1233 matches found
CVE-2021-28971 affecting package kernel for versions less than 5.10.78.1-1
CVE-2021-28971 affecting package kernel for versions less than 5.10.78.1-1. A patched version of the package is available...
CVE-2021-28972 affecting package kernel for versions less than 5.10.78.1-1
CVE-2021-28972 affecting package kernel for versions less than 5.10.78.1-1. An upgraded version of the package is available that resolves this issue...
AZL-9293 CVE-2022-28388 affecting package kernel for versions less than 5.15.37.1-2
usb8devstartxmit in drivers/net/can/usb/usb8dev.c in the Linux kernel through 5.17.1 has a double free...
Linux kernel 资源管理错误漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in emsusbstartxmit in drivers/net/can/usb/emsusb.c in Linux kernel 5.17.1 and earlier, which stems from a double release...
Exploit for Out-of-bounds Write in Linux Linux_Kernel
CVE-2022-1015 This repository contains a PoC for local privil...
AZL-9238 CVE-2022-0330 affecting package kernel for versions less than 5.15.37.1-2
A random memory access flaw was found in the Linux kernel's GPU i915 kernel driver functionality in the way a user may run malicious code on the GPU. This flaw allows a local user to crash the system or escalate their privileges on the system...
GSD-2022-1000899 netfilter: nf_queue: fix possible use-after-free
netfilter: nfqueue: fix possible use-after-free This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.233 by commit...
GSD-2022-1000840 usb: gadget: clear related members when goto fail
usb: gadget: clear related members when goto fail This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.104 by commit...
GSD-2022-1000825 arm64: entry.S: Add ventry overflow sanity checks
arm64: entry.S: Add ventry overflow sanity checks This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.105 by commit...
GSD-2022-1000768 net/smc: fix connection leak
net/smc: fix connection leak This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.27 by commit 80895b6f9154fb22d36fab311ccbb75503a2c87b, it was...
Researchers Warn of Linux Kernel 'Dirty Pipe' Arbitrary File Overwrite Vulnerability
Linux distributions are in the process of issuing patches to address a newly disclosed security vulnerability in the kernel that could allow an attacker to overwrite arbitrary data into any read-only files and allow for a complete takeover of affected systems. Dubbed "Dirty Pipe" CVE-2022-0847,...
GSD-2022-1000617 mm, kasan: use compare-exchange operation to set KASAN page tag
mm, kasan: use compare-exchange operation to set KASAN page tag This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.5 by commit...
GSD-2022-1000612 KVM: x86: Forcibly leave nested virt when SMM state is toggled
KVM: x86: Forcibly leave nested virt when SMM state is toggled This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.5 by commit...
GSD-2022-1000578 dma-buf: heaps: Fix potential spectre v1 gadget
dma-buf: heaps: Fix potential spectre v1 gadget This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.22 by commit...
GSD-2022-1000561 mtd: parsers: qcom: Fix missing free for pparts in cleanup
mtd: parsers: qcom: Fix missing free for pparts in cleanup This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.11 by commit...
GSD-2022-1000493 scsi: qedf: Add stag_work to all the vports
scsi: qedf: Add stagwork to all the vports This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.10 by commit...
GSD-2022-1000467 net_sched: add __rcu annotation to netdev->qdisc
netsched: add rcu annotation to netdev-qdisc This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.25 by commit...
GSD-2022-1000297 ax25: improve the incomplete fix to avoid UAF and NPD bugs
ax25: improve the incomplete fix to avoid UAF and NPD bugs This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.303 by commit...
GSD-2022-1000296 libsubcmd: Fix use-after-free for realloc(..., 0)
libsubcmd: Fix use-after-free for realloc..., 0 This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.303 by commit...
GSD-2022-1000093 moxart: fix potential use-after-free on remove path
moxart: fix potential use-after-free on remove path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.301 by commit...