CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1252 matches found

OSV•added 2024/11/25 10:15 p.m.•2 views

UBUNTU-CVE-2024-53096

In the Linux kernel, the following vulnerability has been resolved: mm: resolve faulty mmapregion error path behaviour The mmapregion function is somewhat terrifying, with spaghetti-like control flow and numerous means by which issues can arise and incomplete state, memory leaks and other...

7.8CVSS6.2AI score0.00336EPSS

Exploits1References24

Vulnrichment•added 2024/11/25 9:17 p.m.•5 views

CVE-2024-53096 mm: resolve faulty mmap_region() error path behaviour

7.5AI score0.00336EPSS

Exploits1References6

CNNVD•added 2024/11/25 12:0 a.m.•1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the complexity of the mmapregion function, which leads to control flow disruption and the creation of multip...

7.8CVSS6.8AI score0.00336EPSS

Exploits1References2

OSV•added 2024/11/22 2:22 p.m.•6 views

OESA-2024-2449 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: mm: call the securitymmapfile LSM hook in remapfilepages The remapfilepages syscall handler calls dommap directly, which doesn't contain the LSM security check...

7.8CVSS5.8AI score0.00283EPSS

Exploits0References6

SUSE CVE•added 2024/11/20 3:48 a.m.•1 views

SUSE CVE-2024-53071

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Be stricter about IO mapping flags The current panthordevicemmapio implementation has two issues: 1. For mapping DRMPANTHORUSERFLUSHIDMMIOOFFSET, panthordevicemmapio bails if VMWRITE is set, but does not clear...

7.8CVSS7.4AI score0.00195EPSS

Exploits0References3

OSV•added 2024/11/19 6:15 p.m.•1 views

UBUNTU-CVE-2024-53071

5.5CVSS5.7AI score0.00195EPSS

Exploits0References8

OSV•added 2024/11/12 4:56 p.m.•7 views

CLSA-2024-1731430561 kernel: Fix of 31 CVEs

driver core: bus: Fix double free in driver API busregister CVE-2024-50055 - net: tun: Fix use-after-free in tundetach CVE-2022-49014 - memcg: fix possible use-after-free in memcgwriteeventcontrol CVE-2022-48988 - ppp: fix pppasyncencode illegal access CVE-2024-50035 - drivers: media:...

9.1CVSS6.9AI score0.04534EPSS

Exploits5References1

RedHat Linux•added 2024/11/12 9:11 a.m.•4 views

kernel: hwrng: core - Fix page fault dead lock on mmap-ed hwrng

A vulnerability was found in the hwrng component of the Linux kernel, which caused a deadlock when reading from /dev/hwrng into memory and mmap-ed from /dev/hwrng. This issue is triggered by a recursive read during a page fault and allows a local, authenticated attacker to cause a denial of servi...

5.5CVSS6.7AI score0.00195EPSS

Exploits0References5

RedHat Linux•added 2024/11/12 9:11 a.m.•4 views

kernel: fuse: Initialize beyond-EOF page contents before setting uptodate

In the Linux kernel, the following vulnerability has been resolved: fuse: Initialize beyond-EOF page contents before setting uptodate fusenotifystore, unlike fusedoreadpage, does not enable page zeroing because it can be used to change partial page contents. So fusenotifystore must be more carefu...

5.5CVSS6.4AI score0.00879EPSS

Exploits2References5

RedHat Linux•added 2024/11/12 9:11 a.m.•3 views

kernel: drm/shmem-helper: Fix BUG_ON() on mmap(PROT_WRITE, MAP_PRIVATE)

In the Linux kernel, the following vulnerability has been resolved: drm/shmem-helper: Fix BUGON on mmapPROTWRITE, MAPPRIVATE Lack of check for copy-on-write COW mapping in drmgemshmemmmap allows users to call mmap with PROTWRITE and MAPPRIVATE flag causing a kernel panic due to BUGON in...

5.5CVSS6.7AI score0.00275EPSS

Exploits0References5

RedHat Linux•added 2024/11/12 9:11 a.m.•4 views

kernel: io_uring/kbuf: hold io_buffer_list reference over mmap

CVE-2024-35880 is a vulnerability in the Linux kernel's iouring subsystem, specifically related to how kernel buffers kbuf are handled during memory mapping mmap operations. The flaw stems from a situation where a buffer can be unregistered prematurely while it is still being used, leading to a...

5.5CVSS7.4AI score0.00654EPSS

Exploits0References5

OSV•added 2024/11/11 6:9 p.m.•12 views

CLSA-2024-1731348593 kernel: Fix of 18 CVEs

mm: call the securitymmapfile LSM hook in remapfilepages CVE-2024-47745 - slip: make slhcremember more robust against malicious packets CVE-2024-50033 - drm/amdkfd: amdkfdfreegttmem clear the correct pointer CVE-2024-49991 - firmwareloader: Block path traversal CVE-2024-47742 - ext4: avoid OOB...

8.8CVSS6.9AI score0.0084EPSS

Exploits0References1

SUSE CVE•added 2024/10/22 2:21 p.m.•3 views

SUSE CVE-2022-49030

In the Linux kernel, the following vulnerability has been resolved: libbpf: Handle size overflow for ringbuf mmap The maximum size of ringbuf is 2GB on x86-64 host, so 2 maxentries will overflow u32 when mapping producer page and data pages. Only casting maxentries to sizet is not enough, because...

7.8CVSS6.1AI score0.00277EPSS

Exploits0References3

RedhatCVE•added 2024/10/22 8:39 a.m.•18 views

CVE-2022-48981

In the Linux kernel, the following vulnerability has been resolved: drm/shmem-helper: Remove errant put in error path drmgemshmemmmap doesn't own this reference, resulting in the GEM object getting prematurely freed leading to a later use-after-free...

6CVSS6.8AI score0.00249EPSS

Exploits0References4