Lucene search
K

303 matches found

OSV
OSV
added 2025/08/19 6:6 a.m.3 views

CVE-2025-38553 net/sched: Restrict conditions for adding duplicating netems to qdisc tree

In the Linux kernel, the following vulnerability has been resolved: net/sched: Restrict conditions for adding duplicating netems to qdisc tree netemenqueue's duplication prevention logic breaks when a netem resides in a qdisc tree with other netems - this can lead to a soft lockup and OOM loop in...

5.5CVSS6AI score0.00017EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2025/08/14 12:0 a.m.2 views

Oracle Linux 9 : kernel (ELSA-2025-13602)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-13602 advisory. - net/sched: Always pass notifications when child class becomes empty CKI Backport Bot RHEL-93387 CVE-2025-38350 - schhtb: make htbdeactivate idempote...

7.8CVSS7AI score0.00078EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2024/11/21 7:27 p.m.15 views

CVE-2024-53057

A flaw was found in the packet scheduler API in the Linux kernel. An invalid assumption about qdiscs with major handle ffff allows qdiscs, such as DRR, that maintain an active class list to cause a use-after-free with a dangling class pointer. Mitigation Mitigation for this issue is either not...

6.7CVSS7.1AI score0.00014EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/11/21 7:27 p.m.17 views

CVE-2024-53044

In the Linux kernel, the following vulnerability has been resolved: net/sched: schapi: fix xainsert error path in tcfblockgetext This command: $ tc qdisc replace dev eth0 ingressblock 1 egressblock 1 clsact Error: block dev insert failed: -EBUSY. fails because user space requests the same block...

5.5CVSS6.7AI score0.00011EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/11/19 5:19 p.m.25 views

CVE-2024-53057 net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT

In the Linux kernel, the following vulnerability has been resolved: net/sched: stop qdisctreereducebacklog on TCHROOT In qdisctreereducebacklog, Qdiscs with major handle ffff: are assumed to be either root or ingress. This assumption is bogus since it's valid to create egress qdiscs with major...

0.00014EPSS
Exploits0References8
Redos
Redos
added 2024/11/14 12:0 a.m.33 views

ROS-20241114-01

Vulnerability of net/rds components of Linux operating system kernel is related to dereferencing of NULL pointer in the rdsrdmamap function in net/rds/rdma.c. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the nftables component of the...

7.8CVSS7.4AI score0.0016EPSS
Exploits0
Rockylinux
Rockylinux
added 2024/11/08 3:57 p.m.23 views

kernel security update

An update is available for kernel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...

7.8CVSS9.8AI score0.00072EPSS
Exploits0
Redos
Redos
added 2024/11/05 12:0 a.m.31 views

ROS-20241105-01

A vulnerability in the i2c component of the Linux kernel is related to a stack overflow in the function mlxbfi2csmbusstarttransaction in drivers/i2c/busses/i2c-mlxbf.c. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the netfilter componen...

9.1CVSS8.2AI score0.00125EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/10/30 1:41 a.m.34 views

Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.8CVSS7.2AI score0.00072EPSS
Exploits0References22
AlmaLinux
AlmaLinux
added 2024/10/30 12:0 a.m.40 views

Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: hw: cpu: intel: Native Branch History Injection BHI CVE-2024-2201 kernel: tcp: add sanity checks to rx zerocopy CVE-2024-26640 kernel: mptcp: fix data re-injection from stale subflow CVE-2024-268...

7.8CVSS7.6AI score0.00072EPSS
Exploits0References45
OSV
OSV
added 2024/10/30 12:0 a.m.25 views

ALSA-2024:8617 Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: hw: cpu: intel: Native Branch History Injection BHI CVE-2024-2201 kernel: tcp: add sanity checks to rx zerocopy CVE-2024-26640 kernel: mptcp: fix data re-injection from stale subflow CVE-2024-268...

7.8CVSS8AI score0.00072EPSS
Exploits0References45
Redos
Redos
added 2024/10/25 12:0 a.m.19 views

ROS-20241024-03

Vulnerability of idxd components of the Linux operating system kernel is related to resource management errors in the idxdcleanupinternals and idxdinitevl functions in drivers/dma/idxd/init.c. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability i...

5.5CVSS6.2AI score0.00022EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2024/10/22 10:47 a.m.7 views

CVE-2024-50039

In the Linux kernel, the following vulnerability has been resolved: net/sched: accept TCASTAB only for root qdisc Most qdiscs maintain their backlog using qdiscpktlenskb on the assumption it is invariant between the enqueue and dequeue handlers. Unfortunately syzbot can crash a host rather easily...

5.5CVSS7.3AI score0.00012EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/10/21 7:39 p.m.13 views

CVE-2024-50039 net/sched: accept TCA_STAB only for root qdisc

In the Linux kernel, the following vulnerability has been resolved: net/sched: accept TCASTAB only for root qdisc Most qdiscs maintain their backlog using qdiscpktlenskb on the assumption it is invariant between the enqueue and dequeue handlers. Unfortunately syzbot can crash a host rather easily...

0.00012EPSS
Exploits0References7
CVE
CVE
added 2024/10/21 7:39 p.m.179 views

CVE-2024-50039

CVE-2024-50039 : Linux kernel net/sched vulnerability where accepting TCA_STAB on non-root qdiscs could crash via NULL pointer dereference (syzbot) when using a TBF/SFQ combo. The fix restricts STAB handling to root qdisc (per-qdisc storage isn’t maintained for arbitrary levels). Connected docs i...

5.5CVSS4.9AI score0.00012EPSS
Exploits0References11Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/21 7:39 p.m.9 views

CVE-2024-50039 net/sched: accept TCA_STAB only for root qdisc

In the Linux kernel, the following vulnerability has been resolved: net/sched: accept TCASTAB only for root qdisc Most qdiscs maintain their backlog using qdiscpktlenskb on the assumption it is invariant between the enqueue and dequeue handlers. Unfortunately syzbot can crash a host rather easily...

6.6AI score0.00012EPSS
Exploits0References7
OSV
OSV
added 2024/10/21 7:39 p.m.17 views

CVE-2024-50039 net/sched: accept TCA_STAB only for root qdisc

In the Linux kernel, the following vulnerability has been resolved: net/sched: accept TCASTAB only for root qdisc Most qdiscs maintain their backlog using qdiscpktlenskb on the assumption it is invariant between the enqueue and dequeue handlers. Unfortunately syzbot can crash a host rather easily...

5.5CVSS6.2AI score0.00012EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.27 views

RHEL 9 : kernel-rt (RHSA-2024:8158)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:8158 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...

7.8CVSS7.2AI score0.0004EPSS
Exploits0References19
Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.18 views

RHEL 9 : kernel (RHSA-2024:8157)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:8157 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Local information disclosure o...

7.8CVSS7.1AI score0.0004EPSS
Exploits0References19
Tenable Nessus
Tenable Nessus
added 2024/10/15 12:0 a.m.36 views

RHEL 8 : kernel (RHSA-2024:8107)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:8107 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: ovl: fix use after free in...

8.8CVSS6.9AI score0.00029EPSS
Exploits1References25
Rows per page
Query Builder