKBs having references pointers retained for further processing to nevertheless be freed...

7.8CVSS6.9AI score0.00349EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2022/07/05 12:50 p.m.64 views

CVE-2022-33743

network backend may cause Linux netfront to use freed SKBs While adding logic to support XDP eXpress Data Path, a code label was moved in a way allowing for SKBs having references pointers retained for further processing to nevertheless be freed...

7.8CVSS7AI score0.00349EPSS
Exploits0
Cvelist
Cvelist
added 2022/07/05 12:50 p.m.26 views

CVE-2022-33743

network backend may cause Linux netfront to use freed SKBs While adding logic to support XDP eXpress Data Path, a code label was moved in a way allowing for SKBs having references pointers retained for further processing to nevertheless be freed...

7.9AI score0.00349EPSS
Exploits0References4
CVE
CVE
added 2022/07/05 12:50 p.m.239 views

CVE-2022-33743

CVE-2022-33743 maps to a Xen netfront memory-handling issue in the Linux kernel where SKBs with retained references can be freed, caused by a label move while adding XDP support. This can lead to use-after-free in the network backend and a potential Denial of Service when interacting with the Xen...

7.8CVSS7.5AI score0.00349EPSS
Exploits0References4Affected Software2
Xen Project
Xen Project
added 2022/07/05 12:0 p.m.81 views

network backend may cause Linux netfront to use freed SKBs

ISSUE DESCRIPTION While adding logic to support XDP eXpress Data Path, a code label was moved in a way allowing for SKBs having references pointers retained for further processing to nevertheless be freed. IMPACT A misbehaving or malicious backend may cause a Denial of Service DoS in the guest...

7.8CVSS7.7AI score0.00349EPSS
Exploits0
Rockylinux
Rockylinux
added 2022/05/17 6:14 a.m.15 views

new packages: xdp-tools

An update is available for xdp-tools. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 9....

2AI score
Exploits0
Rows per page
Query Builder