Lucene search
K

15 matches found

Microsoft CVE
Microsoft CVE
added 2026/05/28 8:11 a.m.7 views

libceph: Prevent potential null-ptr-deref in ceph_handle_auth_reply()

...

7.5CVSS5.4AI score0.0049EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/27 12:56 p.m.8 views

CVE-2026-46024

In the Linux kernel, the following vulnerability has been resolved: libceph: Prevent potential null-ptr-deref in cephhandleauthreply If a message of type CEPHMSGAUTHREPLY contains a zero value for both protocol and result, this is currently not treated as an error. In case of ac-negotiating == tr...

7.5CVSS5.6AI score0.0049EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2026/05/08 3:31 p.m.10 views

EUVD-2026-28713

In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds access in cephhandleauthreply This patch fixes an out-of-bounds access in cephhandleauthreply that can be triggered by a message of type CEPHMSGAUTHREPLY. In cephhandleauthreply, the value of...

5.8AI score0.00537EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2026/05/08 2:21 p.m.7 views

CVE-2026-43407

In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds access in cephhandleauthreply This patch fixes an out-of-bounds access in cephhandleauthreply that can be triggered by a message of type CEPHMSGAUTHREPLY. In cephhandleauthreply, the value of...

9.1CVSS5.8AI score0.00537EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/31 12:0 a.m.1 views

SUSE SLES15 Security Update : kernel (Live Patch 2 for SUSE Linux Enterprise 15 SP7) (SUSE-SU-2026:1132-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1132-1 advisory. This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.6 fixes various security issues The following security issues were fixed: -...

7.8CVSS6.6AI score0.00278EPSS
Exploits0References25
Tenable Nessus
Tenable Nessus
added 2026/03/28 12:0 a.m.4 views

SUSE SLES15 Security Update : kernel (Live Patch 18 for SUSE Linux Enterprise 15 SP6) (SUSE-SU-2026:1100-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1100-1 advisory. This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.81 fixes various security issues The following security issues were fixed: -...

5.5CVSS6.6AI score0.00176EPSS
Exploits0References19
SUSE Linux
SUSE Linux
added 2026/03/27 10:4 a.m.4 views

Security update for the Linux Kernel (Live Patch 6 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.22 fixes various security issues The following security issues were fixed: CVE-2025-40258: mptcp: fix race condition in mptcpschedulework bsc1255053. CVE-2025-40284: Bluetooth: MGMT: cancel mesh send timer when hdev removed...

8.7CVSS6.4AI score0.00176EPSS
Exploits0References28
OSV
OSV
added 2026/03/26 12:33 p.m.3 views

SUSE-SU-2026:1073-1 Security update for the Linux Kernel (Live Patch 10 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.47 fixes various security issues The following security issues were fixed: - CVE-2025-38159: wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds bsc1257629. - CVE-2025-38488: smb: client: fix use-after-free in...

7.8CVSS6.9AI score0.00278EPSS
Exploits0References19
OSV
OSV
added 2026/03/24 4:49 p.m.1 views

SUSE-SU-2026:20866-1 Security update for the Linux Kernel (Live Patch 14 for SUSE Linux Enterprise Micro 6.0)

This update for the SUSE Linux Enterprise Kernel 6.4.0-38.1 fixes various security issues The following security issues were fixed: - CVE-2025-40258: mptcp: fix race condition in mptcpschedulework bsc1255053. - CVE-2025-40284: Bluetooth: MGMT: cancel mesh send timer when hdev removed bsc1257669. ...

5.5CVSS6.5AI score0.00176EPSS
Exploits0References15
OSV
OSV
added 2026/03/24 4:48 p.m.2 views

SUSE-SU-2026:20855-1 Security update for the Linux Kernel RT (Live Patch 13 for SUSE Linux Enterprise Micro 6.0)

This update for the SUSE Linux Enterprise Kernel 6.4.0-37.1 fixes various security issues The following security issues were fixed: - CVE-2025-40258: mptcp: fix race condition in mptcpschedulework bsc1255053. - CVE-2025-40284: Bluetooth: MGMT: cancel mesh send timer when hdev removed bsc1257669. ...

5.5CVSS6.5AI score0.00176EPSS
Exploits0References15
OSV
OSV
added 2026/03/24 9:11 a.m.3 views

SUSE-SU-2026:0992-1 Security update for the Linux Kernel (Live Patch 44 for SUSE Linux Enterprise 15 SP4)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.176 fixes various security issues The following security issues were fixed: - CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant uninit bsc1255595. - CVE-2023-53781: smc: Fix use-after-free in...

7.8CVSS6.8AI score0.00278EPSS
Exploits0References21
OSV
OSV
added 2026/03/24 5:44 a.m.1 views

SUSE-SU-2026:20831-1 Security update for the Linux Kernel RT (Live Patch 0 for SUSE Linux Enterprise 16)

This update for the SUSE Linux Enterprise Kernel 6.12.0-160000.5.1 fixes various security issues The following security issues were fixed: - CVE-2025-38488: smb: client: fix use-after-free in cryptmessage when using async crypto bsc1247240. - CVE-2025-40214: afunix: Initialise sccindex in...

7.8CVSS6.5AI score0.00278EPSS
Exploits0References19
ATTACKERKB
ATTACKERKB
added 2026/01/23 3:24 p.m.4 views

CVE-2026-22992

In the Linux kernel, the following vulnerability has been resolved: libceph: return the handler error from monhandleauthdone Currently any error from cephauthhandlereplydone is propagated via finishauth but isn't returned from monhandleauthdone. This results in higher layers learning that despite...

5.7AI score0.00268EPSS
Exploits0References7Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 5:41 a.m.3 views

SUSE CVE-2013-1059

net/ceph/authnone.c in the Linux kernel through 3.10 allows remote attackers to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact via an authreply message that triggers an attempted buildrequest operation...

7.8CVSS7.2AI score0.04546EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2014/09/19 12:0 a.m.4 views

PT-2014-7216 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.16.3 Description: The issue is related to the net/ceph/auth x.c file in Ceph, as used in the Linux kernel. It does not properly consider the possibility of kmalloc failure, which allows remote attackers to cau...

7.8CVSS6.7AI score0.06167EPSS
Exploits8References53
Rows per page
Query Builder