Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2014-9710

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Btrfs implementation in the Linux kernel before 3.19 does not ensure that the visible xattr state is consistent with a requested replacement, which allows...

6.9CVSS7.4AI score0.00277EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.36 views

SUSE: Security Advisory (SUSE-SU-2019:14089-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.8AI score0.98745EPSS
Exploits6References21
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.36 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1526)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.3AI score0.08579EPSS
Exploits12References2
OSV
OSV
added 2019/06/18 10:58 a.m.9 views

SUSE-SU-2019:14089-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 11 SP4 kernel version 3.0.101 was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2019-11477: A sequence of SACKs may have been crafted such that one can trigger an integer overflow, leading to a kernel panic. bsc1137586 -...

7.8CVSS6.7AI score0.98745EPSS
Exploits6References28
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 1:28 a.m.46 views

Security Bulletin: PowerKVM is affected by Linux Kernel vulnerabilities (multiple CVEs)

Summary PowerKVM is affected by several Linux Kernel vulnerabilities multiple CVEs . Vulnerability Details CVEID: CVE-2015-2041 DESCRIPTION: Linux Kernel could allow a local attacker to obtain sensitive information, caused by an information leak in llc2timeouttable. An attacker could exploit this...

7.2CVSS0.8AI score0.03052EPSS
Exploits4Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/07/31 12:0 a.m.61 views

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2017-3597)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-3597 advisory. - HID: hid-cypress: validate length of report Greg Kroah-Hartman Orabug: 25891914 CVE-2017-7273 - udf: Remove repeated loads blocksize Jan Kara...

7.8CVSS6.9AI score0.06511EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2017/07/03 12:0 a.m.61 views

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3590)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2017-3590 advisory. - nfsd: check for oversized NFSv2/v3 arguments J. Bruce Fields Orabug: 26366022 CVE-2017-7645 - HID: hid-cypress: validate length of report Greg Kroah-Hartm...

7.8CVSS6.6AI score0.17827EPSS
Exploits21References2
Oracle linux
Oracle linux
added 2017/06/30 12:0 a.m.144 views

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-118.19.2 - nfsd: check for oversized NFSv2/v3 arguments J. Bruce Fields Orabug: 26366022 CVE-2017-7645 3.8.13-118.19.1 - selinux: quiet the filesystem labeling behavior message Paul Moore Orabug: 25290650 - HID: hid-cypress: validate length of report Greg Kroah-Hartman Orabug:...

10CVSS0.3AI score0.17827EPSS
Exploits21
OpenVAS
OpenVAS
added 2015/07/08 12:0 a.m.34 views

Ubuntu: Security Advisory (USN-2662-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS6.8AI score0.08339EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/06/09 12:0 a.m.295 views

Ubuntu: Security Advisory (USN-2616-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.6AI score0.10108EPSS
Exploits0References2
OSV
OSV
added 2015/05/27 10:59 a.m.12 views

CVE-2014-9710

The Btrfs implementation in the Linux kernel before 3.19 does not ensure that the visible xattr state is consistent with a requested replacement, which allows local users to bypass intended ACL settings and gain privileges via standard filesystem operations 1 during an xattr-replacement time...

7.3AI score
Exploits0References12
Cvelist
Cvelist
added 2015/05/27 10:0 a.m.27 views

CVE-2014-9710

The Btrfs implementation in the Linux kernel before 3.19 does not ensure that the visible xattr state is consistent with a requested replacement, which allows local users to bypass intended ACL settings and gain privileges via standard filesystem operations 1 during an xattr-replacement time...

7.2AI score0.00277EPSS
Exploits0References7
CVE
CVE
added 2015/05/27 10:0 a.m.105 views

CVE-2014-9710

CVE-2014-9710 affects the Linux kernel’s Btrfs xattr handling prior to 3.19. The vulnerability arises because the visible xattr state may not be consistent with a requested replacement, enabling local attackers to bypass ACLs and gain privileges through standard filesystem operations during an xa...

6.9CVSS7.1AI score0.00277EPSS
Exploits0References7Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/05/21 12:0 a.m.62 views

Ubuntu 14.10 : linux vulnerabilities (USN-2616-1)

Alexandre Oliva reported a race condition flaw in the btrfs file system's handling of extended attributes xattrs. A local attacker could exploit this flaw to bypass ACLs and potentially escalate privileges. CVE-2014-9710 A memory corruption issue was discovered in AES decryption when using the...

9.3CVSS6.9AI score0.10108EPSS
Exploits0References4
Rows per page
Query Builder