11 matches found
SUSE CVE-2026-31890
Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF. Prior to 0.50.1, in a situation where the ring-buffer of a gadget is - incidentally or maliciously - already full, the gadget will silently drop events. Th...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000319)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000319 advisory. Use-after-free vulnerability in fs/blockdev.c in the Linux kernel before 5.8 allows local users to gain privileges or cause a denial of service by leveraging imprope...
Exploit for Improper Initialization in Linux Linux_Kernel
DirtyPipevirus Dirty Pipe is a kind of Linux exploit. Its C...
Exploit for Improper Initialization in Linux Linux_Kernel
Dirty-Pipe-CVE-2022-0847-POCs - Author: Max Kellermann max.kel...
CVE-2022-42722
In the Linux kernel 5.8 through 5.19.x before 5.19.16, local attackers able to inject WLAN frames into the mac80211 stack could cause a NULL pointer dereference denial-of-service attack against the beacon protection of P2P devices...
The Bug Report - March 2022 Edition
The Bug Report - March 2022 By Charles McFarland · April 6, 2022 Your Cybersecurity Comic Relief Comic from https://geek-and-poke.com/ and remains unedited. https://creativecommons.org/licenses/by/3.0/ Use of this comic does not indicate endorsement by the creator. Why am I here? Welcome back the...
UVI-2021-1000163 net: qrtr: Avoid potential use after free in MHI send
net: qrtr: Avoid potential use after free in MHI send This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.35 by commit...
CVE-2020-16120
Overlayfs did not properly perform permission checking when copying up files in an overlayfs and could be exploited from within a user namespace, if, for example, unprivileged user namespaces were allowed. It was possible to have a file not readable by an unprivileged user to be copied to a...
Internet Bug Bounty: [CVE-2020-27194] Linux kernel: eBPF verifier bug in `or` binary operation tracking function leads to LPE
CVE-2020-27194 is a eBPF verifier bug that allows an unprivileged attacker to create BPF socket filter programs that can read and write Out of Bounds, trough which an arbitrary kernel read write can be achieved. I'm taking the root cause explanation from the patch email: Simon reported an issue...
openSUSE Security Update : virtualbox (openSUSE-2020-1486)
This update for virtualbox fixes the following issues : Update to Oracle version 6.1.14a. This minor update enables the building of libvirt again. Version update to 6.1.14 released September 04 2020 by Oracle File 'fixvirtiobuild.patch' is added to fix a build problem. This is a maintenance...
Security update for virtualbox (moderate)
openSUSE Security Update: Security update for virtualbox Announcement ID: openSUSE-SU-2020:1486-1 Rating: moderate References: 1114605 1174075 1174159 1175201 Cross-References: CVE-2020-14628 CVE-2020-14629 CVE-2020-14646 CVE-2020-14647 CVE-2020-14648 CVE-2020-14649 CVE-2020-14650 CVE-2020-14673...