Lucene search
K

224 matches found

RedHat Linux
RedHat Linux
•added 2024/02/28 5:32 a.m.•43 views

Important: Red Hat Security Advisory: edk2 security update

An update for edk2 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as havi...

8.8CVSS7.1AI score0.01213EPSS
Exploits1References2
OSV
OSV
•added 2024/02/27 7:15 a.m.•1 views

DEBIAN-CVE-2021-46911

In the Linux kernel, the following vulnerability has been resolved: chktls: Fix kernel panic Taking page refcount is not ideal and causes kernel panic sometimes. It's better to take txctx lock for the complete skb transmit, to avoid page cleanup if ACK received in middle...

5.5CVSS5.6AI score0.00222EPSS
Exploits0References1
OSV
OSV
•added 2024/02/27 7:15 a.m.•1 views

UBUNTU-CVE-2021-46911

In the Linux kernel, the following vulnerability has been resolved: chktls: Fix kernel panic Taking page refcount is not ideal and causes kernel panic sometimes. It's better to take txctx lock for the complete skb transmit, to avoid page cleanup if ACK received in middle...

5.5CVSS6.6AI score0.00222EPSS
Exploits0References6
Apple
Apple
•added 2023/12/11 12:0 a.m.•447 views

About the security content of Safari 17.2

About the security content of Safari 17.2 This document describes the security content of Safari 17.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

8.8CVSS8.4AI score0.03208EPSS
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
•added 2023/11/27 4:26 p.m.•67 views

Moderate: Red Hat Security Advisory: linux-firmware security update

An update for linux-firmware is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

5.5CVSS7AI score0.0616EPSS
Exploits2References3
RedHat Linux
RedHat Linux
•added 2023/11/14 5:0 p.m.•75 views

Important: Red Hat Security Advisory: nodejs:20 security update

An update for the nodejs:20 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7.1AI score0.99999EPSS
Exploits19References8
RedHat Linux
RedHat Linux
•added 2023/11/14 3:46 p.m.•3 views

kernel: scsi: mpi3mr: Fix missing mrioc->evtack_cmds initialization

A use-after-free vulnerability was found in the MPI3MR SCSI driver. The evtackcmds array is not properly initialized, causing invalid memory access via clearbit with incorrect bit indices during event acknowledgment...

5.7AI score0.00166EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2023/11/07 9:3 a.m.•2 views

kernel: scsi: mpi3mr: Fix missing mrioc->evtack_cmds initialization

A use-after-free vulnerability was found in the MPI3MR SCSI driver. The evtackcmds array is not properly initialized, causing invalid memory access via clearbit with incorrect bit indices during event acknowledgment...

5.7AI score0.00166EPSS
Exploits0References5
CNNVD
CNNVD
•added 2023/10/31 12:0 a.m.•4 views

quic-go security vulnerability

quic-go is an implementation of the QUIC protocol, RFC 9000 protocol in Go by Lucas Clemente, a personal developer. A security vulnerability exists in versions of quic-go prior to 0.37.0 to 0.37.3, which stems from a vulnerability that allows an attacker to serialize ACK frames on completion of a...

7.5CVSS6.8AI score0.00765EPSS
Exploits0References4
Positive Technologies
Positive Technologies
•added 2023/10/30 12:0 a.m.•5 views

PT-2023-29922 Ā· Quic-Go Ā· Quic-Go

Name of the Vulnerable Software and Affected Versions: quic-go versions 0.37.0 through 0.37.2 Description: The issue arises from serializing an ACK frame after the CRYPTO frame, allowing a node to complete the handshake. This can trigger a nil pointer dereference when the node attempts to drop th...

7.5CVSS7.3AI score0.00765EPSS
Exploits0References13
OSV
OSV
•added 2023/10/24 6:35 p.m.•44 views

RLSA-2023:5927 Important: php:8.0 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: XML loading external entity without being enabled CVE-2023-3823 php: phar Buffer mismanagement CVE-2023-3824 php: 1-byte array overrun in common path resolve code CVE-2023-0568 php: DoS...

9.8CVSS7.9AI score0.08003EPSS
Exploits6References7
OSV
OSV
•added 2023/10/05 8:57 p.m.•29 views

GHSA-PFFG-92CG-XF5C gnark-crypto's exponentiation in the pairing target group GT using GLV can give incorrect results

Impact When the exponent is bigger than r, the group order of the pairing target group GT, the exponentiation Ć  la GLV ExpGLV can sometimes give incorrect results compared to normal exponentiation Exp. The issue impacts all users using ExpGLV for exponentiations in GT. This does not impact Exp an...

7AI score
Exploits0References6
OSV
OSV
•added 2023/09/01 4:15 p.m.•3 views

ALPINE-CVE-2023-28366

The broker in Eclipse Mosquitto 1.3.2 through 2.x before 2.0.16 has a memory leak that can be abused remotely when a client sends many QoS 2 messages with duplicate message IDs, and fails to respond to PUBREC commands. This occurs because of mishandling of EAGAIN from the libc send function...

7.5CVSS6.9AI score0.01107EPSS
Exploits0References1
Code423n4
Code423n4
•added 2023/08/07 12:0 a.m.•8 views

PRBMATH SD59x18.exp() reverts on hugely negative numbers.

Lines of code Vulnerability details Impact ContinuousGDA.sol inherits a version of PRB Math that contains a vulnerability in the SD59x18.exp function, which can be reverted on hugely negative numbers. SD59x18.exp is used for calculations in ContinuousGDA.solpurchasePrice ,...

6.7AI score
Exploits0
RedHat Linux
RedHat Linux
•added 2023/08/01 2:30 p.m.•53 views

Important: Red Hat Security Advisory: mod_auth_openidc:2.3 security update

An update for the modauthopenidc:2.3 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

8.6CVSS7.2AI score0.006EPSS
Exploits1References2
GithubExploit
GithubExploit
•added 2023/02/15 6:12 p.m.•654 views

Exploit for CVE-2022-44666

Microsoft Windows Contacts VCF/Contact/LDAP syslink control...

9.3CVSS8AI score0.99374EPSS
Exploits63
SUSE CVE
SUSE CVE
•added 2023/02/15 5:49 a.m.•5 views

SUSE CVE-2011-5053

The Wi-Fi Protected Setup WPS protocol, when the "external registrar" authentication method is used, does not properly inform clients about failed PIN authentication, which makes it easier for remote attackers to discover the PIN value, and consequently discover the Wi-Fi network password or...

5.8CVSS7.2AI score0.0334EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2023/02/15 5:8 a.m.•2 views

SUSE CVE-2016-1547

An off-path attacker can cause a preemptible client association to be demobilized in NTP 4.2.8p4 and earlier and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 by sending a crypto NAK packet to a victim client with a spoofed source address of an existing associated peer. This is true even if...

5.3CVSS8.9AI score0.0511EPSS
Exploits2References14
SUSE CVE
SUSE CVE
•added 2023/02/15 4:12 a.m.•8 views

SUSE CVE-2019-11477

Jonathan Looney discovered that the TCPSKBCBskb-tcpgsosegs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments SACKs. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182,...

8.2CVSS7.6AI score0.98745EPSS
Exploits4References36
RedHat Linux
RedHat Linux
•added 2023/01/11 4:41 p.m.•43 views

Moderate: Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update

An update for .NET 6.0 is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.5CVSS7.3AI score0.0274EPSS
Exploits0References2
Rows per page
Query Builder