Lucene search
K

1244 matches found

OSV
OSV
added 2025/06/30 8:15 a.m.11 views

AZL-64395 CVE-2025-38087 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: net/sched: fix use-after-free in tapriodevnotifier Since taprio’s tapriodevnotifier isn’t protected by an RCU read-side critical section, a race with advancesched can lead to a use-after-free. Adding rcureadlock inside...

7.8CVSS6.3AI score0.00144EPSS
Exploits0References1
SUSE Linux
SUSE Linux
added 2025/06/26 4:3 p.m.4 views

Security update for the Linux Kernel (Live Patch 44 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059161 fixes several issues. The following security issues were fixed: CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231. CVE-2024-50127: net: sched: fix use-after-free in tapriochange bsc1232908. CVE-2024-50279: dm...

8.5CVSS8AI score0.00272EPSS
Exploits0References32
OSV
OSV
added 2025/06/18 10:15 a.m.5 views

AZL-63989 CVE-2025-38060 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: bpf: copyverifierstate should copy 'loopentry' field The bpfverifierstate.loopentry state should be copied by copyverifierstate. Otherwise, .loopentry values from unrelated states would poison env-curstate. Additionally, env-stac...

5.5CVSS6AI score0.00143EPSS
Exploits0References1
OSV
OSV
added 2025/06/18 10:15 a.m.6 views

AZL-63995 CVE-2025-38061 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: net: pktgen: fix access outside of user given buffer in pktgenthreadwrite Honour the user given buffer size for the strnlen calls otherwise strnlen will access memory outside of the user given buffer...

5.5CVSS6.5AI score0.00159EPSS
Exploits0References1
OSV
OSV
added 2025/06/18 10:15 a.m.15 views

AZL-64061 CVE-2025-38051 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: smb: client: Fix use-after-free in cifsfilldirent There is a race condition in the readdir concurrency process, which may access the rsp buffer after it has been released, triggering the following KASAN warning...

7CVSS6.8AI score0.00177EPSS
Exploits0References1
OSV
OSV
added 2025/06/18 10:15 a.m.6 views

AZL-64064 CVE-2025-38045 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: fix debug actions order The order of actions taken for debug was implemented incorrectly. Now we implemented the dump split and do the FW reset only in the middle of the dump rather than the FW killing itself on...

5.5CVSS6.5AI score0.00157EPSS
Exploits0References1
OSV
OSV
added 2025/06/18 10:15 a.m.8 views

AZL-63932 CVE-2025-38043 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: firmware: armffa: Set dmamask for ffa devices Set dmamask for FFA devices, otherwise DMA allocation using the device pointer lead to following warning: WARNING: CPU: 1 PID: 1 at kernel/dma/mapping.c:597 dmaallocattrs+0xe0/0x124...

5.5CVSS6.5AI score0.00156EPSS
Exploits0References1
OSV
OSV
added 2025/06/18 10:15 a.m.14 views

AZL-70271 CVE-2025-38022 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Fix "KASAN: slab-use-after-free Read in ibregisterdevice" problem Call Trace: dumpstack lib/dumpstack.c:94 inline dumpstacklvl+0x116/0x1f0 lib/dumpstack.c:120 printaddressdescription mm/kasan/report.c:408 inline...

7.8CVSS6.6AI score0.00161EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/18 12:0 a.m.6 views

PT-2025-25795

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version Description A vulnerability in the Linux kernel has been resolved. The issue is related to MACsec offload for uplink representor profiles. MACsec offload is not supported in switchdev mode for...

5.5CVSS6.5AI score0.00156EPSS
Exploits0
Mageia
Mageia
added 2025/06/09 6:14 p.m.26 views

Updated kernel-linus packages fix security vulnerabilities

Vanilla upstream kernel version 6.6.93 fixes bugs and vulnerabilities. For information about the vulnerabilities see the links...

