Lucene search
K

10 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: cifs: fixed a potential race condition when creating a tree that connects to IPC. Protected access to TCPServerInfo::hostname when naming the IPC tree; this is because the name might be freed by the cifsd thread, potentially...

5.8AI score0.00167EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/12/31 12:26 a.m.8 views

SUSE CVE-2023-54280

In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential race when tree connecting ipc Protect access of TCPServerInfo::hostname when building the ipc tree name as it might get freed in cifsd thread and thus causing an use-after-free bug in treeconnectdfstarget. Als...

6.6CVSS6.5AI score0.00167EPSS
Exploits0References7
NVD
NVD
added 2025/12/30 1:16 p.m.6 views

CVE-2023-54280

In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential race when tree connecting ipc Protect access of TCPServerInfo::hostname when building the ipc tree name as it might get freed in cifsd thread and thus causing an use-after-free bug in treeconnectdfstarget. Als...

0.00167EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/12/30 1:16 p.m.5 views

CVE-2023-54280

In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential race when tree connecting ipc Protect access of TCPServerInfo::hostname when building the ipc tree name as it might get freed in cifsd thread and thus causing an use-after-free bug in treeconnectdfstarget. Als...

5.7AI score0.00167EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/12/30 12:23 p.m.23 views

CVE-2023-54280 cifs: fix potential race when tree connecting ipc

In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential race when tree connecting ipc Protect access of TCPServerInfo::hostname when building the ipc tree name as it might get freed in cifsd thread and thus causing an use-after-free bug in treeconnectdfstarget. Als...

0.00167EPSS
Exploits0References3
CVE
CVE
added 2025/12/30 12:23 p.m.13 views

CVE-2023-54280

CVE-2023-54280 affects the Linux kernel CIFS/IPC path. The vulnerability was a race in tree connecting IPC that could access TCP_Server_Info::hostname during IPC tree construction, potentially freeing the hostname in a cifsd thread and causing a use-after-free in __tree_connect_dfs_target(). The ...

6.1AI score0.00167EPSS
Exploits0References3
OSV
OSV
added 2025/12/30 12:23 p.m.3 views

CVE-2023-54280 cifs: fix potential race when tree connecting ipc

In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential race when tree connecting ipc Protect access of TCPServerInfo::hostname when building the ipc tree name as it might get freed in cifsd thread and thus causing an use-after-free bug in treeconnectdfstarget. Als...

6.3AI score0.00167EPSS
Exploits0References6
OSV
OSV
added 2025/12/08 2:15 a.m.10 views

UBUNTU-CVE-2023-53751

In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential use-after-free bugs in TCPServerInfo::hostname TCPServerInfo::hostname may be updated once or many times during reconnect, so protect its access outside reconnect path as well and then prevent any potential...

5.7AI score0.00156EPSS
Exploits0References7
NVD
NVD
added 2024/07/25 5:15 p.m.21 views

CVE-2024-41801

OpenProject is open source project management software. Prior to version 14.3.0, using a forged HOST header in the default configuration of packaged installations and using the "Login required" setting, an attacker could redirect to a remote host to initiate a phishing attack against an OpenProje...

6.1CVSS0.00318EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/01/01 12:0 a.m.5 views

PT-2025-54126

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists when tree connecting to the Inter-Process Communication IPC. Access to TCP Server Info::hostname is not adequately protected when building the IPC tree name,...

6.6AI score0.00167EPSS
Exploits0
Rows per page
Query Builder