Lucene search
K

213 matches found

Vulnrichment
Vulnrichment
added 2024/09/13 5:29 a.m.23 views

CVE-2024-46673 scsi: aacraid: Fix double-free on probe failure

In the Linux kernel, the following vulnerability has been resolved: scsi: aacraid: Fix double-free on probe failure aacprobeone calls hardware-specific init functions through the aacdriverident::init pointer, all of which eventually call down to aacinitadapter. If aacinitadapter fails after...

6.9AI score0.00293EPSS
Exploits0References8
CVE
CVE
added 2024/09/13 5:29 a.m.169 views

CVE-2024-46673

CVE-2024-46673: In the Linux kernel, the aacraid SCSI driver could double-free aac_dev::queues during probe if aac_init_adapter() failed after initial allocation. The hardware-specific init path calls into aac_init_adapter(), which on error frees queues but does not clear the pointer, and the err...

7.8CVSS7.4AI score0.00293EPSS
Exploits0References10Affected Software1
OSV
OSV
added 2024/09/13 5:29 a.m.17 views

CVE-2024-46673 scsi: aacraid: Fix double-free on probe failure

In the Linux kernel, the following vulnerability has been resolved: scsi: aacraid: Fix double-free on probe failure aacprobeone calls hardware-specific init functions through the aacdriverident::init pointer, all of which eventually call down to aacinitadapter. If aacinitadapter fails after...

7.8CVSS6.1AI score0.00293EPSS
Exploits0References13
OSV
OSV
added 2023/10/06 11:10 p.m.52 views

RLSA-2023:4517 Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use-after-free in l2capconnect and l2capleconnectreq in net/bluetooth/l2capcore.c CVE-2022-42896 kernel: tcindex: use-after-free vulnerability in traffic control index filter allows...

8.1CVSS8.2AI score0.02014EPSS
Exploits2References7
SUSE CVE
SUSE CVE
added 2023/02/15 6:11 a.m.2 views

SUSE CVE-2007-4308

The 1 aaccfgopen and 2 aaccompatioctl functions in the SCSI layer ioctl path in aacraid in the Linux kernel before 2.6.23-rc2 do not check permissions for ioctls, which might allow local users to cause a denial of service or gain privileges...

1.9CVSS6.5AI score0.00366EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 5:34 a.m.5 views

SUSE CVE-2013-6380

The aacsendrawsrb function in drivers/scsi/aacraid/commctrl.c in the Linux kernel through 3.12.1 does not properly validate a certain size value, which allows local users to cause a denial of service invalid pointer dereference or possibly have unspecified other impact via an FSACTLSENDRAWSRB ioc...

4.7CVSS6.9AI score0.00602EPSS
Exploits1References8
SUSE CVE
SUSE CVE
added 2023/02/15 4:59 a.m.5 views

SUSE CVE-2016-6480

Race condition in the ioctlsendfib function in drivers/scsi/aacraid/commctrl.c in the Linux kernel through 4.7 allows local users to cause a denial of service out-of-bounds access or system crash by changing a certain size value, aka a "double fetch" vulnerability...

5.1CVSS6.2AI score0.00342EPSS
Exploits0References25
SUSE CVE
SUSE CVE
added 2023/02/15 4:35 a.m.4 views

SUSE CVE-2017-18550

An issue was discovered in drivers/scsi/aacraid/commctrl.c in the Linux kernel before 4.13. There is potential exposure of kernel stack memory because aacgethbainfo does not initialize the hbainfo structure...

5.5CVSS7.7AI score0.00542EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:35 a.m.5 views

SUSE CVE-2017-18549

An issue was discovered in drivers/scsi/aacraid/commctrl.c in the Linux kernel before 4.13. There is potential exposure of kernel stack memory because aacsendrawsrb does not initialize the reply structure...

5.5CVSS7.7AI score0.00558EPSS
Exploits0References3
Citrix
Citrix
added 2021/01/08 12:0 a.m.9 views

Driver Disk for Microsemi aacraid 1.2.1.60001 - For Citrix Hypervisor 8.x CR

Who Should Install this Driver Disk? Customers running a Citrix Hypervisor 8.x release who use Microsemi's aacraid driver and wish to use the latest version of the following: Driver Module| Version ---|--- aacraid| 1.2.1.60001 Issues Resolved In this Driver Disk Includes general enhancements and...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/05/04 12:0 a.m.32 views

openSUSE Security Update : xen (openSUSE-2020-599)

This update for xen fixes the following issues : Security issues fixed : - CVE-2020-11742: Bad continuation handling in GNTTABOPcopy bsc1169392. - CVE-2020-11740, CVE-2020-11741: xen: XSA-313 multiple xenoprof issues bsc1168140. - CVE-2020-11739: Missing memory barriers in read-write unlock paths...

8.8CVSS6.7AI score0.00527EPSS
Exploits1References17
OPENSUSE Linux
OPENSUSE Linux
added 2020/05/01 12:0 a.m.94 views

Security update for xen (important)

openSUSE Security Update: Security update for xen Announcement ID: openSUSE-SU-2020:0599-1 Rating: important References: 1027519 1134506 1155200 1157490 1160932 1165206 1167007 1167152 1168140 1168142 1168143 1169392 Cross-References: CVE-2020-11739 CVE-2020-11740 CVE-2020-11741 CVE-2020-11742...

8.8CVSS7.9AI score0.00527EPSS
Exploits1References12
Tenable Nessus
Tenable Nessus
added 2020/04/30 12:0 a.m.30 views

SUSE SLES12 Security Update : xen (SUSE-SU-2020:1139-1)

This update for xen to version 4.12.2 fixes the following issues : Security issues fixed : CVE-2020-11742: Bad continuation handling in GNTTABOPcopy bsc1169392. CVE-2020-11740, CVE-2020-11741: xen: XSA-313 multiple xenoprof issues bsc1168140. CVE-2020-11739: Missing memory barriers in read-write...

8.8CVSS6.8AI score0.04141EPSS
Exploits1References27
Tenable Nessus
Tenable Nessus
added 2020/04/30 12:0 a.m.32 views

SUSE SLES12 Security Update : xen (SUSE-SU-2020:1138-1)

This update for xen fixes the following issues : Security issues fixed : CVE-2020-11742: Bad continuation handling in GNTTABOPcopy bsc1169392. CVE-2020-11740, CVE-2020-11741: xen: XSA-313 multiple xenoprof issues bsc1168140. CVE-2020-11739: Missing memory barriers in read-write unlock paths...

8.8CVSS6.8AI score0.04141EPSS
Exploits1References22
Tenable Nessus
Tenable Nessus
added 2020/04/29 12:0 a.m.35 views

SUSE SLED15 / SLES15 Security Update : xen (SUSE-SU-2020:1124-1)

This update for xen fixes the following issues : Security issues fixed : CVE-2020-11742: Bad continuation handling in GNTTABOPcopy bsc1169392. CVE-2020-11740, CVE-2020-11741: xen: XSA-313 multiple xenoprof issues bsc1168140. CVE-2020-11739: Missing memory barriers in read-write unlock paths...

8.8CVSS6.8AI score0.00527EPSS
Exploits1References23
RedhatCVE
RedhatCVE
added 2020/01/10 3:48 a.m.26 views

CVE-2017-18550

A flaw was found in drivers/scsi/aacraid/commctrl.c in the Linux kernel, where there is potential exposure of kernel stack memory because the aacgethbainfo function, does not initialize the hbainfo structure. An attacker with relevant permissions can issue ioctl to an aacraid device. Mitigation...

5.5CVSS3.7AI score0.00542EPSS
Exploits0References3
CNVD
CNVD
added 2019/08/21 12:0 a.m.4 views

Unspecified vulnerability in Linux kernel (CNVD-2019-38267)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the drivers/scsi/aacraid/commctrl.c file in versions of the Linux kernel prior to 4.13, which stems from aacgethbainfo not...

5.5CVSS8.1AI score0.00542EPSS
Exploits0References1
CNVD
CNVD
added 2019/08/21 12:0 a.m.4 views

Unspecified vulnerability in Linux kernel (CNVD-2019-38268)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the drivers/scsi/aacraid/commctrl.c file in versions of the Linux kernel prior to 4.13, which stems from the structure of...

5.5CVSS8.1AI score0.00558EPSS
Exploits0References1
OSV
OSV
added 2019/08/19 2:15 a.m.2 views

DEBIAN-CVE-2017-18550

An issue was discovered in drivers/scsi/aacraid/commctrl.c in the Linux kernel before 4.13. There is potential exposure of kernel stack memory because aacgethbainfo does not initialize the hbainfo structure...

5.5CVSS6.7AI score0.00542EPSS
Exploits0References1
OSV
OSV
added 2019/08/19 2:15 a.m.7 views

CVE-2017-18550

An issue was discovered in drivers/scsi/aacraid/commctrl.c in the Linux kernel before 4.13. There is potential exposure of kernel stack memory because aacgethbainfo does not initialize the hbainfo structure...

5.5CVSS6.5AI score
Exploits0References1
Rows per page
Query Builder