Lucene search
K

332 matches found

OSV
OSV
added 2025/01/11 1:15 p.m.1 views

UBUNTU-CVE-2024-46896

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: don't access invalid sched Since 2320c9e6a768 "drm/sched: memset 'job' in drmschedjobinit" accessing job-base.sched can produce unexpected results as the initialisation of job-base.sched done in amdgpujoballoc is...

5.5CVSS6.2AI score0.00212EPSS
Exploits0References7
OSV
OSV
added 2025/01/06 6:15 p.m.2 views

DEBIAN-CVE-2024-55627

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a specially crafted TCP stream can lead to a very large buffer overflow while being zero-filled during initialization with memset due to an unsigned integer...

7.5CVSS8.6AI score0.01001EPSS
Exploits0References1
OSV
OSV
added 2025/01/06 5:15 p.m.5 views

AZL-55050 CVE-2024-56767 affecting package kernel for versions less than 6.6.76.1-1

In the Linux kernel, the following vulnerability has been resolved: dmaengine: atxdmac: avoid nullprtderef in atxdmacprepdmamemset The atxdmacmemsetcreatedesc may return NULL, which will lead to a null pointer dereference. For example, the len input is error, or the atchan-freedescslist is empty...

5.5CVSS6.3AI score0.00212EPSS
Exploits0References1
OSV
OSV
added 2025/01/06 5:15 p.m.6 views

AZL-55103 CVE-2024-56767 affecting package kernel for versions less than 5.15.176.3-1

In the Linux kernel, the following vulnerability has been resolved: dmaengine: atxdmac: avoid nullprtderef in atxdmacprepdmamemset The atxdmacmemsetcreatedesc may return NULL, which will lead to a null pointer dereference. For example, the len input is error, or the atchan-freedescslist is empty...

5.5CVSS6.3AI score0.00212EPSS
Exploits0References1
OSV
OSV
added 2025/01/06 5:15 p.m.1 views

DEBIAN-CVE-2024-56767

In the Linux kernel, the following vulnerability has been resolved: dmaengine: atxdmac: avoid nullprtderef in atxdmacprepdmamemset The atxdmacmemsetcreatedesc may return NULL, which will lead to a null pointer dereference. For example, the len input is error, or the atchan-freedescslist is empty...

5.5CVSS5.6AI score0.00212EPSS
Exploits0References1
OSV
OSV
added 2025/01/06 5:15 p.m.2 views

UBUNTU-CVE-2024-56767

In the Linux kernel, the following vulnerability has been resolved: dmaengine: atxdmac: avoid nullprtderef in atxdmacprepdmamemset The atxdmacmemsetcreatedesc may return NULL, which will lead to a null pointer dereference. For example, the len input is error, or the atchan-freedescslist is empty...

5.5CVSS6.2AI score0.00212EPSS
Exploits0References52
CNNVD
CNNVD
added 2025/01/06 12:0 a.m.4 views

Suricata 安全漏洞

Suricata is a network IDS, IPS and NSM engine from the Open Information Security Foundation. A security vulnerability exists in Suricata versions prior to 7.0.8, which stems from an unsigned integer underflow, where a specially crafted TCP stream may cause a very large buffer overflow when padded...

7.5CVSS6.7AI score0.01001EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/11/26 3:48 a.m.3 views

SUSE CVE-2024-53097

In the Linux kernel, the following vulnerability has been resolved: mm: krealloc: Fix MTE false alarm in dokrealloc This patch addresses an issue introduced by commit 1a83a716ec233 "mm: krealloc: consider spare memory for GFPZERO" which causes MTE Memory Tagging Extension to falsely report a...

5.5CVSS7.6AI score0.00227EPSS
Exploits0References4
OSV
OSV
added 2024/11/25 10:15 p.m.1 views

UBUNTU-CVE-2024-53097

In the Linux kernel, the following vulnerability has been resolved: mm: krealloc: Fix MTE false alarm in dokrealloc This patch addresses an issue introduced by commit 1a83a716ec233 "mm: krealloc: consider spare memory for GFPZERO" which causes MTE Memory Tagging Extension to falsely report a...

5.5CVSS6.2AI score0.00227EPSS
Exploits0References24
Vulnrichment
Vulnrichment
added 2024/11/25 9:21 p.m.2 views

CVE-2024-53097 mm: krealloc: Fix MTE false alarm in __do_krealloc

In the Linux kernel, the following vulnerability has been resolved: mm: krealloc: Fix MTE false alarm in dokrealloc This patch addresses an issue introduced by commit 1a83a716ec233 "mm: krealloc: consider spare memory for GFPZERO" which causes MTE Memory Tagging Extension to falsely report a...

