Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2021/03/31 12:0 a.m.64 views

Debian DLA-2610-1 : linux-4.19 security update

Several vulnerabilities have been discovered in the Linux kernel that may lead to the execution of arbitrary code, privilege escalation, denial of service, or information leaks. CVE-2020-27170, CVE-2020-27171 Piotr Krysiuk discovered flaws in the BPF subsystem's checks for information leaks throu...

8.8CVSS8.1AI score0.02079EPSS
Exploits3References15
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.55 views

Debian DLA-2586-1 : linux security update

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. CVE-2019-19318, CVE-2019-19813, CVE-2019-19816 'Team bobfuzzer' reported bugs in Btrfs that could lead to a use-after-free or heap buffer overflow, and...

9.3CVSS7.4AI score0.06563EPSS
Exploits11References23
Positive Technologies
Positive Technologies
added 2021/02/15 12:0 a.m.21 views

PT-2021-3110 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 2.6.39 through 5.10.16 Description: An issue was discovered in the Linux kernel, as used in Xen, where block, net, and SCSI backends consider certain errors a plain bug, deliberately causing a kernel crash. This issue...

9.8CVSS7.2AI score0.88106EPSS
Exploits261References1357
OSV
OSV
added 2017/07/05 1:29 a.m.1 views

ALPINE-CVE-2017-10911

The makeresponse function in drivers/block/xen-blkback/blkback.c in the Linux kernel before 4.11.8 allows guest OS users to obtain sensitive information from host OS or other guest OS kernel memory by leveraging the copying of uninitialized padding fields in Xen block-interface response structure...

6.5CVSS6AI score0.00445EPSS
Exploits0References1
OSV
OSV
added 2017/07/05 1:29 a.m.0 views

DEBIAN-CVE-2017-10911

The makeresponse function in drivers/block/xen-blkback/blkback.c in the Linux kernel before 4.11.8 allows guest OS users to obtain sensitive information from host OS or other guest OS kernel memory by leveraging the copying of uninitialized padding fields in Xen block-interface response structure...

6.5CVSS7.7AI score0.00445EPSS
Exploits0References1
Xen Project
Xen Project
added 2017/06/20 12:0 p.m.71 views

blkif responses leak backend stack data

ISSUE DESCRIPTION The block interface response structure has some discontiguous fields. Certain backends populate the structure fields of an otherwise uninitialized instance of this structure on their stacks, leaking data through the internal or trailing padding field. IMPACT A malicious...

6.5CVSS1.4AI score0.00445EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2013/06/05 12:0 a.m.5 views

PT-2013-3558 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.10.5 Description: The issue allows guest OS users to cause a denial of service, resulting in data loss, by performing filesystem write operations on a read-only disk that supports either the BLKIF OP DISCARD...

3.8CVSS6.6AI score0.01013EPSS
Exploits2References71
Rows per page
Query Builder