Ubuntu Pro FIPS-updates 20.04 LTS : Linux kernel (AWS FIPS) vulnerability (USN-8121-1)

The remote Ubuntu Pro FIPS-updates 20.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-8121-1 advisory. Qualys discovered that several vulnerabilities existed in the AppArmor Linux kernel Security Module LSM. An unprivileged local attacker could use...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from Bluetooth hciconn returning NULL instead of ERRPTR when there is no connection, potentially resulting in a...

EUVD-2015-8257

Malware in sbrugna...

EUVD-2015-5842

Malware in sbrugna...

EUVD-2023-23366

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2023-52880

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: tty: ngsm: require CAPNETADMIN to attach NGSM0710 ldisc Any unprivileged user can attach...

Linux Distros Unpatched Vulnerability : CVE-2011-4127

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Linux kernel before 3.2.2 does not properly restrict SGIO ioctl calls, which allows local users to bypass intended restrictions on disk read and write...

kernel: ktls overwrites readonly memory pages when using function splice with a ktls socket as destination

An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with a ktls socket as the destination. This flaw allows a local user to crash or potentially escalate their privileges on the system...

kernel: ktls overwrites readonly memory pages when using function splice with a ktls socket as destination

An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with a ktls socket as the destination. This flaw allows a local user to crash or potentially escalate their privileges on the system...

Medium: kernel

Issue Overview: 2023-07-06: The severity level was changed from important to medium. A flaw was found in the handling of stack expansion in the Linux kernel 6.1 through 6.4, aka "Stack Rot". The maple tree, responsible for managing virtual memory areas, can undergo node replacement without proper...

CVE-2022-42529

Product: AndroidVersions: Android kernelAndroid ID: A-235292841References: N/A...

kernel: Indirect branch speculation can be enabled after it was force-disabled by the PR_SPEC_FORCE_DISABLE prctl command.

A flaw was found in the prctl function, where it can be used to enable indirect branch speculation after it has been disabled. This call incorrectly reports it as being 'force disabled' when it is not and opens the system to Spectre v2 attacks. The highest threat from this vulnerability is to...

Fedora Core 1 : kernel-2.4.22-1.2197.nptl (2004-206)

During an audit of the Linux kernel, SUSE discovered a flaw that allowed a user to make unauthorized changes to the group ID of files in certain circumstances. In the 2.4 kernel, as shipped with Fedora Core 1, the only way this could happen is through the kernel nfs server. A user on a system tha...