Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2017-14991

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The sgioctl function in drivers/scsi/sg.c in the Linux kernel before 4.13.4 allows local users to obtain sensitive information from uninitialized kernel...

5.5CVSS6.4AI score0.00414EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:38 a.m.2 views

SUSE CVE-2017-14991

The sgioctl function in drivers/scsi/sg.c in the Linux kernel before 4.13.4 allows local users to obtain sensitive information from uninitialized kernel heap-memory locations via an SGGETREQUESTTABLE ioctl call for /dev/sg0...

5.5CVSS6.5AI score0.00414EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.23 views

Mageia: Security Advisory (MGASA-2017-0386)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7AI score0.01155EPSS
Exploits4References7
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.40 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1536)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.2AI score0.13378EPSS
Exploits16References2
Oracle linux
Oracle linux
added 2019/11/20 12:0 a.m.61 views

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-118.40.1 - USB: check usbgetextradescriptor for proper size Mathias Payer Orabug: 30045797 CVE-2018-20169 - scsi: sg: fixup infoleak when using SGGETREQUESTTABLE Hannes Reinecke Orabug: 30393902 CVE-2017-14991 - usb: misc: legousbtower: Fix NULL pointer deference Greg...

7.2CVSS0.6AI score0.03133EPSS
Exploits0
Oracle linux
Oracle linux
added 2019/10/16 12:0 a.m.51 views

Unbreakable Enterprise kernel security update

4.1.12-124.32.3 - scsi: sg: fixup infoleak when using SGGETREQUESTTABLE Hannes Reinecke Orabug: 26941755 CVE-2017-14991 - failover: allow name change on IFFUP slave interfaces Si-Wei Liu Orabug: 29707258 - Revert 'netfailover: delay taking over primary device to accommodate udevd renaming' Si-Wei...

5.5CVSS0.3AI score0.00414EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/13 12:0 a.m.40 views

EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1499)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - It was found that in the Linux kernel through v4.14-rc5, biomapuseriov and biounmapuser in 'block/bio.c' do unbalanced pages...

7.8CVSS6.8AI score0.01155EPSS
Exploits8References23
Mageia
Mageia
added 2017/12/22 10:31 a.m.57 views

Updated kernel-tmb packages fix security vulnerabilities

This kernel-tmb update is based on upstream 4.4.105 and fixes at least the following security issues: A security flaw was discovered in nl80211setrekeydata function in the Linux kernel since v3.1-rc1 through v4.13. This function does not check whether the required attributes are present in a...

8.8CVSS0.9AI score0.02285EPSS
Exploits8References14
Mageia
Mageia
added 2017/12/21 10:14 p.m.94 views

Updated kernel packages fix security vulnerabilities

This kernel update is based on upstream 4.4.105 and fixes at least the following security issues: A security flaw was discovered in nl80211setrekeydata function in the Linux kernel since v3.1-rc1 through v4.13. This function does not check whether the required attributes are present in a netlink...

8.8CVSS0.9AI score0.02285EPSS
Exploits8References14
Cloud Foundry
Cloud Foundry
added 2017/11/27 12:0 a.m.58 views

USN-3469-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Description USN-3469-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.0...

7.8CVSS7.1AI score0.01155EPSS
Exploits4
Amazon
Amazon
added 2017/10/26 12:0 a.m.89 views

Important: kernel

Issue Overview: stack buffer overflow in the native Bluetooth stack A stack buffer overflow flaw was found in the way the Bluetooth subsystem of the Linux kernel processed pending L2CAP configuration responses from a client. On systems with the stack protection feature enabled in the kernel...

8CVSS7.7AI score0.16181EPSS
Exploits12
Mageia
Mageia
added 2017/10/24 8:9 p.m.61 views

Updated kernel-tmb packages fix security vulnerabilities

This kernel-tmb update is based on upstream 4.4.92 and fixes at least the following security issues: A security flaw was discovered in nl80211setrekeydata function in the Linux kernel since v3.1-rc1 through v4.13. This function does not check whether the required attributes are present in a netli...

7.1CVSS0.9AI score0.01155EPSS
Exploits4References5
Mageia
Mageia
added 2017/10/24 8:9 p.m.261 views

Updated kernel packages fix security vulnerabilities

This kernel update is based on upstream 4.4.92 and fixes at least the following security issues: A security flaw was discovered in nl80211setrekeydata function in the Linux kernel since v3.1-rc1 through v4.13. This function does not check whether the required attributes are present in a netlink...

7.1CVSS0.9AI score0.01155EPSS
Exploits4References5
OSV
OSV
added 2017/10/04 1:29 a.m.6 views

CVE-2017-14991

The sgioctl function in drivers/scsi/sg.c in the Linux kernel before 4.13.4 allows local users to obtain sensitive information from uninitialized kernel heap-memory locations via an SGGETREQUESTTABLE ioctl call for /dev/sg0...

5.5CVSS5.7AI score
Exploits0References5
CVE
CVE
added 2017/10/03 7:0 a.m.128 views

CVE-2017-14991

Consolidated details from connected advisories show CVE-2017-14991 affects the Linux kernel sg_ioctl path (drivers/scsi/sg.c) with vulnerable code in sg_get_request_table handling for /dev/sg0. The flaw exists in kernels before 4.13.4, allowing local attackers to read uninitialized kernel heap me...

5.5CVSS5.5AI score0.00414EPSS
Exploits0References5Affected Software1
UbuntuCve
UbuntuCve
added 2017/10/03 12:0 a.m.29 views

CVE-2017-14991

The sgioctl function in drivers/scsi/sg.c in the Linux kernel before 4.13.4 allows local users to obtain sensitive information from uninitialized kernel heap-memory locations via an SGGETREQUESTTABLE ioctl call for /dev/sg0...

5.5CVSS6.8AI score0.00414EPSS
Exploits0References5
Rows per page
Query Builder