Lucene search
+L

280 matches found

vulnrichment
vulnrichment
added 2024/04/04 8:20 a.m.20 views

CVE-2024-26745 powerpc/pseries/iommu: IOMMU table is not initialized for kdump over SR-IOV

In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/iommu: IOMMU table is not initialized for kdump over SR-IOV When kdump kernel tries to copy dump data over SR-IOV, LPAR panics due to NULL pointer exception: Kernel attempted to read user page 0 - exploit attempt?...

6.3AI score0.0022EPSS
Exploits0References4
cve
cve
added 2024/04/04 8:20 a.m.104 views

CVE-2024-26745

CVE-2024-26745 pertains to the Linux kernel on pSeries POWER systems where the IOMMU table is not initialized for kdump over SR-IOV, causing a NULL pointer dereference when the kdump kernel initializes IOMMU/TCEs for SR-IOV devices. The root cause is IOMMU table initialization logic that only con...

4.4CVSS5.6AI score0.0022EPSS
Exploits0References4Affected Software1
cvelist
cvelist
added 2024/04/04 8:20 a.m.28 views

CVE-2024-26745 powerpc/pseries/iommu: IOMMU table is not initialized for kdump over SR-IOV

In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/iommu: IOMMU table is not initialized for kdump over SR-IOV When kdump kernel tries to copy dump data over SR-IOV, LPAR panics due to NULL pointer exception: Kernel attempted to read user page 0 - exploit attempt?...

7.4AI score0.0022EPSS
Exploits0References4
osv
osv
added 2024/04/04 8:20 a.m.5 views

CVE-2024-26745 powerpc/pseries/iommu: IOMMU table is not initialized for kdump over SR-IOV

In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/iommu: IOMMU table is not initialized for kdump over SR-IOV When kdump kernel tries to copy dump data over SR-IOV, LPAR panics due to NULL pointer exception: Kernel attempted to read user page 0 - exploit attempt?...

4.4CVSS5.8AI score0.0022EPSS
Exploits0References7
debiancve
debiancve
added 2024/04/04 8:20 a.m.38 views

CVE-2024-26745

In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/iommu: IOMMU table is not initialized for kdump over SR-IOV When kdump kernel tries to copy dump data over SR-IOV, LPAR panics due to NULL pointer exception: Kernel attempted to read user page 0 - exploit attempt?...

4.4CVSS6.2AI score0.0022EPSS
Exploits0
ubuntucve
ubuntucve
added 2024/04/04 12:0 a.m.29 views

CVE-2024-26745

In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/iommu: IOMMU table is not initialized for kdump over SR-IOV When kdump kernel tries to copy dump data over SR-IOV, LPAR panics due to NULL pointer exception: Kernel attempted to read user page 0 - exploit attempt?...

4.4CVSS6.2AI score0.0022EPSS
Exploits0References5
ubuntucve
ubuntucve
added 2024/03/04 6:15 p.m.16 views

CVE-2021-47100

In the Linux kernel, the following vulnerability has been resolved: ipmi: Fix UAF when uninstall ipmisi and ipmimsghandler module Hi, When testing install and uninstall of ipmisi.ko and ipmimsghandler.ko, the system crashed. The log as follows: 141.087026 BUG: unable to handle kernel paging reque...

5.5CVSS6.3AI score0.00239EPSS
Exploits0References7
ptsecurity
ptsecurity
added 2024/02/19 12:0 a.m.13 views

PT-2024-7726 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.4.0 Description: The Linux kernel has a vulnerability in the powerpc/pseries/iommu component. When the kdump kernel tries to copy dump data over SR-IOV, the LPAR panics due to a NULL pointer exception. The...

9.8CVSS6.7AI score0.08555EPSS
Exploits12References2246
osv
osv
added 2023/12/06 11:16 p.m.45 views

RLSA-2023:7549 Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: bpf: Incorrect verifier pruning leads to unsafe code paths being incorrectly marked as safe CVE-2023-2163 kernel: tun: bugs for oversize packet when napi frags enabled in tunnapiallocfrag...

