Lucene search
+L

107 matches found

Positive Technologies
Positive Technologies
added 2025/03/04 12:0 a.m.11 views

PT-2025-14320 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved, related to the drm/xe/hmm component. The issue involves dereferencing struct page pointers without holding the notifier lock, whi...

7.8CVSS5AI score0.37115EPSS
Exploits3References434
Debian CVE
Debian CVE
added 2025/02/27 8:0 p.m.9 views

CVE-2025-21801

In the Linux kernel, the following vulnerability has been resolved: net: ravb: Fix missing rtnl lock in suspend/resume path Fix the suspend/resume path by ensuring the rtnl lock is held where required. Calls to ravbopen, ravbclose and wol operations must be performed under the rtnl lock to preven...

5.5CVSS5.7AI score0.00178EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/02/26 2:10 a.m.10 views

CVE-2022-49333

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: E-Switch, pair only capable devices OFFLOADS paring using devcom is possible only on devices that support LAG. Filter based on lag capabilities. This fixes an issue where mlx5getnextphysdev was called without holding th...

5.5CVSS5.3AI score0.00245EPSS
Exploits0
OSV
OSV
added 2025/02/26 2:10 a.m.11 views

CVE-2022-49333 net/mlx5: E-Switch, pair only capable devices

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: E-Switch, pair only capable devices OFFLOADS paring using devcom is possible only on devices that support LAG. Filter based on lag capabilities. This fixes an issue where mlx5getnextphysdev was called without holding th...

5.5CVSS5AI score0.00245EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.9 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-38780)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-38780 advisory. - In the Linux kernel, the following vulnerability has been resolved: dma-buf/sw-sync: don't enable IRQ from...

5.5CVSS5.9AI score0.00187EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.13 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-46750)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46750 advisory. - In the Linux kernel, the following vulnerability has been resolved: PCI: Add missing bridge lock to...

5.5CVSS5.9AI score0.00215EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/01/31 6:32 p.m.12 views

CVE-2025-21672

In the Linux kernel, the following vulnerability has been resolved: afs: Fix merge preference rule failure condition syzbot reported a lock held when returning to userspace1. This is because if argc is less than 0 and the function returns directly, the held inode lock is not released. Fix this by...

5.5CVSS6.4AI score0.00136EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/01/11 12:29 p.m.12 views

CVE-2024-54460

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: iso: Fix circular lock in isolistenbis This fixes the circular locking dependency warning below, by releasing the socket lock before enterning isolistenbis, to avoid any potential deadlock with hdev lock. 75.307983...

5.5CVSS5.7AI score0.00133EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.16 views

PT-2025-34363

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A race condition exists in the packet set ring and packet notifier functions within the net/packet module. This occurs when packet set ring releases po-bind lock, allowing another thre...

4.7CVSS8.8AI score0.00288EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.10 views

PT-2025-34411

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the hfsplus filesystem. Syzbot reported an issue where a mutex lock check in hfsplus free extents could trigger warnings and errors during...

5.5CVSS6.1AI score0.00121EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2024/12/29 2:45 p.m.10 views

CVE-2024-56592

In the Linux kernel, the following vulnerability has been resolved: bpf: Call freehtabelem after htabunlockbucket For htab of maps, when the map is removed from the htab, it may hold the last reference of the map. bpfmapfdputptr will invoke bpfmapfreeid to free the id of the removed map element...

5.5CVSS6.8AI score0.00213EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2024/12/28 9:46 a.m.8 views

CVE-2024-56694

In the Linux kernel, the following vulnerability has been resolved: bpf: fix recursive lock when verdict program return SKPASS When the streamverdict program returns SKPASS, it places the received skb into its own receive queue, but a recursive lock eventually occurs, leading to an operating syst...

5.5CVSS5.7AI score0.00163EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/12/13 12:0 a.m.11 views

CBL Mariner 2.0 Security Update: kernel (CVE-2024-50245)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50245 advisory. - In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix possible deadlock in mirea...

5.5CVSS6.1AI score0.00219EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/12/04 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the sctpv6available function that may contain a post-release reuse issue due to not holding the rcu lock...

7.8CVSS7.5AI score0.00214EPSS
Exploits0References3
OSV
OSV
added 2024/11/14 4:53 p.m.10 views

CLSA-2024-1731603213 Fix of 76 CVEs

CVE-url: https://ubuntu.com/security/CVE-2024-44946 - kcm: Serialise kcmsendmsg for the same socket. CVE-url: https://ubuntu.com/security/CVE-2024-42292 - kobjectuevent: Fix OOB access within zapmodaliasenv CVE-url: https://ubuntu.com/security/CVE-2024-41042 - netfilter: nftables: prefer...

9.1CVSS7AI score0.01367EPSS
Exploits2References1
SUSE Linux
SUSE Linux
added 2024/10/30 6:34 p.m.24 views

Security update for the Linux Kernel RT (Live Patch 16 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505001358 fixes several issues. The following security issues were fixed: CVE-2021-47598: schcake: do not call cakedestroy from cakeinit bsc1227471. CVE-2023-52752: smb: client: fix use-after-free bug in cifsdebugdataprocshow bsc1225819. CVE-2024-36899:...

7.8CVSS8.3AI score0.00278EPSS
Exploits0References32
UbuntuCve
UbuntuCve
added 2024/05/22 7:15 a.m.22 views

CVE-2021-47449

In the Linux kernel, the following vulnerability has been resolved: ice: fix locking for Tx timestamp tracking flush Commit 4dd0d5c33c3e "ice: add lock around Tx timestamp tracker flush" added a lock around the Tx timestamp tracker flow which is used to cleanup any left over SKBs and prepare for...

7.1CVSS6.2AI score0.00199EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/04/29 12:0 a.m.12 views

PT-2024-24195 · Yealink · Yealink Vp59 Microsoft Teams Phone

Name of the Vulnerable Software and Affected Versions: Yealink VP59 Microsoft Teams Phone versions 91.15.0.118 through 122.15.0.141 Description: An issue allows a physically proximate attacker to disable the phone lock via the Walkie Talkie menu option. Recommendations: For Yealink VP59 Microsoft...

2.1CVSS6.5AI score0.0031EPSS
Exploits1References4
Amazon
Amazon
added 2024/03/04 12:0 a.m.6 views

Important: thunderbird

Issue Overview: When storing and re-accessing data on a networking channel, the length of buffers may have been confused, resulting in an out-of-bounds memory read. This vulnerability affects Firefox 123, Firefox ESR 115.8, and Thunderbird 115.8. CVE-2024-1546 Through a series of API calls and...

8.1CVSS9.8AI score0.00937EPSS
Exploits1
OSV
OSV
added 2024/03/02 9:52 p.m.11 views

CVE-2023-52524 net: nfc: llcp: Add lock when modifying device list

In the Linux kernel, the following vulnerability has been resolved: net: nfc: llcp: Add lock when modifying device list The device list needs its associated lock held when modifying it, or the list could become corrupted, as syzbot discovered...

7.8CVSS6AI score0.00183EPSS
Exploits0References9
Rows per page
Query Builder