Lucene search
K

4641 matches found

Oracle linux
Oracle linux
added 2022/09/14 12:0 a.m.57 views

kernel security, bug fix, and enhancement update

4.18.0-372.26.1.0.16.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32...

6.7CVSS7.8AI score0.06451EPSS
Exploits0
Cvelist
Cvelist
added 2022/09/13 7:13 p.m.22 views

CVE-2021-0942

The path in this case is a little bit convoluted. The end result is that via an ioctl an untrusted app can control the ui32PageIndex offset in the expression:sPA.uiAddr = pagetophyspsOSPageArrayData-pagearrayui32PageIndex;With the current PoC this crashes as an OOB read. However, given that the O...

8.8AI score0.00314EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2022/09/13 9:49 a.m.125 views

Moderate: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.8CVSS6.6AI score0.06451EPSS
Exploits0References4
Rockylinux
Rockylinux
added 2022/09/13 7:37 a.m.68 views

kernel security, bug fix, and enhancement update

An update is available for kernel. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...

5.5CVSS7.4AI score0.06451EPSS
Exploits0
AlmaLinux
AlmaLinux
added 2022/09/13 12:0 a.m.53 views

Moderate: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: Incomplete cleanup of multi-core shared buffers aka SBDR CVE-2022-21123 Incomplete cleanup of microarchitectural fill buffers aka SBDS CVE-2022-21125 Incomplete cleanup in specific special regist...

5.5CVSS7.5AI score0.06451EPSS
Exploits0References8
GithubExploit
GithubExploit
added 2022/09/05 3:31 p.m.34 views

Exploit for Incorrect Conversion between Numeric Types in Linux Linux_Kernel

CVE-2022-2639 using pipe primitive CVE-2022-2639https://...

7.8CVSS6.7AI score0.00775EPSS
Exploits5
RedhatCVE
RedhatCVE
added 2022/08/30 7:6 a.m.43 views

CVE-2022-20148

In TBD of TBD, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

7.8CVSS2.9AI score0.00115EPSS
Exploits0References4
OSV
OSV
added 2022/08/29 3:15 p.m.8 views

CVE-2022-1016

A flaw was found in the Linux kernel in net/netfilter/nftablescore.c:nftdochain, which can cause a use-after-free. This issue needs to handle 'return' with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker...

5.5CVSS6.4AI score0.01467EPSS
Exploits11References4
UbuntuCve
UbuntuCve
added 2022/08/24 4:15 p.m.68 views

CVE-2021-4028

A flaw in the Linux kernel's implementation of RDMA communications manager listener code allowed an attacker with local access to setup a socket to listen on a high port allowing for a list element to be used after free. Given the ability to execute code, a local attacker could leverage this...

7.8CVSS6.9AI score0.00298EPSS
Exploits0References1
OSV
OSV
added 2022/08/19 11:4 a.m.2 views

OESA-2022-1844 kernel security update

Security Fixes: The Linux kernel before 5.18.13 lacks a certain clear operation for the block starting symbol .bss. This allows Xen PV guest OS users to cause a denial of service or gain privileges.CVE-2022-36123 In v4l2m2mquerybuf of v4l2-mem2mem.c, there is a possible out of bounds write due to...

7.8CVSS8AI score0.00846EPSS
Exploits1References3
OSV
OSV
added 2022/08/19 11:4 a.m.2 views

OESA-2022-1846 kernel security update

Security Fixes: The Linux kernel before 5.18.13 lacks a certain clear operation for the block starting symbol .bss. This allows Xen PV guest OS users to cause a denial of service or gain privileges.CVE-2022-36123 In v4l2m2mquerybuf of v4l2-mem2mem.c, there is a possible out of bounds write due to...

7.8CVSS8AI score0.00846EPSS
Exploits1References3
OSV
OSV
added 2022/08/15 4:19 p.m.4 views

SUSE-SU-2022:2809-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-36557: Fixed a race condition between the VTDISALLOCATE ioctl and closing/opening of ttys could lead to a use-after-free bnc1201429. - CVE-2020-36558:...

8CVSS8.5AI score0.05561EPSS
Exploits7References64
OSV
OSV
added 2022/08/15 3:5 p.m.6 views

SUSE-SU-2022:2808-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-26341: Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage bsc1201050. -...

6.8CVSS7.2AI score0.00537EPSS
Exploits1References15
OSV
OSV
added 2022/08/11 2:33 a.m.10 views

SUSE-SU-2022:2779-1 Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-15020024112 fixes several issues. The following security issues were fixed: - CVE-2022-1679: Fixed a use-after-free in the Atheros wireless driver in the way a user forces the ath9khtcwaitfortarget function to fail with some input messages bsc1199487. -...

7.8CVSS7.5AI score0.00804EPSS
Exploits2References5
OSV
OSV
added 2022/08/10 12:13 p.m.5 views

SUSE-SU-2022:2761-1 Security update for the Linux Kernel (Live Patch 22 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-1503005987 fixes several issues. The following security issues were fixed: - CVE-2022-1116: Fixed a integer overflow vulnerability in iouring which allowed a local attacker to cause memory corruption and escalate privileges to root bnc1199647. -...

7.8CVSS8.5AI score0.00501EPSS
Exploits1References5
OSV
OSV
added 2022/08/10 9:33 a.m.11 views

SUSE-SU-2022:2750-1 Security update for the Linux Kernel (Live Patch 29 for SLE 15)

This update for the Linux Kernel 4.12.14-15000015089 fixes several issues. The following security issues were fixed: - CVE-2022-1419: Fixed a concurrency use-after-free in vgemgemdumbcreate bsc1198742. - CVE-2022-1679: Fixed a use-after-free in the Atheros wireless driver in the way a user forces...

7.8CVSS7.6AI score0.00804EPSS
Exploits2References7
Oracle linux
Oracle linux
added 2022/08/10 12:0 a.m.64 views

kernel security, bug fix, and enhancement update

5.14.0-70.22.1.0.10.OL9 lockdown: also lock down previous kgdb use Daniel Thompson Orabug: 34290418 CVE-2022-21499 5.14.0-70.22.10.OL9 Update Oracle Linux certificates Kevin Lyons Disable signing for aarch64 Ilya Okomin Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...

8.6CVSS0.00617EPSS
Exploits1
OSV
OSV
added 2022/08/09 12:0 a.m.22 views

ALSA-2022:6003 Moderate: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: information leak in scsiioctl CVE-2022-0494 use-after-free in tcnewtfilter in net/sched/clsapi.c CVE-2022-1055 For more details about the security issues, including the impact, a CVSS score,...

8.6CVSS6.8AI score0.00504EPSS
Exploits1References6
OSV
OSV
added 2022/08/08 6:56 p.m.8 views

SUSE-SU-2022:2696-1 Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-1503005971 fixes several issues. The following security issues were fixed: - CVE-2022-34918: Fixed a buffer overflow with nftseteleminit that could be used by a local attacker to escalate privileges bnc1201171. - CVE-2022-1679: Fixed a use-after-free in the...

7.8CVSS7.9AI score0.05496EPSS
Exploits12References7
OSV
OSV
added 2022/07/31 2:2 p.m.11 views

GSD-2022-1004350 tcp: Fix a data-race around sysctl_tcp_probe_threshold.

tcp: Fix a data-race around sysctltcpprobethreshold. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.58 by commit...

7.2AI score
Exploits0
Rows per page
Query Builder