15 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-29582
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel before 5.17.3, fs/iouring.c has a use-after-free due to a race condition in iouring timeouts. This can be triggered by a local user who has ...
Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.6.2)
The version of AOS installed on the remote host is prior to 6.6.2. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.6.2 advisory. - Mis-trained branch predictions for return instructions may allow arbitrary speculative code execution under certain...
CBL Mariner 2.0 Security Update: kernel (CVE-2022-29582)
The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-29582 advisory. - In the Linux kernel before 5.17.3, fs/iouring.c has a use-after-free due to a race condition in iouring...
Amazon Linux 2022 : kernel-livepatch-5.15.29-16.111 (ALAS2022-2022-101)
It is, therefore, affected by a vulnerability as referenced in the ALAS2022-2022-101 advisory. A use-after-free flaw was found in the Linux kernel's iouring interface subsystem in the way a user triggers a race condition between timeout flush and removal. This flaw allows a local user to crash or...
Exploit for Race Condition in Linux Linux_Kernel
CVE-2022-29582 This repository contains exploit code for CVE-2...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-2159)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Linux 8 : Unbreakable Enterprise kernel (ELSA-2022-9533)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9533 advisory. - KVM: x86/speculation: Disable Fill buffer clear within guests Pawan Gupta Orabug: 34202258 CVE-2022-21123 CVE-2022-21127 CVE-2022-21125 CVE-2022-2116...
CVE-2022-29582 affecting package kernel for versions less than 5.15.37.1-2
CVE-2022-29582 affecting package kernel for versions less than 5.15.37.1-2. A patched version of the package is available...
CVE-2022-29582 affecting package kernel 5.10.111.1-1
CVE-2022-29582 affecting package kernel 5.10.111.1-1. A patched version of the package is available...
Slackware: Security Advisory (SSA:2022-129-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[slackware-security] Slackware 15.0 kernel
New kernel packages are available for Slackware 15.0 to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/linux-5.15.38/: Upgraded. These updates fix various bugs and security issues. Be sure to upgrade your initrd after upgrading the kernel packages. I...
Updated kernel-linus packages fix security vulnerabilities
This kernel-linus update is based on upstream 5.15.35 and fixes at least the following security issues: A denial of service DOS issue was found in the Linux kernel smb2ioctlqueryinfo function in the fs/cifs/smb2ops.c Common Internet File System CIFS due to an incorrect return from the memdupuser...
CVE-2022-29582
In the Linux kernel before 5.17.3, fs/iouring.c has a use-after-free due to a race condition in iouring timeouts. This can be triggered by a local user who has no access to any user namespace; however, the race condition perhaps can only be exploited infrequently...
CVE-2022-29582
CVE-2022-29582 refers to a use-after-free in the Linux kernel io_uring timeout handling. The vulnerability resides in fs/io_uring.c and stems from a race condition in io_uring timeouts that can be triggered by a local user who does not have access to any user namespace. The initial description no...
CVE-2022-29582
In the Linux kernel before 5.17.3, fs/iouring.c has a use-after-free due to a race condition in iouring timeouts. This can be triggered by a local user who has no access to any user namespace; however, the race condition perhaps can only be exploited infrequently...