kernel: Kernel: Double free vulnerability in exFAT filesystem can lead to denial of service

A flaw was found in the Linux kernel's exFAT filesystem driver. A local attacker with low privileges could exploit a double free vulnerability within the delayedfree function. This memory corruption flaw can lead to a denial of service DoS, potentially causing system instability or crashes. It ma...

kernel: Kernel: Double free vulnerability in exFAT filesystem can lead to denial of service

A flaw was found in the Linux kernel's exFAT filesystem driver. A local attacker with low privileges could exploit a double free vulnerability within the delayedfree function. This memory corruption flaw can lead to a denial of service DoS, potentially causing system instability or crashes. It ma...

kernel: Kernel: Double free vulnerability in exFAT filesystem can lead to denial of service

A flaw was found in the Linux kernel's exFAT filesystem driver. A local attacker with low privileges could exploit a double free vulnerability within the delayedfree function. This memory corruption flaw can lead to a denial of service DoS, potentially causing system instability or crashes. It ma...

CVE-2019-11689

An issue was discovered in ASUSTOR exFAT Driver through 1.0.0.r20. When conducting license validation, exfat.cgi and exfatctl fail to properly validate server responses and pass unsanitized text to the system shell, resulting in code execution as root...

CVE-2019-11688

An issue was discovered in ASUSTOR exFAT Driver through 1.0.0.r20. When conducting license validation, exfat.cgi and exfatctl accept any certificate for asustornasapi.asustor.com. In other words, there is Missing SSL Certificate Validation...

EUVD-2019-3358

Malware in sbrugna...

EUVD-2023-54144

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2023-4273

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the exFAT driver of the Linux kernel. The vulnerability exists in the implementation of the file name reconstruction function, which is...

kernel: exfat: use kvmalloc_array/kvfree instead of kmalloc_array/kfree

A memory allocation failure was found in the exFAT filesystem driver. When system memory is fragmented, kmallocarray can fail to allocate contiguous memory for the bitmap, preventing USB drives from being mounted...

openSUSE: Security Advisory for the Linux Kernel RT (Live Patch 3 for SLE 15 SP5) (SUSE-SU-2023:3806-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP11 : kernel (EulerOS-SA-2023-3010)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Improper access control in the IntelR Ethernet Controller RDMA driver for linux before version 1.9.30 may allow an unauthenticated user to...

EulerOS Virtualization 2.11.1 : kernel (EulerOS-SA-2023-3359)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Improper access control in the IntelR Ethernet Controller RDMA driver for linux before version 1.9.30 may allow an unauthenticated...

EulerOS 2.0 SP11 : kernel (EulerOS-SA-2023-3033)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Improper access control in the IntelR Ethernet Controller RDMA driver for linux before version 1.9.30 may allow an unauthenticated user to...

EulerOS Virtualization 2.11.0 : kernel (EulerOS-SA-2023-3378)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Improper access control in the IntelR Ethernet Controller RDMA driver for linux before version 1.9.30 may allow an unauthenticated...

kernel: exFAT: stack overflow in exfat_get_uniname_from_ext_entry

A flaw was found in the exFAT driver of the Linux kernel. The vulnerability exists in the implementation of the file name reconstruction function, which is responsible for reading file name entries from a directory index and merging file name parts belonging to one file into a single long file...

Ubuntu 22.04 LTS : Linux kernel (Raspberry Pi) vulnerabilities (USN-6416-3)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6416-3 advisory. It was discovered that the IPv6 implementation in the Linux kernel contained a high rate of hash collisions in connection lookup table. A remote attacker...

SUSE SLES15 Security Update : kernel (Live Patch 13 for SLE 15 SP4) (SUSE-SU-2023:3922-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3922-1 advisory. - A use-after-free vulnerability in the Linux Kernel traffic control index filter tcindex can be exploited to achieve local privilege escalatio...

SUSE SLES15 Security Update : kernel (Live Patch 1 for SLE 15 SP5) (SUSE-SU-2023:3923-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3923-1 advisory. - Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability; nftchainlookupbyid failed to check whether a chain was active...

SUSE SLES15 Security Update : kernel (Live Patch 16 for SLE 15 SP4) (SUSE-SU-2023:3929-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2023:3929-1 advisory. - A flaw was found in the exFAT driver of the Linux kernel. The vulnerability exists in the implementation of the file name reconstruction function,...

SUSE-SU-2023:3929-1 Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005519 fixes one issue. The following security issue was fixed: - CVE-2023-4273: Fixed a flaw in the exFAT driver of the Linux kernel that alloawed a local privileged attacker to overflow the kernel stack bsc1214123...