Lucene search
K

248 matches found

OSV
OSV
added 2025/01/11 1:15 p.m.12 views

AZL-67712 CVE-2024-47794 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: bpf: Prevent tailcall infinite loop caused by freplace There is a potential infinite loop issue that can occur when using a combination of tail calls and freplace. In an upcoming selftest, the attach target for entryfreplace of...

5.5CVSS6.6AI score0.00189EPSS
Exploits0References1
OSV
OSV
added 2025/01/11 1:15 p.m.2 views

DEBIAN-CVE-2024-47794

In the Linux kernel, the following vulnerability has been resolved: bpf: Prevent tailcall infinite loop caused by freplace There is a potential infinite loop issue that can occur when using a combination of tail calls and freplace. In an upcoming selftest, the attach target for entryfreplace of...

5.5CVSS5.7AI score0.00189EPSS
Exploits0References1
OSV
OSV
added 2025/01/11 1:15 p.m.10 views

AZL-62711 CVE-2024-47794 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: bpf: Prevent tailcall infinite loop caused by freplace There is a potential infinite loop issue that can occur when using a combination of tail calls and freplace. In an upcoming selftest, the attach target for entryfreplace of...

5.5CVSS6.6AI score0.00189EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.8 views

PT-2025-52657

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the tracing subsystem related to Virtual Memory Area VMA handling. Specifically, when a VMA is split, the ring buffer unmap function can be call...

6.5AI score0.00169EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.4 views

PT-2026-26042

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the ntfs3 file system within the Linux kernel that can lead to a Denial-of-Service DoS condition. A malformed NTFS image can trigger an infinite loop when an attribute...

5.5CVSS5.8AI score0.00118EPSS
Exploits0
OSV
OSV
added 2024/11/19 2:16 a.m.6 views

AZL-53715 CVE-2024-50284 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix the missing xastore error check xastore can fail, it return xaerr-EINVAL if the entry cannot be stored in an XArray, or xaerr-ENOMEM if memory allocation failed, so check error for xastore to fix it...

5.5CVSS6.1AI score0.00228EPSS
Exploits0References1
OSV
OSV
added 2024/11/19 2:16 a.m.11 views

UBUNTU-CVE-2024-50284

In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix the missing xastore error check xastore can fail, it return xaerr-EINVAL if the entry cannot be stored in an XArray, or xaerr-ENOMEM if memory allocation failed, so check error for xastore to fix it...

5.5CVSS6.6AI score0.00228EPSS
Exploits0References19
RedHat Linux
RedHat Linux
added 2024/11/12 9:11 a.m.3 views

kernel: bpf: Fix re-attachment branch in bpf_tracing_prog_attach

bpf: Fix re-attachment branch in bpftracingprogattach The following case can cause a crash due to missing attachbtf: 1 load rawtp program 2 load fentry program with rawtp as targetfd 3 create tracing link for fentry program with targetfd = 0 4 repeat 3 In the end we have: - prog-aux-dsttrampoline...

5.5CVSS6.9AI score0.00231EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/11/12 9:11 a.m.8 views

kernel: drm/amdgpu: add error handle to avoid out-of-bounds

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: add error handle to avoid out-of-bounds if the sdmav40irqidtoseq return -EINVAL, the process should be stop to avoid out-of-bounds read, so directly return -EINVAL...

7.1CVSS6.4AI score0.00238EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/11/10 3:49 a.m.10 views

SUSE CVE-2024-50218

In the Linux kernel, the following vulnerability has been resolved: ocfs2: pass u64 to ocfs2truncateinline maybe overflow Syzbot reported a kernel BUG in ocfs2truncateinline. There are two reasons for this: first, the parameter value passed is greater than ocfs2maxinlinedatawithxattr, second, the...

5.5CVSS7.6AI score0.00272EPSS
Exploits0References20
OSV
OSV
added 2024/11/09 11:15 a.m.9 views

UBUNTU-CVE-2024-50218

In the Linux kernel, the following vulnerability has been resolved: ocfs2: pass u64 to ocfs2truncateinline maybe overflow Syzbot reported a kernel BUG in ocfs2truncateinline. There are two reasons for this: first, the parameter value passed is greater than ocfs2maxinlinedatawithxattr, second, the...

