Lucene search
K

4718 matches found

OSV
OSV
added 2024/08/21 2:30 p.m.24 views

GO-2022-0390 Moby (Docker Engine) started with non-empty inheritable Linux process capabilities in github.com/docker/docker

Moby Docker Engine started with non-empty inheritable Linux process capabilities in github.com/docker/docker...

5.9CVSS6AI score0.00492EPSS
Exploits0References20
Positive Technologies
Positive Technologies
added 2024/08/21 12:0 a.m.8 views

PT-2024-33744

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A null pointer issue in the Linux kernel has been resolved by adding a list empty check. This check is intended to prevent null pointer issues in certain corner cases, specifically whe...

5.5CVSS5.4AI score0.00233EPSS
Exploits0
CNNVD
CNNVD
added 2024/08/17 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a failure to properly check if the root directory block is empty...

5.5CVSS6.5AI score0.00224EPSS
Exploits0References6
Microsoft CVE
Microsoft CVE
added 2024/08/16 7:0 a.m.4 views

net: dsa: mv88e6xxx: Correct check for empty list

...

6.1CVSS7.3AI score0.00233EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/08/15 5:34 a.m.1 views

kernel: net: netlink: af_netlink: Prevent empty skb by adding a check on len.

In the Linux kernel, the following vulnerability has been resolved: net: netlink: afnetlink: Prevent empty skb by adding a check on len. Adding a check on len parameter to avoid empty skb. This prevents a division error in netemenqueue function which is caused when skb-len=0 and skb-datalen=0 in...

5.5CVSS6.8AI score0.00233EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/08/08 4:53 a.m.9 views

kernel: scsi: ibmvfc: Remove BUG_ON in the case of an empty event pool

In the Linux kernel, the following vulnerability has been resolved: scsi: ibmvfc: Remove BUGON in the case of an empty event pool In practice the driver should never send more commands than are allocated to a queue's event pool. In the unlikely event that this happens, the code asserts a BUGON, a...

5.5CVSS6.8AI score0.00252EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/08/08 4:53 a.m.4 views

kernel: crash due to a missing check for leb_size

A flaw was found in the Linux kernel. The createemptylvol function in the drivers/mtd/ubi/vtbl.c file can attempt to allocate zero bytes of memory when the LEB size is smaller than a single volume table record. This issue can result in a denial of service...

5.5CVSS7.2AI score0.00248EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/08/08 4:44 a.m.2 views

kernel: bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set()

In the Linux kernel, the following vulnerability has been resolved: bonding: Fix out-of-bounds read in bondoptionarpiptargetsset In function bondoptionarpiptargetsset, if newval-string is an empty string, newval-string+1 will point to the byte after the string, causing an out-of-bound read. BUG:...

7.1CVSS6.4AI score0.0024EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/08/08 2:20 a.m.1 views

SUSE CVE-2024-42236

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: configfs: Prevent OOB read/write in usbstringcopy Userspace provided string 's' could trivially have the length zero. Left unchecked this will firstly result in an OOB read in the form if str0 - 1 == '\n' followed...

6.6CVSS6.4AI score0.00233EPSS
Exploits0References16
SUSE CVE
SUSE CVE
added 2024/08/06 1:59 a.m.1 views

SUSE CVE-2024-42224

In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Correct check for empty list Since commit a3c53be55c95 "net: dsa: mv88e6xxx: Support multiple MDIO busses" mv88e6xxxdefaultmdiobus has checked that the return value of listfirstentry is non-NULL. This appears...

5.5CVSS6.4AI score0.00233EPSS
Exploits0References16
OSV
OSV
added 2024/07/31 3:46 p.m.3 views

USN-6937-1 openssl vulnerabilities

It was discovered that OpenSSL incorrectly handled TLSv1.3 sessions when certain non-default TLS server configurations were in use. A remote attacker could possibly use this issue to cause OpenSSL to consume resources, leading to a denial of service. CVE-2024-2511 It was discovered that OpenSSL...

