CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Use kzalloc for sev ioctl interfaces to prevent kernel data leak For some sev ioctl interfaces, the length parameter that is passed maybe less than or equal to SEVFWBLOBMAXSIZE, but larger than the data that PSP firmwar...

7.1CVSS6.3AI score0.00083EPSS

Exploits0References2

Tenable Nessus•added 2025/08/15 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2025-38408

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - genirq/irqsim: Initialize work context pointers properly Initialize ops member's pointers properly by using kzalloc instead of kmalloc when allocating the...

5.5CVSS6.1AI score0.00099EPSS

Exploits0References4

SUSE CVE•added 2025/07/28 11:23 p.m.•2 views

SUSE CVE-2025-38408

In the Linux kernel, the following vulnerability has been resolved: genirq/irqsim: Initialize work context pointers properly Initialize ops member's pointers properly by using kzalloc instead of kmalloc when allocating the simulation work context. Otherwise the pointers contain random content...

6.6CVSS6.5AI score0.00099EPSS

Exploits0References22

CVE•added 2025/07/25 1:20 p.m.•40 views

CVE-2025-38408

CVE-2025-38408 resolves a Linux kernel issue in genirq/irq_sim where the simulation work context pointers were not initialized safely. The root cause is using kmalloc() to allocate the simulation work context, which could leave pointers with random content and lead to invalid dereferences. The fi...

5.5CVSS6.4AI score0.00099EPSS

Exploits0References6Affected Software1

RedhatCVE•added 2025/06/20 10:16 a.m.•7 views

CVE-2022-50226

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Use kzalloc for sev ioctl interfaces to prevent kernel memory leak For some sev ioctl interfaces, input may be passed that is less than or equal to SEVFWBLOBMAXSIZE, but larger than the data that PSP firmware return...

5.5CVSS7.4AI score0.00063EPSS

Exploits0References4

SUSE CVE•added 2025/06/19 3:38 a.m.•1 views

SUSE CVE-2022-50226

5.5CVSS6.4AI score0.00063EPSS

Exploits0References10

RedHat Linux•added 2025/05/28 3:30 a.m.•0 views

kernel: do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak

In the Linux kernel, the following vulnerability has been resolved: dosysnametohandle: use kzalloc to fix kernel-infoleak syzbot identified a kernel information leak vulnerability in dosysnametohandle and issued the following report 1. 1 "BUG: KMSAN: kernel-infoleak in instrumentcopytouser...

5.5CVSS6.5AI score0.00034EPSS

Exploits0References5

SUSE CVE•added 2025/04/04 2:58 a.m.•1 views

SUSE CVE-2025-21950

In the Linux kernel, the following vulnerability has been resolved: drivers: virt: acrn: hsm: Use kzalloc to avoid info leak in pmcmdioctl In the "pmcmdioctl" function, three memory objects allocated by kmalloc are initialized by "hcallgetcpustate", which are then copied to user space. The...

5.5CVSS7.6AI score0.00009EPSS

Exploits0References15

Debian CVE•added 2025/02/26 2:14 a.m.•5 views

CVE-2022-49556

7.1CVSS5.6AI score0.00083EPSS

Exploits0

Positive Technologies•added 2024/06/17 12:0 a.m.•1 views

PT-2024-10328 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the devm kzalloc function in the pcmdevice i2c probe component of the Linux kernel. It is associated with pointer dereference errors. Exploitation of this issue...

5.5CVSS6.7AI score0.00035EPSS

Exploits0References13