Lucene search
+L

35 matches found

BDU FSTEC
BDU FSTEC
added 2024/10/24 12:0 a.m.8 views

The vulnerability of the gue_gro_receive() function in the IPv4 implementation of the Linux operating system’s kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the guegroreceive function in the net/ipv4/foucore.c module of the Linux operating system’s IPv4 kernel implementation is related to incorrect validation of input data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

7.8CVSS6.5AI score0.00245EPSS
Exploits0References44Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/10/18 12:0 a.m.10 views

The vulnerability of the gue_gro_receive() function in the IPv4 implementation of the Linux operating system’s kernel allows a attacker to compromise the confidentiality and accessibility of the protected information.

The vulnerability of the guegroreceive function in the net/ipv4/foucore.c module, which is part of the Linux operating system’s IPv4 kernel implementation, relates to the use of an uninitialized variable. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and...

7.1CVSS6.7AI score0.00226EPSS
Exploits0References21Affected Software5
Tenable Nessus
Tenable Nessus
added 2024/10/02 12:0 a.m.30 views

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2024-071 (ALASKERNEL-5.10-2024-071)

The version of kernel installed on the remote host is prior to 5.10.225-213.878. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.10-2024-071 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: don't allow mapping the...

7.8CVSS6.7AI score0.00879EPSS
Exploits2References34
OSV
OSV
added 2024/10/01 9:22 p.m.17 views

CLSA-2024-1727817758 Fix of 74 CVEs

CVE-url: https://ubuntu.com/security/CVE-2024-26752 - l2tp: pass correct message length to ip6appenddata CVE-url: https://ubuntu.com/security/CVE-2021-47188 - scsi: ufs: core: Improve SCSI abort handling CVE-url: https://ubuntu.com/security/CVE-2024-26677 - rxrpc: Fix delayed ACKs to not set the...

8.4CVSS6.8AI score0.00317EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2024/09/28 2:50 a.m.3 views

SUSE CVE-2024-46865

In the Linux kernel, the following vulnerability has been resolved: fou: fix initialization of grc The grc must be initialize first. There can be a condition where if fou is NULL, goto out will be executed and grc would be used uninitialized...

5.5CVSS6.3AI score0.00226EPSS
Exploits0References19
NVD
NVD
added 2024/09/27 1:15 p.m.22 views

CVE-2024-46865

In the Linux kernel, the following vulnerability has been resolved: fou: fix initialization of grc The grc must be initialize first. There can be a condition where if fou is NULL, goto out will be executed and grc would be used uninitialized...

7.1CVSS0.00226EPSS
Exploits0References9
OSV
OSV
added 2024/09/27 1:15 p.m.1 views

DEBIAN-CVE-2024-46865

In the Linux kernel, the following vulnerability has been resolved: fou: fix initialization of grc The grc must be initialize first. There can be a condition where if fou is NULL, goto out will be executed and grc would be used uninitialized...

7.1CVSS5.7AI score0.00226EPSS
Exploits0References1
OSV
OSV
added 2024/09/27 1:15 p.m.3 views

UBUNTU-CVE-2024-46865

In the Linux kernel, the following vulnerability has been resolved: fou: fix initialization of grc The grc must be initialize first. There can be a condition where if fou is NULL, goto out will be executed and grc would be used uninitialized...

7.1CVSS6.2AI score0.00226EPSS
Exploits0References14
OSV
OSV
added 2024/09/27 12:42 p.m.13 views

CVE-2024-46865 fou: fix initialization of grc

In the Linux kernel, the following vulnerability has been resolved: fou: fix initialization of grc The grc must be initialize first. There can be a condition where if fou is NULL, goto out will be executed and grc would be used uninitialized...

7.1CVSS6.1AI score0.00226EPSS
Exploits0References12
OSV
OSV
added 2024/09/18 8:15 a.m.7 views

AZL-49584 CVE-2024-46763 affecting package kernel for versions less than 5.15.167.1-1

In the Linux kernel, the following vulnerability has been resolved: fou: Fix null-ptr-deref in GRO. We observed a null-ptr-deref in fougroreceive while shutting down a host. 0 The NULL pointer is sk-skuserdata, and the offset 8 is of protocol in struct fou. When fourelease is called due to netns...

5.5CVSS6.4AI score0.00238EPSS
Exploits0References1
OSV
OSV
added 2024/09/18 8:15 a.m.7 views

UBUNTU-CVE-2024-46763

In the Linux kernel, the following vulnerability has been resolved: fou: Fix null-ptr-deref in GRO. We observed a null-ptr-deref in fougroreceive while shutting down a host. 0 The NULL pointer is sk-skuserdata, and the offset 8 is of protocol in struct fou. When fourelease is called due to netns...

5.5CVSS6.2AI score0.00238EPSS
Exploits0References19
Vulnrichment
Vulnrichment
added 2024/09/18 7:12 a.m.16 views

CVE-2024-46763 fou: Fix null-ptr-deref in GRO.

In the Linux kernel, the following vulnerability has been resolved: fou: Fix null-ptr-deref in GRO. We observed a null-ptr-deref in fougroreceive while shutting down a host. 0 The NULL pointer is sk-skuserdata, and the offset 8 is of protocol in struct fou. When fourelease is called due to netns...

6.7AI score0.00238EPSS
Exploits0References6
CVE
CVE
added 2024/09/18 7:12 a.m.141 views

CVE-2024-46763

CVE-2024-46763 (Linux kernel) involves a NULL pointer dereference in fou_gro_receive() during host shutdown. The NULL pointer is sk->sk_user_data (offset 8 in struct fou), which may be NULL when udp_tunnel_sock_release() clears sk_user_data and the tunnel socket is destroyed after an RCU grace...

5.5CVSS5.9AI score0.00238EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2024/09/18 7:12 a.m.12 views

CVE-2024-46763 fou: Fix null-ptr-deref in GRO.

In the Linux kernel, the following vulnerability has been resolved: fou: Fix null-ptr-deref in GRO. We observed a null-ptr-deref in fougroreceive while shutting down a host. 0 The NULL pointer is sk-skuserdata, and the offset 8 is of protocol in struct fou. When fourelease is called due to netns...

5.5CVSS6.1AI score0.00238EPSS
Exploits0References11
Amazon
Amazon
added 2024/09/18 12:0 a.m.4 views

Medium: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: don't allow mapping the MMIO HDP page with large pages CVE-2024-41011 In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: Fix null pointer dereference on error...

7.8CVSS6.5AI score0.00879EPSS
Exploits2
Rows per page
Query Builder