Lucene search
K

126 matches found

Debian CVE
Debian CVE
added 2025/09/15 12:0 a.m.4 views

CVE-2025-59375

libexpat in Expat before 2.7.2 allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing...

7.5CVSS6.1AI score0.01279EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/08/31 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-38506

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: KVM: Allow CPU to reschedule while setting per-page memory attributes When running an SEV-SN...

5.5CVSS5.9AI score0.00106EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/18 11:27 a.m.6 views

CVE-2025-38506

In the Linux kernel, the following vulnerability has been resolved: KVM: Allow CPU to reschedule while setting per-page memory attributes When running an SEV-SNP guest with a sufficiently large amount of memory 1TB+, the host can experience CPU soft lockups when running an operation in...

5.5CVSS6.9AI score0.00106EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/08/16 11:23 p.m.4 views

SUSE CVE-2025-38506

In the Linux kernel, the following vulnerability has been resolved: KVM: Allow CPU to reschedule while setting per-page memory attributes When running an SEV-SNP guest with a sufficiently large amount of memory 1TB+, the host can experience CPU soft lockups when running an operation in...

3.3CVSS6.4AI score0.00106EPSS
Exploits0References22
NVD
NVD
added 2025/08/16 11:15 a.m.6 views

CVE-2025-38506

In the Linux kernel, the following vulnerability has been resolved: KVM: Allow CPU to reschedule while setting per-page memory attributes When running an SEV-SNP guest with a sufficiently large amount of memory 1TB+, the host can experience CPU soft lockups when running an operation in...

5.5CVSS0.00106EPSS
Exploits0References3
OSV
OSV
added 2025/08/16 11:15 a.m.4 views

DEBIAN-CVE-2025-38506

In the Linux kernel, the following vulnerability has been resolved: KVM: Allow CPU to reschedule while setting per-page memory attributes When running an SEV-SNP guest with a sufficiently large amount of memory 1TB+, the host can experience CPU soft lockups when running an operation in...

5.5CVSS5.3AI score0.00106EPSS
Exploits0References1
OSV
OSV
added 2025/08/16 11:15 a.m.5 views

UBUNTU-CVE-2025-38506

In the Linux kernel, the following vulnerability has been resolved: KVM: Allow CPU to reschedule while setting per-page memory attributes When running an SEV-SNP guest with a sufficiently large amount of memory 1TB+, the host can experience CPU soft lockups when running an operation in...

5.5CVSS5.9AI score0.00106EPSS
Exploits0References28
ATTACKERKB
ATTACKERKB
added 2025/08/16 10:54 a.m.3 views

CVE-2025-38506

In the Linux kernel, the following vulnerability has been resolved: KVM: Allow CPU to reschedule while setting per-page memory attributes When running an SEV-SNP guest with a sufficiently large amount of memory 1TB+, the host can experience CPU soft lockups when running an operation in...

5.5CVSS5.7AI score0.00106EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/06/09 12:0 a.m.11 views

PT-2025-33549

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.15.0-rc7.20250520.el9uek.rc1.x86 64 Description: The Linux kernel contained a flaw where the CPU could become locked up while setting per-page memory attributes during operation in kvm vm set mem attributes wi...

5.5CVSS6.1AI score0.00106EPSS
Exploits0
OSV
OSV
added 2025/04/16 3:16 p.m.3 views

UBUNTU-CVE-2025-22091

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix pagesize variable overflow Change all variables storing mlx5umemmkcfindbestpgsz result to unsigned long to support values larger than 31 and avoid overflow. For example: If we try to register 4GB of memory that is...

5.5CVSS6.3AI score0.00176EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2025/04/10 9:0 p.m.11 views

CVE-2025-29917 Suricata decode_base64: signature can do large memory allocation

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. The bytes setting in the decodebase64 keyword is not properly limited. Due to this, signatures using the keyword and setting can cause large memory allocations of up to 4 GiB per...

6.2CVSS6.5AI score0.00234EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/04/10 9:0 p.m.19 views

CVE-2025-29917

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. The bytes setting in the decodebase64 keyword is not properly limited. Due to this, signatures using the keyword and setting can cause large memory allocations of up to 4 GiB per...

6.2CVSS7AI score0.00234EPSS
Exploits0
OSV
OSV
added 2025/04/08 9:15 a.m.9 views

AZL-59754 CVE-2025-22010 affecting package kernel for versions less than 5.15.180.1-1

In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix soft lockup during bt pages loop Driver runs a for-loop when allocating bt pages and mapping them with buffer pages. When a large buffer e.g. MR over 100GB is being allocated, it may require a considerable loop coun...

5.5CVSS6.5AI score0.00151EPSS
Exploits0References1
CVE
CVE
added 2025/04/08 8:18 a.m.171 views

CVE-2025-22010

CVE-2025-22010 affects the Linux kernel’s RDMA/hns: fixes a soft lockup during BT page loop when allocating very large buffers (e.g., MR > 100GB). The vulnerable path occurs in hns_roce_hw_v2: hem_list_alloc_mid_bt, hns_roce_hem_list_request, hns_roce_mtr_create, alloc_mr_pbl, and hns_roce_reg...

5.5CVSS7.3AI score0.00151EPSS
Exploits0References9Affected Software1
CNNVD
CNNVD
added 2025/04/03 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a reference counting problem on large memory pages...

5.5CVSS6.4AI score0.00174EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2024/09/24 12:0 a.m.9 views

The vulnerability of the btrfs component of the Linux operating system’s kernel, related to writing beyond the memory boundaries, allows a hacker to trigger a service failure.

The vulnerability of the btrfs component in Linux operating systems relates to the copying of overly large compressed segments. The compressed length may be corrupted, resulting in a much larger amount of memory being allocated for the buffer. Exploiting this vulnerability can allow an attacker t...

5.5CVSS6.8AI score0.0021EPSS
Exploits0References10Affected Software2
OSV
OSV
added 2024/07/12 1:15 p.m.3 views

DEBIAN-CVE-2024-40979

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix kernel crash during resume Currently during resume, QMI target memory is not properly handled, resulting in kernel crash in case DMA remap is not supported: BUG: Bad page state in process kworker/u16:54 pfn:36e8...

5.5CVSS5.1AI score0.00255EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/04/17 12:0 a.m.301 views

Apache 2.4.x < 2.4.54 Multiple Vulnerabilities

The version of Apache httpd installed on the remote host is prior to 2.4.54. It is, therefore, affected by multiple vulnerabilities as referenced in the 2.4.54 advisory. - Denial of Service modsed: If Apache HTTP Server 2.4.53 is configured to do transformations with modsed in contexts where the...

7.5CVSS8AI score0.90407EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2024/03/25 5:54 p.m.40 views

CVE-2021-47170

In the Linux kernel, the following vulnerability has been resolved: USB: usbfs: Don't WARN about excessively large memory allocations Syzbot found that the kernel generates a WARNing if the user tries to submit a bulk transfer through usbfs with a buffer that is way too large. This isn't a bug in...

4.4CVSS7.5AI score0.00235EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/03/10 8:42 p.m.43 views

CVE-2024-28180

A vulnerability was found in Jose due to improper handling of highly compressed data. This issue could allow an attacker to send a JWE containing compressed data that uses large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti. Mitigation Mitigation for this issue is either...

4.3CVSS5.3AI score0.01956EPSS
Exploits0References4
Rows per page
Query Builder