5.5CVSS6.2AI score0.00272EPSS
Exploits0References48
Microsoft CVE
Microsoft CVE
added 2024/11/09 8:0 a.m.5 views

nfsd: return -EINVAL when namelen is 0

...

6.5CVSS6.9AI score0.01168EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/11/09 3:48 a.m.3 views

SUSE CVE-2024-50195

In the Linux kernel, the following vulnerability has been resolved: posix-clock: Fix missing timespec64 check in pcclocksettime As Andrew pointed out, it will make sense that the PTP core checked timespec64 struct's tvsec and tvnsec range before calling ptp-info-settime64. As the man manual of...

5.5CVSS7.7AI score0.00233EPSS
Exploits0References24
OSV
OSV
added 2024/11/08 6:15 a.m.3 views

UBUNTU-CVE-2024-50195

In the Linux kernel, the following vulnerability has been resolved: posix-clock: Fix missing timespec64 check in pcclocksettime As Andrew pointed out, it will make sense that the PTP core checked timespec64 struct's tvsec and tvnsec range before calling ptp-info-settime64. As the man manual of...

5.5CVSS6.2AI score0.00233EPSS
Exploits0References57
Positive Technologies
Positive Technologies
added 2024/10/28 12:0 a.m.7 views

PT-2024-34109

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved, specifically in the ksmbd component. The issue involves the xa store function, which can fail and return errors such as xa...

5.5CVSS5.5AI score0.00228EPSS
Exploits0
OSV
OSV
added 2024/10/21 12:15 p.m.1 views

DEBIAN-CVE-2024-47677

In the Linux kernel, the following vulnerability has been resolved: exfat: resolve memory leak from exfatcreateupcasetable If exfatloadupcasetable reaches end and returns -EINVAL, allocated memory doesn't get freed and while exfatloaddefaultupcasetable allocates more memory, leading to a memory...

5.5CVSS5.7AI score0.00233EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 12:15 p.m.5 views

UBUNTU-CVE-2024-47677

In the Linux kernel, the following vulnerability has been resolved: exfat: resolve memory leak from exfatcreateupcasetable If exfatloadupcasetable reaches end and returns -EINVAL, allocated memory doesn't get freed and while exfatloaddefaultupcasetable allocates more memory, leading to a memory...

5.5CVSS6.2AI score0.00233EPSS
Exploits0References20
SUSE CVE
SUSE CVE
added 2024/10/11 2:48 a.m.6 views

SUSE CVE-2024-47665

In the Linux kernel, the following vulnerability has been resolved: i3c: mipi-i3c-hci: Error out instead on BUGON in IBI DMA setup Definitely condition dmagetcachealignment defined value 256 during driver initialization is not reason to BUGON. Turn that to graceful error out with -EINVAL...

4.4CVSS6.5AI score0.00207EPSS
Exploits0References16
OSV
OSV
added 2024/10/09 3:15 p.m.3 views

DEBIAN-CVE-2024-47665

In the Linux kernel, the following vulnerability has been resolved: i3c: mipi-i3c-hci: Error out instead on BUGON in IBI DMA setup Definitely condition dmagetcachealignment defined value 256 during driver initialization is not reason to BUGON. Turn that to graceful error out with -EINVAL...

5.5CVSS5.6AI score0.00207EPSS
Exploits0References1
OSV
OSV
added 2024/10/09 3:15 p.m.7 views

UBUNTU-CVE-2024-47665

In the Linux kernel, the following vulnerability has been resolved: i3c: mipi-i3c-hci: Error out instead on BUGON in IBI DMA setup Definitely condition dmagetcachealignment defined value 256 during driver initialization is not reason to BUGON. Turn that to graceful error out with -EINVAL...

5.5CVSS6.5AI score0.00207EPSS
Exploits0References17
Rows per page
Query Builder