Lucene search
K

7041 matches found

Cvelist
Cvelist
added 2025/01/19 11:52 a.m.15 views

CVE-2024-57924 fs: relax assertions on failure to encode file handles

In the Linux kernel, the following vulnerability has been resolved: fs: relax assertions on failure to encode file handles Encoding file handles is usually performed by a filesystem encodefh method that may fail for various reasons. The legacy users of exportfsencodefh, namely, nfsd and...

0.00202EPSS
Exploits0References4
OSV
OSV
added 2025/01/19 10:18 a.m.8 views

CVE-2025-21654 ovl: support encoding fid from inode with no alias

In the Linux kernel, the following vulnerability has been resolved: ovl: support encoding fid from inode with no alias Dmitry Safonov reported that a WARNON assertion can be trigered by userspace when calling inotifyshowfdinfo for an overlayfs watched inode, whose dentry aliases were discarded wi...

5.5CVSS6.1AI score0.00197EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/01/19 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the wrappers of the dmlceil2 and dmlfloor2 functions failing to check if the granularity is zero, which coul...

5.5CVSS6.5AI score0.0025EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/01/19 12:0 a.m.4 views

PT-2025-3648 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the fixed version Description: The issue is related to the btrfs compression functionality in the Linux kernel, specifically with the zlib compression path for S390 hardware acceleration. The problem arises when...

7.2AI score0.00209EPSS
Exploits0References13
RedhatCVE
RedhatCVE
added 2025/01/13 5:28 a.m.9 views

CVE-2024-57806

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix transaction atomicity bug when enabling simple quotas Set squota incompat bit before committing the transaction that enables the feature. With the config CONFIGBTRFSASSERT enabled, an assertion failure occurs regarding...

5.5CVSS6.7AI score0.00209EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/01/13 12:0 a.m.3 views

PT-2025-3682 · Ember · Ember Znet Stack

Name of the Vulnerable Software and Affected Versions: Ember ZNet stack affected versions not specified Description: A malformed packet can cause a buffer overflow in the APS layer of the Ember ZNet stack and lead to an assert. Recommendations: At the moment, there is no information about a newer...

4.3CVSS7.4AI score0.00238EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/01/13 12:0 a.m.2 views

Silicon Labs Ember ZNet 安全漏洞

Silicon Labs Ember ZNet is a protocol stack software from Silicon Labs, Inc. A security vulnerability exists in Silicon Labs Ember ZNet that originates from a buffer overflow that occurs during the processing of malformed packets at the APS layer, which may result in an assertion failure...

4.3CVSS7.3AI score0.00238EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/01/12 12:14 a.m.3 views

SUSE CVE-2024-57806

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix transaction atomicity bug when enabling simple quotas Set squota incompat bit before committing the transaction that enables the feature. With the config CONFIGBTRFSASSERT enabled, an assertion failure occurs regarding...

4.4CVSS7.6AI score0.00209EPSS
Exploits0References3
NVD
NVD
added 2025/01/11 1:15 p.m.18 views

CVE-2024-57806

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix transaction atomicity bug when enabling simple quotas Set squota incompat bit before committing the transaction that enables the feature. With the config CONFIGBTRFSASSERT enabled, an assertion failure occurs regarding...

5.5CVSS0.00209EPSS
Exploits0References2
CVE
CVE
added 2025/01/11 12:39 p.m.123 views

CVE-2024-57806

CVE-2024-57806 relates to a Linux kernel btrfs quota (SIMPLE_QUOTA) atomicity bug. The fix ensures the BTRFS_FEATURE_INCOMPAT_SIMPLE_QUOTA flag is set immediately after enabling SIMPLE_MODE, so both the quota status flag and the incompat flag are flushed in the same transaction. Without this, a s...

5.5CVSS6.5AI score0.00209EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/01/11 12:39 p.m.17 views

CVE-2024-57806 btrfs: fix transaction atomicity bug when enabling simple quotas

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix transaction atomicity bug when enabling simple quotas Set squota incompat bit before committing the transaction that enables the feature. With the config CONFIGBTRFSASSERT enabled, an assertion failure occurs regarding...

0.00209EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/01/11 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the Btrfs file system not setting the squota incompatibility bit before committing a transaction when simple...

5.5CVSS6.4AI score0.00209EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/01/08 12:0 a.m.5 views

Silicon Simplicity SDK 安全漏洞

The Silicon Simplicity SDK is an embedded software development platform from Silicon, Inc. for building Internet of Things IoT products based on our Series 2 and upcoming Series 3 wireless and MCU devices. A security vulnerability exists in Silicon Simplicity SDK versions prior to 2024.12.0, whic...

6.5CVSS7.1AI score0.00263EPSS
Exploits0References3
NVD
NVD
added 2025/01/07 5:15 p.m.14 views

CVE-2024-8361

In SiWx91x devices, the SHA2/224 algorithm returns a hash of 256 bits instead of 224 bits. This incorrect hash length triggers a software assertion, which subsequently causes a Denial of Service DoS. If a watchdog is implemented, device will restart after watch dog expires. If watchdog is not...

7.5CVSS0.0041EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/07 4:18 p.m.5 views

CVE-2024-8361 DoS caused due to wrong hash length returned for SHA2/224 algorithm

In SiWx91x devices, the SHA2/224 algorithm returns a hash of 256 bits instead of 224 bits. This incorrect hash length triggers a software assertion, which subsequently causes a Denial of Service DoS. If a watchdog is implemented, device will restart after watch dog expires. If watchdog is not...

7.5CVSS6.9AI score0.0041EPSS
Exploits0References1
CVE
CVE
added 2025/01/07 4:18 p.m.46 views

CVE-2024-8361

In SiWx91x devices, CVE-2024-8361 describes a DoS caused by SHA2/224 producing a 256-bit hash instead of 224 bits, triggering a software assertion. The issue is documented across multiple sources (NVD, Red Hat, CVE listing). Affected component is the SHA2/224 implementation; root cause is incorre...

7.5CVSS7.5AI score0.0041EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/07 12:0 a.m.4 views

Silicon SiWx91x 安全漏洞

The Silicon SiWx91x is a radio board from Silicon Technology Silicon. A security vulnerability exists in the Silicon SiWx91x that stems from an incorrect hash length triggering a software assertion, which could lead to a denial of service DoS...

7.5CVSS6.5AI score0.0041EPSS
Exploits0References2
NVD
NVD
added 2025/01/06 4:15 a.m.34 views

CVE-2024-20152

In wlan STA driver, there is a possible reachable assertion due to improper exception handling. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00389047 / ALPS09136505; Issue...

4.4CVSS0.0009EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/01/02 8:2 p.m.2 views

libreswan: IKEv1 default AH/ESP responder can crash and restart

A flaw was found in Libreswan, where it was identified to contain an assertion failure issue in the computeprotokeymat function. The vulnerability can be exploited when an IKEv1 connection is loaded with an AH/ESP default setting when no esp= line is present in the connection. This flaw allows an...

6.5CVSS6.3AI score0.008EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/01/02 6:44 p.m.4 views

libreswan: Invalid IKEv2 REKEY proposal causes restart

An assertion failure flaw was found in the Libreswan package that occurs when processing IKEv2 REKEY requests. When an IKEv2 Child SA REKEY packet contains an invalid IPsec protocol ID number of 0 or 1, an error notification INVALIDSPI is sent back. The notify payload's protocol ID is copied from...

6.5CVSS5.8AI score0.00691EPSS
Exploits0References6
Rows per page
Query Builder