Lucene search
K

102 matches found

RedHat Linux
RedHat Linux
added 2023/05/16 8:43 a.m.2 views

kernel: malicious data for FBIOPUT_VSCREENINFO ioctl may cause OOB write memory

An out-of-bounds write flaw was found in the Linux kernel’s framebuffer-based console driver functionality in the way a user triggers ioctl FBIOPUTVSCREENINFO with malicious data. This flaw allows a local user to crash or potentially escalate their privileges on the system...

6.7CVSS6.6AI score0.00305EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:1 a.m.3 views

kernel: malicious data for FBIOPUT_VSCREENINFO ioctl may cause OOB write memory

An out-of-bounds write flaw was found in the Linux kernel’s framebuffer-based console driver functionality in the way a user triggers ioctl FBIOPUTVSCREENINFO with malicious data. This flaw allows a local user to crash or potentially escalate their privileges on the system...

6.7CVSS6.6AI score0.00305EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2021/12/28 12:0 a.m.4 views

The vulnerability of the Linux operating system’s kernel, related to writing beyond buffer boundaries in memory, allows a hacker to cause a service failure.

The vulnerability in the drivers/video/fbdev/core/fbcon.c file of the Linux operating system is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to trigger a service failure...

6.4CVSS6.7AI score0.00374EPSS
Exploits0References27Affected Software2
Tenable Nessus
Tenable Nessus
added 2021/03/23 12:0 a.m.51 views

Ubuntu 20.04 LTS : Linux kernel vulnerabilities (USN-4751-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4751-1 advisory. It was discovered that the console keyboard driver in the Linux kernel contained a race condition. A local attacker could use this to expose sensitive...

8.8CVSS7AI score0.01129EPSS
Exploits10References19
Cloud Foundry
Cloud Foundry
added 2021/02/10 12:0 a.m.51 views

USN-4680-1: Linux kernel vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Description It was discovered that debugfs in the Linux kernel as used by blktrace contained a use-after-free in some situations. A privileged local attacker could possibly use this to cause a denial of service syste...

8.2CVSS7.9AI score0.06692EPSS
Exploits10Affected Software1
OpenVAS
OpenVAS
added 2021/01/11 12:0 a.m.34 views

Ubuntu: Security Advisory (USN-4681-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS6.8AI score0.01026EPSS
Exploits3References2
Ubuntu
Ubuntu
added 2021/01/07 12:3 a.m.163 views

USN-4683-1: Linux kernel (OEM) vulnerability

Minh Yuan discovered that the framebuffer console driver in the Linux kernel did not properly handle fonts in some conditions. A local attacker could use this to cause a denial of service system crash or possibly expose sensitive information kernel memory...

6.1CVSS6.4AI score0.00511EPSS
Exploits1
OSV
OSV
added 2021/01/07 12:3 a.m.2 views

USN-4683-1 linux-oem-5.6 vulnerability

Minh Yuan discovered that the framebuffer console driver in the Linux kernel did not properly handle fonts in some conditions. A local attacker could use this to cause a denial of service system crash or possibly expose sensitive information kernel memory...

6.1CVSS6.7AI score0.00511EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/01/07 12:0 a.m.273 views

Ubuntu 20.04 LTS : Linux kernel (OEM) vulnerability (USN-4683-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-4683-1 advisory. Minh Yuan discovered that the framebuffer console driver in the Linux kernel did not properly handle fonts in some conditions. A local attacker could use this to...

6.1CVSS6.6AI score0.00511EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2021/01/06 3:35 a.m.157 views

USN-4681-1: Linux kernel vulnerabilities

Ryan Hall discovered that the Intel 700 Series Ethernet Controllers driver in the Linux kernel did not properly deallocate memory in some conditions. A local attacker could use this to cause a denial of service kernel memory exhaustion. CVE-2019-0148 It was discovered that the console keyboard...

