Lucene search
+L

15 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2024-26936

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: validate request buffer size in smb2allocaterspbuf The response buffer should be allocated in smb2allocaterspbuf before validating request. But the field...

7.8CVSS6.5AI score0.00234EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2024/08/21 5:6 p.m.101 views

USN-6950-4: Linux kernel (HWE) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - Block layer subsystem; - Bluetooth drivers; - Clock framework and...

9.8CVSS6.9AI score0.01305EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2024/08/21 12:0 a.m.53 views

Ubuntu 20.04 LTS : Linux kernel (HWE) vulnerabilities (USN-6950-4)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6950-4 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in...

9.8CVSS7.1AI score0.01305EPSS
Exploits2References50
Ubuntu
Ubuntu
added 2024/08/13 12:13 a.m.69 views

USN-6957-1: Linux kernel (Oracle) vulnerabilities

Benedict Schlüter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC interrupts and compromise the security guarantees of AMD SEV-SNP. This flaw is known as WeSee. A local attacker in control of the hypervisor could use this to...

9.8CVSS7.7AI score0.01305EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2024/08/13 12:0 a.m.52 views

Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel (Azure) vulnerabilities (USN-6956-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6956-1 advisory. Benedict Schlter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC...

8.1CVSS7.3AI score0.01305EPSS
Exploits2References56
Tenable Nessus
Tenable Nessus
added 2024/08/13 12:0 a.m.48 views

Ubuntu 20.04 LTS : Linux kernel (Oracle) vulnerabilities (USN-6957-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6957-1 advisory. Benedict Schlter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC interrupts and...

9.8CVSS7.8AI score0.01305EPSS
Exploits2References57
OpenVAS
OpenVAS
added 2024/08/13 12:0 a.m.24 views

Ubuntu: Security Advisory (USN-6950-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.3AI score0.01305EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2024/05/07 12:0 a.m.94 views

Debian: Security Advisory (DSA-5680-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS5.9AI score0.01287EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2024/05/01 6:15 p.m.26 views

CVE-2024-26936

A flaw was found in the Linux kernel’s ksmbd module. A missing validation of a buffer size can trigger an out-of-bounds access, resulting in a denial of service...

5.5CVSS8.3AI score0.00234EPSS
Exploits0References4
NVD
NVD
added 2024/05/01 6:15 a.m.13 views

CVE-2024-26936

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate request buffer size in smb2allocaterspbuf The response buffer should be allocated in smb2allocaterspbuf before validating request. But the fields in payload as well as smb2 header is used in smb2allocaterspbuf. Th...

7.8CVSS7.5AI score0.00234EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2024/05/01 6:15 a.m.17 views

CVE-2024-26936

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate request buffer size in smb2allocaterspbuf The response buffer should be allocated in smb2allocaterspbuf before validating request. But the fields in payload as well as smb2 header is used in smb2allocaterspbuf. Th...

7.8CVSS6.4AI score0.00234EPSS
Exploits0References17
OSV
OSV
added 2024/05/01 6:15 a.m.2 views

UBUNTU-CVE-2024-26936

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate request buffer size in smb2allocaterspbuf The response buffer should be allocated in smb2allocaterspbuf before validating request. But the fields in payload as well as smb2 header is used in smb2allocaterspbuf. Th...

7.8CVSS6.3AI score0.00234EPSS
Exploits0References18
CVE
CVE
added 2024/05/01 5:26 a.m.7845 views

CVE-2024-26936

CVE-2024-26936 affects the Linux kernel component ksmbd. The issue arises because the response buffer is allocated in smb2_allocate_rsp_buf() only after validating the request, while the patch shows that fields in the payload and the SMB2 header are used within smb2_allocate_rsp_buf(), enabling a...

7.8CVSS6.6AI score0.00234EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2024/05/01 5:26 a.m.23 views

CVE-2024-26936

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate request buffer size in smb2allocaterspbuf The response buffer should be allocated in smb2allocaterspbuf before validating request. But the fields in payload as well as smb2 header is used in smb2allocaterspbuf. Th...

7.8CVSS7.2AI score0.00234EPSS
Exploits0
OSV
OSV
added 2024/05/01 5:26 a.m.17 views

CVE-2024-26936 ksmbd: validate request buffer size in smb2_allocate_rsp_buf()

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate request buffer size in smb2allocaterspbuf The response buffer should be allocated in smb2allocaterspbuf before validating request. But the fields in payload as well as smb2 header is used in smb2allocaterspbuf. Th...

7.8CVSS6.2AI score0.00234EPSS
Exploits0References8
Rows per page
Query Builder