Lucene search
K

95 matches found

Debian CVE
Debian CVE
added 2025/02/27 2:18 a.m.5 views

CVE-2024-58020

In the Linux kernel, the following vulnerability has been resolved: HID: multitouch: Add NULL check in mtinputconfigured devmkasprintf can return a NULL pointer on failure,but this returned value in mtinputconfigured is not checked. Add NULL check in mtinputconfigured, to handle kernel NULL point...

5.5CVSS5.7AI score0.00216EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/02/26 2:13 a.m.8 views

CVE-2022-49494

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: cadence: fix possible null-ptr-deref in cadencenanddtprobe It will cause null-ptr-deref when using 'res', if platformgetresource returns NULL, so move using 'res' after devmioremapresource that will check it to avoi...

5.5CVSS5.4AI score0.00252EPSS
Exploits0
CVE
CVE
added 2025/02/26 1:55 a.m.80 views

CVE-2022-49202

CVE-2022-49202 concerns a missing NULL check in Linux kernel Bluetooth hci_uart path (h5_enqueue), where a Syzbot general protection fault occurred in __pm_runtime_resume() due to blindly passing a possibly NULL serdev pointer (hu->serdev). The issue could lead to GPF if hu->serdev is NULL....

5.5CVSS6.5AI score0.00245EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2025/02/26 1:55 a.m.84 views

CVE-2022-49170

CVE-2022-49170 concerns the F2FS implementation in the Linux kernel. The root cause was a missing sanity check on curseg->alloc_type, which could widen an array-bounds access of sbi->block_count[] (UBSAN: array-index-out-of-bounds) when mounting/operating a corrupted image. The issue manife...

7.8CVSS5.2AI score0.00259EPSS
Exploits0References5Affected Software1
RedHat Linux
RedHat Linux
added 2025/02/18 5:47 p.m.14 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.17.17 bug fix and security update

Red Hat OpenShift Container Platform release 4.17.17 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.17. Red Hat Product Security has rated this update as having a...

7.8CVSS7.3AI score0.03301EPSS
Exploits1References14
Cvelist
Cvelist
added 2025/01/31 11:25 a.m.17 views

CVE-2025-21671 zram: fix potential UAF of zram table

In the Linux kernel, the following vulnerability has been resolved: zram: fix potential UAF of zram table If zrammetaalloc failed early, it frees allocated zram-table without setting it NULL. Which will potentially cause zrammetafree to access the table if user reset an failed and uninitialized...

0.00212EPSS
Exploits0References4
CVE
CVE
added 2025/01/21 12:18 p.m.168 views

CVE-2025-21658

Technical details beyond the summary are not provided in the supplied documents; no affected products, versions, or fixes are enumerated here. Monitor for updates.

5.5CVSS6.1AI score0.002EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/01/19 10:17 a.m.18 views

CVE-2025-21632 x86/fpu: Ensure shadow stack is active before "getting" registers

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Ensure shadow stack is active before "getting" registers The x86 shadow stack support has its own set of registers. Those registers are XSAVE-managed, but they are "supervisor state components" which means that userspace...

0.00202EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/01/13 8:25 a.m.16 views

CVE-2024-56368

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Fix overflow in rbmapvma An overflow occurred when performing the following calculation: nrpages = nrsubbufs + 1 subbuforder - pgoff; Add a check before the calculation to avoid this problem. syzbot reported this as ...

5.5CVSS7AI score0.0017EPSS
Exploits0References4
OSV
OSV
added 2025/01/11 3:15 p.m.4 views

UBUNTU-CVE-2024-57874

In the Linux kernel, the following vulnerability has been resolved: arm64: ptrace: fix partial SETREGSET for NTARMTAGGEDADDRCTRL Currently taggedaddrctrlset doesn't initialize the temporary 'ctrl' variable, and a SETREGSET call with a length of zero will leave this uninitialized. Consequently...

6.1CVSS6.3AI score0.00201EPSS
Exploits0References34
OSV
OSV
added 2025/01/11 1:15 p.m.2 views

DEBIAN-CVE-2024-47794

In the Linux kernel, the following vulnerability has been resolved: bpf: Prevent tailcall infinite loop caused by freplace There is a potential infinite loop issue that can occur when using a combination of tail calls and freplace. In an upcoming selftest, the attach target for entryfreplace of...

5.5CVSS5.7AI score0.00189EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/08 5:52 p.m.16 views

CVE-2024-56786

...

Exploits0
SUSE Linux
SUSE Linux
added 2025/01/08 9:47 a.m.4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-48853: swiotlb: fix info leak with DMAFROMDEVICE bsc1228015. CVE-2024-26801: Bluetooth: Avoid potential use-after-free in hcierrorreset bsc1222413...

7.8CVSS8.3AI score0.03301EPSS
Exploits3References316
OSV
OSV
added 2024/12/27 2:51 p.m.12 views

CVE-2024-56619 nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry()

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential out-of-bounds memory access in nilfsfindentry Syzbot reported that when searching for records in a directory where the inode's isize is corrupted and has a large value, memory access outside the folio/page...

7.8CVSS5.8AI score0.00208EPSS
Exploits0References12
CVE
CVE
added 2024/12/27 1:49 p.m.155 views

CVE-2024-53171

CVE-2024-53171 affects the Linux kernel ubifs authentication path. The published details describe a use-after-free in ubifs_tnc_end_commit arising when a node’s znode->parent changes due to a tree split, while the node’s znode->cparent may still point to freed memory after deletions. The is...

7.8CVSS6.5AI score0.00285EPSS
Exploits0References10Affected Software1
OSV
OSV
added 2024/11/19 2:16 a.m.5 views

AZL-53766 CVE-2024-50287 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-tpg: prevent the risk of a division by zero As reported by Coverity, the logic at tpgprecalculateline blindly rescales the buffer even when scaledwitdh is equal to zero. If this ever happens, this will cause a divisio...

5.5CVSS7AI score0.00254EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 1:15 p.m.1 views

DEBIAN-CVE-2024-47740

In the Linux kernel, the following vulnerability has been resolved: f2fs: Require FMODEWRITE for atomic write ioctls The F2FS ioctls for starting and committing atomic writes check for inodeownerorcapable, but this does not give LSMs like SELinux or Landlock an opportunity to deny the write acces...

5.5CVSS5.8AI score0.00233EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/10/02 12:45 a.m.339 views

Important: Red Hat Security Advisory: linux-firmware security update

An update for linux-firmware is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.5CVSS6.9AI score0.00622EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/09/28 2:50 a.m.4 views

SUSE CVE-2024-46863

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: soc-acpi-intel-lnl-match: add missing empty item There is no linksnum in struct sndsocacpimach , and we test !link-numadr as a condition to end the loop in hdasdwmachineselect. So an empty item in struct...

5.5CVSS7.7AI score0.00179EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/09/24 1:10 a.m.27 views

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 7.7 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

6.6AI score
Exploits0References2
Rows per page
Query Builder