Lucene search
K

268 matches found

CVE
CVE
added 2025/05/02 3:55 p.m.107 views

CVE-2023-53084

CVE-2023-53084 – Linux kernel (drm/shmem) 손상 문제 확인 Impact: In the Linux kernel, the error path in drm_gem_shmem_mmap() could fail to drop a reference, causing a dma-buf shmem GEM object to be freed prematurely and potentially leading to a use-after-free. Affected component: drm/shmem-helper and r...

7.8CVSS6.7AI score0.0017EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2025/05/02 3:55 p.m.7 views

CVE-2023-53084 drm/shmem-helper: Remove another errant put in error path

In the Linux kernel, the following vulnerability has been resolved: drm/shmem-helper: Remove another errant put in error path drmgemshmemmmap doesn't own reference in error code path, resulting in the dma-buf shmem GEM object getting prematurely freed leading to a later use-after-free...

7.8CVSS6.1AI score0.0017EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/04/08 12:0 a.m.4 views

PT-2025-28637 · Git +1 · Tarantool

Name of the Vulnerable Software and Affected Versions: luajit affected versions not specified Description: The software contains a heap-buffer-overflow read issue. The crash state involves lj buf ruleb128, lj bcread, and cpparser. Recommendations: At the moment, there is no information about a...

6.9AI score
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/03/28 3:41 a.m.4 views

SUSE CVE-2022-49743

In the Linux kernel, the following vulnerability has been resolved: ovl: Use "buf" flexible array for memcpy destination The "buf" flexible array needs to be the memcpy destination to avoid false positive run-time warning from the recent FORTIFYSOURCE hardening: memcpy: detected field-spanning...

5.5CVSS6.4AI score0.00179EPSS
Exploits0References3
NVD
NVD
added 2025/03/27 5:15 p.m.13 views

CVE-2022-49743

In the Linux kernel, the following vulnerability has been resolved: ovl: Use "buf" flexible array for memcpy destination The "buf" flexible array needs to be the memcpy destination to avoid false positive run-time warning from the recent FORTIFYSOURCE hardening: memcpy: detected field-spanning...

5.5CVSS0.00179EPSS
Exploits0References4
OSV
OSV
added 2025/03/27 5:15 p.m.1 views

UBUNTU-CVE-2022-49743

In the Linux kernel, the following vulnerability has been resolved: ovl: Use "buf" flexible array for memcpy destination The "buf" flexible array needs to be the memcpy destination to avoid false positive run-time warning from the recent FORTIFYSOURCE hardening: memcpy: detected field-spanning...

5.5CVSS5.7AI score0.00179EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-27400

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amdgpu: once more fix the call oder in amdgputtmmove v2 This reverts drm/amdgpu: fix ftrace event amdgpubomove always move on same heap. The basic problem...

5.5CVSS6.7AI score0.00235EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-43863

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix a deadlock in dma buf fence polling Introduce a version of the fence ops tha...

5.5CVSS6.1AI score0.00164EPSS
Exploits0References3
OSV
OSV
added 2025/02/27 2:12 a.m.8 views

CVE-2024-58017 printk: Fix signed integer overflow when defining LOG_BUF_LEN_MAX

In the Linux kernel, the following vulnerability has been resolved: printk: Fix signed integer overflow when defining LOGBUFLENMAX Shifting 1 31 on a 32-bit int causes signed integer overflow, which leads to undefined behavior. To prevent this, cast 1 to u32 before performing the shift, ensuring...

5.5CVSS6.2AI score0.00216EPSS
Exploits0References13
Debian CVE
Debian CVE
added 2025/02/27 2:12 a.m.4 views

CVE-2024-58017

In the Linux kernel, the following vulnerability has been resolved: printk: Fix signed integer overflow when defining LOGBUFLENMAX Shifting 1 31 on a 32-bit int causes signed integer overflow, which leads to undefined behavior. To prevent this, cast 1 to u32 before performing the shift, ensuring...

5.5CVSS5.7AI score0.00216EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/02/19 1:0 a.m.5 views

kernel: tipc: fix a possible memleak in tipc_buf_append

In the Linux kernel, the following vulnerability has been resolved: tipc: fix a possible memleak in tipcbufappend skblinearize doesn't free the skb when it fails, so move 'buf = NULL' after skblinearize, so that the skb can be freed on the err path...

