Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/07 12:0 a.m.101 views

Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-6767-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6767-1 advisory. Chenyuan Yang discovered that the RDS Protocol implementation in the Linux kernel contained an out-of- bounds read vulnerability. An attacker...

7.8CVSS7AI score0.00316EPSS
Exploits1References48
Tenable Nessus
Tenable Nessus
added 2024/04/01 12:0 a.m.75 views

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2024-053 (ALASKERNEL-5.10-2024-053)

The version of kernel installed on the remote host is prior to 5.10.210-201.852. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.10-2024-053 advisory. dmtablecreate in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to in alloctargets...

7.8CVSS7.5AI score0.02224EPSS
Exploits3References110
Tenable Nessus
Tenable Nessus
added 2024/03/06 12:0 a.m.49 views

Amazon Linux 2 : kernel (ALASKERNEL-5.10-2024-051)

The version of kernel installed on the remote host is prior to 5.10.210-201.852. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.10-2024-051 advisory. dmtablecreate in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to in alloctargets...

5.5CVSS6.7AI score0.00308EPSS
Exploits0References14
Amazon
Amazon
added 2024/03/05 12:0 a.m.8 views

Important: kernel

Issue Overview: dmtablecreate in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to in alloctargets allocate more than INTMAX bytes, and crash, because of a missing check for struct dmioctl.targetcount. CVE-2023-52429 A flaw was found in the smb client in the Linux kernel. A...

8CVSS8.3AI score0.02224EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2024/02/21 10:38 a.m.34 views

CVE-2023-52435

A flaw was found in the Linux kernel’s net/core/skbuff.c subsystem. The GSOBYFRAGS is a forbidden value and allows the following computation in skbsegment to reach it. The : mss = mss partialsegs and many initial mss values can lead to a bad final result. Limit the segmentation so that the new ms...

4.7CVSS6AI score0.00231EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2024/02/20 8:15 p.m.31 views

CVE-2023-52435

In the Linux kernel, the following vulnerability has been resolved: net: prevent mss overflow in skbsegment Once again syzbot is able to crash the kernel in skbsegment 1 GSOBYFRAGS is a forbidden value, but unfortunately the following computation in skbsegment can reach it quite easily : mss = ms...

5.5CVSS6.2AI score0.00231EPSS
Exploits0References16
Vulnrichment
Vulnrichment
added 2024/02/20 6:27 p.m.24 views

CVE-2023-52435 net: prevent mss overflow in skb_segment()

In the Linux kernel, the following vulnerability has been resolved: net: prevent mss overflow in skbsegment Once again syzbot is able to crash the kernel in skbsegment 1 GSOBYFRAGS is a forbidden value, but unfortunately the following computation in skbsegment can reach it quite easily : mss = ms...

6.8AI score0.00231EPSS
Exploits0References7
CVE
CVE
added 2024/02/20 6:27 p.m.601 views

CVE-2023-52435

CVE-2023-52435 affects the Linux kernel’s net/ skb_segment() and can overflow MSS when computing mss = mss * partial_segs, risking a crash (e.g., GSO_BY_FRAGS) and triggering NULL pointer dereferences in some traces. The fix adds a guard to ensure the new MSS is smaller than GSO_BY_FRAGS, prevent...

5.5CVSS6.6AI score0.00231EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder