Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-53046

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix race condition in hcicmdsyncclear There is a potential race condition in...

4.7CVSS5.8AI score0.00114EPSS
Exploits0References3
OSV
OSV
added 2025/05/02 3:55 p.m.8 views

CVE-2023-53046 Bluetooth: Fix race condition in hci_cmd_sync_clear

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix race condition in hcicmdsyncclear There is a potential race condition in hcicmdsyncwork and hcicmdsyncclear, and could lead to use-after-free. For instance, hcicmdsyncwork is added to the 'reqworkqueue' after...

4.7CVSS5.5AI score0.00114EPSS
Exploits0References6
OSV
OSV
added 2025/01/24 1:41 p.m.8 views

OESA-2025-1080 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: A race condition was found in the Linux kernel's net/bluetooth in conn,advmin,maxintervalset function. This can result in I2cap connection or broadcast abnormality issue, possibly leading to denial of service. CVE-2024-24858 In t...

7.8CVSS6.3AI score0.00323EPSS
Exploits0References21
RedHat Linux
RedHat Linux
added 2024/11/12 9:11 a.m.1 views

kernel: net/bluetooth: race condition in {conn,adv}_{min,max}_interval_set() function

A race condition flaw was found in the Linux kernel's net/bluetooth, specifically in the conn,advmin,maxintervalset function, which may disrupt I2cap connections, possibly causing a denial of service. This flaw allows an attacker to disrupt Bluetooth connections, leading to a potential denial of...

5.3CVSS7.2AI score0.00323EPSS
Exploits0References4
OSV
OSV
added 2024/08/23 3:26 p.m.6 views

USN-6973-2 linux-azure-5.4 vulnerabilities

It was discovered that a race condition existed in the Bluetooth subsystem in the Linux kernel, leading to a null pointer dereference vulnerability. A privileged local attacker could use this to possibly cause a denial of service system crash. CVE-2024-24860 Several security issues were discovere...

8.4CVSS6.6AI score0.00798EPSS
Exploits1References10
OSV
OSV
added 2024/08/22 12:11 p.m.6 views

USN-6972-2 linux-aws, linux-aws-hwe vulnerabilities

Yuxuan Hu discovered that the Bluetooth RFCOMM protocol driver in the Linux Kernel contained a race condition, leading to a NULL pointer dereference. An attacker could possibly use this to cause a denial of service system crash. CVE-2024-22099 It was discovered that a race condition existed in th...

8.8CVSS6.5AI score0.01167EPSS
Exploits0References19
OSV
OSV
added 2024/08/21 9:41 p.m.7 views

USN-6976-1 linux, linux-aws, linux-kvm, linux-lts-xenial vulnerabilities

Yuxuan Hu discovered that the Bluetooth RFCOMM protocol driver in the Linux Kernel contained a race condition, leading to a NULL pointer dereference. An attacker could possibly use this to cause a denial of service system crash. CVE-2024-22099 It was discovered that a race condition existed in th...

8.4CVSS6.4AI score0.00798EPSS
Exploits0References28
OSV
OSV
added 2024/08/21 7:27 p.m.6 views

USN-6973-1 linux, linux-aws, linux-azure, linux-bluefield, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-xilinx-zynqmp vulnerabilities

It was discovered that a race condition existed in the Bluetooth subsystem in the Linux kernel, leading to a null pointer dereference vulnerability. A privileged local attacker could use this to possibly cause a denial of service system crash. CVE-2024-24860 Several security issues were discovere...

8.4CVSS6.6AI score0.00798EPSS
Exploits1References10
OSV
OSV
added 2024/08/01 3:9 p.m.5 views

USN-6926-2 linux-azure, linux-azure-4.15 vulnerabilities

黄思聪 discovered that the NFC Controller Interface NCI implementation in the Linux kernel did not properly handle certain memory allocation failure conditions, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service system crash...

8.8CVSS6.8AI score0.00829EPSS
Exploits0References31
OSV
OSV
added 2024/06/12 6:10 p.m.9 views

USN-6819-3 linux-oem-6.5 vulnerabilities

Alon Zahavi discovered that the NVMe-oF/TCP subsystem in the Linux kernel did not properly validate H2C PDU data, leading to a null pointer dereference vulnerability. A remote attacker could use this to cause a denial of service system crash. CVE-2023-6356, CVE-2023-6535, CVE-2023-6536 Chenyuan...

