4826 matches found
FreeBSD -- zlib compression out-of-bounds write
Problem Description: Certain inputs can cause zlib's compression routine to overwrite an internal buffer with compressed data. This issue may require the use of uncommon or non-default compression parameters. Impact: The out-of-bounds write may result in memory corruption and an application crash...
kernel: remote stack overflow via kernel panic on systems using TIPC may lead to DoS
A stack overflow flaw was found in the Linux kernel’s TIPC protocol functionality in the way a user sends a packet with malicious content where the number of domain member nodes is higher than the 64 allowed. This flaw allows a remote user to crash the system or possibly escalate their privileges...
kernel: remote stack overflow via kernel panic on systems using TIPC may lead to DoS
A stack overflow flaw was found in the Linux kernel’s TIPC protocol functionality in the way a user sends a packet with malicious content where the number of domain member nodes is higher than the 64 allowed. This flaw allows a remote user to crash the system or possibly escalate their privileges...
RHEL 8 : kpatch-patch (RHSA-2022:1186)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:1186 advisory. This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Security Fixe...
kernel: remote stack overflow via kernel panic on systems using TIPC may lead to DoS
A stack overflow flaw was found in the Linux kernel’s TIPC protocol functionality in the way a user sends a packet with malicious content where the number of domain member nodes is higher than the 64 allowed. This flaw allows a remote user to crash the system or possibly escalate their privileges...
CVE-2021-4023
A flaw was found in the io-workqueue implementation in the Linux kernel versions prior to 5.15-rc1. The kernel can panic when an improper cancellation operation triggers the submission of new io-uring operations during a shortage of free space. This flaw allows a local user with permissions to...
CVE-2021-20269
A flaw was found in the permissions of a log file created by kexec-tools. This flaw allows a local unprivileged user to read this file and leak kernel internal information from a previous panic. The highest threat from this vulnerability is to confidentiality. This flaw affects kexec-tools shippe...
ALSA-2022:0825 Important: kernel security, bug fix, and enhancement update
The kernel packages contain the Linux kernel, the core of any Linux operating system. The following packages have been upgraded to a later upstream version: kernel 4.18.0. BZ2036888 Security Fixes: kernel: improper initialization of the "flags" member of the new pipebuffer CVE-2022-0847 kernel: U...
Important: Red Hat Security Advisory: kpatch-patch security update
An update for kpatch-patch is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...
Exploit for Improper Privilege Management in Linux Linux_Kernel
CVE-2022-25636 This is my exploit for CVE-2022-25636. I te...
PT-2022-7477 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel's tipc component can cause a kernel panic when enabling a bearer on a node. This occurs due to a null-pointer dereference in the tipc mon prep...
PT-2022-7626 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.17.0-rc3+ Description: The vulnerability is related to the iommu/vt-d component in the Linux kernel. When enabling VMD and IOMMU scalable mode, a kernel panic call trace/kernel log is shown, indicating a doubl...
GSD-2022-1000560 mtd: parsers: qcom: Fix kernel panic on skipped partition
mtd: parsers: qcom: Fix kernel panic on skipped partition This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.11 by commit...
PT-2022-7490 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The vulnerability is related to a race condition in the configfs component of the Linux kernel. When configfs register subsystem or configfs unregister subsystem is executing link grou...
Mageia: Security Advisory (MGASA-2021-0529)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PT-2022-2027 · Oracle · Oracle Solaris
Name of the Vulnerable Software and Affected Versions: illumos versions before f859e7171bb5db34321e45585839c6c3200ebb90 OmniOS Community Edition version r151038 OpenIndiana Hipster version 2021.04 SmartOS version 20210923 Oracle Solaris versions 10 and 11 Description: A local unprivileged user ca...
OESA-2022-1489 udisks2 security update
The Udisks project provides a daemon, tools and libraries to access and manipulate disks, storage devices and technologies. Security Fixes: Vulnerability found in udisks2. The vulnerability allows an attacker to enter a specially crafted image file/USB to cause a kernel panic. The biggest threat ...
GSD-2022-1000044 net/smc: fix kernel panic caused by race of smc_sock
net/smc: fix kernel panic caused by race of smcsock This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.90 by commit...
PT-2025-8362 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been identified, which can cause a kernel panic. The issue arises when the inline dots flag is set in a special file, such as a character, block...
PT-2025-37514
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's DRM/MSM subsystem related to inconsistent handling of hardware shutdown logic in the .remove and .shutdown callbacks. The .remove and .shutdown...