Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2022-49401

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mm/pageowner: use strscpy instead of strlcpy current-comm is not a string no guarantee for a zero byte in it. strlcpys1, s2, l is calling strlens2, potentially...

7.1CVSS6.9AI score0.00247EPSS
Exploits0References2
NVD
NVD
added 2025/02/26 7:1 a.m.26 views

CVE-2022-49401

In the Linux kernel, the following vulnerability has been resolved: mm/pageowner: use strscpy instead of strlcpy current-comm is not a string no guarantee for a zero byte in it. strlcpys1, s2, l is calling strlens2, potentially causing out-of-bound access, as reported by syzbot: detected buffer...

7.1CVSS0.00247EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/02/26 7:1 a.m.8 views

CVE-2022-49401

In the Linux kernel, the following vulnerability has been resolved: mm/pageowner: use strscpy instead of strlcpy current-comm is not a string no guarantee for a zero byte in it. strlcpys1, s2, l is calling strlens2, potentially causing out-of-bound access, as reported by syzbot: detected buffer...

7.1CVSS6.5AI score0.00247EPSS
Exploits0References4
CVE
CVE
added 2025/02/26 2:12 a.m.160 views

CVE-2022-49401

CVE-2022-49401 pertains to the Linux kernel, where a fault in mm/page_owner handling was fixed: current->comm[] is not guaranteed to be a proper string, and using strlcpy(s1, s2, l) may call strlen(s2) and trigger out-of-bounds access. The fix replaces strlcpy with strscpy() in mm/page_owner.c...

7.1CVSS5.7AI score0.00247EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/02/26 2:12 a.m.28 views

CVE-2022-49401 mm/page_owner: use strscpy() instead of strlcpy()

In the Linux kernel, the following vulnerability has been resolved: mm/pageowner: use strscpy instead of strlcpy current-comm is not a string no guarantee for a zero byte in it. strlcpys1, s2, l is calling strlens2, potentially causing out-of-bound access, as reported by syzbot: detected buffer...

0.00247EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/02/26 2:12 a.m.15 views

CVE-2022-49401

In the Linux kernel, the following vulnerability has been resolved: mm/pageowner: use strscpy instead of strlcpy current-comm is not a string no guarantee for a zero byte in it. strlcpys1, s2, l is calling strlens2, potentially causing out-of-bound access, as reported by syzbot: detected buffer...

7.1CVSS5.7AI score0.00247EPSS
Exploits0
Rows per page
Query Builder