Lucene search
K

49 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in Linux 5.10, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: scsi: iscsitcp: A UAF use-after-free error occurs during login when accessing the host’s IP address. If the iscsitcpr2tpoolalloc function fails during iscsiswtcpsessioncreate, the user space may access the host’s IP address. If t...

7.8CVSS6.1AI score0.0028EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: scsi: iscsi: iscsitcp: Fixed a NULL pointer dereferencing issue when calling getpeername. A crash due to a NULL pointer occurred when freeing a socket at the same time as accessing it via sysfs. The issues are as follows: 1...

5.5CVSS5.6AI score0.00153EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: scsi: iscsitcp: It is necessary to check that sock is valid before assigning it to iscsisetparam. The validity of sock should be checked before assigning it to prevent incorrect values. The change introduced in commit 57569c37f0a...

5.5CVSS5.2AI score0.00151EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/05 12:0 a.m.4 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005637)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005637 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: iscsi: iscsitcp: Fix null-ptr-deref while calling getpeername Fix a NULL pointer crash that...

5.5CVSS5.9AI score0.00153EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.2 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989444)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989444 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: iscsitcp: Fix UAF during login when accessing the shost ipaddress If during...

7.8CVSS6AI score0.0028EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/08 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2022-50459

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: scsi: iscsi: iscsitcp: Fix null-ptr- deref while calling getpeername Fix a NULL pointer cras...

5.5CVSS6AI score0.00153EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/08 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-53464

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: scsi: iscsitcp: Check that sock is valid before iscsisetparam The validity of sock should be...

5.5CVSS5.9AI score0.00151EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/10/01 11:32 p.m.4 views

SUSE CVE-2022-50459

In the Linux kernel, the following vulnerability has been resolved: scsi: iscsi: iscsitcp: Fix null-ptr-deref while calling getpeername Fix a NULL pointer crash that occurs when we are freeing the socket at the same time we access it via sysfs. The problem is that: 1. iscsiswtcpconngetparam and...

5.5CVSS6.7AI score0.00153EPSS
Exploits0References10
NVD
NVD
added 2025/10/01 12:15 p.m.4 views

CVE-2022-50459

In the Linux kernel, the following vulnerability has been resolved: scsi: iscsi: iscsitcp: Fix null-ptr-deref while calling getpeername Fix a NULL pointer crash that occurs when we are freeing the socket at the same time we access it via sysfs. The problem is that: 1. iscsiswtcpconngetparam and...

5.5CVSS0.00153EPSS
Exploits0References5
OSV
OSV
added 2025/10/01 12:15 p.m.2 views

UBUNTU-CVE-2022-50459

In the Linux kernel, the following vulnerability has been resolved: scsi: iscsi: iscsitcp: Fix null-ptr-deref while calling getpeername Fix a NULL pointer crash that occurs when we are freeing the socket at the same time we access it via sysfs. The problem is that: 1. iscsiswtcpconngetparam and...

5.5CVSS5.9AI score0.00153EPSS
Exploits0References8
Cvelist
Cvelist
added 2025/10/01 11:45 a.m.5 views

CVE-2022-50459 scsi: iscsi: iscsi_tcp: Fix null-ptr-deref while calling getpeername()

In the Linux kernel, the following vulnerability has been resolved: scsi: iscsi: iscsitcp: Fix null-ptr-deref while calling getpeername Fix a NULL pointer crash that occurs when we are freeing the socket at the same time we access it via sysfs. The problem is that: 1. iscsiswtcpconngetparam and...

0.00153EPSS
Exploits0References5
OSV
OSV
added 2025/10/01 11:45 a.m.4 views

CVE-2022-50459 scsi: iscsi: iscsi_tcp: Fix null-ptr-deref while calling getpeername()

In the Linux kernel, the following vulnerability has been resolved: scsi: iscsi: iscsitcp: Fix null-ptr-deref while calling getpeername Fix a NULL pointer crash that occurs when we are freeing the socket at the same time we access it via sysfs. The problem is that: 1. iscsiswtcpconngetparam and...

5.5CVSS6.6AI score0.00153EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-52975

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: scsi: iscsitcp: Fix UAF during logout when accessing the shost ipaddress Bug report and...

7.8CVSS6.3AI score0.00254EPSS
Exploits0References3
OSV
OSV
added 2025/03/27 5:15 p.m.2 views

UBUNTU-CVE-2023-52975

In the Linux kernel, the following vulnerability has been resolved: scsi: iscsitcp: Fix UAF during logout when accessing the shost ipaddress Bug report and analysis from Ding Hui. During iSCSI session logout, if another task accesses the shost ipaddress attr, we can get a KASAN UAF report like...

7.8CVSS6.4AI score0.00254EPSS
Exploits0References21
Vulnrichment
Vulnrichment
added 2025/03/27 4:43 p.m.8 views

CVE-2023-52974 scsi: iscsi_tcp: Fix UAF during login when accessing the shost ipaddress

In the Linux kernel, the following vulnerability has been resolved: scsi: iscsitcp: Fix UAF during login when accessing the shost ipaddress If during iscsiswtcpsessioncreate iscsitcpr2tpoolalloc fails, userspace could be accessing the host's ipaddress attr. If we then free the session via...

6.7AI score0.0028EPSS
Exploits0References7
OSV
OSV
added 2025/03/27 4:43 p.m.9 views

CVE-2023-52974 scsi: iscsi_tcp: Fix UAF during login when accessing the shost ipaddress

In the Linux kernel, the following vulnerability has been resolved: scsi: iscsitcp: Fix UAF during login when accessing the shost ipaddress If during iscsiswtcpsessioncreate iscsitcpr2tpoolalloc fails, userspace could be accessing the host's ipaddress attr. If we then free the session via...

7.8CVSS5.8AI score0.0028EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2024/01/30 12:31 p.m.1 views

kernel: UAF during login when accessing the shost ipaddress

A use-after-free flaw was found in iscsiswtcpsessioncreate in drivers/scsi/iscsitcp.c in the SCSI sub-component in the Linux Kernel. This issue could allow an attacker to leak kernel internal information...

5.5CVSS6.6AI score0.00249EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/01/25 11:15 a.m.7 views

kernel: UAF during login when accessing the shost ipaddress

A use-after-free flaw was found in iscsiswtcpsessioncreate in drivers/scsi/iscsitcp.c in the SCSI sub-component in the Linux Kernel. This issue could allow an attacker to leak kernel internal information...

5.5CVSS6.6AI score0.00249EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/01/25 11:15 a.m.1 views

kernel: UAF during login when accessing the shost ipaddress

A use-after-free flaw was found in iscsiswtcpsessioncreate in drivers/scsi/iscsitcp.c in the SCSI sub-component in the Linux Kernel. This issue could allow an attacker to leak kernel internal information...

5.5CVSS6.6AI score0.00249EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/01/25 11:15 a.m.5 views

kernel: scsi: iscsi_tcp: Fix UAF during login when accessing the shost ipaddress

A vulnerability was found in the Linux kernel's iscsi tcp drivers. Improper resource allocation management can lead to a use-after-free scenario, triggered when the userspace attempts to access the session host's ipaddress attribute while the kernel is performing a session teardown via...

7.8CVSS6.6AI score0.0028EPSS
Exploits0References5
Rows per page
Query Builder