Lucene search
+L

11 matches found

osv
osv
added 2024/08/16 7:5 a.m.24 views

SUSE-SU-2024:2939-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2021-47086: phonet/pep: refuse to enable an unbound pipe bsc1220952. - CVE-2021-47089: kfence: fix memory leak when cat kfence objects bsc1220958. -...

9.8CVSS8.5AI score0.02701EPSS
Exploits9References1156
nessus
nessus
added 2024/07/17 12:0 a.m.54 views

SUSE SLES15: cluster-md-kmp-default / dlm-kmp-default / gfs2-kmp-default / etc (SUSE-SU-2024:2495-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2495-1 advisory. The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: -...

9.8CVSS7.2AI score0.02701EPSS
Exploits2References98
osv
osv
added 2024/07/16 7:30 a.m.21 views

SUSE-SU-2024:2495-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2023-52846: hsr: Prevent use after free in prpcreatetaggedframe bsc1225098. - CVE-2024-36904: tcp: Use refcountincnotzero in tcptwskunique bsc1225732. -...

9.8CVSS8.6AI score0.02701EPSS
Exploits2References70
nessus
nessus
added 2024/04/24 12:0 a.m.52 views

Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-6742-2)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6742-2 advisory. Daniele Antonioli discovered that the Secure Simple Pairing and Secure Connections pairing in the Bluetooth protocol could allow an unauthenticated user ...

7.8CVSS7.5AI score0.02224EPSS
Exploits2References5
ubuntu
ubuntu
added 2024/04/23 5:37 p.m.68 views

USN-6742-2: Linux kernel vulnerabilities

Daniele Antonioli discovered that the Secure Simple Pairing and Secure Connections pairing in the Bluetooth protocol could allow an unauthenticated user to complete authentication without pairing credentials. A physically proximate attacker placed between two Bluetooth devices could use this to...

7.8CVSS7.2AI score0.02224EPSS
Exploits2
openvas
openvas
added 2024/04/22 12:0 a.m.29 views

Ubuntu: Security Advisory (USN-6740-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.01377EPSS
Exploits4References2
openvas
openvas
added 2024/04/22 12:0 a.m.51 views

Ubuntu: Security Advisory (USN-6742-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.02224EPSS
Exploits2References2
osv
osv
added 2024/04/19 1:51 p.m.4 views

USN-6742-1 linux, linux-aws, linux-aws-5.15, linux-azure-5.15, linux-azure-fde, linux-azure-fde-5.15, linux-gcp, linux-gcp-5.15, linux-gke, linux-gkeop, linux-gkeop-5.15, linux-hwe-5.15, linux-ibm, linux-ibm-5.15, linux-intel-iotg, linux-intel-iotg-5.15, linux-kvm, linux-lowlatency-hwe-5.15, linux-oracle, linux-oracle-5.15, linux-raspi vulnerabilities

Daniele Antonioli discovered that the Secure Simple Pairing and Secure Connections pairing in the Bluetooth protocol could allow an unauthenticated user to complete authentication without pairing credentials. A physically proximate attacker placed between two Bluetooth devices could use this to...

7.8CVSS6.5AI score0.02224EPSS
Exploits2References5
osv
osv
added 2024/04/19 1:42 p.m.7 views

USN-6741-1 linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-bluefield, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-iot, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-xilinx-zynqmp vulnerabilities

Daniele Antonioli discovered that the Secure Simple Pairing and Secure Connections pairing in the Bluetooth protocol could allow an unauthenticated user to complete authentication without pairing credentials. A physically proximate attacker placed between two Bluetooth devices could use this to...

7.8CVSS6.5AI score0.02224EPSS
Exploits2References6
thn
thn
added 2023/12/04 1:16 p.m.72 views

New BLUFFS Bluetooth Attack Expose Devices to Adversary-in-the-Middle Attacks

New research has unearthed multiple novel attacks that break Bluetooth Classic's forward secrecy and future secrecy guarantees, resulting in adversary-in-the-middle AitM scenarios between two already connected peers. The issues, collectively named BLUFFS, impact Bluetooth Core Specification 4.2...

6.8CVSS7.2AI score0.01297EPSS
Exploits1
cve
cve
added 2023/11/28 12:0 a.m.356 views

CVE-2023-24023

CVE-2023-24023 describes a Bluetooth BR/EDR MITM vulnerability (BLUFFS) where Secure Simple Pairing and Secure Connections in Bluetooth Core 4.2–5.4 can be forced to use short keys, potentially enabling encryption-key discovery and live injection. Connected IBM/AS/Android material confirms the sa...

6.8CVSS6.8AI score0.01297EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder