Lucene search
K

41 matches found

Positive Technologies
Positive Technologies
added 2025/01/17 12:0 a.m.6 views

PT-2025-9966

Name of the Vulnerable Software and Affected Versions Linux kernel versions 5.15 through 6.12 Description A vulnerability in the Linux kernel has been identified, related to the handling of bpf timers. The issue arises when the hrtimer cancel function attempts to acquire a lock that is already...

4.7CVSS7AI score0.00154EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/08/23 2:53 a.m.3 views

SUSE CVE-2022-48940

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix crash due to incorrect copymapvalue When both bpfspinlock and bpftimer are present in a BPF map value, copymapvalue needs to skirt both objects when copying a value into and out of the map. However, the current code does...

5.5CVSS6.2AI score0.00207EPSS
Exploits0References6
OSV
OSV
added 2024/08/22 4:15 a.m.8 views

UBUNTU-CVE-2022-48940

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix crash due to incorrect copymapvalue When both bpfspinlock and bpftimer are present in a BPF map value, copymapvalue needs to skirt both objects when copying a value into and out of the map. However, the current code does...

5.5CVSS6.2AI score0.00207EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/08/22 12:0 a.m.5 views

Linux kernel 缓冲区错误漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A buffer error vulnerability exists in Linux kernel that stems from a failure to properly handle objects containing bpfspinlock and bpftimer, leading to possible overwrites and...

5.5CVSS6.5AI score0.00207EPSS
Exploits0References6
OSV
OSV
added 2024/08/07 4:15 p.m.1 views

DEBIAN-CVE-2024-42239

In the Linux kernel, the following vulnerability has been resolved: bpf: Fail bpftimercancel when callback is being cancelled Given a schedule: timer1 cb timer2 cb bpftimercanceltimer2; bpftimercanceltimer1; Both bpftimercancel calls would wait for the other callback to finish executing,...

5.5CVSS5.3AI score0.00166EPSS
Exploits0References1
OSV
OSV
added 2024/08/07 4:15 p.m.10 views

AZL-47453 CVE-2024-42239 affecting package kernel for versions less than 6.6.43.1-7

In the Linux kernel, the following vulnerability has been resolved: bpf: Fail bpftimercancel when callback is being cancelled Given a schedule: timer1 cb timer2 cb bpftimercanceltimer2; bpftimercanceltimer1; Both bpftimercancel calls would wait for the other callback to finish executing,...

5.5CVSS5.8AI score0.00166EPSS
Exploits0References1
OSV
OSV
added 2024/08/07 4:15 p.m.11 views

AZL-47604 CVE-2024-42239 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: bpf: Fail bpftimercancel when callback is being cancelled Given a schedule: timer1 cb timer2 cb bpftimercanceltimer2; bpftimercanceltimer1; Both bpftimercancel calls would wait for the other callback to finish executing,...

5.5CVSS5.8AI score0.00166EPSS
Exploits0References1
OSV
OSV
added 2024/08/07 3:14 p.m.24 views

CVE-2024-42239 bpf: Fail bpf_timer_cancel when callback is being cancelled

In the Linux kernel, the following vulnerability has been resolved: bpf: Fail bpftimercancel when callback is being cancelled Given a schedule: timer1 cb timer2 cb bpftimercanceltimer2; bpftimercanceltimer1; Both bpftimercancel calls would wait for the other callback to finish executing,...

5.5CVSS6.2AI score0.00166EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/08/07 12:14 a.m.3 views

kernel: bpf: Fix racing between bpf_timer_cancel_and_free and bpf_timer_cancel

A use-after-free flaw was found in the Linux kernel’s BPF functionality. This flaw allows a local user to crash the system...

5.5CVSS7.2AI score0.00241EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/08/06 2:1 a.m.3 views

SUSE CVE-2024-41045

In the Linux kernel, the following vulnerability has been resolved: bpf: Defer work in bpftimercancelandfree Currently, the same case as previous patch two timer callbacks trying to cancel each other can be invoked through bpfmapupdateelem as well, or more precisely, freeing map elements containi...

