Lucene search
K

754 matches found

OSV
OSV
added 2023/07/29 11:5 a.m.2 views

OESA-2023-1448 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvbnet.c has a .disconnect versus dvbdeviceopen race condition that leads to a use-after-free.CVE-2022-45886 A use-after-free vulnerability was fou...

7.8CVSS7.6AI score0.02154EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2023/07/20 12:0 a.m.59 views

Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6231-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6231-1 advisory. It was discovered that the XFS file system implementation in the Linux kernel did not properly perform metadata validation when mounting certain images. ...

7.8CVSS7.4AI score0.00491EPSS
Exploits2References6
Positive Technologies
Positive Technologies
added 2023/07/19 12:0 a.m.3 views

PT-2025-53064

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s gl861 i2c master xfer function within the dvb-usb-v2 module. The issue arises because the msg parameter, controlled by the user, can lead to a null...

4.6CVSS6.2AI score0.00168EPSS
Exploits0
Ubuntu
Ubuntu
added 2023/07/14 1:49 p.m.91 views

USN-6231-1: Linux kernel (OEM) vulnerabilities

It was discovered that the XFS file system implementation in the Linux kernel did not properly perform metadata validation when mounting certain images. An attacker could use this to specially craft a file system image that, when mounted, could cause a denial of service system crash. CVE-2023-212...

7.8CVSS7.2AI score0.00491EPSS
Exploits2
OSV
OSV
added 2023/07/14 1:49 p.m.5 views

USN-6231-1 linux-oem-6.1 vulnerabilities

It was discovered that the XFS file system implementation in the Linux kernel did not properly perform metadata validation when mounting certain images. An attacker could use this to specially craft a file system image that, when mounted, could cause a denial of service system crash. CVE-2023-212...

7.8CVSS6.9AI score0.00491EPSS
Exploits2References6
OSV
OSV
added 2023/07/08 11:5 a.m.5 views

OESA-2023-1395 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: A known cache speculation vulnerability, known as Branch History Injection BHI or Spectre-BHB, becomes actual again for the new hw AmpereOne. Spectre-BHB is similar to Spectre v2, except that malicious code uses the shared branch...

7.8CVSS6.9AI score0.00536EPSS
Exploits1References10
OSV
OSV
added 2023/07/08 11:5 a.m.6 views

OESA-2023-1396 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: An issue was discovered in drivers/media/dvb-core/dvbfrontend.c in the Linux kernel 6.2. There is a blocking operation when a task is in !TASKRUNNING. In dvbfrontendgetevent, waiteventinterruptible is called; the condition is...

7.8CVSS6.8AI score0.00536EPSS
Exploits1References9
OSV
OSV
added 2023/07/08 11:5 a.m.5 views

OESA-2023-1394 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: An out-of-bounds read vulnerability was found in the SR-IPv6 implementation in the Linux kernel. Quoting ZDI security advisory 1: "This vulnerability allows local attackers to disclose sensitive information on affected...

7.8CVSS6.7AI score0.00536EPSS
Exploits1References11
OSV
OSV
added 2023/06/27 11:5 a.m.11 views

OESA-2023-1368 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: An issue was discovered in drivers/media/dvb-core/dvbfrontend.c in the Linux kernel 6.2. There is a blocking operation when a task is in !TASKRUNNING. In dvbfrontendgetevent, waiteventinterruptible is called; the condition is...

5.5CVSS7.1AI score0.00413EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/06/20 12:0 a.m.27 views

SUSE SLES15: cluster-md-kmp-default / dlm-kmp-default / gfs2-kmp-default / etc (SUSE-SU-2023:2534-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2534-1 advisory. The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security...

7.8CVSS6.8AI score0.16642EPSS
Exploits0References57
OSV
OSV
added 2023/06/17 11:5 a.m.3 views

OESA-2023-1353 kernel security update

The Linux Kernel image for RaspberryPi. Security Fixes: An issue was discovered in drivers/media/dvb-core/dvbfrontend.c in the Linux kernel 6.2. There is a blocking operation when a task is in !TASKRUNNING. In dvbfrontendgetevent, waiteventinterruptible is called; the condition is...

