14 matches found
Siemens SIMATIC Devices Use After Free (CVE-2024-35955)
kprobes: Fix possible use-after-free issue on kprobe registration This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503699; scriptversion"1.2";...
Ubuntu: Security Advisory (USN-6972-4)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-6972-4: Linux kernel (Oracle) vulnerabilities
Yuxuan Hu discovered that the Bluetooth RFCOMM protocol driver in the Linux Kernel contained a race condition, leading to a NULL pointer dereference. An attacker could possibly use this to cause a denial of service system crash. CVE-2024-22099 It was discovered that a race condition existed in th...
Ubuntu: Security Advisory (USN-6972-3)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-6972-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-6972-1: Linux kernel vulnerabilities
Yuxuan Hu discovered that the Bluetooth RFCOMM protocol driver in the Linux Kernel contained a race condition, leading to a NULL pointer dereference. An attacker could possibly use this to cause a denial of service system crash. CVE-2024-22099 It was discovered that a race condition existed in th...
USN-6918-1: Linux kernel vulnerabilities
It was discovered that a race condition existed in the Bluetooth subsystem in the Linux kernel when modifying certain settings values through debugfs. A privileged local attacker could use this to cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker...
CVE-2024-35955 affecting package kernel for versions less than 6.6.28.1-1
CVE-2024-35955 affecting package kernel for versions less than 6.6.28.1-1. A patched version of the package is available...
CVE-2024-35955 affecting package kernel for versions less than 5.15.157.1-1
CVE-2024-35955 affecting package kernel for versions less than 5.15.157.1-1. A patched version of the package is available...
BELL-CVE-2024-35955
Bulletin has no description...
CVE-2024-35955
In the Linux kernel, the following vulnerability has been resolved: kprobes: Fix possible use-after-free issue on kprobe registration When unloading a module, its state is changing MODULESTATELIVE - MODULESTATEGOING - MODULESTATEUNFORMED. Each change will take a time. ismoduletextaddress and...
AZL-47642 CVE-2024-35955 affecting package kernel for versions less than 6.6.28.1-1
In the Linux kernel, the following vulnerability has been resolved: kprobes: Fix possible use-after-free issue on kprobe registration When unloading a module, its state is changing MODULESTATELIVE - MODULESTATEGOING - MODULESTATEUNFORMED. Each change will take a time. ismoduletextaddress and...
CVE-2024-35955 kprobes: Fix possible use-after-free issue on kprobe registration
In the Linux kernel, the following vulnerability has been resolved: kprobes: Fix possible use-after-free issue on kprobe registration When unloading a module, its state is changing MODULESTATELIVE - MODULESTATEGOING - MODULESTATEUNFORMED. Each change will take a time. ismoduletextaddress and...
CVE-2024-35955
CVE-2024-35955 : Linux kernel vulnerability in kprobe registration that could cause a use-after-free if module unload changes MODULE_STATE from LIVE/GOING to UNFORMED between address checks. The fix switches to using only __module_text_address() and performs try_module_get(module) while MODULE_ST...