Lucene search
K

32 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: ice: Ensure that the copied buffer is terminated with NUL characters. Currently, we allocate a kernel buffer of a certain size and copy a certain number of bytes from user space to that buffer. Later, we use sscanf on this buffer...

7.1CVSS6.2AI score0.00213EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010884)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010884 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: wil6210: debugfs: fix info leak in wilwritefilewmi The simplewritetobuffer function will...

7.1CVSS6.1AI score0.00214EPSS
Exploits0References4
OSV
OSV
added 2026/01/12 10:34 a.m.3 views

SUSE-SU-2026:0090-1 Security update for the Linux Kernel (Live Patch 24 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise kernel 5.14.21-150500.55.97 fixes various security issues The following security issues were fixed: - CVE-2023-53574: wifi: rtw88: delete timer and free skb queue when unloading bsc1251984. - CVE-2025-38257: s390/pkey: prevent overflow in size calculation...

7.8CVSS5.8AI score0.00147EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/12/30 12:0 a.m.2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992180)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992180 advisory. In the Linux kernel, the following vulnerability has been resolved: nfsd: Fix a memory leak in an error handling path If this memdupuser call fails, the memory...

5.5CVSS6.4AI score0.00147EPSS
Exploits0References4
OSV
OSV
added 2025/11/12 10:15 p.m.6 views

AZL-70109 CVE-2025-40193 affecting package kernel for versions less than 6.6.117.1-1

In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in procwritesimdisk A malicious user could pass an arbitrarily bad value to memdupusernul, potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 "netdevsim:...

5.6AI score0.00187EPSS
Exploits0References1
CVE
CVE
added 2025/11/12 9:56 p.m.25 views

CVE-2025-40193

In CVE-2025-40193, the Linux kernel’s xtensa simdisk component (proc_write_simdisk) lacks an input size check, allowing a malicious user to pass an invalid value to memdup_user_nul() and potentially crash the kernel. The issue is tied to changes referenced as a pattern to the nsim_dev_health_brea...

6AI score0.00187EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.4 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-393787)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-393787 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: qedf: Ensure the copied buf is NUL terminated Currently, we allocate a count-sized kernel...

4.4CVSS6.2AI score0.00253EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.5 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-382572)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-382572 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: bfa: Ensure the copied buf is NUL terminated Currently, we allocate a nbytes-sized kernel...

7.1CVSS6.2AI score0.00265EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2022-55614

Malicious code in bioql PyPI...

7.4AI score0.00147EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/09/16 6:59 p.m.4 views

CVE-2022-50348

In the Linux kernel, the following vulnerability has been resolved: nfsd: Fix a memory leak in an error handling path If this memdupuser call fails, the memory allocated in a previous call a few lines above should be freed. Otherwise it leaks...

5.5CVSS5.8AI score0.00147EPSS
Exploits0References4
OSV
OSV
added 2025/09/16 5:15 p.m.5 views

UBUNTU-CVE-2022-50348

In the Linux kernel, the following vulnerability has been resolved: nfsd: Fix a memory leak in an error handling path If this memdupuser call fails, the memory allocated in a previous call a few lines above should be freed. Otherwise it leaks...

5.5CVSS5.8AI score0.00147EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/09/16 4:11 p.m.5 views

CVE-2022-50348 nfsd: Fix a memory leak in an error handling path

In the Linux kernel, the following vulnerability has been resolved: nfsd: Fix a memory leak in an error handling path If this memdupuser call fails, the memory allocated in a previous call a few lines above should be freed. Otherwise it leaks...

0.00147EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/09/16 4:11 p.m.2 views

CVE-2022-50348 nfsd: Fix a memory leak in an error handling path

In the Linux kernel, the following vulnerability has been resolved: nfsd: Fix a memory leak in an error handling path If this memdupuser call fails, the memory allocated in a previous call a few lines above should be freed. Otherwise it leaks...

6.7AI score0.00147EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/08/29 12:0 a.m.5 views

PT-2025-46750

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel where a malicious user could provide an invalid value to the memdup user nul function, potentially leading to a kernel crash. This issue is related to t...

4.6CVSS6.9AI score0.00187EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-38257

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - s390/pkey: Prevent overflow in size calculation for memdupuser Number of apqn target list entries contained in 'nrapqns' variable is determined by userspace via...

7.8CVSS6.8AI score0.00147EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2025/08/07 7:0 a.m.3 views

s390/pkey: Prevent overflow in size calculation for memdup_user()

...

7.8CVSS7AI score0.00147EPSS
Exploits0
OSV
OSV
added 2025/07/09 11:15 a.m.6 views

AZL-64871 CVE-2025-38257 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Prevent overflow in size calculation for memdupuser Number of apqn target list entries contained in 'nrapqns' variable is determined by userspace via an ioctl call so the result of the product in calculation of size...

7.8CVSS6.8AI score0.00147EPSS
Exploits0References1
OSV
OSV
added 2025/07/09 11:15 a.m.3 views

UBUNTU-CVE-2025-38257

In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Prevent overflow in size calculation for memdupuser Number of apqn target list entries contained in 'nrapqns' variable is determined by userspace via an ioctl call so the result of the product in calculation of size...

7.8CVSS6.4AI score0.00147EPSS
Exploits0References40
CNNVD
CNNVD
added 2025/07/09 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a memdupuser computational overflow in the s390 pkey driver, which could lead to a memory allocation error...

7.8CVSS7AI score0.00147EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/07/09 12:0 a.m.4 views

PT-2025-28885

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the s390/pkey subsystem. A calculation error in the memdup user function, related to the number of apqn target list entries determined by a...

7.8CVSS6.9AI score0.00147EPSS
Exploits0
Rows per page
Query Builder