7CVSS6.4AI score0.01026EPSS
Exploits3
OSV
OSV
added 2021/01/06 3:35 a.m.3 views

USN-4681-1 linux, linux-aws, linux-kvm, linux-lts-xenial, linux-raspi2, linux-snapdragon vulnerabilities

Ryan Hall discovered that the Intel 700 Series Ethernet Controllers driver in the Linux kernel did not properly deallocate memory in some conditions. A local attacker could use this to cause a denial of service kernel memory exhaustion. CVE-2019-0148 It was discovered that the console keyboard...

7CVSS6.7AI score0.01026EPSS
Exploits3References7
OSV
OSV
added 2021/01/06 3:24 a.m.3 views

USN-4679-1 linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gke-5.4, linux-hwe-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerabilities

It was discovered that the console keyboard driver in the Linux kernel contained a race condition. A local attacker could use this to expose sensitive information kernel memory. CVE-2020-25656 Minh Yuan discovered that the tty driver in the Linux kernel contained race conditions when handling...

7.2CVSS6.7AI score0.01026EPSS
Exploits4References7
Tenable Nessus
Tenable Nessus
added 2021/01/06 12:0 a.m.238 views

Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-4681-1)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4681-1 advisory. Ryan Hall discovered that the Intel 700 Series Ethernet Controllers driver in the Linux kernel did not properly deallocate memory in some conditions. A...

7CVSS6.6AI score0.01026EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2021/01/06 12:0 a.m.61 views

Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-4679-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4679-1 advisory. It was discovered that the console keyboard driver in the Linux kernel contained a race condition. A local attacker could use this to expose...

7.2CVSS6.8AI score0.01026EPSS
Exploits4References7
Tenable Nessus
Tenable Nessus
added 2021/01/06 12:0 a.m.54 views

Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-4680-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4680-1 advisory. It was discovered that debugfs in the Linux kernel as used by blktrace contained a use-after-free in some situations. A privileged local...

8.2CVSS7.2AI score0.06692EPSS
Exploits10References10
Microsoft CVE
Microsoft CVE
added 2020/12/02 8:0 a.m.8 views

A slab-out-of-bounds read in fbcon in the Linux kernel before 5.9.7 could be used by local attackers to read privileged information or potentially crash the kernel aka CID-3c4e0dff2095. This occurs because KD_FONT_OP_COPY in drivers/tty/vt/vt.c can be used for manipulations such as font height.

...

6.1CVSS8.3AI score0.00511EPSS
Exploits1
CNVD
CNVD
added 2020/11/23 12:0 a.m.1 views

Linux kernel slab out-of-bounds read vulnerability

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A slab out-of-bounds read vulnerability exists in fbcon in Linux kernel versions prior to 5.9.7. The vulnerability...

6.1CVSS6.5AI score0.00511EPSS
Exploits1References1
OSV
OSV
added 2020/11/20 6:15 p.m.0 views

UBUNTU-CVE-2020-28974

A slab-out-of-bounds read in fbcon in the Linux kernel before 5.9.7 could be used by local attackers to read privileged information or potentially crash the kernel, aka CID-3c4e0dff2095. This occurs because KDFONTOPCOPY in drivers/tty/vt/vt.c can be used for manipulations such as font height...

5CVSS6.6AI score0.00511EPSS
Exploits1References12
CNVD
CNVD
added 2020/11/19 12:0 a.m.1 views

Linux kernel buffer over-read vulnerability

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A buffer over-read vulnerability exists in the fbcon code in Linux kernel versions prior to 5.8.15. A local attacker...

6.1CVSS6.8AI score0.00374EPSS
Exploits0References1
OSV
OSV
added 2020/11/18 8:15 a.m.1 views

DEBIAN-CVE-2020-28915

A buffer over-read at the framebuffer layer in the fbcon code in the Linux kernel before 5.8.15 could be used by local attackers to read kernel memory, aka CID-6735b4632def...

5.8CVSS6.5AI score0.00374EPSS
Exploits0References1
Rows per page
Query Builder