Lucene search
+L

7 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-50215

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: nvmet-auth: assign dhkey to NULL after kfreesensitive ctrl-dhkey might be used across multip...

7.8CVSS5.9AI score0.00254EPSS
Exploits0References3
CBLMariner
CBLMariner
added 2025/01/28 3:56 a.m.23 views

CVE-2024-50215 affecting package kernel for versions less than 6.6.64.2-1

CVE-2024-50215 affecting package kernel for versions less than 6.6.64.2-1. An upgraded version of the package is available that resolves this issue...

7.8CVSS6.8AI score0.00254EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2024/11/21 7:14 p.m.22 views

CVE-2024-50215

In the Linux kernel, the following vulnerability has been resolved: nvmet-auth: assign dhkey to NULL after kfreesensitive ctrl-dhkey might be used across multiple calls to nvmetsetupdhgroup for the same controller. So it's better to nullify it after release on error path in order to avoid double...

6.7CVSS6.7AI score0.00254EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2024/11/09 11:15 a.m.7 views

CVE-2024-50215

In the Linux kernel, the following vulnerability has been resolved: nvmet-auth: assign dhkey to NULL after kfreesensitive ctrl-dhkey might be used across multiple calls to nvmetsetupdhgroup for the same controller. So it's better to nullify it after release on error path in order to avoid double...

7.8CVSS6.4AI score0.00254EPSS
Exploits0References18
CVE
CVE
added 2024/11/09 10:14 a.m.157 views

CVE-2024-50215

CVE-2024-50215 : The issue is in the Linux kernel nvmet-auth path. The controller key cb ctrl->dh_key could be reused after being freed in nvmet_destroy_auth() due to not nulling the pointer after kfree_sensitive. The fix, as cited in the connected Astra Linux/IBM/NVD entries, is to assign dh_...

7.8CVSS7.3AI score0.00254EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2024/11/09 10:14 a.m.9 views

CVE-2024-50215

In the Linux kernel, the following vulnerability has been resolved: nvmet-auth: assign dhkey to NULL after kfreesensitive ctrl-dhkey might be used across multiple calls to nvmetsetupdhgroup for the same controller. So it's better to nullify it after release on error path in order to avoid double...

7.8CVSS5.9AI score0.00254EPSS
Exploits0
OSV
OSV
added 2024/11/09 10:14 a.m.21 views

CVE-2024-50215 nvmet-auth: assign dh_key to NULL after kfree_sensitive

In the Linux kernel, the following vulnerability has been resolved: nvmet-auth: assign dhkey to NULL after kfreesensitive ctrl-dhkey might be used across multiple calls to nvmetsetupdhgroup for the same controller. So it's better to nullify it after release on error path in order to avoid double...

7.8CVSS6.1AI score0.00254EPSS
Exploits0References8
Rows per page
Query Builder