Lucene search
K

73 matches found

Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.14 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-43856)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43856 advisory. - In the Linux kernel, the following vulnerability has been resolved: dma: fix call order in dmamfreecoherent...

5.5CVSS6AI score0.00398EPSS
Exploits0References2
OSV
OSV
added 2025/01/06 4:20 p.m.14 views

CVE-2024-56766 mtd: rawnand: fix double free in atmel_pmecc_create_user()

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: fix double free in atmelpmecccreateuser The "user" pointer was converted from being allocated with kzalloc to being allocated by devmkzalloc. Calling kfreeuser will lead to a double free...

7.8CVSS6.2AI score0.00217EPSS
Exploits0References12
NVD
NVD
added 2024/12/28 10:15 a.m.10 views

CVE-2024-56697

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix the memory allocation issue in amdgpudiscoverygetnpsinfo Fix two issues with memory allocation in amdgpudiscoverygetnpsinfo for memranges: - Add a check for allocation failure to avoid dereferencing a null pointer...

5.5CVSS0.00198EPSS
Exploits0References3
OSV
OSV
added 2024/12/28 9:46 a.m.7 views

CVE-2024-56697 drm/amdgpu: Fix the memory allocation issue in amdgpu_discovery_get_nps_info()

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix the memory allocation issue in amdgpudiscoverygetnpsinfo Fix two issues with memory allocation in amdgpudiscoverygetnpsinfo for memranges: - Add a check for allocation failure to avoid dereferencing a null pointer...

5.5CVSS6.3AI score0.00198EPSS
Exploits0References6
OSV
OSV
added 2024/11/12 12:0 a.m.14 views

ALSA-2024:9195 Moderate: cyrus-imapd security update

The cyrus-imapd packages contain a high-performance mail server with IMAP, POP3, NNTP, and SIEVE support. Security Fixes: cyrus-imapd: unbounded memory allocation by sending many LITERALs in a single command CVE-2024-34055 For more details about the security issues, including the impact, a CVSS...

6.5CVSS6.7AI score0.00836EPSS
Exploits0References4
OSV
OSV
added 2024/11/05 6:15 p.m.1 views

DEBIAN-CVE-2024-50105

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: sc7280: Fix missing Soundwire runtime stream alloc Commit 15c7fab0e047 "ASoC: qcom: Move Soundwire runtime stream alloc to soundcards" moved the allocation of Soundwire stream runtime from the Qualcomm Soundwire drive...

5.5CVSS5.7AI score0.002EPSS
Exploits0References1
OSV
OSV
added 2024/07/29 2:57 p.m.31 views

CVE-2024-41059 hfsplus: fix uninit-value in copy_name

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix uninit-value in copyname syzbot reported BUG: KMSAN: uninit-value in sizedstrscpy+0xc4/0x160 sizedstrscpy+0xc4/0x160 copyname+0x2af/0x320 fs/hfsplus/xattr.c:411 hfspluslistxattr+0x11e9/0x1a50 fs/hfsplus/xattr.c:750...

7.1CVSS6.1AI score0.00269EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2024/07/16 6:56 p.m.20 views

CVE-2024-40994

A vulnerability was found in the Linux kernel's ptp subsystem in ptpsysfs.c file, where the maxvclocksstore function can cause an integer overflow on 32-bit systems. This issue occurs during a multiplication operation, potentially leading to incorrect memory allocation, resulting in memory...

8.3AI score0.00277EPSS
Exploits0References4
OSV
OSV
added 2024/07/12 1:15 p.m.3 views

UBUNTU-CVE-2024-40994

In the Linux kernel, the following vulnerability has been resolved: ptp: fix integer overflow in maxvclocksstore On 32bit systems, the "4 max" multiply can overflow. Use kcalloc to do the allocation to prevent this...

7.8CVSS6.3AI score0.00277EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2024/06/04 2:25 a.m.4 views

SUSE CVE-2024-36946

In the Linux kernel, the following vulnerability has been resolved: phonet: fix rtmphonetnotify skb allocation fillroute stores three components in the skb: - struct rtmsg - RTADST u8 - RTAOIF u32 Therefore, rtmphonetnotify should use NLMSGALIGNsizeofstruct rtmsg + nlatotalsize1 + nlatotalsize4...

