Lucene search
K

188 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2008-4996

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - init in initramfs-tools 0.92f allows local users to overwrite arbitrary files via a symlink attack on the /tmp/initramfs.debug temporary file. NOTE: the vendor...

6.9CVSS8.5AI score0.00434EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2016-8637

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A local information disclosure issue was found in dracut before 045 when generating initramfs images with world-readable permissions when 'early cpio' is used,...

7.8CVSS6.5AI score0.00309EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/21 9:10 p.m.13 views

CVE-2008-4996

init in initramfs-tools 0.92f allows local users to overwrite arbitrary files via a symlink attack on the /tmp/initramfs.debug temporary file. NOTE: the vendor disputes this vulnerability, stating that "init is used in a single-user context; there's no possibility that this is exploitable...

6.9CVSS6.5AI score0.00434EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.12 views

kernel: initramfs: avoid filename buffer overrun

In the Linux kernel, the following vulnerability has been resolved: initramfs: avoid filename buffer overrun The initramfs filename field is defined in Documentation/driver-api/early-userspace/buffer-format.rst as: 37 cpiofile := ALGN4 + cpioheader + filename + "\0" + ALGN4 + data ... 55...

7.8CVSS6.9AI score0.00245EPSS
Exploits0References5
Veeam
Veeam
added 2025/04/29 12:0 a.m.22 views

Oracle Linux VM Restored to Azure Fails to Boot

Challenge After restoring a VM to Azure that ran Oracle Linux, that VM fails to boot. Cause Some Oracle Linux deployments may not include the Hyper-V-related UEK Unbreakable Enterprise Kernel modules, such as: hvvmbus hvstorvsc hvutils hvnetvsc When these modules are missing, issues can occur...

7AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/03/24 12:0 a.m.5 views

The vulnerability of the do_name() function in the init/initramfs.c module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the doname function in the init/initramfs.c module of the Linux kernel is related to memory allocation beyond the bounds of the allocated buffer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

7.8CVSS6.6AI score0.00245EPSS
Exploits0References32Affected Software7
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2024-53142

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - initramfs: avoid filename buffer overrun The initramfs filename field is defined in Documentation/driver- api/early-userspace/buffer-format.rst as: 37 cpiofile ...

7.8CVSS6.9AI score0.00245EPSS
Exploits0References3
OSV
OSV
added 2025/02/14 9:37 a.m.8 views

CLSA-2025-1739525834 kernel: Fix of 24 CVEs

media: uvcvideo: Skip parsing frames of type UVCVSUNDEFINED in uvcparseformat CVE-2024-53104 - wifi: ath9k: add range check for connrspepid in htcconnectservice CVE-2024-53156 - xsk: fix OOB map writes when deleting elements CVE-2024-56614 - hvsock: Initializing vsk-trans to NULL to prevent a...

7.8CVSS7.3AI score0.03301EPSS
Exploits2References1
OSV
OSV
added 2025/02/14 9:36 a.m.10 views

CLSA-2025-1739525795 kernel: Fix of 24 CVEs

media: uvcvideo: Skip parsing frames of type UVCVSUNDEFINED in uvcparseformat CVE-2024-53104 - wifi: ath9k: add range check for connrspepid in htcconnectservice CVE-2024-53156 - xsk: fix OOB map writes when deleting elements CVE-2024-56614 - hvsock: Initializing vsk-trans to NULL to prevent a...

7.8CVSS7.3AI score0.03301EPSS
Exploits2References1
OSV
OSV
added 2025/02/11 4:41 p.m.7 views

CLSA-2025-1739292069 kernel: Fix of 13 CVEs

media: uvcvideo: Skip parsing frames of type UVCVSUNDEFINED in uvcparseformat CVE-2024-53104 - btrfs: fix information leak in btrfsioctllogicaltoino CVE-2024-35849 - net: afcan: do not leave a dangling sk pointer in cancreate CVE-2024-56603 - netfilter: xtables: fix LED ID check in ledtgcheck...

7.8CVSS7.3AI score0.03301EPSS
Exploits1References1
OSV
OSV
added 2025/02/04 12:27 p.m.9 views

CLSA-2025-1738672047 kernel: Fix of 15 CVEs

drm/amdgpu: add missing size check in amdgpudebugfsgprwaveread CVE-2024-50282 - drm/amdgpu: fix usage slab after free CVE-2024-56551 - Bluetooth: L2CAP: fix use-after-free in l2capconndel CVE-2022-3640 - netfilter: ipset: add missing range check in bitmapipuadt CVE-2024-53141 - ceph: prevent...

