Lucene search
+L

13 matches found

astralinux
astralinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM – Use kzalloc for SEV ioctl interfaces to prevent kernel data leaks. For some SEV ioctl interfaces, the length parameter passed may be less than or equal to SEVFWBLOBMAXSIZE, but larger than the data returned by the PSP...

7.1CVSS6.1AI score0.00259EPSS
Exploits0References2
nessus
nessus
added 2025/08/15 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-38408

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - genirq/irqsim: Initialize work context pointers properly Initialize ops member's pointers properly by using kzalloc instead of kmalloc when allocating the...

5.5CVSS6.7AI score0.00158EPSS
Exploits0References4
susecve
susecve
added 2025/07/28 11:23 p.m.5 views

SUSE CVE-2025-38408

In the Linux kernel, the following vulnerability has been resolved: genirq/irqsim: Initialize work context pointers properly Initialize ops member's pointers properly by using kzalloc instead of kmalloc when allocating the simulation work context. Otherwise the pointers contain random content...

6.6CVSS6.5AI score0.00158EPSS
Exploits0References22
cve
cve
added 2025/07/25 1:20 p.m.57 views

CVE-2025-38408

CVE-2025-38408 resolves a Linux kernel issue in genirq/irq_sim where the simulation work context pointers were not initialized safely. The root cause is using kmalloc() to allocate the simulation work context, which could leave pointers with random content and lead to invalid dereferences. The fi...

5.5CVSS6.4AI score0.00158EPSS
Exploits0References6Affected Software1
redhatcve
redhatcve
added 2025/06/20 10:16 a.m.13 views

CVE-2022-50226

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Use kzalloc for sev ioctl interfaces to prevent kernel memory leak For some sev ioctl interfaces, input may be passed that is less than or equal to SEVFWBLOBMAXSIZE, but larger than the data that PSP firmware return...

5.5CVSS7.4AI score0.00193EPSS
Exploits0References4
susecve
susecve
added 2025/06/19 3:38 a.m.5 views

SUSE CVE-2022-50226

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Use kzalloc for sev ioctl interfaces to prevent kernel memory leak For some sev ioctl interfaces, input may be passed that is less than or equal to SEVFWBLOBMAXSIZE, but larger than the data that PSP firmware return...

5.5CVSS6.4AI score0.00193EPSS
Exploits0References10
redhat
redhat
added 2025/05/28 3:30 a.m.3 views

kernel: do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak

In the Linux kernel, the following vulnerability has been resolved: dosysnametohandle: use kzalloc to fix kernel-infoleak syzbot identified a kernel information leak vulnerability in dosysnametohandle and issued the following report 1. 1 "BUG: KMSAN: kernel-infoleak in instrumentcopytouser...

5.5CVSS6.5AI score0.00828EPSS
Exploits0References5
susecve
susecve
added 2025/04/04 2:58 a.m.3 views

SUSE CVE-2025-21950

In the Linux kernel, the following vulnerability has been resolved: drivers: virt: acrn: hsm: Use kzalloc to avoid info leak in pmcmdioctl In the "pmcmdioctl" function, three memory objects allocated by kmalloc are initialized by "hcallgetcpustate", which are then copied to user space. The...

5.5CVSS7.6AI score0.00193EPSS
Exploits0References15
debiancve
debiancve
added 2025/02/26 2:14 a.m.7 views

CVE-2022-49556

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Use kzalloc for sev ioctl interfaces to prevent kernel data leak For some sev ioctl interfaces, the length parameter that is passed maybe less than or equal to SEVFWBLOBMAXSIZE, but larger than the data that PSP firmwar...

7.1CVSS5.6AI score0.00259EPSS
Exploits0
ptsecurity
ptsecurity
added 2024/06/17 12:0 a.m.6 views

PT-2024-10328 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the devm kzalloc function in the pcmdevice i2c probe component of the Linux kernel. It is associated with pointer dereference errors. Exploitation of this issue...

5.5CVSS6.7AI score0.00193EPSS
Exploits0References13
osv
osv
added 2024/04/17 11:15 a.m.1 views

DEBIAN-CVE-2024-26901

In the Linux kernel, the following vulnerability has been resolved: dosysnametohandle: use kzalloc to fix kernel-infoleak syzbot identified a kernel information leak vulnerability in dosysnametohandle and issued the following report 1. 1 "BUG: KMSAN: kernel-infoleak in instrumentcopytouser...

5.5CVSS5.7AI score0.00828EPSS
Exploits0References1
osv
osv
added 2024/04/17 11:15 a.m.4 views

UBUNTU-CVE-2024-26901

In the Linux kernel, the following vulnerability has been resolved: dosysnametohandle: use kzalloc to fix kernel-infoleak syzbot identified a kernel information leak vulnerability in dosysnametohandle and issued the following report 1. 1 "BUG: KMSAN: kernel-infoleak in instrumentcopytouser...

5.5CVSS6.2AI score0.00828EPSS
Exploits0References36
osv
osv
added 2024/04/17 10:27 a.m.4 views

CVE-2024-26901 do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak

In the Linux kernel, the following vulnerability has been resolved: dosysnametohandle: use kzalloc to fix kernel-infoleak syzbot identified a kernel information leak vulnerability in dosysnametohandle and issued the following report 1. 1 "BUG: KMSAN: kernel-infoleak in instrumentcopytouser...

5.3CVSS6.1AI score0.00828EPSS
Exploits0References16
Rows per page
Query Builder