Lucene search
K

4327 matches found

Vulnrichment
Vulnrichment
added 2025/03/02 2:30 p.m.0 views

CVE-2022-49733 ALSA: pcm: oss: Fix race at SNDCTL_DSP_SYNC

In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: oss: Fix race at SNDCTLDSPSYNC There is a small race window at sndpcmosssync that is called from OSS PCM SNDCTLDSPSYNC ioctl; namely the function calls sndpcmossmakeready at first, then takes the paramslock mutex for t...

6.5AI score0.00132EPSS
Exploits0References5
Snyk
Snyk
added 2025/03/01 6:34 a.m.4 views

Race Condition

Overview Affected versions of this package are vulnerable to Race Condition in their random number generation routines in randomengine.cpp file. The vulnerable functions were the unsynchronised random engine methods, now mitigated by proper mutex locking. Remediation Upgrade com.kuzudb:kuzu to...

8.2CVSS6.9AI score
Exploits0References3
Snyk
Snyk
added 2025/03/01 6:34 a.m.4 views

Race Condition

Overview kuzu is an An in-process property graph database management system built for query speed and scalability. Affected versions of this package are vulnerable to Race Condition in their random number generation routines in randomengine.cpp file. The vulnerable functions were the unsynchronis...

8.2CVSS6.9AI score
Exploits0References3
Patchstack
Patchstack
added 2025/03/01 12:8 a.m.4 views

WordPress Secure Copy Content Protection and Content Locking plugin <= 4.4.7 - Missing Authorization to Unauthenticated User Email Retrieval via ays_sccp_reports_user_search Function vulnerability

Missing Authorization to Unauthenticated User Email Retrieval via ayssccpreportsusersearch Function vulnerability discovered by Krzysztof Zając in WordPress Plugin Secure Copy Content Protection and Content Locking versions = 4.4.7...

5.3CVSS7AI score0.00369EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/03/01 12:0 a.m.2 views

WordPress plugin Secure Copy Content Protection and Content Locking 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPress...

5.3CVSS7.5AI score0.00369EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2025/02/28 2:21 a.m.8 views

SUSE CVE-2025-21749

In the Linux kernel, the following vulnerability has been resolved: net: rose: lock the socket in rosebind syzbot reported a soft lockup in roseloopbacktimer, with a repro calling bind from multiple threads. rosebind must lock the socket to avoid this issue...

3.3CVSS6.4AI score0.0017EPSS
Exploits0References13
NVD
NVD
added 2025/02/27 8:16 p.m.22 views

CVE-2025-21820

In the Linux kernel, the following vulnerability has been resolved: tty: xilinxuartps: split sysrq handling lockdep detects the following circular locking dependency: CPU 0 CPU 1 ========================== ============================ cdnsuartisr printk uartportlockport consolelock...

5.5CVSS0.0015EPSS
Exploits0References7
OSV
OSV
added 2025/02/27 8:16 p.m.2 views

DEBIAN-CVE-2025-21820

In the Linux kernel, the following vulnerability has been resolved: tty: xilinxuartps: split sysrq handling lockdep detects the following circular locking dependency: CPU 0 CPU 1 ========================== ============================ cdnsuartisr printk uartportlockport consolelock...

5.5CVSS5.7AI score0.0015EPSS
Exploits0References1
OSV
OSV
added 2025/02/27 8:16 p.m.1 views

DEBIAN-CVE-2025-21811

In the Linux kernel, the following vulnerability has been resolved: nilfs2: protect access to buffers with no active references nilfslookupdirtydatabuffers, which iterates through the buffers attached to dirty data folios/pages, accesses the attached buffers without locking the folios/pages. For...

7.8CVSS5.6AI score0.00211EPSS
Exploits0References1
NVD
NVD
added 2025/02/27 8:16 p.m.7 views

CVE-2025-21809

In the Linux kernel, the following vulnerability has been resolved: rxrpc, afs: Fix peer hash locking vs RCU callback In its address list, afs now retains pointers to and refs on one or more rxrpcpeer objects. The address list is freed under RCU and at this time, it puts the refs on those peers...

