Lucene search
K

11 matches found

RedHat Linux
RedHat Linux
added 2026/01/28 12:26 a.m.4 views

kernel: Bluetooth: ISO: Fix possible UAF on iso_conn_free

A vulnerability was found in isosockkill in net/bluetooth/iso.c in Bluetooth protocol stack in the Linux Kernel. In this flaw if the conn-sk is not set to NULL may lead to UAF on isoconnfree...

5.8AI score0.00178EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/04/16 3:19 a.m.3 views

kernel: tcp: make sure init the accept_queue's spinlocks once

In the Linux kernel, the following vulnerability has been resolved: tcp: make sure init the acceptqueue's spinlocks once When I run syz's reproduction C program locally, it causes the following issue: pvqspinlock: lock 0xffff9d181cd5c660 has corrupted value 0x0! WARNING: CPU: 19 PID: 21160 at...

5.5CVSS6.8AI score0.00173EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/12/19 12:58 a.m.3 views

kernel: Bluetooth: SCO: Fix UAF on sco_sock_timeout

A use-after-free vulnerability was found in the Linux kernel's Bluetooth SCO. When scosocktimeout is called, conn-sk may be unlinked/freed while waiting for scoconnlock. This checks if the conn-sk is still valid by checking if it is part of scosklist, leading to a loss of availability and system...

7.8CVSS7.1AI score0.0023EPSS
Exploits0References5
OSV
OSV
added 2024/11/05 6:15 p.m.1 views

DEBIAN-CVE-2024-50125

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: SCO: Fix UAF on scosocktimeout conn-sk maybe have been unlinked/freed while waiting for scoconnlock so this checks if the conn-sk is still valid by checking if it part of scosklist...

7.8CVSS6.2AI score0.0023EPSS
Exploits0References1
OSV
OSV
added 2024/11/05 6:15 p.m.2 views

UBUNTU-CVE-2024-50125

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: SCO: Fix UAF on scosocktimeout conn-sk maybe have been unlinked/freed while waiting for scoconnlock so this checks if the conn-sk is still valid by checking if it part of scosklist...

7.8CVSS6.5AI score0.0023EPSS
Exploits0References29
OSV
OSV
added 2024/04/03 5:15 p.m.3 views

DEBIAN-CVE-2024-26741

In the Linux kernel, the following vulnerability has been resolved: dccp/tcp: Unhash sk from ehash for tb2 alloc failure after checkestalblished. syzkaller reported a warning 0 in inetcskdestroysock with no repro. WARNONinetsksk-inetnum && !inetcsksk-icskbindhash; However, the syzkaller's log...

5.5CVSS5.3AI score0.0027EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.2 views

kernel: denial of service in tipc_conn_close

A data race flaw was found in the Linux kernel, between where con is allocated and con-sock is set. This issue leads to a NULL pointer dereference when accessing con-sock-sk in net/tipc/topsrv.c in the tipc protocol in the Linux kernel...

4.7CVSS6.5AI score0.00184EPSS
Exploits0References5
OSV
OSV
added 2023/03/17 11:5 a.m.5 views

OESA-2023-1177 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In bindertransactionbufferrelease of binder.c, there is a possible use after free due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction...

8.1CVSS6.4AI score0.00652EPSS
Exploits1References9
OSV
OSV
added 2023/03/17 11:5 a.m.6 views

OESA-2023-1178 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In bindertransactionbufferrelease of binder.c, there is a possible use after free due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction...

8.1CVSS6.4AI score0.00652EPSS
Exploits2References10
SUSE CVE
SUSE CVE
added 2023/03/16 3:20 a.m.2 views

SUSE CVE-2023-1382

A data race flaw was found in the Linux kernel, between where con is allocated and con-sock is set. This issue leads to a NULL pointer dereference when accessing con-sock-sk in net/tipc/topsrv.c in the tipc protocol in the Linux kernel...

6.5CVSS6.2AI score0.00184EPSS
Exploits0References25
Broadcom
Broadcom
added 2017/08/25 12:0 a.m.6 views

BSA-2017-351

Security Advisory ID : BSA-2017-351 Component : Linux Kernel Revision : 3.0: Interim Theinetcskclonelockfunction in net/ipv4/inetconnectionsock.cin the Linux kernel allows attackers to cause a denial of service double free or possibly have unspecified other impact by leveraging use of the accept...

7.8CVSS7.1AI score0.01372EPSS
Exploits5
Rows per page
Query Builder