Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : glibc-2.28-164.el8 (AXSA:2021-2585:08)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2585:08 advisory. glibc: Arbitrary read in wordexp CVE-2021-35942 glibc: Use-after-free in addgetnetgrentX function in netgroupcache.c CVE-2021-27645 glibc: mqnotify...

9.8CVSS7.6AI score0.02898EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003418)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003418 advisory. The mqnotify function in the Linux kernel through 4.11.9 does not set the sock pointer to NULL upon entry into the retry logic. During a user-space close of a Netlin...

7.8CVSS6.9AI score0.03631EPSS
Exploits8References15
SUSE CVE
SUSE CVE
added 2023/02/15 3:38 a.m.4 views

SUSE CVE-2021-38604

In librt in the GNU C Library aka glibc through 2.34, sysdeps/unix/sysv/linux/mqnotify.c mishandles certain NOTIFYREMOVED data, leading to a NULL pointer dereference. NOTE: this vulnerability was introduced as a side effect of the CVE-2021-33574 fix...

7.5CVSS7.1AI score0.03045EPSS
Exploits1References3
OSV
OSV
added 2022/02/01 2:58 p.m.7 views

CLSA-2022-1643727522 Fix of CVE: CVE-2021-35942, CVE-2021-27645, CVE-2021-33574

CVE-2021-27645: nscd: Fix double free in netgroupcache 1927877 - CVE-2021-33574: Deep copy pthread attribute in mqnotify 1966472 - CVE-2021-35942: wordexp: handle overflow in positional parameter number 1979127 - librt: fix NULL pointer dereference 1966472...

9.8CVSS6.8AI score0.02898EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2021/08/19 12:0 a.m.8 views

The vulnerability of the `sysdeps/unix/sysv/linux/mq_notify.c` component in the glibc library allows a attacker to cause a service failure.

The vulnerability of the sysdeps/unix/sysv/linux/mqnotify.c component of the glibc library is related to the handling of zero pointers. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

5.9CVSS6.5AI score0.03045EPSS
Exploits1References5Affected Software1
RedHat Linux
RedHat Linux
added 2018/12/13 3:59 p.m.5 views

kernel: Use-after-free in sys_mq_notify()

A use-after-free flaw was found in the Netlink functionality of the Linux kernel networking subsystem. Due to the insufficient cleanup in the mqnotify function, a local attacker could potentially use this flaw to escalate their privileges on the system...

7.8CVSS7.1AI score0.03631EPSS
Exploits8References4
Oracle linux
Oracle linux
added 2017/12/07 12:0 a.m.85 views

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-118.20.1 - tty: Fix race in ptywrite leading to NULL deref Todd Vierling Orabug: 25392692 - ocfs2/dlm: ignore cleaning the migration mle that is inuse xuejiufei Orabug: 26479780 - KEYS: fix dereferencing NULL payload with nonzero length Eric Biggers Orabug: 26592025 - oracleasm:...

8.8CVSS8.6AI score0.16181EPSS
Exploits32
Positive Technologies
Positive Technologies
added 2017/07/09 12:0 a.m.8 views

PT-2017-2476 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions through 4.11.9 Description: The issue is related to the mq notify function in the Linux kernel, which does not set the sock pointer to NULL upon entry into the retry logic. This allows attackers to cause a denial of...

10CVSS7.9AI score0.24299EPSS
Exploits99References489
Rows per page
Query Builder