6.4CVSS6.4AI score0.00269EPSS
Exploits0References13
RedhatCVE
RedhatCVE
added 2024/07/31 9:13 a.m.13 views

CVE-2024-41045

In the Linux kernel, the following vulnerability has been resolved: bpf: Defer work in bpftimercancelandfree Currently, the same case as previous patch two timer callbacks trying to cancel each other can be invoked through bpfmapupdateelem as well, or more precisely, freeing map elements containi...

4.1CVSS7.1AI score0.00269EPSS
Exploits0References4
OSV
OSV
added 2024/07/29 3:15 p.m.1 views

DEBIAN-CVE-2024-41045

In the Linux kernel, the following vulnerability has been resolved: bpf: Defer work in bpftimercancelandfree Currently, the same case as previous patch two timer callbacks trying to cancel each other can be invoked through bpfmapupdateelem as well, or more precisely, freeing map elements containi...

7.8CVSS5.3AI score0.00269EPSS
Exploits0References1
OSV
OSV
added 2024/07/29 3:15 p.m.10 views

AZL-62510 CVE-2024-41045 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: bpf: Defer work in bpftimercancelandfree Currently, the same case as previous patch two timer callbacks trying to cancel each other can be invoked through bpfmapupdateelem as well, or more precisely, freeing map elements containi...

7.8CVSS5.8AI score0.00269EPSS
Exploits0References1
OSV
OSV
added 2024/07/29 3:15 p.m.6 views

AZL-67776 CVE-2024-41045 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: bpf: Defer work in bpftimercancelandfree Currently, the same case as previous patch two timer callbacks trying to cancel each other can be invoked through bpfmapupdateelem as well, or more precisely, freeing map elements containi...

7.8CVSS5.8AI score0.00269EPSS
Exploits0References1
OSV
OSV
added 2024/07/29 3:15 p.m.3 views

UBUNTU-CVE-2024-41045

In the Linux kernel, the following vulnerability has been resolved: bpf: Defer work in bpftimercancelandfree Currently, the same case as previous patch two timer callbacks trying to cancel each other can be invoked through bpfmapupdateelem as well, or more precisely, freeing map elements containi...

7.8CVSS5.9AI score0.00269EPSS
Exploits0References15
CNNVD
CNNVD
added 2024/07/29 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates in bpftimercancelandfree, where a deadlock may occur if two timer callbacks attempt to cancel each other, or...

7.8CVSS6.4AI score0.00269EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/07/10 12:0 a.m.8 views

PT-2024-7371

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the BPF timer functionality in the Linux kernel. When two or more timer callbacks are executed in parallel and attempt to cancel each other, it can lead to a...

5.5CVSS5.5AI score0.00166EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/04/10 2:16 a.m.3 views

SUSE CVE-2024-26737

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix racing between bpftimercancelandfree and bpftimercancel The following race is possible between bpftimercancelandfree and bpftimercancel. It will lead a UAF on the timer-timer. bpftimercancel; spinlock; t = timer-time;...

6.4CVSS6.3AI score0.00241EPSS
Exploits0References11
OSV
OSV
added 2024/04/03 5:15 p.m.1 views

DEBIAN-CVE-2024-26737

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix racing between bpftimercancelandfree and bpftimercancel The following race is possible between bpftimercancelandfree and bpftimercancel. It will lead a UAF on the timer-timer. bpftimercancel; spinlock; t = timer-time;...

5.5CVSS5.5AI score0.00241EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/04/03 5:15 p.m.50 views

CVE-2024-26737

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix racing between bpftimercancelandfree and bpftimercancel The following race is possible between bpftimercancelandfree and bpftimercancel. It will lead a UAF on the timer-timer. bpftimercancel; spinlock; t = timer-time;...

5.5CVSS6.2AI score0.00241EPSS
Exploits0References17
Rows per page
Query Builder