Lucene search
K

41 matches found

Cvelist
Cvelist
added 2024/10/21 8:6 p.m.18 views

CVE-2022-49003 nvme: fix SRCU protection of nvme_ns_head list

In the Linux kernel, the following vulnerability has been resolved: nvme: fix SRCU protection of nvmenshead list Walking the nvmenshead siblings list is protected by the head's srcu in nvmensheadsubmitbio but not nvmempathrevalidatepaths. Removing namespaces from the list also fails to synchroniz...

0.00229EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/10/21 8:5 p.m.36 views

CVE-2022-48954 s390/qeth: fix use-after-free in hsci

In the Linux kernel, the following vulnerability has been resolved: s390/qeth: fix use-after-free in hsci KASAN found that addr was dereferenced after br2deveventwork was freed. ================================================================== BUG: KASAN: use-after-free in...

0.00238EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/10/21 7:39 p.m.13 views

CVE-2024-50047 smb: client: fix UAF in async decryption

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix UAF in async decryption Doing an async decryption large read crashes with a slab-use-after-free way down in the crypto API. Reproducer: mount.cifs -o ...,seal,esize=1 //srv/share /mnt dd if=/mnt/largefile...

6.7AI score0.00231EPSS
Exploits0References6
CVE
CVE
added 2024/08/22 1:33 a.m.71 views

CVE-2022-48924

CVE-2022-48924 relates to the Linux kernel, describing a memory-leak in the int340x thermal driver during int3400_notify() on Tiger Lake, leading to unreferenced objects and potential memory pressure. The provided documents consistently show the root cause as a leak in the int3400_notify path and...

5.5CVSS6.5AI score0.0021EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2024/07/12 1:15 p.m.27 views

CVE-2024-40916

In the Linux kernel, the following vulnerability has been resolved: drm/exynos: hdmi: report safe 640x480 mode as a fallback when no EDID found When reading EDID fails and driver reports no modes available, the DRM core adds an artificial 1024x786 mode to the connector. Unfortunately some variant...

5.5CVSS0.00294EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2024/06/20 11:13 a.m.21 views

CVE-2022-48758 scsi: bnx2fc: Flush destroy_work queue before calling bnx2fc_interface_put()

In the Linux kernel, the following vulnerability has been resolved: scsi: bnx2fc: Flush destroywork queue before calling bnx2fcinterfaceput The bnx2fcdestroy functions are removing the interface before calling destroywork. This results multiple WARNings from sysfsremovegroup as the controller rpo...

7AI score0.00215EPSS
Exploits0References9
OSV
OSV
added 2024/06/20 11:13 a.m.17 views

CVE-2022-48734 btrfs: fix deadlock between quota disable and qgroup rescan worker

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix deadlock between quota disable and qgroup rescan worker Quota disable ioctl starts a transaction before waiting for the qgroup rescan worker completes. However, this wait can be infinite and results in deadlock because...

5.5CVSS5.9AI score0.00178EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2024/05/21 4:15 p.m.24 views

CVE-2023-52842

In the Linux kernel, the following vulnerability has been resolved: virtio/vsock: Fix uninit-value in virtiotransportrecvpkt KMSAN reported the following uninit-value access issue: ===================================================== BUG: KMSAN: uninit-value in virtiotransportrecvpkt+0x1dfb/0x26...

7.1CVSS6.2AI score0.00244EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/05/21 3:31 p.m.24 views

CVE-2023-52816 drm/amdkfd: Fix shift out-of-bounds issue

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix shift out-of-bounds issue 567.613292 shift exponent 255 is too large for 64-bit type 'long unsigned int' 567.614498 CPU: 5 PID: 238 Comm: kworker/5:1 Tainted: G OE 6.2.0-34-generic 3422.04.1-Ubuntu 567.614502...

6.5AI score0.00245EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/05/20 9:48 a.m.25 views

CVE-2024-36005 netfilter: nf_tables: honor table dormant flag from netdev release event path

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: honor table dormant flag from netdev release event path Check for table dormant flag otherwise netdev release event path tries to unregister an already unregistered hook. 524854.857999 ------------ cut here...

