Lucene search
K

16 matches found

EUVD
EUVD
added 2026/05/27 3:33 p.m.10 views

EUVD-2026-32342

In the Linux kernel, the following vulnerability has been resolved: arm64/gcs: Fix error handling in archsetshadowstackstatus allocgcs returns an error-encoded pointer on failure, which comes from dommap, not NULL. The current NULL check fails to detect errors, which could lead to using an invali...

5.8AI score0.00153EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/02/14 4:1 p.m.3 views

CVE-2026-23155

In the Linux kernel, the following vulnerability has been resolved: can: gsusb: gsusbreceivebulkcallback: fix error message Sinc commit 79a6d1bfe114 "can: gsusb: gsusbreceivebulkcallback: unanchor URL on usbsubmiturb error" a failing resubmit URB will print an info message. In the case of a short...

5.5CVSS5.2AI score0.00115EPSS
Exploits0References7Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/12/30 12:0 a.m.1 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992377)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992377 advisory. In the Linux kernel, the following vulnerability has been resolved: arm64: cacheinfo: Fix incorrect assignment of signed error value to unsigned fwlevel Though...

5.5CVSS6.4AI score0.0018EPSS
Exploits0References4
CVE
CVE
added 2025/12/16 3:39 p.m.21 views

CVE-2025-68316

CVE-2025-68316 affects the Linux kernel’s SCSI UFS core. The root cause was an invalid non‑negative error code propagated from ufshcd_init(), causing a failed probe to be treated as success and potentially leaving the driver in an invalid state. The available connected sources confirm the issue a...

6.2AI score0.00158EPSS
Exploits0References2
OSV
OSV
added 2025/12/16 3:39 p.m.6 views

CVE-2025-68316 scsi: ufs: core: Fix invalid probe error return value

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix invalid probe error return value After DME Link Startup, the error return value is set to the MIPI UniPro GenericErrorCode which can be 0 SUCCESS or 1 FAILURE. Upon failure during driver probe, the error code...

6.5AI score0.00158EPSS
Exploits0References5
NVD
NVD
added 2025/06/18 11:15 a.m.9 views

CVE-2022-49964

In the Linux kernel, the following vulnerability has been resolved: arm64: cacheinfo: Fix incorrect assignment of signed error value to unsigned fwlevel Though acpifindlastcachelevel always returned signed value and the document states it will return any errors caused by lack of a PPTT table, it...

5.5CVSS0.0018EPSS
Exploits0References2
OSV
OSV
added 2025/06/18 11:0 a.m.3 views

CVE-2022-49964 arm64: cacheinfo: Fix incorrect assignment of signed error value to unsigned fw_level

In the Linux kernel, the following vulnerability has been resolved: arm64: cacheinfo: Fix incorrect assignment of signed error value to unsigned fwlevel Though acpifindlastcachelevel always returned signed value and the document states it will return any errors caused by lack of a PPTT table, it...

5.5CVSS6AI score0.0018EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/05/01 12:0 a.m.5 views

PT-2025-18441 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved. The issue was related to the handling of Out-of-Memory OOM conditions during VMA merge operations. In certain cases, the caller d...

7.8CVSS7.4AI score0.23278EPSS
Exploits0References682
SUSE CVE
SUSE CVE
added 2025/04/23 2:38 a.m.9 views

SUSE CVE-2025-22095

In the Linux kernel, the following vulnerability has been resolved: PCI: brcmstb: Fix error path after a call to regulatorbulkget If the regulatorbulkget returns an error and no regulators are created, we need to set their number to zero. If we don't do this and the PCIe link up fails, a call to...

5.5CVSS7.6AI score0.00166EPSS
Exploits0References16
OSV
OSV
added 2025/02/27 8:0 p.m.8 views

CVE-2025-21799 net: ethernet: ti: am65-cpsw: fix freeing IRQ in am65_cpsw_nuss_remove_tx_chns()

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ti: am65-cpsw: fix freeing IRQ in am65cpswnussremovetxchns When getting the IRQ we use k3udmagluetxgetirq which returns negative error value on error. So not NULL check is not sufficient to deteremine if IRQ is...

5.5CVSS5.8AI score0.00213EPSS
Exploits0References12
BDU FSTEC
BDU FSTEC
added 2024/11/08 12:0 a.m.5 views

The vulnerability of the mlx5 component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the mlx5 component in the Linux operating system’s kernel is related to incorrect error handling in the mlx5internalerrretvalue function. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.7AI score0.00196EPSS
Exploits0References16Affected Software4
Positive Technologies
Positive Technologies
added 2024/10/15 12:0 a.m.6 views

PT-2024-34104

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A crash can occur in the Linux kernel when blk alloc disk fails, causing the md-disk variable to be set to an error value. The cleanup mapped device function attempts to access md-disk...

4.7CVSS5.4AI score0.00187EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/04/26 12:0 a.m.7 views

The vulnerability of the Envoy proxy server, related to improper checking of the error value of the pointer, allows a hacker to cause an unexpected termination of the application.

The vulnerability of the Envoy proxy server is related to improper checking of the error value of the pointer. Exploiting this vulnerability can allow a malicious actor to cause an unexpected termination of the application...

7.8CVSS7.2AI score0.00679EPSS
Exploits0References4Affected Software2
Microsoft CVE
Microsoft CVE
added 2023/12/27 8:0 a.m.5 views

Sudo before 1.9.15 might allow row hammer attacks (for authentication bypass or privilege escalation) because application logic sometimes is based on not equaling an error value (instead of equaling a success value) and because the values do not resist flips of a single bit.

...

7CVSS7AI score0.00541EPSS
Exploits1
NVD
NVD
added 2023/12/22 4:15 p.m.29 views

CVE-2023-42465

Sudo before 1.9.15 might allow row hammer attacks for authentication bypass or privilege escalation because application logic sometimes is based on not equaling an error value instead of equaling a success value, and because the values do not resist flips of a single bit...

7CVSS0.00541EPSS
Exploits1References13
OSV
OSV
added 2022/09/16 11:23 p.m.10 views

GSD-2022-1004990 arm64: cacheinfo: Fix incorrect assignment of signed error value to unsigned fw_level

arm64: cacheinfo: Fix incorrect assignment of signed error value to unsigned fwlevel This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.7 by...

7.2AI score
Exploits0
Rows per page
Query Builder