CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4828 matches found

OSV•added 2024/07/12 1:15 p.m.•1 views

UBUNTU-CVE-2024-40963

In the Linux kernel, the following vulnerability has been resolved: mips: bmips: BCM6358: make sure CBR is correctly set It was discovered that some device have CBR address set to 0 causing kernel panic when archsyncdmaforcpuall is called. This was notice in situation where the system is booted...

5.5CVSS6.2AI score0.00289EPSS

Exploits0References29

OSV•added 2024/07/12 1:15 p.m.•0 views

UBUNTU-CVE-2024-40907

In the Linux kernel, the following vulnerability has been resolved: ionic: fix kernel panic in XDPTX action In the XDPTX path, ionic driver sends a packet to the TX path with rx page and corresponding dma address. After tx is done, ionictxclean frees that page. But RX ring buffer isn't reset to...

5.5CVSS6.8AI score0.00238EPSS

Exploits0References3

OSV•added 2024/07/12 1:15 p.m.•1 views

UBUNTU-CVE-2024-40947

In the Linux kernel, the following vulnerability has been resolved: ima: Avoid blocking in RCU read-side critical section A panic happens in imamatchpolicy: BUG: unable to handle kernel NULL pointer dereference at 0000000000000010 PGD 42f873067 P4D 0 Oops: 0000 1 SMP NOPTI CPU: 5 PID: 1286325 Com...

5.5CVSS6.5AI score0.0025EPSS

Exploits0References14

Vulnrichment•added 2024/07/12 12:32 p.m.•24 views

CVE-2024-40970 Avoid hw_desc array overrun in dw-axi-dmac

In the Linux kernel, the following vulnerability has been resolved: Avoid hwdesc array overrun in dw-axi-dmac I have a use case where nrbuffers = 3 and in which each descriptor is composed by 3 segments, resulting in the DMA channel descsallocated to be 9. Since axidescput handles the hwdesc...

6.7AI score0.00289EPSS

Exploits0References5

Cvelist•added 2024/07/12 12:32 p.m.•23 views

CVE-2024-40970 Avoid hw_desc array overrun in dw-axi-dmac

0.00289EPSS

Exploits0References5

CVE•added 2024/07/12 12:32 p.m.•108 views

CVE-2024-40970

The CVE-2024-40970 entry concerns a Linux kernel vulnerability in the dw-axi-dmac component that can cause a kernel panic due to an overrun of the hw_desc array when a descriptor chain expands (example: nr_buffers=3 with 3 segments per descriptor, totaling 9). The proposed fix, as described in mu...

5.5CVSS7.1AI score0.00289EPSS

Exploits0References6Affected Software1

Debian CVE•added 2024/07/12 12:32 p.m.•15 views

CVE-2024-40970

5.5CVSS5.7AI score0.00289EPSS

Exploits0

OSV•added 2024/07/12 12:32 p.m.•13 views

CVE-2024-40970 Avoid hw_desc array overrun in dw-axi-dmac

5.5CVSS6.1AI score0.00289EPSS

Exploits0References9

Cvelist•added 2024/07/12 12:32 p.m.•30 views

CVE-2024-40968 MIPS: Octeon: Add PCIe link status check

In the Linux kernel, the following vulnerability has been resolved: MIPS: Octeon: Add PCIe link status check The standard PCIe configuration read-write interface is used to access the configuration space of the peripheral PCIe devices of the mips processor after the PCIe link surprise down, it ca...

0.00296EPSS

Exploits0References8

Debian CVE•added 2024/07/12 12:32 p.m.•18 views

CVE-2024-40968

5.5CVSS6.2AI score0.00296EPSS

Exploits0

Vulnrichment•added 2024/07/12 12:32 p.m.•14 views

CVE-2024-40963 mips: bmips: BCM6358: make sure CBR is correctly set

6.7AI score0.00289EPSS

Exploits0References7

CVE•added 2024/07/12 12:32 p.m.•104 views

CVE-2024-40963

CVE-2024-40963 (Linux kernel, MIPS BMIPS BCM6358) : Affects devices where BMIPS CBR address can be 0, triggering kernel panic when arch_sync_dma_for_cpu_all is called. The root cause described is BMIPS_GET_CBR() returning 0 instead of a valid address and a non-failing read of read_c0_brcm_cmt_loc...

5.5CVSS6.5AI score0.00289EPSS

Exploits0References8Affected Software1

Cvelist•added 2024/07/12 12:32 p.m.•23 views

CVE-2024-40963 mips: bmips: BCM6358: make sure CBR is correctly set

0.00289EPSS

Exploits0References7

OSV•added 2024/07/12 12:32 p.m.•13 views

CVE-2024-40963 mips: bmips: BCM6358: make sure CBR is correctly set

5.5CVSS5.9AI score0.00289EPSS

Exploits0References11

Debian CVE•added 2024/07/12 12:32 p.m.•26 views

CVE-2024-40958

In the Linux kernel, the following vulnerability has been resolved: netns: Make getnetns handle zero refcount net Syzkaller hit a warning: refcountt: addition on 0; use-after-free. WARNING: CPU: 3 PID: 7890 at lib/refcount.c:25 refcountwarnsaturate+0xdf/0x1d0 Modules linked in: CPU: 3 PID: 7890...

7.8CVSS5.6AI score0.00267EPSS

Exploits0

Cvelist•added 2024/07/12 12:31 p.m.•17 views

CVE-2024-40952 ocfs2: fix NULL pointer dereference in ocfs2_journal_dirty()

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix NULL pointer dereference in ocfs2journaldirty bdev-bdsuper has been removed and commit 8887b94d9322 change the usage from bdev-bdsuper to bassocmap-host-isb. This introduces the following NULL pointer dereference in...

0.00238EPSS

Exploits0References3

Cvelist•added 2024/07/12 12:20 p.m.•23 views

CVE-2024-40907 ionic: fix kernel panic in XDP_TX action

0.00238EPSS

Exploits0References2

CVE•added 2024/07/12 12:20 p.m.•140 views

CVE-2024-40907

CVE-2024-40907 affects the Linux kernel in the Ionic driver’s XDP_TX path. The driver sends a packet with a valid rx page and its DMA address; after tx completes, ionic_tx_clean() frees the page but the RX ring buffer isn’t reset to NULL, leading to a use-after-free access on a freed page and a k...

5.5CVSS5.5AI score0.00238EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2024/07/12 12:20 p.m.•16 views

CVE-2024-40907 ionic: fix kernel panic in XDP_TX action

6.9AI score0.00238EPSS

Exploits0References2

Debian CVE•added 2024/07/12 12:20 p.m.•20 views

CVE-2024-40907

5.5CVSS6AI score0.00238EPSS

Exploits0

Rows per page