1234 matches found
CVE-2024-43858 affecting package kernel for versions less than 5.15.167.1-1
CVE-2024-43858 affecting package kernel for versions less than 5.15.167.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-43853 affecting package kernel for versions less than 5.15.167.1-1
CVE-2024-43853 affecting package kernel for versions less than 5.15.167.1-1. A patched version of the package is available...
CVE-2024-44954 affecting package kernel for versions less than 5.15.167.1-1
CVE-2024-44954 affecting package kernel for versions less than 5.15.167.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-46832 affecting package kernel for versions less than 5.15.167.1-1
CVE-2024-46832 affecting package kernel for versions less than 5.15.167.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-42269 affecting package kernel for versions less than 5.15.167.1-1
CVE-2024-42269 affecting package kernel for versions less than 5.15.167.1-1. A patched version of the package is available...
AZL-51005 CVE-2024-47671 affecting package kernel for versions less than 6.6.56.1-5
In the Linux kernel, the following vulnerability has been resolved: USB: usbtmc: prevent kernel-usb-infoleak The syzbot reported a kernel-usb-infoleak in usbtmcwrite, we need to clear the structure before filling fields...
AZL-50749 CVE-2024-47666 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Set phy-enablecompletion only when we wait for it pm8001phycontrol populates the enablecompletion pointer with a stack address, sends a PHYLINKRESET / PHYHARDRESET, waits 300 ms, and returns. The problem arises when...
cups-browsed Information Disclosure
Retrieve CUPS version and kernel version information from cups-browsed services. Module Options msf use auxiliary/scanner/misc/cupsbrowsedinfodisclosure msf auxiliarycupsbrowsedinfodisclosure show actions ...actions... msf auxiliarycupsbrowsedinfodisclosure set ACTION msf...
PT-2024-34047
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.61 Description: A flaw in the Linux kernel has been fixed, related to improved error handling in the udf extend file function. The inode bmap function was refactored to handle errors since udf next aext can...
AZL-49858 CVE-2024-46849 affecting package kernel for versions less than 6.6.56.1-5
In the Linux kernel, the following vulnerability has been resolved: ASoC: meson: axg-card: fix 'use-after-free' Buffer 'card-dailink' is reallocated in 'mesoncardreallocatelinks', so move 'pad' pointer initialization after this function when memory is already reallocated. Kasan bug report:...
CVE-2024-46721
In the Linux kernel, the following vulnerability has been resolved: apparmor: fix possible NULL pointer dereference profile-parent-dentsAAFSPROFDIR could be NULL only if its parent is made from createmissingancestors.. and 'ent-old' is NULL in aareplaceprofiles... In that case, it must return an...
AZL-49776 CVE-2024-46750 affecting package kernel for versions less than 5.15.167.1-1
In the Linux kernel, the following vulnerability has been resolved: PCI: Add missing bridge lock to pcibuslock One of the true positives that the cfgaccesslock lockdep effort identified is this sequence: WARNING: CPU: 14 PID: 1 at drivers/pci/pci.c:4886 pcibridgesecondarybusreset+0x5d/0x70 RIP:...
AZL-49678 CVE-2024-46732 affecting package kernel for versions less than 5.15.167.1-1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Assign linearpitchalignment even for VM Description Assign linearpitchalignment so we don't cause a divide by 0 error in VM environments...
AZL-49672 CVE-2024-46728 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check index for auxrdinterval before using auxrdinterval has size of 7 and should be checked. This fixes 3 OVERRUN and 1 INTEGEROVERFLOW issues reported by Coverity...
AZL-49737 CVE-2024-46727 affecting package kernel 6.6.126.1-1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add otgmaster NULL check within resourcelogpipetopologyupdate Why Coverity reports NULLRETURN warning. How Add otgmaster NULL check...
CVE-2024-46787 userfaultfd: fix checks for huge PMDs
In the Linux kernel, the following vulnerability has been resolved: userfaultfd: fix checks for huge PMDs Patch series "userfaultfd: fix races around pmdtranshuge check", v2. The pmdtranshuge code in mfillatomic is wrong in three different ways depending on kernel version: 1. The pmdtranshuge che...
Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2024-084 (ALASKERNEL-5.4-2024-084)
The version of kernel installed on the remote host is prior to 5.4.279-193.377. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2024-084 advisory. A vulnerability, which was classified as problematic, was found in Linux Kernel. This affects the function...
Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.15-2024-053 (ALASKERNEL-5.15-2024-053)
The version of kernel installed on the remote host is prior to 5.15.162-107.160. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.15-2024-053 advisory. A vulnerability, which was classified as problematic, was found in Linux Kernel. This affects the functi...
AZL-49212 CVE-2024-45029 affecting package kernel for versions less than 6.6.51.1-1
In the Linux kernel, the following vulnerability has been resolved: i2c: tegra: Do not mark ACPI devices as irq safe On ACPI machines, the tegra i2c module encounters an issue due to a mutex being called inside a spinlock. This leads to the following bug: BUG: sleeping function called from invali...
CVE-2024-41049 affecting package kernel for versions less than 6.6.47.1-1
CVE-2024-41049 affecting package kernel for versions less than 6.6.47.1-1. An upgraded version of the package is available that resolves this issue...