5.5CVSS6.8AI score0.00249EPSS
Exploits0References5
OSV
OSV
added 2024/12/29 8:48 a.m.6 views

CVE-2024-56712 udmabuf: fix memory leak on last export_udmabuf() error path

In the Linux kernel, the following vulnerability has been resolved: udmabuf: fix memory leak on last exportudmabuf error path In exportudmabuf, if dmabuffd fails because the FD table is full, a dmabuf owning the udmabuf has already been created; but the error handling in udmabufcreate will tear...

3.3CVSS6.2AI score0.00182EPSS
Exploits0References5
Chainguard
Chainguard
added 2024/12/02 5:15 p.m.10 views

CVE-2024-53259 vulnerabilities

Vulnerabilities for packages: spegel, caddy, eks-distro-fips, kubernetes-dns-node-cache-fips, k3s, coredns-fips, q, coredns, eks-distro, buf, traefik, frp, kubernetes-dns-node-cache, caddy-fips, traefik-fips, cloudflared...

6.5CVSS6.6AI score0.00608EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/11/21 12:0 a.m.7 views

The vulnerability of the dma-buf component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the dma-buf component in the Linux operating system’s kernel is related to the assignment of the NULL pointer in the sanitycheck function. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.3CVSS6.5AI score0.00632EPSS
Exploits0References19Affected Software4
RedHat Linux
RedHat Linux
added 2024/11/12 9:11 a.m.5 views

kernel: scsi: mpi3mr: Avoid memcpy field-spanning write WARNING

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Avoid memcpy field-spanning write WARNING When the "storcli2 show" command is executed for eHBA-9600, mpi3mr driver prints this WARNING message: memcpy: detected field-spanning write size 128 of single field...

5.5CVSS6.8AI score0.00228EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/10/13 12:0 a.m.16 views

CBL Mariner 2.0 Security Update: kernel (CVE-2024-43863)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43863 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix a deadlock in dma buf...

5.5CVSS6AI score0.00164EPSS
Exploits0References2
OSV
OSV
added 2024/10/07 10:15 p.m.1 views

DEBIAN-CVE-2024-47814

Vim is an open source, command line text editor. A use-after-free was found in Vim 9.1.0764. When closing a buffer visible in a window a BufWinLeave auto command can cause an use-after-free if this auto command happens to re-open the same buffer in a new split window. Impact is low since the user...

4.7CVSS6.5AI score0.00291EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/09/28 2:51 a.m.4 views

SUSE CVE-2024-46852

In the Linux kernel, the following vulnerability has been resolved: dma-buf: heaps: Fix off-by-one in CMA heap fault handler Until VMDONTEXPAND was added in commit 1c1914d6e8c6 "dma-buf: heaps: Don't track CMA dma-buf pages under RssFile" it was possible to obtain a mapping larger than the buffer...

5.5CVSS6.6AI score0.00215EPSS
Exploits0References13
RedhatCVE
RedhatCVE
added 2024/09/27 3:15 p.m.14 views

CVE-2024-46852

In the Linux kernel, the following vulnerability has been resolved: dma-buf: heaps: Fix off-by-one in CMA heap fault handler Until VMDONTEXPAND was added in commit 1c1914d6e8c6 "dma-buf: heaps: Don't track CMA dma-buf pages under RssFile" it was possible to obtain a mapping larger than the buffer...

7.8CVSS7.4AI score0.00215EPSS
Exploits0References4
OSV
OSV
added 2024/09/27 1:15 p.m.14 views

AZL-49837 CVE-2024-46852 affecting package kernel for versions less than 6.6.56.1-5

In the Linux kernel, the following vulnerability has been resolved: dma-buf: heaps: Fix off-by-one in CMA heap fault handler Until VMDONTEXPAND was added in commit 1c1914d6e8c6 "dma-buf: heaps: Don't track CMA dma-buf pages under RssFile" it was possible to obtain a mapping larger than the buffer...

7.8CVSS7AI score0.00215EPSS
Exploits0References1
Rows per page
Query Builder