6.5AI score0.00233EPSS
Exploits0References6
OSV
OSV
added 2024/05/20 9:48 a.m.22 views

CVE-2024-36004 i40e: Do not use WQ_MEM_RECLAIM flag for workqueue

In the Linux kernel, the following vulnerability has been resolved: i40e: Do not use WQMEMRECLAIM flag for workqueue Issue reported by customer during SRIOV testing, call trace: When both i40e and the i40iw driver are loaded, a warning in checkflushdependency is being triggered. This seems to be...

5.5CVSS5.9AI score0.00248EPSS
Exploits0References14
NVD
NVD
added 2024/05/03 3:15 p.m.30 views

CVE-2022-48692

In the Linux kernel, the following vulnerability has been resolved: RDMA/srp: Set scmnd-result only when scmnd is not NULL This change fixes the following kernel NULL pointer dereference which is reproduced by blktests srp/007 occasionally. BUG: kernel NULL pointer dereference, address:...

5.5CVSS5.9AI score0.00225EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/05/03 3:10 p.m.17 views

CVE-2022-48697 nvmet: fix a use-after-free

In the Linux kernel, the following vulnerability has been resolved: nvmet: fix a use-after-free Fix the following use-after-free complaint triggered by blktests nvme/004: BUG: KASAN: user-memory-access in blkmqcompleterequestremote+0xac/0x350 Read of size 4 at addr 0000607bd1835943 by task...

6.8AI score0.00228EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2024/04/17 11:15 a.m.18 views

CVE-2024-26875

In the Linux kernel, the following vulnerability has been resolved: media: pvrusb2: fix uaf in pvr2contextsetnotify Syzbot reported BUG: KASAN: slab-use-after-free in pvr2contextsetnotify+0x2c4/0x310 drivers/media/usb/pvrusb2/pvrusb2-context.c:35 Read of size 4 at addr ffff888113aeb0d8 by task...

6.4CVSS6.2AI score0.00245EPSS
Exploits0References31
Cvelist
Cvelist
added 2024/04/04 8:20 a.m.32 views

CVE-2024-26750 af_unix: Drop oob_skb ref before purging queue in GC.

In the Linux kernel, the following vulnerability has been resolved: afunix: Drop oobskb ref before purging queue in GC. syzbot reported another task hung in unixgc. 0 The current while loop assumes that all of the left candidates have oobskb and calling kfreeskboobskb releases the remaining...

7.7AI score0.00224EPSS
Exploits0References5
NVD
NVD
added 2024/04/02 7:15 a.m.28 views

CVE-2024-26675

In the Linux kernel, the following vulnerability has been resolved: pppasync: limit MRU to 64K syzbot triggered a warning 1 in allocpages: WARNONONCEGFPorder MAXPAGEORDER, gfp Willem fixed a similar issue in commit c0a2a1b0d631 "ppp: limit MRU to 64K" Adopt the same sanity check for...

5.5CVSS7.3AI score0.00254EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2024/03/12 11:48 a.m.44 views

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.2 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security...

8.8CVSS7.2AI score0.09141EPSS
Exploits6References17
Vulnrichment
Vulnrichment
added 2024/03/06 6:45 a.m.31 views

CVE-2023-52587 IB/ipoib: Fix mcast list locking

In the Linux kernel, the following vulnerability has been resolved: IB/ipoib: Fix mcast list locking Releasing the priv-lock while iterating the priv-multicastlist in ipoibmcastjointask opens a window for ipoibmcastdevflush to remove the items while in the middle of iteration. If the mcast is...

6.8AI score0.00309EPSS
Exploits1References8
RedhatCVE
RedhatCVE
added 2024/03/04 6:27 p.m.30 views

CVE-2023-52582

An improper loop flaw was found in netfsrrequnlockfolios in the Linux kernel. This may lead to compromised Availability...

5.5CVSS7.2AI score0.00225EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2024/02/29 11:15 p.m.33 views

CVE-2021-47065

In the Linux kernel, the following vulnerability has been resolved: rtw88: Fix array overrun in rtwgettxpowerparams Using a kernel with the Undefined Behaviour Sanity Checker UBSAN enabled, the following array overrun is logged:...

7.8CVSS6.3AI score0.00234EPSS
Exploits0References2
Rows per page
Query Builder