8.8CVSS7AI score0.01067EPSS
Exploits2References1
OSV
OSV
added 2025/02/03 2:23 p.m.8 views

CLSA-2025-1738592614 kernel: Fix of 26 CVEs

xsk: fix OOB map writes when deleting elements CVE-2024-56614 - hvsock: Initializing vsk-trans to NULL to prevent a dangling pointer CVE-2024-53103 - scsi: sg: Fix slab-use-after-free read in sgrelease CVE-2024-56631 - net: inet: do not leave a dangling sk pointer in inetcreate CVE-2024-56601 -...

7.8CVSS7.4AI score0.01325EPSS
Exploits1References1
Microsoft CVE
Microsoft CVE
added 2025/01/29 8:0 a.m.10 views

initramfs: avoid filename buffer overrun

...

7.8CVSS6.9AI score0.00245EPSS
Exploits0
Amazon
Amazon
added 2025/01/24 12:0 a.m.5 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix fortify source warning while accessing Eth segment CVE-2024-26907 In the Linux kernel, the following vulnerability has been resolved: i3c: Use i3cdev-desc-info instead of calling i3cdevicegetinfo to...

7.8CVSS6.6AI score0.00612EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2024/12/16 12:20 p.m.22 views

CVE-2024-53142

In the Linux kernel, the following vulnerability has been resolved: initramfs: avoid filename buffer overrun The initramfs filename field is defined in Documentation/driver-api/early-userspace/buffer-format.rst as: 37 cpiofile := ALGN4 + cpioheader + filename + "\0" + ALGN4 + data ... 55...

6CVSS7.3AI score0.00245EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/12/07 3:48 a.m.4 views

SUSE CVE-2024-53142

In the Linux kernel, the following vulnerability has been resolved: initramfs: avoid filename buffer overrun The initramfs filename field is defined in Documentation/driver-api/early-userspace/buffer-format.rst as: 37 cpiofile := ALGN4 + cpioheader + filename + "\0" + ALGN4 + data ... 55...

4.4CVSS8.2AI score0.00245EPSS
Exploits0References24
NVD
NVD
added 2024/12/06 10:15 a.m.30 views

CVE-2024-53142

In the Linux kernel, the following vulnerability has been resolved: initramfs: avoid filename buffer overrun The initramfs filename field is defined in Documentation/driver-api/early-userspace/buffer-format.rst as: 37 cpiofile := ALGN4 + cpioheader + filename + "\0" + ALGN4 + data ... 55...

7.8CVSS0.00245EPSS
Exploits0References11
OSV
OSV
added 2024/12/06 10:15 a.m.7 views

AZL-54087 CVE-2024-53142 affecting package kernel for versions less than 5.15.176.3-1

In the Linux kernel, the following vulnerability has been resolved: initramfs: avoid filename buffer overrun The initramfs filename field is defined in Documentation/driver-api/early-userspace/buffer-format.rst as: 37 cpiofile := ALGN4 + cpioheader + filename + "\0" + ALGN4 + data ... 55...

7.8CVSS6.6AI score0.00245EPSS
Exploits0References1
OSV
OSV
added 2024/12/06 10:15 a.m.0 views

DEBIAN-CVE-2024-53142

In the Linux kernel, the following vulnerability has been resolved: initramfs: avoid filename buffer overrun The initramfs filename field is defined in Documentation/driver-api/early-userspace/buffer-format.rst as: 37 cpiofile := ALGN4 + cpioheader + filename + "\0" + ALGN4 + data ... 55...

7.8CVSS5.9AI score0.00245EPSS
Exploits0References1
OSV
OSV
added 2024/12/06 10:15 a.m.4 views

AZL-54094 CVE-2024-53142 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: initramfs: avoid filename buffer overrun The initramfs filename field is defined in Documentation/driver-api/early-userspace/buffer-format.rst as: 37 cpiofile := ALGN4 + cpioheader + filename + "\0" + ALGN4 + data ... 55...

7.8CVSS6.5AI score0.00245EPSS
Exploits0References1
Rows per page
Query Builder