Lucene search
K

11 matches found

CNNVD
CNNVD
added 2026/02/15 12:0 a.m.8 views

Bosch Infotainment ECU 安全漏洞

The Bosch Infotainment ECU is an in-car entertainment system developed by the German company Bosch. The Bosch Infotainment ECU has a security vulnerability, which stems from the lack of kernel module signature verification. This vulnerability could allow attackers to load custom kernel modules an...

6.7CVSS5.9AI score0.00112EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002801)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002801 advisory. It was discovered in the Linux kernel before 4.11-rc8 that root can gain direct access to an internal keyring, such as '.dnsresolver' in RHEL-7 or...

4.4CVSS6.4AI score0.00261EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003088)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003088 advisory. It was discovered in the Linux kernel before 4.11-rc8 that root can gain direct access to an internal keyring, such as '.dnsresolver' in RHEL-7 or...

4.4CVSS6.4AI score0.00261EPSS
Exploits0References11
OSV
OSV
added 2021/08/05 8:24 a.m.12 views

SUSE-SU-2021:2599-2 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP2 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-22555: Fixed an heap out-of-bounds write in net/netfilter/xtables.c that could allow local provilege escalation. bsc1188116 - CVE-2021-3609: Fixed a...

8.3CVSS8.5AI score0.78684EPSS
Exploits22References32
Tenable Nessus
Tenable Nessus
added 2021/07/21 12:0 a.m.75 views

SUSE SLES15: kernel-azure / kernel-azure-devel / kernel-devel-azure / etc (SUSE-SU-2021:2408-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2408-1 advisory. The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: -...

8.3CVSS7.1AI score0.78684EPSS
Exploits28References34
OpenVAS
OpenVAS
added 2021/07/21 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2021:2408-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.3CVSS7.8AI score0.78684EPSS
Exploits28References4
OSV
OSV
added 2018/07/11 1:29 p.m.9 views

CVE-2016-9604

It was discovered in the Linux kernel before 4.11-rc8 that root can gain direct access to an internal keyring, such as '.dnsresolver' in RHEL-7 or '.builtintrustedkeys' upstream, by joining it as its session keyring. This allows root to bypass module signature verification by adding a new public...

4.4CVSS7AI score0.00261EPSS
Exploits0References8
CVE
CVE
added 2018/07/11 1:0 p.m.181 views

CVE-2016-9604

CVE-2016-9604 affects the Linux kernel prior to 4.11-rc8. A local attacker who can join the kernel session keyring can access internal keyrings (e.g., .dns_resolver, .builtin_trusted_keys) and bypass module signature verification by adding a self-generated public key to the keyring, enabling loca...

4.4CVSS5.8AI score0.00261EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/09/08 12:0 a.m.57 views

EulerOS 2.0 SP1 : kernel (EulerOS-SA-2017-1159)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The mqnotify function in the Linux kernel through 4.11.9 does not set the sock pointer to NULL upon entry into the retry logic. During a...

10CVSS7.2AI score0.05233EPSS
Exploits8References9
UbuntuCve
UbuntuCve
added 2016/12/31 12:0 a.m.31 views

CVE-2016-9604

It was discovered in the Linux kernel before 4.11-rc8 that root can gain direct access to an internal keyring, such as '.dnsresolver' in RHEL-7 or '.builtintrustedkeys' upstream, by joining it as its session keyring. This allows root to bypass module signature verification by adding a new public...

4.4CVSS6.7AI score0.00261EPSS
Exploits0References8
Prion
Prion
added 2015/05/19 6:59 p.m.16 views

Design/Logic Flaw

Module::Signature before 0.74 allows remote attackers to bypass signature verification for files via a signature file that does not list the files...

5CVSS7AI score0.02358EPSS
Exploits0References6Affected Software2
Rows per page
Query Builder