Lucene search
K

19 matches found

CNNVD
CNNVD
added 2026/05/06 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from insufficient header space validation in xdpumemreg. This vulnerability may lead to insufficient...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/11/11 9:13 a.m.6 views

kernel: can: isotp: fix potential CAN frame reception race in isotp_rcv()

A potential CAN frame reception race flaw was found in isotprcv in the Linux kernel. This vulnerability may lead to a crash...

4.7CVSS7.2AI score0.00199EPSS
Exploits0References5
OSV
OSV
added 2024/08/01 5:58 p.m.7 views

CLSA-2024-1722535085 Fix of 18 CVEs

CVE-url: https://ubuntu.com/security/CVE-2024-25739 - ubi: Check for too small LEB size in VTBL code Bionic update: upstream stable patchset 2021-06-01 LP: 1930472 // CVE- url: https://ubuntu.com/security/CVE-2021-46960 - cifs: Return correct error code from smb2getenckey CVE-url:...

7.8CVSS7.1AI score0.01287EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2024/07/18 3:5 a.m.4 views

SUSE CVE-2022-48830

In the Linux kernel, the following vulnerability has been resolved: can: isotp: fix potential CAN frame reception race in isotprcv When receiving a CAN frame the current code logic does not consider concurrently receiving processes which do not show up in real world usage. Ziyang Xuan writes: The...

5.5CVSS6.6AI score0.00199EPSS
Exploits0References9
NVD
NVD
added 2024/07/16 12:15 p.m.19 views

CVE-2022-48830

In the Linux kernel, the following vulnerability has been resolved: can: isotp: fix potential CAN frame reception race in isotprcv When receiving a CAN frame the current code logic does not consider concurrently receiving processes which do not show up in real world usage. Ziyang Xuan writes: The...

4.7CVSS0.00199EPSS
Exploits0References4
OSV
OSV
added 2024/07/16 12:15 p.m.1 views

DEBIAN-CVE-2022-48830

In the Linux kernel, the following vulnerability has been resolved: can: isotp: fix potential CAN frame reception race in isotprcv When receiving a CAN frame the current code logic does not consider concurrently receiving processes which do not show up in real world usage. Ziyang Xuan writes: The...

4.7CVSS5.2AI score0.00199EPSS
Exploits0References1
OSV
OSV
added 2024/07/16 11:44 a.m.17 views

CVE-2022-48830 can: isotp: fix potential CAN frame reception race in isotp_rcv()

In the Linux kernel, the following vulnerability has been resolved: can: isotp: fix potential CAN frame reception race in isotprcv When receiving a CAN frame the current code logic does not consider concurrently receiving processes which do not show up in real world usage. Ziyang Xuan writes: The...

4.7CVSS6AI score0.00199EPSS
Exploits0References7
CVE
CVE
added 2024/07/16 11:44 a.m.77 views

CVE-2022-48830

CVE-2022-48830 affects the Linux kernel CAN stack (isotp). The issue was a race during CAN frame reception where isotp_rcv_ff()/isotp_rcv_cf() could modify so->rx.len concurrently, causing skb_put to panic (skb_over_panic). The fix introduces a spin_lock around isotp_rcv to ensure state/data s...

4.7CVSS6.6AI score0.00199EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2024/05/29 7:15 p.m.29 views

CVE-2024-36016

In the Linux kernel, the following vulnerability has been resolved: tty: ngsm: fix possible out-of-bounds in gsm0receive Assuming the following: - side A configures the ngsm in basic option mode - side B sends the header of a basic option mode frame with data length 1 - side A switches to advance...

7.7CVSS6.7AI score0.00276EPSS
Exploits0References10
OSV
OSV
added 2023/12/05 6:12 p.m.3 views

CLSA-2023-1701799960 Fix of 8 CVEs

CVE-url: https://ubuntu.com/security/CVE-2023-45871 - igb: Limit maximum frame Rx based on MTU - igb: Only sync size of expected frame in ethtool testing - igb: Add support for ethtool private flag to allow use of legacy Rx - igb: Add support for using order 1 pages to receive large frames - igb:...

7.8CVSS6.5AI score0.00856EPSS
Exploits0References1
OSV
OSV
added 2023/04/24 2:42 p.m.4 views

CVE-2023-24819 RIOT-OS vulnerable to Buffer Overflow during IPHC receive

RIOT-OS, an operating system that supports Internet of Things devices, contains a network stack with the ability to process 6LoWPAN frames. Prior to version 2022.10, an attacker can send a crafted frame to the device resulting in an out of bounds write in the packet buffer. The overflow can be us...

9.8CVSS7.6AI score0.00985EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/06/14 12:0 a.m.6 views

PT-2022-10406 · Qualcomm · Snapdragon Connectivity +4

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: The issue is related to a possible buffer overflow due to the lack of buffer length check during management frame Rx handling. This affects various Qualcomm Snapdragon products,...

7.1CVSS7.1AI score0.00139EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/05/02 12:0 a.m.3 views

Qualcomm 缓冲区错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. a way to miniaturize circuitry including primarily semiconductor devices, but also passive components, etc. and is manufactured from time to time on the surface of semiconductor wafers. A security vulnerability exists in multiple Qualcomm...

7.1CVSS7.6AI score0.00139EPSS
Exploits0References4
OSV
OSV
added 2022/02/27 3:13 a.m.12 views

GSD-2022-1000485 can: isotp: fix potential CAN frame reception race in isotp_rcv()

can: isotp: fix potential CAN frame reception race in isotprcv This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.10 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/02/27 3:2 a.m.8 views

GSD-2022-1000410 can: isotp: fix potential CAN frame reception race in isotp_rcv()

can: isotp: fix potential CAN frame reception race in isotprcv This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.24 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/02/27 2:56 a.m.10 views

GSD-2022-1000359 can: isotp: fix potential CAN frame reception race in isotp_rcv()

can: isotp: fix potential CAN frame reception race in isotprcv This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.101 by commit...

7.2AI score
Exploits0
RedHat Linux
RedHat Linux
added 2020/11/04 1:55 a.m.5 views

edk2: memory leak in ArpOnFrameRcvdDpc

Uncontrolled resource consumption in EDK II may allow an unauthenticated user to potentially enable denial of service via network access...

7.5CVSS7.3AI score0.01308EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2008/01/24 12:0 a.m.65 views

Important: kernel security and bug fix update

2.6.18-53.1.6.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki ORA 6045759 - NET Fix msi issue with kexec/kdump Michael Chan ORA 6219364 - MM Fix allocpagesnode static nid' race made kernel crash Joe Jin ORA 6187457 - splice Fix bad unlockpage in error case Jens Axboe ORA 6263574 ...

6.8CVSS6.4AI score0.02378EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2007/04/12 12:0 a.m.23 views

Mandrake Linux Security Advisory : madwifi-source (MDKSA-2007:082)

The athratesample function in the athrate/sample/sample.c sample code in MadWifi before 0.9.3 allows remote attackers to cause a denial of service failed KASSERT and system crash by moving a connected system to a location with low signal strength, and possibly other vectors related to a race...

7.8CVSS5.6AI score0.02602EPSS
Exploits0References5
Rows per page
Query Builder