Lucene search
K

138 matches found

CNNVD
CNNVD
added 2025/10/07 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the presence of uninitialized values in the ext4evictinode function, which could lead to memory corruption...

6.3AI score0.00202EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2025/10/05 2:56 a.m.3 views

SUSE CVE-2023-53536

In the Linux kernel, the following vulnerability has been resolved: blk-crypto: make blkcryptoevictkey more robust If blkcryptoevictkey sees that the key is still in-use due to a bug or that -keyslotevict failed, it currently just returns while leaving the key linked into the keyslot management...

5.8CVSS5.7AI score0.00149EPSS
Exploits0References3
OSV
OSV
added 2025/10/04 4:15 p.m.7 views

UBUNTU-CVE-2023-53536

In the Linux kernel, the following vulnerability has been resolved: blk-crypto: make blkcryptoevictkey more robust If blkcryptoevictkey sees that the key is still in-use due to a bug or that -keyslotevict failed, it currently just returns while leaving the key linked into the keyslot management...

7.8CVSS5.9AI score0.00149EPSS
Exploits0References9
CVE
CVE
added 2025/10/04 3:16 p.m.17 views

CVE-2023-53536

CVE-2023-53536 affects the Linux kernel in the blk-crypto subsystem. The issue stems from blk_crypto_evict_key() sometimes returning early without unlinking the key from the keyslot management structures, while the caller proceeds to free the blk_crypto_key. This mismatch can cause a use-after-fr...

7.8CVSS6.1AI score0.00149EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2025-28968

Malicious code in bioql PyPI...

6.3AI score0.00167EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2025-26099

Malicious code in bioql PyPI...

6.3AI score0.00161EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/09/23 12:0 a.m.8 views

Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2025-20608)

The remote Oracle Linux 10 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-20608 advisory. - x86/sev: Evict cache lines during SNP memory validation Tom Lendacky Orabug: 38453836 CVE-2025-38560 - xfrm: interface: fix use-after-free afte...

7.8CVSS7.1AI score0.00528EPSS
Exploits1References7
NVD
NVD
added 2025/09/18 2:15 p.m.5 views

CVE-2022-50377

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

Exploits0
OSV
OSV
added 2025/09/18 2:15 p.m.5 views

CVE-2022-50377

In the Linux kernel, the following vulnerability has been resolved: ext4: check and assert if marking an nodelete evicting inode dirty In ext4evictinode, if we evicting an inode in the 'nodelete' path, it cannot be raced by another markinodedirty. If it happens, someone else may accidentally dirt...

6.6AI score
Exploits0References6
CVE
CVE
added 2025/09/18 1:32 p.m.20 views

CVE-2022-50377

CVE-2022-50377 is rejected by the CVE Numbering Authority and not an active entry.

6.2AI score
Exploits0
SUSE CVE
SUSE CVE
added 2025/09/11 11:24 p.m.4 views

SUSE CVE-2025-39743

In the Linux kernel, the following vulnerability has been resolved: jfs: truncate good inode pages when hard link is 0 The fileset value of the inode copy from the disk by the reproducer is AGGRRESERVEDI. When executing evict, its hard link number is 0, so its inode pages are not truncated. This...

7CVSS6.4AI score0.00167EPSS
Exploits0References17
Cvelist
Cvelist
added 2025/09/11 4:52 p.m.12 views

CVE-2025-39743 jfs: truncate good inode pages when hard link is 0

In the Linux kernel, the following vulnerability has been resolved: jfs: truncate good inode pages when hard link is 0 The fileset value of the inode copy from the disk by the reproducer is AGGRRESERVEDI. When executing evict, its hard link number is 0, so its inode pages are not truncated. This...

0.00167EPSS
Exploits0References9
CVE
CVE
added 2025/09/11 4:52 p.m.34 views

CVE-2025-39743

CVE-2025-39743 refers to a Linux kernel vulnerability in the JFS file system where inode pages were not truncated during eviction when the inode’s hard link count was 0. The reproducer observed AGGR_RESERVED_I on the inode copy and eviction with hard link 0, causing clear_inode() to trigger becau...

7.8CVSS6AI score0.00167EPSS
Exploits0References12Affected Software1
Debian CVE
Debian CVE
added 2025/09/06 5:29 p.m.17 views

CVE-2024-36331

Improper initialization of CPU cache memory could allow a privileged attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity...

3.2CVSS4.5AI score0.00144EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/04 11:44 a.m.3 views

x86/sev: Evict cache lines during SNP memory validation

...

5.5CVSS7AI score0.00153EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/04 10:16 a.m.3 views

f2fs: fix to avoid panic in f2fs_evict_inode

...

6.6CVSS7AI score0.00161EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/31 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-36331

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper initialization of CPU cache memory could allow a privileged attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data...

3.2CVSS6AI score0.00144EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2025/08/20 12:0 a.m.3 views

MoEcho: Exploiting Side-Channel Attacks to Compromise User Privacy in Mixture-Of-Experts LLMs

The transformer architecture has become a cornerstone of modern AI, fueling remarkable progress across applications in natural language processing, computer vision, and multimodal learning. As these models continue to scale explosively for performance, implementation efficiency remains a critical...

6.8AI score
Exploits0
SUSE CVE
SUSE CVE
added 2025/08/19 11:23 p.m.6 views

SUSE CVE-2025-38577

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid panic in f2fsevictinode As syzbot 1 reported as below: R10: 0000000000000100 R11: 0000000000000206 R12: 00007ffe17473450 R13: 00007f28b1c10854 R14: 000000000000dae5 R15: 00007ffe17474520 --- end trace...

5.5CVSS6.3AI score0.00161EPSS
Exploits0References3
NVD
NVD
added 2025/08/19 5:15 p.m.6 views

CVE-2025-38577

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid panic in f2fsevictinode As syzbot 1 reported as below: R10: 0000000000000100 R11: 0000000000000206 R12: 00007ffe17473450 R13: 00007f28b1c10854 R14: 000000000000dae5 R15: 00007ffe17474520 --- end trace...

5.5CVSS0.00161EPSS
Exploits0References11
Rows per page
Query Builder