Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-4854

Malware in sbrugna...

8.1CVSS7.9AI score0.017EPSS
Exploits1References5
OSV
OSV
added 2025/07/25 4:15 p.m.3 views

UBUNTU-CVE-2025-38437

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix potential use-after-free in oplock/lease break ack If ksmbdiovpinrsp return error, use-after-free can happen by accessing opinfo-state and opinfoput and ksmbdfdput could called twice...

7.8CVSS6.5AI score0.00151EPSS
Exploits0References30
RedHat Linux
RedHat Linux
added 2024/02/20 12:31 p.m.4 views

kernel: Possible use-after-free since the two fdget() during vhost_net_set_backend()

A use-after-free flaw was found in vhostnetsetbackend in drivers/vhost/net.c in the virtio network subcomponent in the Linux kernel due to a double fget. This issue could allow a local attacker to crash the system, and could lead to a kernel information leak problem...

7.1CVSS6.6AI score0.00251EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2022/10/05 12:0 a.m.52 views

Ubuntu 16.04 ESM : JACK vulnerability (USN-5656-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5656-1 advisory. Joseph Yasi discovered that JACK incorrectly handled the closing of a socket in certain conditions. An attacker could potentially use this issue to cause a crash...

8.1CVSS7.7AI score0.017EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.13 views

Mageia: Security Advisory (MGASA-2020-0476)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8.2AI score0.017EPSS
Exploits1References4
OSV
OSV
added 2020/12/29 11:57 a.m.5 views

MGASA-2020-0476 Updated jackit packages fix security vulnerability

posix/JackSocket.cpp in libjack in JACK2 1.9.1 through 1.9.12 has a "double file descriptor close" issue during a failed connection attempt when jackd2 is not running. Exploitation success depends on multithreaded timing of that double close, which can result in unintended information disclosure,...

8.1CVSS8.1AI score0.017EPSS
Exploits1References3
OSV
OSV
added 2019/07/05 8:15 p.m.20 views

CVE-2019-13351

posix/JackSocket.cpp in libjack in JACK2 1.9.1 through 1.9.12 as distributed with alsa-plugins 1.1.7 and later has a "double file descriptor close" issue during a failed connection attempt when jackd2 is not running. Exploitation success depends on multithreaded timing of that double close, which...

8.1CVSS6.7AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2019/01/29 12:0 a.m.4 views

PT-2019-13284 · Jack2 +2 · Jack2 +2

Name of the Vulnerable Software and Affected Versions: JACK2 versions 1.9.1 through 1.9.12 Description: The issue is related to a "double file descriptor close" problem in the posix/JackSocket.cpp file of libjack in JACK2. This occurs during a failed connection attempt when jackd2 is not running...

8.1CVSS6.4AI score0.017EPSS
Exploits2References23
Rows per page
Query Builder