1233 matches found
AZL-6584 CVE-2021-38200 affecting package kernel for versions less than 5.10.78.1-1
arch/powerpc/perf/core-book3s.c in the Linux kernel before 5.12.13, on systems with perfeventparanoid=-1 and no specific PMU driver support registered, allows local users to cause a denial of service perfinstructionpointer NULL pointer dereference and OOPS via a "perf record" command...
openSUSE: Security Advisory for virtualbox (openSUSE-SU-2021:1092-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2021:1092-1 Security update for virtualbox
This update for virtualbox fixes the following issues: Version bump to 6.1.24 released July 20 2021 by Oracle This is a maintenance release. The following items were fixed and/or added: - Storage: Fixed starting a VM if a device is attached to a VirtIO SCSI port higher than 30 bug 20213 - Storage...
UVI-2021-1001449 watchdog: sc520_wdt: Fix possible use-after-free in wdt_turnoff()
watchdog: sc520wdt: Fix possible use-after-free in wdtturnoff This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.276 by commit...
UVI-2021-1001436 KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow
KVM: PPC: Book3S: Fix HRTAS rets buffer overflow This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.277 by commit...
GSD-2021-1001222 seq_buf: Fix overflow in seq_buf_putmem_hex()
seqbuf: Fix overflow in seqbufputmemhex This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.13.3 by commit...
UVI-2021-1001166 net/sched: act_skbmod: Skip non-Ethernet packets
net/sched: actskbmod: Skip non-Ethernet packets This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.13.6 by commit...
GSD-2021-1001108 i2c: robotfuzz-osif: fix control-request directions
i2c: robotfuzz-osif: fix control-request directions This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.238 by commit...
GSD-2021-1001089 net: bridge: fix vlan tunnel dst null pointer dereference
net: bridge: fix vlan tunnel dst null pointer dereference This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.13 by commit...
GSD-2021-1001071 net: cdc_eem: fix tx fixup skb leak
net: cdceem: fix tx fixup skb leak This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.13 by commit b4f7a9fc9d094c0c4a66f2ad7c37b1dbe9e78f88, ...
GSD-2021-1001006 net: bridge: fix vlan tunnel dst null pointer dereference
net: bridge: fix vlan tunnel dst null pointer dereference This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.46 by commit...
UVI-2021-1000963 KVM: x86: Ensure liveliness of nested VM-Enter fail tracepoint message
KVM: x86: Ensure liveliness of nested VM-Enter fail tracepoint message This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.44 by commit...
GSD-2021-1000940 wq: handle VM suspension in stall detection
wq: handle VM suspension in stall detection This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.44 by commit...
UVI-2021-1000932 net: ll_temac: Fix TX BD buffer overwrite
net: lltemac: Fix TX BD buffer overwrite This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.128 by commit...
GSD-2021-1000881 IB/mlx5: Fix initializing CQ fragments buffer
IB/mlx5: Fix initializing CQ fragments buffer This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.195 by commit...
UVI-2021-1000784 btrfs: abort in rename_exchange if we fail to insert the second ref
btrfs: abort in renameexchange if we fail to insert the second ref This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.43 by commit...
GSD-2021-1000716 pid: take a reference when initializing `cad_pid`
pid: take a reference when initializing cadpid This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.4.272 by commit...
PT-2021-3701 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.12.14 Description: The issue is related to the mishandling of Signature Verification in the Linux kernel. This could allow an attacker to impact the confidentiality, integrity, and availability of protected...
SUSE SLES11 Security Update : kernel (SUSE-SU-2021:14724-1)
The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:14724-1 advisory. - An out-of-bounds OOB memory access flaw was found in x25bind in net/x25/afx25.c in the Linux kernel version v5.12-rc5. A bounds check failur...
CVE-2021-3564
A flaw double-free memory corruption in the Linux kernel HCI device initialization subsystem was found in the way user attach malicious HCI TTY Bluetooth device. A local user could use this flaw to crash the system. This flaw affects all the Linux kernel versions starting from 3.13...