Lucene search
K

6634 matches found

FreeBSD
FreeBSD
added 2023/12/12 12:0 a.m.26 views

FreeBSD -- NFS client data corruption and kernel memory disclosure

Problem Description: In FreeBSD 13.2 and 14.0, the NFS client was optimized to improve the performance of IOAPPEND writes, that is, writes which add data to the end of a file and so extend its size. This uncovered an old bug in some routines which copy userspace data into the kernel. The bug also...

6.5CVSS6.8AI score0.00622EPSS
Exploits0
CNNVD
CNNVD
added 2023/12/11 12:0 a.m.3 views

Apple iOS and iPadOS Security Vulnerabilities

Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS version 17.2 and iPadOS version 17.2, which originates from an application th...

5.5CVSS4.4AI score0.00354EPSS
Exploits0References7
Apple
Apple
added 2023/12/11 12:0 a.m.86 views

About the security content of iOS 17.2 and iPadOS 17.2

About the security content of iOS 17.2 and iPadOS 17.2 This document describes the security content of iOS 17.2 and iPadOS 17.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches ...

8.8CVSS8.6AI score0.07879EPSS
Exploits9References1Affected Software2
Apple
Apple
added 2023/12/11 12:0 a.m.64 views

About the security content of iOS 16.7.3 and iPadOS 16.7.3

About the security content of iOS 16.7.3 and iPadOS 16.7.3 This document describes the security content of iOS 16.7.3 and iPadOS 16.7.3. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...

8.8CVSS9.1AI score0.17963EPSS
Exploits1References1Affected Software2
Apple
Apple
added 2023/12/11 12:0 a.m.93 views

About the security content of macOS Ventura 13.6.3

About the security content of macOS Ventura 13.6.3 This document describes the security content of macOS Ventura 13.6.3. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or...

8.6CVSS8.2AI score0.01895EPSS
Exploits10References1Affected Software1
RedHat Linux
RedHat Linux
added 2023/11/28 5:57 p.m.5 views

kernel: bpf: Incorrect verifier pruning leads to unsafe code paths being incorrectly marked as safe

An incorrect verifier pruning flaw was found in BPF in the Linux Kernel that may lead to unsafe code paths incorrectly marked as safe, resulting in arbitrary read/writes in kernel memory, lateral privilege escalation, and container escape...

10CVSS6.8AI score0.03546EPSS
Exploits0References5
NVD
NVD
added 2023/11/28 4:15 p.m.36 views

CVE-2023-49062

Katran could disclose non-initialized kernel memory as part of an IP header. The issue was present for IPv4 encapsulation and ICMP v4 Too Big packet generation. After a bpfxdpadjusthead call, Katran code didn’t initialize the Identification field for the IPv4 header, resulting in writing content ...

7.5CVSS0.00622EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/11/28 4:15 p.m.2 views

CVE-2023-49062

Katran could disclose non-initialized kernel memory as part of an IP header. The issue was present for IPv4 encapsulation and ICMP v4 Too Big packet generation. After a bpfxdpadjusthead call, Katran code didn’t initialize the Identification field for the IPv4 header, resulting in writing content ...

7.5CVSS5.8AI score0.00622EPSS
Exploits0References3
Prion
Prion
added 2023/11/28 4:15 p.m.19 views

Design/Logic Flaw

Katran could disclose non-initialized kernel memory as part of an IP header. The issue was present for IPv4 encapsulation and ICMP v4 Too Big packet generation. After a bpfxdpadjusthead call, Katran code didn’t initialize the Identification field for the IPv4 header, resulting in writing content ...

5CVSS7AI score0.00622EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/11/28 3:45 p.m.31 views

CVE-2023-49062

Katran could disclose non-initialized kernel memory as part of an IP header. The issue was present for IPv4 encapsulation and ICMP v4 Too Big packet generation. After a bpfxdpadjusthead call, Katran code didn’t initialize the Identification field for the IPv4 header, resulting in writing content ...