9.8CVSS8.2AI score0.09796EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2025/05/29 12:0 a.m.15 views

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2025-102 (ALASKERNEL-5.4-2025-102)

The version of kernel installed on the remote host is prior to 5.4.293-211.419. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2025-102 advisory. In the Linux kernel, the following vulnerability has been resolved: virtio-net: Add validation for used...

7.8CVSS6.3AI score0.00263EPSS
Exploits0References54
Tenable Nessus
Tenable Nessus
added 2025/05/26 12:0 a.m.22 views

CentOS 9 : kernel-5.14.0-587.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the kernel-5.14.0-587.el9 build changelog. - In the Linux kernel, the following vulnerability has been resolved: iouring: prevent opcode speculation sqe-opcode is used for differen...

7.8CVSS6.2AI score0.00272EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2025/05/23 1:1 a.m.7 views

CVE-2022-46897

An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. The CapsuleIFWUSmm driver does not check the return value from a method or function. This can prevent it from detecting unexpected states and conditions...

5.3CVSS6.8AI score0.00148EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:57 p.m.9 views

CVE-2022-24031

An issue was discovered in NvmExpressDxe in Insyde InsydeH2O with kernel 5.1 through 5.5. An SMM memory corruption vulnerability allows an attacker to write fixed or predictable data to SMRAM. Exploiting this issue could lead to escalating privileges to SMM...

8.2CVSS6.9AI score0.00279EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:42 p.m.13 views

CVE-2020-5956

An issue was discovered in SdLegacySmm in Insyde InsydeH2O with kernel 5.1 before 05.15.11, 5.2 before 05.25.11, 5.3 before 05.34.11, and 5.4 before 05.42.11. The software SMI handler allows untrusted external input because it does not verify CommBuffer...

7.5CVSS6.8AI score0.00806EPSS
Exploits0References1
OSV
OSV
added 2025/05/20 4:15 p.m.8 views

AZL-72572 CVE-2025-37959 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: bpf: Scrub packet on bpfredirectpeer When bpfredirectpeer is used to redirect packets to a device in another network namespace, the skb isn't scrubbed. That can lead skb information from one namespace to be "misused" in another...

5.5CVSS5.6AI score0.00149EPSS
Exploits0References1
Redos
Redos
added 2025/05/13 12:0 a.m.9 views

ROS-2-35

2.35 Notification on update of the RAND OPERATION SYSTEM "RED OS" RU.29926343.02.01-01-24 RED SOFT LLC notifies about the completion of the testing procedure and release of the updated RED OS 7.3 distribution. In order to update your copy of RED OS to the current state, you need to perform a...

7.1AI score
Exploits0
Redos
Redos
added 2025/05/13 12:0 a.m.9 views

ROS-2-65

2.65 Notification on update of the RAND OPERATION SYSTEM "RED OS" RU.29926343.02.01-01-24 RED SOFT LLC notifies about the completion of the testing procedure and release of the updated RED OS 7.3 distribution. In order to update your copy of RED OS to the current state, you need to perform a...

7.1AI score
Exploits0
Redos
Redos
added 2025/05/13 12:0 a.m.5 views

ROS-2-151

2.151 Notification on update of the RAND OPERATION SYSTEM "RED OS" RU.29926343.02.01-01-24 RED SOFT LLC notifies about the completion of the testing procedure and release of the updated RED OS 7.3 distribution. In order to update your copy of RED OS to the current state, you need to perform a...

7.1AI score
Exploits0
Redos
Redos
added 2025/05/13 12:0 a.m.5 views

ROS-2-166

2.166 Notification on update of the RAND OPERATION SYSTEM "RED OS" RU.29926343.02.01-01-24 RED SOFT LLC notifies about the completion of the testing procedure and release of the updated RED OS 7.3 distribution. In order to update your copy of RED OS to the current state, you need to perform a...

7.1AI score
Exploits0
Rows per page
Query Builder