Lucene search
K

93 matches found

OPENSUSE Linux
OPENSUSE Linux
added 2020/06/13 12:0 a.m.102 views

Security update for the Linux Kernel (important)

openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2020:0801-1 Rating: important References: 1051510 1058115 1065729 1071995 1082555 1083647 1089895 1090036 1103990 1103991 1103992 1104745 1109837 1111666 1112178 1112374 1113956 1114279 1124278 1127354...

7.8CVSS7.2AI score0.04505EPSS
Exploits4References157
RedhatCVE
RedhatCVE
added 2019/10/10 4:12 a.m.40 views

CVE-2017-7558

A kernel data leak due to an out-of-bound read was found in the Linux kernel in inetdiagmsgsctp,laddrfill and sctpgetsctpinfo functions present since version 4.7-rc1 through version 4.13. A data leak happens when these functions fill in sockaddr data structures used to export socket's diagnostic...

7.5CVSS2.2AI score0.03763EPSS
Exploits4References1
Prion
Prion
added 2018/07/26 3:29 p.m.34 views

Design/Logic Flaw

A kernel data leak due to an out-of-bound read was found in the Linux kernel in inetdiagmsgsctp,laddrfill and sctpgetsctpinfo functions present since version 4.7-rc1 through version 4.13. A data leak happens when these functions fill in sockaddr data structures used to export socket's diagnostic...

5CVSS6.9AI score0.03763EPSS
Exploits4References9Affected Software2
OSV
OSV
added 2018/07/26 3:29 p.m.4 views

UBUNTU-CVE-2017-7558

A kernel data leak due to an out-of-bound read was found in the Linux kernel in inetdiagmsgsctp,laddrfill and sctpgetsctpinfo functions present since version 4.7-rc1 through version 4.13. A data leak happens when these functions fill in sockaddr data structures used to export socket's diagnostic...

7.5CVSS6.6AI score0.03763EPSS
Exploits4References5
Cvelist
Cvelist
added 2018/07/26 3:0 p.m.32 views

CVE-2017-7558

A kernel data leak due to an out-of-bound read was found in the Linux kernel in inetdiagmsgsctp,laddrfill and sctpgetsctpinfo functions present since version 4.7-rc1 through version 4.13. A data leak happens when these functions fill in sockaddr data structures used to export socket's diagnostic...

5.1CVSS7AI score0.03763EPSS
Exploits4References9
CVE
CVE
added 2018/02/26 8:0 p.m.71 views

CVE-2018-7250

CVE-2018-7250 affects secdrv.sys in Microsoft Windows Vista/7/8/8.1 (before KB3086255) and Macrovision SafeDisc. The issue is an uninitialized kernel pool allocation in IOCTL 0xCA002813 that allows a local unprivileged attacker to leak 16 bits of uninitialized kernel PagedPool data. Impact is inf...

5.5CVSS5.5AI score0.0298EPSS
Exploits0References1Affected Software4
Tenable Nessus
Tenable Nessus
added 2017/12/07 12:0 a.m.26 views

FreeBSD : FreeBSD -- Kernel data leak via ptrace(PT_LWPINFO) (34a3f9b5-dab3-11e7-b5af-a4badb2f4699)

Not all information in the struct ptracelwpinfo is relevant for the state of any thread, and the kernel does not fill the irrelevant bytes or short strings. Since the structure filled by the kernel is allocated on the kernel stack and copied to userspace, a leak of information of the kernel stack...

3.3CVSS5.3AI score0.00362EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2017/11/15 12:0 a.m.24 views

FreeBSD -- Kernel data leak via ptrace(PT_LWPINFO)

Problem Description: Not all information in the struct ptracelwpinfo is relevant for the state of any thread, and the kernel does not fill the irrelevant bytes or short strings. Since the structure filled by the kernel is allocated on the kernel stack and copied to userspace, a leak of informatio...

3.3CVSS4.9AI score0.00362EPSS
Exploits0
FreeBSD Advisory
FreeBSD Advisory
added 2017/11/15 12:0 a.m.14 views

FreeBSD-SA-17:08.ptrace

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-17:08.ptrace Security Advisory The FreeBSD Project Topic: Kernel data leak via ptracePTLWPINFO Category: core Module: ptrace Announced: 2017-11-15 Credits: Ilja...

3.3CVSS6.2AI score0.00362EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2017/10/19 2:47 p.m.323 views

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.8CVSS6.8AI score0.20797EPSS
Exploits34References10
OSV
OSV
added 2017/09/13 8:29 a.m.3 views

CVE-2017-7441

In Sophos SurfRight HitmanPro before 3.7.20 Build 286 included in the HitmanPro.Alert solution and Sophos Clean, a crafted IOCTL with code 0x22E1C0 might lead to kernel data leaks. Because the leak occurs at the driver level, an attacker can use this vulnerability to leak some critical informatio...

7.8CVSS5.9AI score0.00462EPSS
Exploits1References2
CVE
CVE
added 2017/09/13 8:0 a.m.48 views

CVE-2017-7441

Affected software: Sophos SurfRight HitmanPro before 3.7.20 Build 286 (included in HitmanPro.Alert and Sophos Clean). Vulnerability mechanism: crafted IOCTL with code 0x22E1C0 may cause kernel data leaks at the driver level, potentially exposing information such as nt!ExpPoolQuotaCookie. Impact: ...

7.8CVSS7.2AI score0.00462EPSS
Exploits1References2Affected Software1
RedHat Linux
RedHat Linux
added 2005/04/22 8:17 p.m.4 views

security flaw

Multiple race conditions in the terminal layer in Linux 2.4.x, and 2.6.x before 2.6.9, allow 1 local users to obtain portions of kernel data via a TIOCSETD ioctl call to a terminal interface that is being accessed by another thread, or 2 remote attackers to cause a denial of service panic by...

1.2CVSS5.9AI score0.00692EPSS
Exploits0References4
Rows per page
Query Builder