Lucene search
K

30 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/04 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2018-9363

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the hidpprocessreport in bluetooth, there is an integer overflow. This could lead to an out of bounds write with no additional execution privileges needed...

8.4CVSS6.7AI score0.00456EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2018:2539-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS7.7AI score0.00523EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2018:3961-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS7.1AI score0.08743EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2019/09/20 12:0 a.m.39 views

Amazon Linux 2 : kernel (ALAS-2019-1280)

A buffer overflow due to a singed-unsigned comparsion was found in hidpprocessreport in the net/bluetooth/hidp/core.c in the Linux kernel. The buffer length is an unsigned int but gets cast to a signed int which in certain conditions can lead to a system panic and a denial-of-service. CVE-2018-93...

8.4CVSS6.8AI score0.00551EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/09/20 12:0 a.m.55 views

Amazon Linux 2 : kernel (ALAS-2019-1281)

NOTE: This ALAS is a duplicate of ALAS2-2019-1280. The CVEs listed here are fixed in the referenced ALAS. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon Linux 2 Security Advisory ALAS-2019-1281. include'compat.inc'; if descriptio...

8.4CVSS6.6AI score0.00551EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/09/19 12:0 a.m.60 views

Amazon Linux AMI : kernel (ALAS-2019-1280)

It was found that paravirtpatchcall/jump functions in the arch/x86/kernel/paravirt.c in the Linux kernel mishandles certain indirect calls, which makes it easier for attackers to conduct Spectre-v2 attacks against paravirtualized guests.CVE-2018-15594 A buffer overflow due to a singed-unsigned...

8.4CVSS6.8AI score0.00551EPSS
Exploits0References3
Amazon
Amazon
added 2019/09/13 12:0 a.m.53 views

Medium: kernel

Issue Overview: NOTE: This ALAS is a duplicate of ALAS2-2019-1280. The CVEs listed here are fixed in the referenced ALAS. Affected Packages: kernel Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras...

8.4CVSS7.2AI score0.00551EPSS
Exploits0
Amazon
Amazon
added 2019/09/13 12:0 a.m.172 views

Medium: kernel

Issue Overview: It was found that paravirtpatchcall/jump functions in the arch/x86/kernel/paravirt.c in the Linux kernel mishandles certain indirect calls, which makes it easier for attackers to conduct Spectre-v2 attacks against paravirtualized guests.CVE-2018-15594 A buffer overflow due to a...

8.4CVSS6.9AI score0.00551EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2019/08/06 12:47 p.m.287 views

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

8.4CVSS6.7AI score0.05789EPSS
Exploits11References45
Oracle linux
Oracle linux
added 2019/01/03 12:0 a.m.76 views

Unbreakable Enterprise kernel security update

4.1.12-124.24.1 - pinctrl: amd: Use devmpinctrlregister for pinctrl registration Laxman Dewangan Orabug: 27539246 CVE-2017-18174 - mlock: fix mlock count can not decrease in race condition Yisheng Xie Orabug: 27677611 CVE-2017-18221 - perf/core: Fix the perfcputimemaxpercent check Tan Xiaojun...

9.8CVSS0.1AI score0.03399EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.47 views

SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2018:2539-1)

The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2018-15572: The spectrev2selectmitigation function in arch/x86/kernel/cpu/bugs.c did not always fill RSB upon a context switch, which made it easier for attacke...

8.4CVSS6.8AI score0.00523EPSS
Exploits0References65
Tenable Nessus
Tenable Nessus
added 2018/11/15 12:0 a.m.53 views

Ubuntu 14.04 LTS : Linux kernel vulnerabilities (USN-3822-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3822-1 advisory. Jim Mattson discovered that the KVM implementation in the Linux kernel mismanages the BP and OF exceptions. A local attacker in a guest virtual machine...

8.4CVSS7.4AI score0.00552EPSS
Exploits0References6
Ubuntu
Ubuntu
added 2018/11/14 11:21 p.m.146 views

USN-3822-2: Linux kernel (Trusty HWE) vulnerabilities

USN-3822-1 fixed vulnerabilities in the Linux kernel for Ubuntu 14.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 14.04 LTS for Ubuntu 12.04 ESM. Jim Mattson discovered that the KVM implementation in the Linux kernel mismanages the ...

8.4CVSS7.1AI score0.00552EPSS
Exploits0
Ubuntu
Ubuntu
added 2018/11/14 11:1 p.m.136 views

USN-3822-1: Linux kernel vulnerabilities

Jim Mattson discovered that the KVM implementation in the Linux kernel mismanages the BP and OF exceptions. A local attacker in a guest virtual machine could use this to cause a denial of service guest OS crash. CVE-2016-9588 It was discovered that the generic SCSI driver in the Linux kernel did...

8.4CVSS7.1AI score0.00552EPSS
Exploits0
Ubuntu
Ubuntu
added 2018/11/14 10:6 p.m.283 views

USN-3820-2: Linux kernel (HWE) vulnerabilities

USN-3820-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 18.04 LTS for Ubuntu 16.04 LTS. Felix Wilhelm discovered that the Xen netback driver in the Linux kernel did not...

8.4CVSS7.2AI score0.00552EPSS
Exploits0
CVE
CVE
added 2018/11/06 5:0 p.m.259 views

CVE-2018-9363

CVE-2018-9363 is a Linux-kernel vulnerability in the HIDP Bluetooth driver: hidp_process_report can overflow a buffer due to incorrect length handling, potentially causing memory corruption and DoS, with possible remote code execution. Public documents across Debian/Ubuntu/CentOS‑related advisori...

8.4CVSS7.7AI score0.00456EPSS
Exploits0References13Affected Software1
Debian CVE
Debian CVE
added 2018/11/06 5:0 p.m.33 views

CVE-2018-9363

In the hidpprocessreport in bluetooth, there is an integer overflow. This could lead to an out of bounds write with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID: A-65853588 References: Upstream...

8.4CVSS6.9AI score0.00456EPSS
Exploits0
Cloud Foundry
Cloud Foundry
added 2018/10/25 12:0 a.m.533 views

USN-3797-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Description USN-3797-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.0...

8.4CVSS8.6AI score0.04997EPSS
Exploits0
OpenVAS
OpenVAS
added 2018/10/23 12:0 a.m.262 views

Ubuntu: Security Advisory (USN-3797-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS7.6AI score0.04997EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/10/04 12:0 a.m.242 views

Debian DLA-1531-1 : linux-4.9 security update

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. CVE-2018-6554 A memory leak in the irdabind function in the irda subsystem was discovered. A local user can take advantage of this flaw to cause a deni...

8.4CVSS7.6AI score0.08743EPSS
Exploits8References20
Rows per page
Query Builder