7.8CVSS6.5AI score0.78388EPSS
Exploits2References150
OSV
OSV
added 2024/03/19 3:27 p.m.12 views

USN-6686-3 linux-oracle, linux-oracle-5.15 vulnerabilities

It was discovered that the DesignWare USB3 for Qualcomm SoCs driver in the Linux kernel did not properly handle certain error conditions during device registration. A local attacker could possibly use this to cause a denial of service system crash. CVE-2023-22995 It was discovered that a race...

7.8CVSS6.9AI score0.01643EPSS
Exploits0References10
OSV
OSV
added 2024/03/06 10:23 p.m.7 views

USN-6680-1 linux, linux-gcp, linux-gcp-6.5, linux-laptop, linux-lowlatency, linux-lowlatency-hwe-6.5, linux-oem-6.5, linux-oracle, linux-raspi, linux-starfive, linux-starfive-6.5 vulnerabilities

黄思聪 discovered that the NFC Controller Interface NCI implementation in the Linux kernel did not properly handle certain memory allocation failure conditions, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service system crash...

8.8CVSS6.7AI score0.01643EPSS
Exploits3References8
OSV
OSV
added 2024/01/19 11:6 a.m.6 views

OESA-2024-1084 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: A flaw was found in the Bluetooth subsystem of the Linux kernel. A race condition between the btsockrecvmsg and btsockioctl functions could lead to a use-after-free on a socket buffer "skb". This flaw allows a local user to cause...

7CVSS6.8AI score0.0051EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/11/28 12:0 a.m.37 views

Ubuntu 22.04 LTS : Linux kernel (StarFive) vulnerabilities (USN-6520-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6520-1 advisory. Ivan D Barrera, Christopher Bednarz, Mustafa Ismail, and Shiraz Saleem discovered that the InfiniBand RDMA driver in the Linux kernel did not properly...

9.8CVSS7.7AI score0.54577EPSS
Exploits1References17
Tenable Nessus
Tenable Nessus
added 2023/11/01 12:0 a.m.48 views

Ubuntu 22.04 LTS : Linux kernel (Raspberry Pi) vulnerabilities (USN-6465-2)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6465-2 advisory. Yu Hao and Weiteng Chen discovered that the Bluetooth HCI UART driver in the Linux kernel contained a race condition, leading to a null pointer dereferen...

5.5CVSS6.8AI score0.00454EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/10/20 12:0 a.m.35 views

Ubuntu 16.04 ESM : Linux kernel vulnerabilities (USN-6439-1)

The remote Ubuntu 16.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6439-1 advisory. It was discovered that the IPv6 implementation in the Linux kernel contained a high rate of hash collisions in connection lookup table. A remote attacker...

7.8CVSS7.8AI score0.00553EPSS
Exploits4References11
OSV
OSV
added 2022/12/14 4:41 p.m.8 views

USN-5779-1 linux-azure, linux-azure-5.15, linux-azure-fde vulnerabilities

It was discovered that the NFSD implementation in the Linux kernel did not properly handle some RPC messages, leading to a buffer overflow. A remote attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-43945 Jann Horn discovered that the...

7.8CVSS7.3AI score0.21314EPSS
Exploits3References10
OSV
OSV
added 2022/12/01 7:52 p.m.11 views

USN-5757-2 linux-aws-hwe, linux-gcp, linux-hwe, linux-oracle vulnerabilities

Jann Horn discovered that the Linux kernel did not properly track memory allocations for anonymous VMA mappings in some situations, leading to potential data structure reuse. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-427...

7.8CVSS6.8AI score0.02211EPSS
Exploits3References10
Tenable Nessus
Tenable Nessus
added 2022/05/10 12:0 a.m.33 views

NewStart CGSL MAIN 6.02 : kernel Multiple Vulnerabilities (NS-SA-2022-0059)

The remote NewStart CGSL host, running version MAIN 6.02, has kernel packages installed that are affected by multiple vulnerabilities: - In doepollctl and eploopcheckproc of eventpoll.c, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with...

8.1CVSS7.7AI score0.09808EPSS
Exploits13References31
OSV
OSV
added 2021/07/20 9:29 p.m.6 views

USN-5016-1 linux, linux-aws, linux-aws-5.8, linux-azure, linux-azure-5.8, linux-gcp, linux-gcp-5.8, linux-hwe-5.8, linux-kvm, linux-oracle, linux-oracle-5.8, linux-raspi vulnerabilities

It was discovered that the virtual file system implementation in the Linux kernel contained an unsigned to signed integer conversion error. A local attacker could use this to cause a denial of service system crash or execute arbitrary code. CVE-2021-33909 Or Cohen and Nadav Markus discovered a...

7.8CVSS7.1AI score0.09808EPSS
Exploits8References6
Rows per page
Query Builder