Lucene search
K

1489 matches found

Amazon
Amazon
added 2023/09/25 12:0 a.m.5 views

Important: kernel-livepatch-5.10.184-175.731

Issue Overview: A use-after-free vulnerability in the Linux kernel's net/sched: clsu32 component can be exploited to achieve local privilege escalation. If tcfchangeindev fails, u32setparms will immediately return an error after incrementing or decrementing the reference counter in tcfbindfilter...

7.8CVSS6.7AI score0.00517EPSS
Exploits1
Ubuntu
Ubuntu
added 2023/09/06 12:32 p.m.67 views

USN-6343-1: Linux kernel (OEM) vulnerabilities

It was discovered that the IPv6 implementation in the Linux kernel contained a high rate of hash collisions in connection lookup table. A remote attacker could use this to cause a denial of service excessive CPU consumption. CVE-2023-1206 Ross Lagerwall discovered that the Xen netback backend...

7.8CVSS7.6AI score0.00664EPSS
Exploits1
OSV
OSV
added 2023/09/05 11:6 a.m.8 views

LSN-0097-1 Kernel Live Patch Security Notice

It was discovered that the IP-VLAN network driver for the Linux kernel did not properly initialize memory in some situations, leading to an out-of- bounds write vulnerability. An attacker could use this to cause a denial of service system crash or possibly execute arbitrary code.CVE-2023-3090...

7.8CVSS8.2AI score0.08894EPSS
Exploits16References8
Redos
Redos
added 2023/09/05 12:0 a.m.20 views

ROS-20230905-02

Vulnerability in the ksmbd module of Linux kernel operating systems is related to synchronization errors when using a shared resource. synchronization errors when using a shared resource. Exploitation of the vulnerability could allow an attacker acting remotely, execute arbitrary code using the...

9.8CVSS9AI score0.0406EPSS
Exploits3
OpenVAS
OpenVAS
added 2023/09/01 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-6331-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.2AI score0.05794EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2023/08/30 12:0 a.m.36 views

Ubuntu 23.04 : Linux kernel vulnerabilities (USN-6321-1)

The remote Ubuntu 23.04 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6321-1 advisory. Daniel Moghimi discovered that some IntelR Processors did not properly clear microarchitectural state after speculative execution of various instructions. A...

7.8CVSS8.2AI score0.05794EPSS
Exploits4References10
OSV
OSV
added 2023/08/29 9:35 p.m.4 views

USN-6318-1 linux, linux-aws, linux-aws-6.2, linux-azure, linux-hwe-6.2, linux-ibm, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-6.2, linux-raspi vulnerabilities

Daniel Moghimi discovered that some IntelR Processors did not properly clear microarchitectural state after speculative execution of various instructions. A local unprivileged user could use this to obtain to sensitive information. CVE-2022-40982 Tavis Ormandy discovered that some AMD processors...

7.8CVSS7.1AI score0.05794EPSS
Exploits4References11
OSV
OSV
added 2023/08/29 9:12 p.m.13 views

USN-6317-1 linux, linux-aws, linux-aws-5.4, linux-gcp, linux-hwe-5.4, linux-kvm, linux-oracle, linux-xilinx-zynqmp vulnerabilities

Daniel Moghimi discovered that some IntelR Processors did not properly clear microarchitectural state after speculative execution of various instructions. A local unprivileged user could use this to obtain to sensitive information. CVE-2022-40982 Tavis Ormandy discovered that some AMD processors...

7.8CVSS7.1AI score0.05794EPSS
Exploits3References6
OSV
OSV
added 2023/08/29 7:57 p.m.14 views

USN-6315-1 linux, linux-aws, linux-aws-5.15, linux-gcp, linux-gke, linux-gkeop, linux-hwe-5.15, linux-ibm, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-oracle-5.15 vulnerabilities

Daniel Moghimi discovered that some IntelR Processors did not properly clear microarchitectural state after speculative execution of various instructions. A local unprivileged user could use this to obtain to sensitive information. CVE-2022-40982 Tavis Ormandy discovered that some AMD processors...