7.5AI score0.00622EPSS
Exploits0References2
CVE
CVE
added 2023/11/28 3:45 p.m.43 views

CVE-2023-49062

Summary: CVE-2023-49062 affects Meta Katran. After a bpf_xdp_adjust_head call, Katran could write uninitialized kernel memory into the IPv4 Identification field during IPv4 encapsulation (and ICMPv4 Too Big packet generation), exposing kernel memory content. This occurs in all Katran versions pri...

7.5CVSS7.3AI score0.00622EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/11/28 12:0 a.m.3 views

Meta Katran Security Vulnerability

Meta Katran is a C++ library and BPF program from Meta Corporation. It is used to build high-performance Layer 4 load-balanced forwarding planes. A security vulnerability exists in Meta Katran that stems from the ability to expose uninitialized kernel memory as part of an IP header...

7.5CVSS6.7AI score0.00622EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/11/23 2:10 a.m.2 views

SUSE CVE-2023-6238

A buffer overflow vulnerability was found in the NVM Express NVMe driver in the Linux kernel. Only privileged user could specify a small meta buffer and let the device perform larger Direct Memory Access DMA into the same buffer, overwriting unrelated kernel memory, causing random kernel crashes...

6.7CVSS7.4AI score0.0029EPSS
Exploits0References11
ATTACKERKB
ATTACKERKB
added 2023/11/21 9:15 p.m.8 views

CVE-2023-6238

A buffer overflow vulnerability was found in the NVM Express NVMe driver in the Linux kernel. Only privileged user could specify a small meta buffer and let the device perform larger Direct Memory Access DMA into the same buffer, overwriting unrelated kernel memory, causing random kernel crashes...

6.7CVSS6AI score0.0029EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2023/11/21 9:15 p.m.29 views

CVE-2023-6238

A buffer overflow vulnerability was found in the NVM Express NVMe driver in the Linux kernel. Only privileged user could specify a small meta buffer and let the device perform larger Direct Memory Access DMA into the same buffer, overwriting unrelated kernel memory, causing random kernel crashes...

6.7CVSS6.8AI score0.0029EPSS
Exploits0References4
Prion
Prion
added 2023/11/21 9:15 p.m.20 views

Buffer overflow

A buffer overflow vulnerability was found in the NVM Express NVMe driver in the Linux kernel. Only privileged user could specify a small meta buffer and let the device perform larger Direct Memory Access DMA into the same buffer, overwriting unrelated kernel memory, causing random kernel crashes...

4CVSS6.6AI score0.0029EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2023/11/21 4:22 p.m.25 views

CVE-2023-6238

A buffer overflow vulnerability was found in the NVM Express NVMe driver in the Linux kernel. Only privileged user could specify a small meta buffer and let the device perform larger Direct Memory Access DMA into the same buffer, overwriting unrelated kernel memory, causing random kernel crashes...

6.7CVSS7.5AI score0.0029EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/11/20 12:0 a.m.3 views

WithSecure products Security breaches

WithSecure products is a line of security software from the Finnish company WithSecure. A security vulnerability exists in WithSecure products that originates from a local elevation of privilege that allows an attacker with administrator privileges to corrupt kernel memory. Affected products and...

7.8CVSS6.6AI score0.00216EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/11/14 3:46 p.m.3 views

kernel: drm/amdkfd: Fix memory leak in kfd_mem_dmamap_userptr()

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix memory leak in kfdmemdmamapuserptr If the number of pages from the userptr BO differs from the SG BO then the allocated memory for the SG table doesn't get freed before returning -EINVAL, which may lead to a memor...

6.8AI score0.00166EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/11/14 3:46 p.m.3 views

kernel: selinux: enable use of both GFP_KERNEL and GFP_ATOMIC in convert_context()

In the Linux kernel, the following vulnerability has been resolved: selinux: enable use of both GFPKERNEL and GFPATOMIC in convertcontext The following warning was triggered on a hardware environment: SELinux: Converting 162 SID table entries... BUG: sleeping function called from invalid context ...

5.7AI score0.00168EPSS
Exploits0References5
Rows per page
Query Builder