5.5CVSS0.00145EPSS
Exploits0References3
OSV
OSV
added 2025/02/27 8:16 p.m.6 views

UBUNTU-CVE-2025-21811

In the Linux kernel, the following vulnerability has been resolved: nilfs2: protect access to buffers with no active references nilfslookupdirtydatabuffers, which iterates through the buffers attached to dirty data folios/pages, accesses the attached buffers without locking the folios/pages. For...

7.8CVSS6.2AI score0.00211EPSS
Exploits0References58
Cvelist
Cvelist
added 2025/02/27 8:4 p.m.17 views

CVE-2025-21820 tty: xilinx_uartps: split sysrq handling

In the Linux kernel, the following vulnerability has been resolved: tty: xilinxuartps: split sysrq handling lockdep detects the following circular locking dependency: CPU 0 CPU 1 ========================== ============================ cdnsuartisr printk uartportlockport consolelock...

0.0015EPSS
Exploits0References6
CVE
CVE
added 2025/02/27 8:4 p.m.127 views

CVE-2025-21820

CVE-2025-21820 affects the Linux kernel tty/xilinx_uartps driver. A deadlock could occur due to a circular lock dependency between uart_port_lock and console_lock when handling sysrq. The fix splits sysrq handling into two parts: using a prepare step under the port lock and deferring actual handl...

5.5CVSS6.5AI score0.0015EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2025/02/27 8:4 p.m.12 views

CVE-2025-21820 tty: xilinx_uartps: split sysrq handling

In the Linux kernel, the following vulnerability has been resolved: tty: xilinxuartps: split sysrq handling lockdep detects the following circular locking dependency: CPU 0 CPU 1 ========================== ============================ cdnsuartisr printk uartportlockport consolelock...

5.5CVSS6AI score0.0015EPSS
Exploits0References10
Debian CVE
Debian CVE
added 2025/02/27 8:1 p.m.11 views

CVE-2025-21809

In the Linux kernel, the following vulnerability has been resolved: rxrpc, afs: Fix peer hash locking vs RCU callback In its address list, afs now retains pointers to and refs on one or more rxrpcpeer objects. The address list is freed under RCU and at this time, it puts the refs on those peers...

5.5CVSS5.7AI score0.00145EPSS
Exploits0
CVE
CVE
added 2025/02/27 8:0 p.m.54 views

CVE-2024-58042

CVE-2024-58042 relates to the Linux kernel and fixes a potential deadlock in rhashtable growth logic. The original implementation could trigger a deadlock chain involving nested locks between the rhashtable bucket, rq lock, and dsq lock. The fix moves the hash table growth check and work scheduli...

5.5CVSS6.5AI score0.00153EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2025/02/27 3:15 a.m.10 views

CVE-2025-21749

In the Linux kernel, the following vulnerability has been resolved: net: rose: lock the socket in rosebind syzbot reported a soft lockup in roseloopbacktimer, with a repro calling bind from multiple threads. rosebind must lock the socket to avoid this issue...

5.5CVSS0.0017EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2025/02/27 3:4 a.m.2 views

SUSE CVE-2022-49584

In the Linux kernel, the following vulnerability has been resolved: ixgbe: Add locking to prevent panic when setting sriovnumvfs to zero It is possible to disable VFs while the PF driver is processing requests from the VF driver. This can result in a panic. BUG: unable to handle kernel paging...

5.5CVSS6.2AI score0.00187EPSS
Exploits0References8
OSV
OSV
added 2025/02/27 2:12 a.m.11 views

CVE-2025-21753 btrfs: fix use-after-free when attempting to join an aborted transaction

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free when attempting to join an aborted transaction When we are trying to join the current transaction and if it's aborted, we read its 'aborted' field after unlocking fsinfo-translock and without holding any...

7.8CVSS6AI score0.00226EPSS
Exploits0References13
CVE
CVE
added 2025/02/27 2:12 a.m.145 views

CVE-2025-21749

CVE-2025-21749: In the Linux kernel, the Rose network layer is affected. The issue arises in rose_bind() where the socket must be locked to prevent a soft lockup triggered by a repro that binds from multiple threads, as reported by syzbot (rose_loopback_timer()). Affected component: roseBind path...

5.5CVSS6.5AI score0.0017EPSS
Exploits0References10Affected Software1
Rows per page
Query Builder