5.5CVSS7.1AI score0.00413EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/06/14 12:0 a.m.38 views

SUSE SLES12: cluster-md-kmp-rt / dlm-kmp-rt / gfs2-kmp-rt / kernel-devel-rt / etc (SUSE-SU-2023:2501-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2501-1 advisory. The SUSE Linux Enterprise 12 SP5 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: -...

7.8CVSS6.8AI score0.16642EPSS
Exploits0References69
Tenable Nessus
Tenable Nessus
added 2023/06/09 12:0 a.m.27 views

EulerOS 2.0 SP5 : kernel (EulerOS-SA-2023-2152)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the Linux kernel's implementation of RDMA over infiniband. An attacker with a privileged local account can leak kernel stack...

7.9CVSS7AI score0.16642EPSS
Exploits2References24
Ubuntu
Ubuntu
added 2023/06/08 2:43 p.m.69 views

USN-6149-1: Linux kernel vulnerabilities

Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrar...

7.8CVSS7.3AI score0.16642EPSS
Exploits7
OSV
OSV
added 2023/06/08 2:43 p.m.6 views

USN-6149-1 linux, linux-aws, linux-kvm, linux-lts-xenial vulnerabilities

Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrar...

7.8CVSS7.1AI score0.16642EPSS
Exploits7References7
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.3 views

kernel: Report vmalloc UAF in dvb-core/dmxdev

A use-after-free flaw was found in the Linux kernel’s dvb-core subsystem DVB API used by Digital TV devices in how a user physically removed a USB device such as a DVB demultiplexer device while running malicious code. This flaw allows a local user to crash or potentially escalate their privilege...

5.5CVSS6.6AI score0.00778EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/05/16 8:43 a.m.4 views

kernel: Report vmalloc UAF in dvb-core/dmxdev

A use-after-free flaw was found in the Linux kernel’s dvb-core subsystem DVB API used by Digital TV devices in how a user physically removed a USB device such as a DVB demultiplexer device while running malicious code. This flaw allows a local user to crash or potentially escalate their privilege...

5.5CVSS6.6AI score0.00778EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/04/26 1:53 a.m.2 views

SUSE CVE-2023-31084

An issue was discovered in drivers/media/dvb-core/dvbfrontend.c in the Linux kernel 6.2. There is a blocking operation when a task is in !TASKRUNNING. In dvbfrontendgetevent, waiteventinterruptible is called; the condition is dvbfrontendtesteventfepriv,events. In dvbfrontendtestevent,...

5.5CVSS6.3AI score0.00413EPSS
Exploits0References24
OSV
OSV
added 2023/04/24 6:15 a.m.0 views

DEBIAN-CVE-2023-31084

An issue was discovered in drivers/media/dvb-core/dvbfrontend.c in the Linux kernel 6.2. There is a blocking operation when a task is in !TASKRUNNING. In dvbfrontendgetevent, waiteventinterruptible is called; the condition is dvbfrontendtesteventfepriv,events. In dvbfrontendtestevent,...

5.5CVSS6.5AI score0.00413EPSS
Exploits0References1
OSV
OSV
added 2023/04/24 6:15 a.m.6 views

AZL-34803 CVE-2023-31084 affecting package hyperv-daemons for versions less than 6.6.35.1-1

An issue was discovered in drivers/media/dvb-core/dvbfrontend.c in the Linux kernel 6.2. There is a blocking operation when a task is in !TASKRUNNING. In dvbfrontendgetevent, waiteventinterruptible is called; the condition is dvbfrontendtesteventfepriv,events. In dvbfrontendtestevent,...

5.5CVSS6.7AI score0.00413EPSS
Exploits0References1
Rows per page
Query Builder