Lucene search
K

23 matches found

SUSE Linux
SUSE Linux
added 2026/02/04 12:55 p.m.5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2021-47633: ath5k: fix OOB in ath5keepromreadpcalinfo5111 bsc1237768. CVE-2022-49545: ALSA: usb-audio: Cancel pending work at closing a MIDI substream bsc1238729...

8.5CVSS6.9AI score0.00294EPSS
Exploits1References48
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.9 views

MiracleLinux 7 : kernel-3.10.0-1160.139.1.0.1.el7.AXS7 (AXSA:2025-11327:91)

"The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-11327:91 advisory. ext4: fix possible UAF when remounting r/o a mmp-protected file system CVE-2021-47342 ext4: fix memory leak in ext4fillsuper net: defer final...

7.8CVSS5.9AI score0.0026EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-26748

Malicious code in bioql PyPI...

6.3AI score0.00155EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2025/09/11 1:52 a.m.5 views

kernel: tipc: Fix use-after-free in tipc_conn_close()

In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipcconnclose. syzbot reported a null-ptr-deref in tipcconnclose during netns dismantle. 0 tipctopsrvstop iterates tipcnetnet-topsrv-connidr and calls tipcconnclose for each tipcconn. The problem is th...

7.8CVSS6.8AI score0.00169EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/09/10 6:25 p.m.4 views

kernel: tipc: Fix use-after-free in tipc_conn_close()

In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipcconnclose. syzbot reported a null-ptr-deref in tipcconnclose during netns dismantle. 0 tipctopsrvstop iterates tipcnetnet-topsrv-connidr and calls tipcconnclose for each tipcconn. The problem is th...

7.8CVSS6.8AI score0.00169EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/09/10 4:20 p.m.3 views

kernel: tipc: Fix use-after-free in tipc_conn_close()

In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipcconnclose. syzbot reported a null-ptr-deref in tipcconnclose during netns dismantle. 0 tipctopsrvstop iterates tipcnetnet-topsrv-connidr and calls tipcconnclose for each tipcconn. The problem is th...

7.8CVSS6.8AI score0.00169EPSS
Exploits0References5
OSV
OSV
added 2025/09/04 4:15 p.m.1 views

DEBIAN-CVE-2025-38721

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: fix refcount leak on table dump There is a reference count leak in ctnetlinkdumptable: if res ctgeneral; // HERE cb-args1 = unsigned longct; ... While its very unlikely, its possible that ct == last. If this...

5.5CVSS5.4AI score0.00155EPSS
Exploits0References1
CVE
CVE
added 2025/07/25 3:27 p.m.93 views

CVE-2025-38464

CVE-2025-38464 affects the Linux kernel Tipc subsystem. The issue is a use-after-free in tipc_conn_close() that can occur when tipc_topsrv_stop() iterates tipc_net(net)->topsrv->conn_idr and calls tipc_conn_close() for each tipc_conn after releasing the IDR lock. If tipc_conn_recv_work() is...

7.8CVSS6.4AI score0.00169EPSS
Exploits0References10Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/25 3:27 p.m.3 views

CVE-2025-38464 tipc: Fix use-after-free in tipc_conn_close().

In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipcconnclose. syzbot reported a null-ptr-deref in tipcconnclose during netns dismantle. 0 tipctopsrvstop iterates tipcnetnet-topsrv-connidr and calls tipcconnclose for each tipcconn. The problem is th...

6.6AI score0.00169EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2025/07/25 3:27 p.m.3 views

CVE-2025-38464

In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipcconnclose. syzbot reported a null-ptr-deref in tipcconnclose during netns dismantle. 0 tipctopsrvstop iterates tipcnetnet-topsrv-connidr and calls tipcconnclose for each tipcconn. The problem is th...

7.8CVSS6.3AI score0.00169EPSS
Exploits0
OSV
OSV
added 2025/05/19 9:3 p.m.7 views

CLSA-2025-1747688581 kernel: Fix of 15 CVEs

media: uvcvideo: Fix double free in error path CVE-2024-57980 - vrf: use RCU protection in l3mdevl3out CVE-2025-21791 - geneve: Fix use-after-free in genevefinddev. CVE-2025-21858 - ibmvnic: Don't reference skb after sending to VIOS CVE-2025-21855 - pfifotailenqueue: Drop new packet when...

