Lucene search
K

80 matches found

OSV
OSV
added 2025/06/18 11:15 a.m.0 views

DEBIAN-CVE-2022-50206

In the Linux kernel, the following vulnerability has been resolved: arm64: fix oops in concurrently setting insnemulation sysctls emulationprochandler changes table-data for procdointvecminmax and can generate the following Oops if called concurrently with itself: | Unable to handle kernel NULL...

5.5CVSS5.3AI score0.00203EPSS
Exploits0References1
OSV
OSV
added 2025/06/18 11:15 a.m.8 views

UBUNTU-CVE-2022-50206

In the Linux kernel, the following vulnerability has been resolved: arm64: fix oops in concurrently setting insnemulation sysctls emulationprochandler changes table-data for procdointvecminmax and can generate the following Oops if called concurrently with itself: | Unable to handle kernel NULL...

5.5CVSS6AI score0.00203EPSS
Exploits0References10
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.10 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: authenable: avoid using current-nsproxy As mentioned in a previous commit of this series, using the net structure via current is not recommended for various reasons: - Inconsistency: obtaining information from the...

5.5CVSS6.2AI score0.00229EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.5 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: um: ubd: Do not use drvdata in release. The drvdata is not available in release. Let’s simply use containerof to obtain the ubd instance. Otherwise, removing a ubd device will result in a crash: RIP: 0033:blkmqfreetagset+0x1f/0xb...

5.5CVSS6.2AI score0.00242EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.2 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: um: net: Do not use drvdata in release. The drvdata is not available in the release version. We should use containerof to obtain the umlnet instance. Otherwise, removing a network device will result in a crash: RIP:...

5.5CVSS6.2AI score0.00242EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/01/20 3:47 a.m.4 views

SUSE CVE-2025-21636

In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: plpmtudprobeinterval: avoid using current-nsproxy As mentioned in a previous commit of this series, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsistency: getting info fro...

5.5CVSS7.6AI score0.00207EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2025/01/20 3:47 a.m.3 views

SUSE CVE-2025-21637

In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: udpport: avoid using current-nsproxy As mentioned in a previous commit of this series, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsistency: getting info from the...

5.5CVSS7.6AI score0.00207EPSS
Exploits0References13
OSV
OSV
added 2025/01/19 11:15 a.m.8 views

AZL-57223 CVE-2025-21636 affecting package kernel for versions less than 5.15.180.1-1

In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: plpmtudprobeinterval: avoid using current-nsproxy As mentioned in a previous commit of this series, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsistency: getting info fro...

5.5CVSS6.6AI score0.00207EPSS
Exploits0References1
OSV
OSV
added 2025/01/19 11:15 a.m.1 views

DEBIAN-CVE-2025-21639

In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: rtomin/max: avoid using current-nsproxy As mentioned in a previous commit of this series, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsistency: getting info from the...

5.5CVSS5.6AI score0.00224EPSS
Exploits0References1
OSV
OSV
added 2025/01/19 11:15 a.m.7 views

AZL-57232 CVE-2025-21640 affecting package kernel for versions less than 5.15.179.1-1

In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: cookiehmacalg: avoid using current-nsproxy As mentioned in a previous commit of this series, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsistency: getting info from the...

5.5CVSS6.2AI score0.00229EPSS
Exploits0References1
OSV
OSV
added 2025/01/19 11:15 a.m.10 views

AZL-57228 CVE-2025-21638 affecting package kernel for versions less than 5.15.180.1-1

In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: authenable: avoid using current-nsproxy As mentioned in a previous commit of this series, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsistency: getting info from the...

5.5CVSS6.6AI score0.00229EPSS
Exploits0References1
OSV
OSV
added 2025/01/19 11:15 a.m.6 views

AZL-57225 CVE-2025-21639 affecting package kernel for versions less than 5.15.179.1-1

In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: rtomin/max: avoid using current-nsproxy As mentioned in a previous commit of this series, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsistency: getting info from the...

5.5CVSS6.7AI score0.00224EPSS
Exploits0References1
OSV
OSV
added 2025/01/19 11:15 a.m.5 views

UBUNTU-CVE-2025-21636

In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: plpmtudprobeinterval: avoid using current-nsproxy As mentioned in a previous commit of this series, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsistency: getting info fro...

5.5CVSS6.2AI score0.00207EPSS
Exploits0References34
Vulnrichment
Vulnrichment
added 2025/01/19 10:17 a.m.1 views

CVE-2025-21641 mptcp: sysctl: blackhole timeout: avoid using current->nsproxy

In the Linux kernel, the following vulnerability has been resolved: mptcp: sysctl: blackhole timeout: avoid using current-nsproxy As mentioned in the previous commit, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsistency: getting info from the...

6.2AI score0.00172EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/01/19 10:17 a.m.2 views

CVE-2025-21637 sctp: sysctl: udp_port: avoid using current->nsproxy

In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: udpport: avoid using current-nsproxy As mentioned in a previous commit of this series, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsistency: getting info from the...

7.5AI score0.00207EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/01/19 12:0 a.m.3 views

PT-2025-4322 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns the Linux kernel, specifically the mptcp subsystem and its handling of the blackhole timeout via sysctl. The problem arises from using the net structure via current,...

5.5CVSS7.3AI score0.00172EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2024/12/28 3:50 a.m.5 views

SUSE CVE-2024-53181

In the Linux kernel, the following vulnerability has been resolved: um: vector: Do not use drvdata in release The drvdata is not available in release. Let's just use containerof to get the vectordevice instance. Otherwise, removing a vector device will result in a crash: RIP:...

5.5CVSS6.4AI score0.00242EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/12/28 3:50 a.m.4 views

SUSE CVE-2024-53183

In the Linux kernel, the following vulnerability has been resolved: um: net: Do not use drvdata in release The drvdata is not available in release. Let's just use containerof to get the umlnet instance. Otherwise, removing a network device will result in a crash: RIP:...

5.5CVSS6.4AI score0.00242EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/12/28 3:50 a.m.2 views

SUSE CVE-2024-53184

In the Linux kernel, the following vulnerability has been resolved: um: ubd: Do not use drvdata in release The drvdata is not available in release. Let's just use containerof to get the ubd instance. Otherwise, removing a ubd device will result in a crash: RIP: 0033:blkmqfreetagset+0x1f/0xba RSP:...

5.5CVSS6.4AI score0.00242EPSS
Exploits0References3
OSV
OSV
added 2024/12/27 2:15 p.m.4 views

DEBIAN-CVE-2024-53181

In the Linux kernel, the following vulnerability has been resolved: um: vector: Do not use drvdata in release The drvdata is not available in release. Let's just use containerof to get the vectordevice instance. Otherwise, removing a vector device will result in a crash: RIP:...

5.5CVSS5.6AI score0.00242EPSS
Exploits0References1
Rows per page
Query Builder