5.5CVSS6.5AI score0.00266EPSS
Exploits0References13
Cvelist
Cvelist
added 2024/05/20 9:41 a.m.19 views

CVE-2024-35972 bnxt_en: Fix possible memory leak in bnxt_rdma_aux_device_init()

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix possible memory leak in bnxtrdmaauxdeviceinit If ulp = kzalloc fails, the allocated edev will leak because it is not properly assigned and the cleanup path will not be able to free it. Fix it by assigning it properly...

5.3AI score0.00225EPSS
Exploits0References3
OSV
OSV
added 2024/04/13 11:17 a.m.4 views

CVE-2024-26817 amdkfd: use calloc instead of kzalloc to avoid integer overflow

In the Linux kernel, the following vulnerability has been resolved: amdkfd: use calloc instead of kzalloc to avoid integer overflow This uses calloc instead of doing the multiplication which might overflow...

5.5CVSS6.1AI score0.00754EPSS
Exploits0References14
OSV
OSV
added 2024/04/03 5:0 p.m.7 views

CVE-2024-26760 scsi: target: pscsi: Fix bio_put() for error case

In the Linux kernel, the following vulnerability has been resolved: scsi: target: pscsi: Fix bioput for error case As of commit 066ff571011d "block: turn biokmalloc into a simple kmalloc wrapper", a bio allocated by biokmalloc must be freed by biouninit and kfree. That is not done properly for th...

5.5CVSS5.9AI score0.00236EPSS
Exploits0References7
OSV
OSV
added 2024/03/12 7:46 p.m.9 views

SUSE-SU-2024:0855-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-6270: Fixed a use-after-free bug in aoecmdcfgpkts bsc1218562. - CVE-2023-52559: Fixed a bug by avoiding memory allocation in iommususpend...

8.8CVSS7.8AI score0.0094EPSS
Exploits0References124
OSV
OSV
added 2024/03/06 6:45 a.m.7 views

CVE-2023-52607 powerpc/mm: Fix null-pointer dereference in pgtable_cache_add

In the Linux kernel, the following vulnerability has been resolved: powerpc/mm: Fix null-pointer dereference in pgtablecacheadd kasprintf returns a pointer to dynamically allocated memory which can be NULL upon failure. Ensure the allocation was successful by checking the pointer validity...

5.5CVSS5.8AI score0.00234EPSS
Exploits0References12
OSV
OSV
added 2024/02/29 3:52 p.m.3 views

CVE-2024-26618 arm64/sme: Always exit sme_alloc() early with existing storage

In the Linux kernel, the following vulnerability has been resolved: arm64/sme: Always exit smealloc early with existing storage When smealloc is called with existing storage and we are not flushing we will always allocate new storage, both leaking the existing storage and corrupting the state. Fi...

5.5CVSS6.1AI score0.00239EPSS
Exploits0References8
OSV
OSV
added 2024/02/27 7:4 p.m.12 views

CVE-2021-46966

In the Linux kernel, the following vulnerability has been resolved: ACPI: custommethod: fix potential use-after-free issue In cmwrite, buf is always freed when reaching the end of the function. If the requested count is less than table.length, the allocated buffer will be freed but subsequent cal...

7.8CVSS7.5AI score
Exploits0References9
Oracle linux
Oracle linux
added 2023/02/22 12:0 a.m.48 views

kernel security and bug fix update

4.18.0-425.13.17.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...

7.5CVSS7.8AI score0.21314EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2023/02/15 4:28 a.m.1 views

SUSE CVE-2018-9260

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the IEEE 802.15.4 dissector could crash. This was addressed in epan/dissectors/packet-ieee802154.c by ensuring that an allocation step occurs...

5.3CVSS7.6AI score0.02568EPSS
Exploits1References5
Oracle linux
Oracle linux
added 2023/01/12 12:0 a.m.59 views

Unbreakable Enterprise kernel-container security update

5.15.0-6.80.3.1 - Revert 'rds: ib: Enable FC by default' Hakon Bugge Orabug: 34964359 5.15.0-6.80.3 - net/mlx5: Suppress error logging on UCTX creation Marina Orabug: 34888471 - rds: ib: Fix leaked MRs during kexec Hakon Bugge Orabug: 34892082 - uek-rpm: Add ptpkvm.ko to core rpm Somasundaram...

8.8CVSS8.6AI score0.02014EPSS
Exploits0
Rows per page
Query Builder