Lucene search
K

35 matches found

NVD
NVD
added 2025/11/12 10:15 p.m.6 views

CVE-2025-40193

In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in procwritesimdisk A malicious user could pass an arbitrarily bad value to memdupusernul, potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 "netdevsim:...

0.00187EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/11/12 9:56 p.m.4 views

CVE-2025-40193

In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in procwritesimdisk A malicious user could pass an arbitrarily bad value to memdupusernul, potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 "netdevsim:...

5.1AI score0.00187EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.0 views

Linux Distros Unpatched Vulnerability : CVE-2024-36935

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ice: ensure the copied buf is NUL terminated Currently, we allocate a count-sized kernel...

7.1CVSS6AI score0.00213EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-38560

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: scsi: bfa: Ensure the copied buf is NUL terminated Currently, we allocate a nbytes-sized...

7.1CVSS6.4AI score0.00265EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2024-36934

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bna: ensure the copied buf is NUL terminated Currently, we allocate a nbytes-sized kernel buffer and copy nbytes from userspace to that buffer. Later, we use...

7.8CVSS7AI score0.00295EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.12 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: bna: Ensure that the copied buffer is terminated with NUL characters. Currently, we allocate a kernel buffer of size nbytes and copy nbytes from user space to that buffer. Later, we use sscanf on this buffer, but we do not ensure...

7.8CVSS6.4AI score0.00295EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: scsi: qedf: Ensure the copied buffer is terminated with NUL characters. Currently, we allocate a kernel buffer of a certain size and copy data from user space to that buffer. Later, we use kstrtouint on this buffer, but we do not...

4.4CVSS6.3AI score0.00253EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/06/26 12:46 a.m.7 views

kernel: octeontx2-af: avoid off-by-one read from userspace

In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: avoid off-by-one read from userspace We try to access count + 1 byte from userspace with memdupuserbuffer, count + 1. However, the userspace only provides buffer of count bytes and only these count bytes are verifie...

5.5CVSS6.9AI score0.00238EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/06/26 12:9 a.m.6 views

kernel: octeontx2-af: avoid off-by-one read from userspace

In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: avoid off-by-one read from userspace We try to access count + 1 byte from userspace with memdupuserbuffer, count + 1. However, the userspace only provides buffer of count bytes and only these count bytes are verifie...

5.5CVSS6.9AI score0.00238EPSS
Exploits0References5
NVD
NVD
added 2024/06/19 2:15 p.m.25 views

CVE-2024-38559

In the Linux kernel, the following vulnerability has been resolved: scsi: qedf: Ensure the copied buf is NUL terminated Currently, we allocate a count-sized kernel buffer and copy count from userspace to that buffer. Later, we use kstrtouint on this buffer but we don't ensure that the string is...

4.4CVSS0.00253EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2024/06/19 2:15 p.m.21 views

CVE-2024-38560

In the Linux kernel, the following vulnerability has been resolved: scsi: bfa: Ensure the copied buf is NUL terminated Currently, we allocate a nbytes-sized kernel buffer and copy nbytes from userspace to that buffer. Later, we use sscanf on this buffer but we don't ensure that the string is...

7.1CVSS6.5AI score0.00265EPSS
Exploits0References32
OSV
OSV
added 2024/06/19 1:35 p.m.12 views

CVE-2024-38560 scsi: bfa: Ensure the copied buf is NUL terminated

In the Linux kernel, the following vulnerability has been resolved: scsi: bfa: Ensure the copied buf is NUL terminated Currently, we allocate a nbytes-sized kernel buffer and copy nbytes from userspace to that buffer. Later, we use sscanf on this buffer but we don't ensure that the string is...

7.1CVSS6AI score0.00265EPSS
Exploits0References14
CVE
CVE
added 2024/06/19 1:35 p.m.112 views

CVE-2024-38560

The CVE-2024-38560 entry concerns Linux kernel SCSI (bfa) code. A vulnerable path copies nbytes from userspace into a kernel buffer without guaranteeing a NUL terminator, enabling an OOB read when sscanf is applied. The issue is fixed by replacing memdup_user with memdup_user_nul to ensure proper...

7.1CVSS6.5AI score0.00265EPSS
Exploits0References11Affected Software1
Vulnrichment
Vulnrichment
added 2024/06/19 1:35 p.m.20 views

CVE-2024-38560 scsi: bfa: Ensure the copied buf is NUL terminated

In the Linux kernel, the following vulnerability has been resolved: scsi: bfa: Ensure the copied buf is NUL terminated Currently, we allocate a nbytes-sized kernel buffer and copy nbytes from userspace to that buffer. Later, we use sscanf on this buffer but we don't ensure that the string is...

6.7AI score0.00265EPSS
Exploits0References9
OSV
OSV
added 2024/06/19 1:35 p.m.12 views

CVE-2024-38559 scsi: qedf: Ensure the copied buf is NUL terminated

In the Linux kernel, the following vulnerability has been resolved: scsi: qedf: Ensure the copied buf is NUL terminated Currently, we allocate a count-sized kernel buffer and copy count from userspace to that buffer. Later, we use kstrtouint on this buffer but we don't ensure that the string is...

4.4CVSS6AI score0.00253EPSS
Exploits0References14
Vulnrichment
Vulnrichment
added 2024/06/19 1:35 p.m.19 views

CVE-2024-38559 scsi: qedf: Ensure the copied buf is NUL terminated

In the Linux kernel, the following vulnerability has been resolved: scsi: qedf: Ensure the copied buf is NUL terminated Currently, we allocate a count-sized kernel buffer and copy count from userspace to that buffer. Later, we use kstrtouint on this buffer but we don't ensure that the string is...

6.9AI score0.00253EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2024/06/03 12:34 p.m.22 views

CVE-2024-36935

A flaw was found in the ice module in the Linux kernel. Data from the user space is copied to a kernel buffer without making sure it is NULL terminated, causing an out-of-bounds read and resulting in a denial of service...

5.5CVSS8.8AI score0.00213EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/06/03 12:34 p.m.22 views

CVE-2024-36934

In the Linux kernel, the following vulnerability has been resolved: bna: ensure the copied buf is NUL terminated Currently, we allocate a nbytes-sized kernel buffer and copy nbytes from userspace to that buffer. Later, we use sscanf on this buffer but we don't ensure that the string is terminated...

6.1CVSS6.5AI score0.00295EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/06/01 2:22 a.m.3 views

SUSE CVE-2024-36934

In the Linux kernel, the following vulnerability has been resolved: bna: ensure the copied buf is NUL terminated Currently, we allocate a nbytes-sized kernel buffer and copy nbytes from userspace to that buffer. Later, we use sscanf on this buffer but we don't ensure that the string is terminated...

5.1CVSS6.2AI score0.00295EPSS
Exploits0References16
OSV
OSV
added 2024/05/30 4:15 p.m.0 views

DEBIAN-CVE-2024-36935

In the Linux kernel, the following vulnerability has been resolved: ice: ensure the copied buf is NUL terminated Currently, we allocate a count-sized kernel buffer and copy count bytes from userspace to that buffer. Later, we use sscanf on this buffer but we don't ensure that the string is...

7.1CVSS6.3AI score0.00213EPSS
Exploits0References1
Rows per page
Query Builder