7.7AI score0.00227EPSS
Exploits0References7
Cvelist
Cvelist
added 2024/11/25 9:21 p.m.36 views

CVE-2024-53097 mm: krealloc: Fix MTE false alarm in __do_krealloc

In the Linux kernel, the following vulnerability has been resolved: mm: krealloc: Fix MTE false alarm in dokrealloc This patch addresses an issue introduced by commit 1a83a716ec233 "mm: krealloc: consider spare memory for GFPZERO" which causes MTE Memory Tagging Extension to falsely report a...

0.00227EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2024/10/22 3:11 p.m.10 views

CVE-2024-49885

In the Linux kernel, the following vulnerability has been resolved: mm, slub: avoid zeroing kmalloc redzone Since commit 946fa0dbf2d8 "mm/slub: extend redzone check to extra allocated kmalloc space than requested", setting origsize treats the wasted space objectsize - origsize as a redzone. Howev...

5.5CVSS6.7AI score0.00233EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/10/21 10:38 p.m.10 views

CVE-2024-49900

In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uninit-value access of newea in eabuffer syzbot reports that lzo1x1docompress is using uninit-value: ===================================================== BUG: KMSAN: uninit-value in lzo1x1docompress+0x19f9/0x2510...

7.1CVSS6.6AI score0.00279EPSS
Exploits0References4
OSV
OSV
added 2024/10/21 6:15 p.m.1 views

DEBIAN-CVE-2024-49900

In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uninit-value access of newea in eabuffer syzbot reports that lzo1x1docompress is using uninit-value: ===================================================== BUG: KMSAN: uninit-value in lzo1x1docompress+0x19f9/0x2510...

7.1CVSS6.2AI score0.00279EPSS
Exploits0References1
NVD
NVD
added 2024/10/21 6:15 p.m.11 views

CVE-2024-49885

In the Linux kernel, the following vulnerability has been resolved: mm, slub: avoid zeroing kmalloc redzone Since commit 946fa0dbf2d8 "mm/slub: extend redzone check to extra allocated kmalloc space than requested", setting origsize treats the wasted space objectsize - origsize as a redzone. Howev...

5.5CVSS0.00233EPSS
Exploits0References3
OSV
OSV
added 2024/10/21 6:15 p.m.6 views

UBUNTU-CVE-2024-49900

In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uninit-value access of newea in eabuffer syzbot reports that lzo1x1docompress is using uninit-value: ===================================================== BUG: KMSAN: uninit-value in lzo1x1docompress+0x19f9/0x2510...

7.1CVSS6.5AI score0.00279EPSS
Exploits0References43
OSV
OSV
added 2024/10/21 6:1 p.m.14 views

CVE-2024-49900 jfs: Fix uninit-value access of new_ea in ea_buffer

In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uninit-value access of newea in eabuffer syzbot reports that lzo1x1docompress is using uninit-value: ===================================================== BUG: KMSAN: uninit-value in lzo1x1docompress+0x19f9/0x2510...

7.1CVSS6.3AI score0.00279EPSS
Exploits0References16
Vulnrichment
Vulnrichment
added 2024/10/21 6:1 p.m.8 views

CVE-2024-49900 jfs: Fix uninit-value access of new_ea in ea_buffer

In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uninit-value access of newea in eabuffer syzbot reports that lzo1x1docompress is using uninit-value: ===================================================== BUG: KMSAN: uninit-value in lzo1x1docompress+0x19f9/0x2510...

6.7AI score0.00279EPSS
Exploits0References9
CVE
CVE
added 2024/10/21 6:1 p.m.145 views

CVE-2024-49885

CVE-2024-49885: Linux kernel mm/slub kmalloc redzone issue resolved. Root cause: orig_size handling treated wasted space as redzone and, with init_on_free=1, clears full object->size including metadata, causing check_object() to misclassify the object as redzone. Fix: clear the used area using...

5.5CVSS5.3AI score0.00233EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/10/21 6:1 p.m.11 views

CVE-2024-49885 mm, slub: avoid zeroing kmalloc redzone

In the Linux kernel, the following vulnerability has been resolved: mm, slub: avoid zeroing kmalloc redzone Since commit 946fa0dbf2d8 "mm/slub: extend redzone check to extra allocated kmalloc space than requested", setting origsize treats the wasted space objectsize - origsize as a redzone. Howev...

5.5CVSS6.3AI score0.00233EPSS
Exploits0References6
Rows per page
Query Builder