Lucene search
+L

5 matches found

nessus
nessus
added 2025/11/12 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-40139

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - smc: Use skdstget and dstdevrcu in in smcclcprfxset. smcclcprfxset is called during connect and not under RCU nor RTNL. Using skdstgetsk-dev could trigger UAF...

7AI score0.00182EPSS
Exploits0References4
susecve
susecve
added 2025/09/19 11:24 p.m.5 views

SUSE CVE-2025-39839

In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix OOB read/write in network-coding decode batadvncskbdecodepacket trusts codedlen and checks only against skb-len. XOR starts at sizeofstruct batadvunicastpacket, reducing payload headroom, and the source skb length...

5.5CVSS6.5AI score0.00164EPSS
Exploits0References21
cvelist
cvelist
added 2025/09/19 3:26 p.m.12 views

CVE-2025-39839 batman-adv: fix OOB read/write in network-coding decode

In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix OOB read/write in network-coding decode batadvncskbdecodepacket trusts codedlen and checks only against skb-len. XOR starts at sizeofstruct batadvunicastpacket, reducing payload headroom, and the source skb length...

0.00164EPSS
Exploits0References8
redhat
redhat
added 2024/03/12 12:48 a.m.3 views

kernel: ktls overwrites readonly memory pages when using function splice with a ktls socket as destination

An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with a ktls socket as the destination. This flaw allows a local user to crash or potentially escalate their privileges on the system...

7.8CVSS5.8AI score0.00308EPSS
Exploits0References5
redhat
redhat
added 2024/02/15 5:51 p.m.2 views

kernel: ktls overwrites readonly memory pages when using function splice with a ktls socket as destination

An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with a ktls socket as the destination. This flaw allows a local user to crash or potentially escalate their privileges on the system...

7.8CVSS7.3AI score0.00308EPSS
Exploits0References5
Rows per page
Query Builder