Lucene search
K

137 matches found

Cvelist
Cvelist
added 2024/07/29 3:48 p.m.25 views

CVE-2024-41098 ata: libata-core: Fix null pointer dereference on error

In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: Fix null pointer dereference on error If the ataportalloc call in atahostalloc fails, atahostrelease will get called. However, the code in atahostrelease tries to free ataport struct members unconditionally, whi...

0.00263EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2024/07/29 3:48 p.m.14 views

CVE-2024-41087 ata: libata-core: Fix double free on error

In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: Fix double free on error If e.g. the ataportalloc call in atahostalloc fails, we will jump to the errout label, which will call devresreleasegroup. devresreleasegroup will trigger a call to atahostrelease...

6.5AI score0.00244EPSS
Exploits0References8
CVE
CVE
added 2024/07/29 3:48 p.m.117 views

CVE-2024-41087

CVE-2024-41087 (Linux kernel) : The issue stems from the libata-core path “ata_host_alloc” where, on error, control may jump to err_out and call devres_release_group(), which triggers ata_host_release() and a subsequent kfree(host). If kfree(host) runs again in the normal path, a double free occu...

7.8CVSS6.3AI score0.00244EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2024/07/29 3:48 p.m.13 views

CVE-2024-41087 ata: libata-core: Fix double free on error

In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: Fix double free on error If e.g. the ataportalloc call in atahostalloc fails, we will jump to the errout label, which will call devresreleasegroup. devresreleasegroup will trigger a call to atahostrelease...

7.8CVSS6AI score0.00244EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2023/11/07 9:3 a.m.5 views

kernel: ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo()

A flaw was found in the libata module in the Linux kernel. A NULL pointer dereference can be triggered in the unlikely case that the PPI, an array of ATA portinfo, argument of the atahostallocpinfo function is NULL. This issue causes a crash and results in a denial of service...

5.5CVSS6.5AI score0.00275EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 6:5 a.m.2 views

SUSE CVE-2008-5700

libata in the Linux kernel before 2.6.27.9 does not set minimum timeouts for SGIO requests, which allows local users to cause a denial of service Programmed I/O mode on drives via multiple simultaneous invocations of an unspecified test program...

1.9CVSS6.2AI score0.0037EPSS
Exploits0References5
OSV
OSV
added 2022/12/08 3:19 a.m.11 views

GSD-2022-1008230 ata: libata-transport: fix double ata_host_put() in ata_tport_add()

ata: libata-transport: fix double atahostput in atatportadd This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.267 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/12/08 3:10 a.m.7 views

GSD-2022-1008151 ata: libata-transport: fix double ata_host_put() in ata_tport_add()

ata: libata-transport: fix double atahostput in atatportadd This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.225 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/12/08 2:59 a.m.13 views

GSD-2022-1008049 ata: libata-transport: fix error handling in ata_tlink_add()

ata: libata-transport: fix error handling in atatlinkadd This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.156 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/12/08 2:45 a.m.10 views

GSD-2022-1007913 ata: libata-transport: fix error handling in ata_tlink_add()

ata: libata-transport: fix error handling in atatlinkadd This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.80 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/12/08 2:30 a.m.8 views

GSD-2022-1007748 ata: libata-transport: fix double ata_host_put() in ata_tport_add()

ata: libata-transport: fix double atahostput in atatportadd This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/12/08 2:30 a.m.10 views

GSD-2022-1007746 ata: libata-transport: fix error handling in ata_tlink_add()

ata: libata-transport: fix error handling in atatlinkadd This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/07/31 2:57 p.m.8 views

GSD-2022-1004949 ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo()

ata: libata-core: fix NULL pointer deref in atahostallocpinfo This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.320 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/07/31 2:39 p.m.7 views

GSD-2022-1004766 ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo()

ata: libata-core: fix NULL pointer deref in atahostallocpinfo This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.200 by commit...

7.2AI score
Exploits0
OPENSUSE Linux
OPENSUSE Linux
added 2022/03/08 12:0 a.m.123 views

Security update for the Linux Kernel (important)

openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2022:0760-1 Rating: important References: 1089644 1154353 1157038 1157923 1176447 1176940 1178134 1181147 1181588 1183872 1187716 1188404 1189126 1190812 1190972 1191580 1191655 1191741 1192210 1192483...

7.8CVSS7.4AI score0.88106EPSS
Exploits113References59
Oracle linux
Oracle linux
added 2020/10/08 12:0 a.m.142 views

kernel security and bug fix update

2.6.32-754.35.1.OL6 - Update genkey bug 25599697 2.6.32-754.35.1 - ata libata: fix NULL sdev dereference race in atapiqccomplete Kenneth Yin 1876296 2.6.32-754.34.1 - mm mm: prevent getuserpages from overflowing page refcount Aristeu Rozanski 1705003 - mm mm/hugetlb.c: getuserpages ignores certai...

7.8CVSS4.3AI score0.00708EPSS
Exploits1
Veracode
Veracode
added 2020/04/10 12:29 a.m.40 views

Denial Of Service (DoS)

kernel is vulnerable to denial of service. A deficiency was found in the libATA implementation. This could, potentially, lead to a denial of service. By default, the /dev/sg devices are accessible only to the root user...

1.9CVSS3.7AI score0.0037EPSS
Exploits0References30Affected Software2
Oracle linux
Oracle linux
added 2014/07/29 12:0 a.m.64 views

kernel security, bug fix, and enhancement update

2.6.32-431.23.3 - netdrv pppol2tp: fail when socket option level is not SOLPPPOL2TP 1119461 1119462 CVE-2014-4943 2.6.32-431.23.2 - kernel utrace: force IRET path after utracefinishvfork Oleg Nesterov 1115932 1115933 CVE-2014-4699 2.6.32-431.23.1 - net iptunnel: fix iptunnelfind to return NULL in...

7.2CVSS0.37233EPSS
Exploits42
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.49 views

openSUSE Security Update : Kernel (openSUSE-SU-2012:0812-1)

This kernel update of the openSUSE 12.1 kernel brings various bug and security fixes. Following issues were fixed : - tcp: drop SYN+FIN messages bnc765102, CVE-2012-2663. - net: sock: validate datalen before allocating skb in sockallocsendpskb bnc765320, CVE-2012-2136. - thp: avoid atomic64read i...

7.8CVSS7.1AI score0.04952EPSS
Exploits7References42
Oracle linux
Oracle linux
added 2012/09/25 12:0 a.m.62 views

kernel security and bug fix update

2.6.32-279.9.1.el6 - md raid1, raid10: avoid deadlock during resync/recovery. Dave Wysochanski 845464 835613 - fs dlm: fix deadlock between dlmsend and dlmcontrold David Teigland 849051 824964 - ata libata: Add space to fix 2GB ATA Flash Disk/ADMA428M blacklist Prarit Bhargava 851445 843849 - fs...

7.1CVSS7AI score0.0285EPSS
Exploits4
Rows per page
Query Builder