Lucene search
+L

17 matches found

ubuntu
ubuntu
added 2024/08/21 5:6 p.m.101 views

USN-6950-4: Linux kernel (HWE) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - Block layer subsystem; - Bluetooth drivers; - Clock framework and...

9.8CVSS6.9AI score0.01305EPSS
Exploits2
nessus
nessus
added 2024/08/21 12:0 a.m.53 views

Ubuntu 20.04 LTS : Linux kernel (HWE) vulnerabilities (USN-6950-4)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6950-4 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in...

9.8CVSS7.1AI score0.01305EPSS
Exploits2References50
nessus
nessus
added 2024/08/19 12:0 a.m.55 views

Ubuntu 18.04 LTS : Linux kernel (Azure) vulnerabilities (USN-6951-3)

"The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6951-3 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws i...

9.8CVSS7.4AI score0.02701EPSS
Exploits4References83
ubuntu
ubuntu
added 2024/08/13 12:13 a.m.69 views

USN-6957-1: Linux kernel (Oracle) vulnerabilities

Benedict Schlüter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC interrupts and compromise the security guarantees of AMD SEV-SNP. This flaw is known as WeSee. A local attacker in control of the hypervisor could use this to...

9.8CVSS7.7AI score0.01305EPSS
Exploits2
nessus
nessus
added 2024/08/13 12:0 a.m.52 views

Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel (Azure) vulnerabilities (USN-6956-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6956-1 advisory. Benedict Schlter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC...

8.1CVSS7.3AI score0.01305EPSS
Exploits2References56
nessus
nessus
added 2024/08/13 12:0 a.m.48 views

Ubuntu 20.04 LTS : Linux kernel (Oracle) vulnerabilities (USN-6957-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6957-1 advisory. Benedict Schlter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC interrupts and...

9.8CVSS7.8AI score0.01305EPSS
Exploits2References57
nessus
nessus
added 2024/08/08 12:0 a.m.49 views

OracleVM 3.4 : kernel-uek (OVMSA-2024-0010)

The remote OracleVM system is missing necessary patches to address security updates: 4.1.12-124.88.3- crypto: pcrypt - Fix hungtask for PADATARESET Lu Jialin Orabug: 36806710 CVE-2023-52813- usbnet: sanity check for maxpacket Oliver Neukum Orabug: 36806658 CVE-2021-47495- phonet: fix...

7.8CVSS7.1AI score0.00397EPSS
Exploits1References27
oraclelinux
oraclelinux
added 2024/08/05 12:0 a.m.72 views

Unbreakable Enterprise kernel security update

4.1.12-124.88.3 - crypto: pcrypt - Fix hungtask for PADATARESET Lu Jialin Orabug: 36806710 CVE-2023-52813 - usbnet: sanity check for maxpacket Oliver Neukum Orabug: 36806658 CVE-2021-47495 - phonet: fix rtmphonetnotify skb allocation Eric Dumazet Orabug: 36683487 CVE-2024-36946 - wifi: nl80211:...

7CVSS7.2AI score0.00397EPSS
Exploits1
openvas
openvas
added 2024/07/01 12:0 a.m.31 views

Debian: Security Advisory (DLA-3843-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.01305EPSS
Exploits2References2
nessus
nessus
added 2024/06/27 12:0 a.m.38 views

Debian dla-3843 : linux-config-5.10 - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3843 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3843-1 [email protected]...

9.8CVSS6.9AI score0.01305EPSS
Exploits2References66
osv
osv
added 2024/06/04 5:57 a.m.13 views

BELL-CVE-2024-36946

Bulletin has no description...

5.5CVSS7.7AI score0.00266EPSS
Exploits0References1
redhatcve
redhatcve
added 2024/06/03 12:3 p.m.26 views

CVE-2024-36946

In the Linux kernel, the following vulnerability has been resolved: phonet: fix rtmphonetnotify skb allocation fillroute stores three components in the skb: - struct rtmsg - RTADST u8 - RTAOIF u32 Therefore, rtmphonetnotify should use NLMSGALIGNsizeofstruct rtmsg + nlatotalsize1 + nlatotalsize4...

7.1CVSS6.5AI score0.00266EPSS
Exploits0References4
nessus
nessus
added 2024/06/02 12:0 a.m.58 views

Debian dsa-5703 : affs-modules-5.10.0-29-4kc-malta-di - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5703 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5703-1 [email protected] https://www.debian.org/securit...

9.8CVSS7AI score0.01305EPSS
Exploits2References64
ubuntucve
ubuntucve
added 2024/05/30 4:15 p.m.25 views

CVE-2024-36946

In the Linux kernel, the following vulnerability has been resolved: phonet: fix rtmphonetnotify skb allocation fillroute stores three components in the skb: - struct rtmsg - RTADST u8 - RTAOIF u32 Therefore, rtmphonetnotify should use NLMSGALIGNsizeofstruct rtmsg + nlatotalsize1 + nlatotalsize4...

5.5CVSS6.3AI score0.00266EPSS
Exploits0References32
debiancve
debiancve
added 2024/05/30 3:35 p.m.26 views

CVE-2024-36946

In the Linux kernel, the following vulnerability has been resolved: phonet: fix rtmphonetnotify skb allocation fillroute stores three components in the skb: - struct rtmsg - RTADST u8 - RTAOIF u32 Therefore, rtmphonetnotify should use NLMSGALIGNsizeofstruct rtmsg + nlatotalsize1 + nlatotalsize4...

5.5CVSS5.6AI score0.00266EPSS
Exploits0
cvelist
cvelist
added 2024/05/30 3:35 p.m.32 views

CVE-2024-36946 phonet: fix rtm_phonet_notify() skb allocation

In the Linux kernel, the following vulnerability has been resolved: phonet: fix rtmphonetnotify skb allocation fillroute stores three components in the skb: - struct rtmsg - RTADST u8 - RTAOIF u32 Therefore, rtmphonetnotify should use NLMSGALIGNsizeofstruct rtmsg + nlatotalsize1 + nlatotalsize4...

7.4AI score0.00266EPSS
Exploits0References8
cve
cve
added 2024/05/30 3:35 p.m.133 views

CVE-2024-36946

CVE-2024-36946 is a Linux kernel local denial of service issue related to phonet: rtm_phonet_notify() skb allocation. The root cause is that fill_route() stores three components in the skb (rtmsg, RTA_DST, RTA_OIF) and rtm_phonet_notify() should allocate space via NLMSG_ALIGN(sizeof(struct rtmsg)...

5.5CVSS6.6AI score0.00266EPSS
Exploits0References11Affected Software1
Rows per page
Query Builder