Lucene search
K

3 matches found

BDU FSTEC
BDU FSTEC
added 2023/05/04 12:0 a.m.7 views

The vulnerability of the verity_ctr() function in the drivers/md/dm-verity-target.c module of the device-mapper subsystem in the Linux operating system allows a attacker to execute arbitrary code and connect vulnerable hardware devices.

The vulnerability of the verityctr function in the drivers/md/dm-verity-target.c file of the device-mapper subsystem in the Linux operating system is related to the lack of verification for the types of tables that are loaded. Exploiting this vulnerability allows an attacker with administrative...

6.7CVSS7.1AI score0.0035EPSS
Exploits1References16Affected Software3
RedHat Linux
RedHat Linux
added 2022/11/08 9:25 a.m.7 views

kernel: LoadPin bypass via dm-verity table reload

A flaw was found in the Linux kernel. Dm-verity is used for extending root-of-trust to root filesystems. LoadPin builds on this property to restrict module and firmware loads to just the trusted root filesystem. Device-mapper table reloads currently allow users with root privileges to switch out...

6.9CVSS6.8AI score0.0035EPSS
Exploits1References5
OSV
OSV
added 2022/08/12 11:15 a.m.6 views

DEBIAN-CVE-2022-2503

Dm-verity is used for extending root-of-trust to root filesystems. LoadPin builds on this property to restrict module/firmware loads to just the trusted root filesystem. Device-mapper table reloads currently allow users with root privileges to switch out the target with an equivalent dm-linear...

6.7CVSS7AI score0.0035EPSS
Exploits1References1
Rows per page
Query Builder