9.1CVSS6.9AI score0.54026EPSS
Exploits1References5
OSV
OSV
added 2024/07/30 8:15 a.m.7 views

AZL-47379 CVE-2024-42224 affecting package kernel for versions less than 6.6.43.1-7

In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Correct check for empty list Since commit a3c53be55c95 "net: dsa: mv88e6xxx: Support multiple MDIO busses" mv88e6xxxdefaultmdiobus has checked that the return value of listfirstentry is non-NULL. This appears...

6.1CVSS6.4AI score0.00233EPSS
Exploits0References1
OSV
OSV
added 2024/07/30 8:15 a.m.3 views

AZL-47337 CVE-2024-42224 affecting package kernel for versions less than 5.15.163.1-1

In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Correct check for empty list Since commit a3c53be55c95 "net: dsa: mv88e6xxx: Support multiple MDIO busses" mv88e6xxxdefaultmdiobus has checked that the return value of listfirstentry is non-NULL. This appears...

6.1CVSS6.4AI score0.00233EPSS
Exploits0References1
OSV
OSV
added 2024/07/30 8:15 a.m.1 views

DEBIAN-CVE-2024-42224

In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Correct check for empty list Since commit a3c53be55c95 "net: dsa: mv88e6xxx: Support multiple MDIO busses" mv88e6xxxdefaultmdiobus has checked that the return value of listfirstentry is non-NULL. This appears...

6.1CVSS5.7AI score0.00233EPSS
Exploits0References1
OSV
OSV
added 2024/07/30 8:15 a.m.1 views

UBUNTU-CVE-2024-42224

In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Correct check for empty list Since commit a3c53be55c95 "net: dsa: mv88e6xxx: Support multiple MDIO busses" mv88e6xxxdefaultmdiobus has checked that the return value of listfirstentry is non-NULL. This appears...

6.1CVSS6.2AI score0.00233EPSS
Exploits0References31
OSV
OSV
added 2024/07/30 7:47 a.m.25 views

CVE-2024-42224 net: dsa: mv88e6xxx: Correct check for empty list

In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Correct check for empty list Since commit a3c53be55c95 "net: dsa: mv88e6xxx: Support multiple MDIO busses" mv88e6xxxdefaultmdiobus has checked that the return value of listfirstentry is non-NULL. This appears...

6.1CVSS6.1AI score0.00233EPSS
Exploits0References12
CNNVD
CNNVD
added 2024/07/30 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates in the net:dsa:mv88e6xxx module when checking for an empty list using listfirstentry, listfirstentryornull...

6.1CVSS6.7AI score0.00233EPSS
Exploits0References9
OSV
OSV
added 2024/07/29 5:15 p.m.1 views

DEBIAN-CVE-2024-42088

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8195: Add platform entry for ETDM1OUTBE dai link Commit e70b8dd26711 "ASoC: mediatek: mt8195: Remove afe-dai component and rework codec link" removed the codec entry for the ETDM1OUTBE dai link entirely instead ...

7.8CVSS4.9AI score0.00217EPSS
Exploits0References1
OSV
OSV
added 2024/07/29 5:15 p.m.2 views

UBUNTU-CVE-2024-42088

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8195: Add platform entry for ETDM1OUTBE dai link Commit e70b8dd26711 "ASoC: mediatek: mt8195: Remove afe-dai component and rework codec link" removed the codec entry for the ETDM1OUTBE dai link entirely instead ...

7.8CVSS5.8AI score0.00217EPSS
Exploits0References15
OSV
OSV
added 2024/07/29 3:15 p.m.6 views

AZL-62696 CVE-2024-41067 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: btrfs: scrub: handle RST lookup error correctly BUG When running btrfs/060 with forced RST feature, it would crash the following ASSERT inside scrubreadendio: ASSERTsectornr nrsectors; Before that, we would have tree dump from...

5.5CVSS5.8AI score0.00197EPSS
Exploits0References1
Rows per page
Query Builder