10CVSS7.8AI score0.09141EPSS
Exploits2References8
ptsecurity
ptsecurity
added 2023/11/07 12:0 a.m.5 views

PT-2025-41115

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.0-rc1 Description The Linux kernel contains a flaw related to SRCU Sub Read Copy Update. A commit assumed that CPU 0 is always online, but this is not always the case, particularly when booting a kdump kernel...

5.5CVSS5.9AI score0.00134EPSS
Exploits0References19
osv
osv
added 2023/06/21 12:0 a.m.56 views

ALSA-2023:3723 Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use-after-free vulnerability in the perfgroupdetach function of the Linux Kernel Performance Events CVE-2023-2235 kernel: netfilter: use-after-free in nftables when processing batch...

7.8CVSS7.3AI score0.12966EPSS
Exploits10References14
redhat
redhat
added 2023/05/16 8:56 a.m.3 views

kernel: Drivers: vmbus: Check for channel allocation before looking up relids

In the Linux kernel, the following vulnerability has been resolved: Drivers: vmbus: Check for channel allocation before looking up relids relid2channel assumes vmbus channel array to be allocated when called. However, in cases such as kdump/kexec, not all relids will be reset by the host. When th...

5.5CVSS6.6AI score0.00145EPSS
Exploits0References5
redhat
redhat
added 2023/05/09 10:4 a.m.3 views

kernel: Drivers: vmbus: Check for channel allocation before looking up relids

In the Linux kernel, the following vulnerability has been resolved: Drivers: vmbus: Check for channel allocation before looking up relids relid2channel assumes vmbus channel array to be allocated when called. However, in cases such as kdump/kexec, not all relids will be reset by the host. When th...

5.5CVSS6.6AI score0.00145EPSS
Exploits0References5
redhat
redhat
added 2023/04/04 6:59 a.m.79 views

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.9CVSS6.9AI score0.0788EPSS
Exploits14References3
redhat
redhat
added 2023/03/27 8:38 a.m.60 views

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.8CVSS6.5AI score0.00456EPSS
Exploits0References2
oraclelinux
oraclelinux
added 2023/03/21 12:0 a.m.139 views

Unbreakable Enterprise kernel-container security update

5.4.17-2136.317.5.3 - udf: Fix file corruption when appending just after end of preallocated extent Jan Kara Orabug: 35192150 - selftests/ftrace: Fix bash specific '==' operator Masami Hiramatsu Google Orabug: 35192150 - net: Fix unwanted sign extension in netdevstatstostats64 Felix Riemann Orabu...

7.8CVSS8.4AI score0.01016EPSS
Exploits2
susecve
susecve
added 2023/02/15 5:50 a.m.5 views

SUSE CVE-2011-3588

The SSH configuration in the Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, disables the StrictHostKeyChecking option, which allows man-in-the-middle attackers to spoof kdump servers...

5.7CVSS6.7AI score0.00544EPSS
Exploits1References3
susecve
susecve
added 2023/02/15 5:50 a.m.4 views

SUSE CVE-2011-4190

The kdump implementation is missing the host key verification in the kdump and mkdumprd OpenSSH integration of kdump prior to version 2012-01-20. This is similar to CVE-2011-3588, but different in that the kdump implementation is specific to SUSE. A remote malicious kdump server could use this fl...

5.3CVSS6.4AI score0.00779EPSS
Exploits0References3
oraclelinux
oraclelinux
added 2022/11/15 12:0 a.m.176 views

Unbreakable Enterprise kernel-container security update

5.4.17-2136.313.6 - Uninitialized variable imageext in fixupvdsoexception of extable.c Alok Tiwari Orabug: 33000550 - NFSD: fix use-after-free on source server when doing inter-server copy Dai Ngo Orabug: 34475857 - EDAC/mceamd: Do not load edacmceamd module on guests Smita Koralahalli Orabug:...

7CVSS8.2AI score0.00202EPSS
Exploits0
rocky
rocky
added 2022/11/08 6:22 a.m.10 views

kdump-anaconda-addon bug fix and enhancement update

An update is available for kdump-anaconda-addon. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Roc...

2AI score
Exploits0
Rows per page
Query Builder