7.8CVSS7.1AI score0.05794EPSS
Exploits5References12
Amazon
Amazon
added 2023/08/09 12:0 a.m.9 views

Medium: kernel

Issue Overview: An issue was discovered in the Linux kernel before 6.2. The ntfs3 subsystem does not properly check for correctness during disk reads, leading to an out-of-bounds read in ntfssetea in fs/ntfs3/xattr.c. CVE-2022-48502 A side channel vulnerability on some of the AMD CPUs may allow a...

7.8CVSS7.1AI score0.0616EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2023/07/27 12:0 a.m.25 views

Ubuntu 20.04 LTS : Linux kernel (IoT) vulnerabilities (USN-6256-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6256-1 advisory. Jiasheng Jiang discovered that the HSA Linux kernel driver for AMD Radeon GPU devices did not properly validate memory allocation in certain situations,...

7.8CVSS7.5AI score0.16642EPSS
Exploits13References33
Tenable Nessus
Tenable Nessus
added 2023/07/27 12:0 a.m.74 views

Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-6260-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6260-1 advisory. It was discovered that the NTFS file system implementation in the Linux kernel did not properly check buffer indexes in certain situations, leading to an...

7.8CVSS8AI score0.15783EPSS
Exploits18References10
Tenable Nessus
Tenable Nessus
added 2023/07/26 12:0 a.m.40 views

Ubuntu 16.04 ESM : Linux kernel vulnerabilities (USN-6254-1)

The remote Ubuntu 16.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6254-1 advisory. Jordy Zomer and Alexandra Sandulescu discovered that syscalls invoking the doprlimit function in the Linux kernel did not properly handle speculative...

7.8CVSS7.6AI score0.02154EPSS
Exploits4References13
OSV
OSV
added 2023/07/25 9:55 p.m.4 views

USN-6248-1 linux-oem-6.0 vulnerabilities

It was discovered that the network queuing discipline implementation in the Linux kernel contained a null pointer dereference in some situations. A local attacker could use this to cause a denial of service system crash. CVE-2022-47929 It was discovered that a race condition existed in Adreno GPU...

7.8CVSS6.8AI score0.15783EPSS
Exploits17References8
Amazon
Amazon
added 2023/06/12 12:0 a.m.4 views

Important: kernel-livepatch-6.1.15-28.43

Issue Overview: In the Linux kernel through 6.2.7, fs/ntfs3/inode.c has an invalid kfree because it does not validate MFT flags before replaying logs. CVE-2022-48425 An out-of-bounds memory access flaw was found in the Linux kernel's XFS file system in how a user restores an XFS image after failu...

7.8CVSS6.6AI score0.12966EPSS
Exploits8
OSV
OSV
added 2023/06/01 9:41 p.m.8 views

USN-6134-1 linux-intel-iotg-5.15 vulnerabilities

It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel did not properly perform filter deactivation in some situations. A local attacker could possibly use this to gain elevated privileges. Please note that with the fix for this CVE, kernel support for the...

8.1CVSS7.2AI score0.0788EPSS
Exploits18References25
OSV
OSV
added 2023/05/30 5:32 p.m.3 views

USN-6122-1 linux-oem-6.1 vulnerabilities

Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrar...

7.8CVSS6.7AI score0.12966EPSS
Exploits7References3
Tenable Nessus
Tenable Nessus
added 2023/05/14 12:0 a.m.96 views

Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6071-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6071-1 advisory. It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel did not properly perform filter deactivation in some...

7.8CVSS7.6AI score0.0788EPSS
Exploits18References13
Tenable Nessus
Tenable Nessus
added 2023/05/05 12:0 a.m.43 views

Ubuntu 22.04 LTS : Linux kernel (Intel IoTG) vulnerabilities (USN-6057-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6057-1 advisory. It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker...

7.8CVSS7.8AI score0.0788EPSS
Exploits15References11
Tenable Nessus
Tenable Nessus
added 2023/04/19 12:0 a.m.49 views

Ubuntu 16.04 ESM / 18.04 LTS : Linux kernel vulnerabilities (USN-6029-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6029-1 advisory. It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel contained a use-after-free vulnerability. A local...

7.8CVSS7.2AI score0.0046EPSS
Exploits0References6
Rows per page
Query Builder