7.8CVSS7.1AI score0.03558EPSS
Exploits0References1
SUSE Linux
SUSE Linux
added 2025/03/21 5:44 p.m.1 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2021-47633: ath5k: fix OOB in ath5keepromreadpcalinfo5111 bsc1237768. CVE-2022-49545: ALSA: usb-audio: Cancel pending work at closing a MIDI substream bsc1238729...

8.5CVSS7.6AI score0.00294EPSS
Exploits1References48
Amazon
Amazon
added 2025/03/06 12:0 a.m.6 views

Important: kernel

Issue Overview: Integer Overflow or Wraparound vulnerability in Linux kernel on x86 and ARM md, raid, raid5 modules allows Forced Integer Overflow. CVE-2024-23307 In the Linux kernel, the following vulnerability has been resolved: gpiolib: cdev: Fix use after free in lineinfochangednotify...

7.8CVSS6.6AI score0.0059EPSS
Exploits1
Debian CVE
Debian CVE
added 2025/01/31 11:25 a.m.8 views

CVE-2025-21677

In the Linux kernel, the following vulnerability has been resolved: pfcp: Destroy device along with udp socket's netns dismantle. pfcpnewlink links the device to a list in devnetdev instead of net, where a udp tunnel socket is created. Even when net is removed, the device stays alive on devnetdev...

5.5CVSS5.5AI score0.00172EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2024/12/28 2:24 a.m.24 views

CVE-2024-56658

In the Linux kernel, the following vulnerability has been resolved: net: defer final 'struct net' free in netns dismantle Ilya reported a slab-use-after-free in dstdestroy 1 Issue is in xfrm6netinit and xfrm4netinit : They copy xfrm46dstopstemplate into net-xfrm.xfrm46dstops. But net structure...

7.1CVSS6.9AI score0.00231EPSS
Exploits0References4
OSV
OSV
added 2024/12/27 3:15 p.m.7 views

AZL-54798 CVE-2024-56658 affecting package kernel for versions less than 5.15.182.1-1

In the Linux kernel, the following vulnerability has been resolved: net: defer final 'struct net' free in netns dismantle Ilya reported a slab-use-after-free in dstdestroy 1 Issue is in xfrm6netinit and xfrm4netinit : They copy xfrm46dstopstemplate into net-xfrm.xfrm46dstops. But net structure...

7.8CVSS6.4AI score0.00231EPSS
Exploits0References1
OSV
OSV
added 2024/12/27 3:15 p.m.2 views

UBUNTU-CVE-2024-56635

In the Linux kernel, the following vulnerability has been resolved: net: avoid potential UAF in defaultoperstate syzbot reported an UAF in defaultoperstate 1 Issue is a race between device and netns dismantles. After calling rtnlunlock from netdevruntodo, we can not assume the netns of each devic...

7.8CVSS6.2AI score0.00189EPSS
Exploits0References20
Cvelist
Cvelist
added 2024/12/27 3:6 p.m.25 views

CVE-2024-56658 net: defer final 'struct net' free in netns dismantle

In the Linux kernel, the following vulnerability has been resolved: net: defer final 'struct net' free in netns dismantle Ilya reported a slab-use-after-free in dstdestroy 1 Issue is in xfrm6netinit and xfrm4netinit : They copy xfrm46dstopstemplate into net-xfrm.xfrm46dstops. But net structure...

0.00231EPSS
Exploits0References6
CVE
CVE
added 2024/12/27 3:2 p.m.124 views

CVE-2024-56635

CVE-2024-56635 (Linux kernel) : A race between device and NETNS dismantles could cause a use‑after‑free in __dev_get_by_index accessed via default_operstate(), as syzbot observed a KASAN UAF. The root cause is a race after __rtnl_unlock() when netns/device lifetimes may not be alive; mitigation d...

7.8CVSS6.3AI score0.00189EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2024/10/21 7:39 p.m.176 views

CVE-2024-50036

CVE-2024-50036 is a Linux kernel vulnerability where dst_entries_add() uses per-CPU data that can be freed during netns dismantle, making dst_entries_destroy() race with dst_release() and potentially causing a use-after-free. The issue arises because the count of dsts must be decremented earlier,...

7CVSS6.6AI score0.00239EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder