Lucene search
+L

66 matches found

OSV
OSV
added 2022/07/01 6:44 p.m.4 views

USN-5500-1 linux, linux-aws vulnerabilities

Eric Biederman discovered that the cgroup process migration implementation in the Linux kernel did not perform permission checks correctly in some situations. A local attacker could possibly use this to gain administrative privileges. CVE-2021-4197 Lin Ma discovered that the NFC Controller...

7.8CVSS7AI score0.00813EPSS
Exploits5References9
Microsoft CVE
Microsoft CVE
added 2022/04/08 7:0 a.m.2 views

A use-after-free flaw was found in nci_request in net/nfc/nci/core.c in NFC Controller Interface (NCI) in the Linux kernel. This flaw could allow a local attacker with user privileges to cause a data race problem while the device is getting removed leading to a privilege escalation problem.

...

7CVSS6.6AI score0.00357EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2022/03/25 7:15 p.m.8 views

CVE-2021-4202

A use-after-free flaw was found in ncirequest in net/nfc/nci/core.c in NFC Controller Interface NCI in the Linux kernel. This flaw could allow a local attacker with user privileges to cause a data race problem while the device is getting removed, leading to a privilege escalation problem...

7CVSS6.6AI score0.00357EPSS
Exploits1References9
NVD
NVD
added 2022/03/25 7:15 p.m.19 views

CVE-2021-4202

A use-after-free flaw was found in ncirequest in net/nfc/nci/core.c in NFC Controller Interface NCI in the Linux kernel. This flaw could allow a local attacker with user privileges to cause a data race problem while the device is getting removed, leading to a privilege escalation problem...

7CVSS0.00357EPSS
Exploits1References8
OSV
OSV
added 2022/03/25 7:15 p.m.4 views

AZL-9237 CVE-2021-4202 affecting package kernel for versions less than 5.15.37.1-2

A use-after-free flaw was found in ncirequest in net/nfc/nci/core.c in NFC Controller Interface NCI in the Linux kernel. This flaw could allow a local attacker with user privileges to cause a data race problem while the device is getting removed, leading to a privilege escalation problem...

7CVSS6.7AI score0.00357EPSS
Exploits1References1
OSV
OSV
added 2022/03/25 7:15 p.m.14 views

CVE-2021-4202

A use-after-free flaw was found in ncirequest in net/nfc/nci/core.c in NFC Controller Interface NCI in the Linux kernel. This flaw could allow a local attacker with user privileges to cause a data race problem while the device is getting removed, leading to a privilege escalation problem...

7CVSS7.4AI score
Exploits0References8
Prion
Prion
added 2022/03/25 7:15 p.m.24 views

Design/Logic Flaw

A use-after-free flaw was found in ncirequest in net/nfc/nci/core.c in NFC Controller Interface NCI in the Linux kernel. This flaw could allow a local attacker with user privileges to cause a data race problem while the device is getting removed, leading to a privilege escalation problem...

6.9CVSS6.8AI score0.00357EPSS
Exploits1References8Affected Software1
Debian CVE
Debian CVE
added 2022/03/25 6:2 p.m.51 views

CVE-2021-4202

A use-after-free flaw was found in ncirequest in net/nfc/nci/core.c in NFC Controller Interface NCI in the Linux kernel. This flaw could allow a local attacker with user privileges to cause a data race problem while the device is getting removed, leading to a privilege escalation problem...

7CVSS6.9AI score0.00357EPSS
Exploits1
Cvelist
Cvelist
added 2022/03/25 6:2 p.m.30 views

CVE-2021-4202

A use-after-free flaw was found in ncirequest in net/nfc/nci/core.c in NFC Controller Interface NCI in the Linux kernel. This flaw could allow a local attacker with user privileges to cause a data race problem while the device is getting removed, leading to a privilege escalation problem...

7.5AI score0.00357EPSS
Exploits1References8
Cloud Foundry
Cloud Foundry
added 2022/03/11 12:0 a.m.96 views

USN-5294-2: Linux kernel vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description It was discovered that the Packet network protocol implementation in the Linux kernel contained a double-free vulnerability. A local attacker could use this to cause a denial of service system crash or...

7.8CVSS8AI score0.05918EPSS
Exploits9Affected Software1
Debian
Debian
added 2022/03/09 12:40 p.m.145 views

[SECURITY] [DLA 2941-1] linux-4.19 security update

Debian LTS Advisory DLA-2941-1 [email protected] https://www.debian.org/lts/security/ Ben Hutchings March 09, 2022 https://wiki.debian.org/LTS Package : linux-4.19 Version : 4.19.232-1deb9u1 CVE ID : CVE-2020-29374 CVE-2020-36322 CVE-2021-3640 CVE-2021-3744 CVE-2021-3752 CVE-2021-3760...

9CVSS7.6AI score0.67994EPSS
Exploits40
Tenable Nessus
Tenable Nessus
added 2022/02/24 12:0 a.m.34 views

SUSE SLES12: kgraft-patch-4_4_180-94_138-default / etc (SUSE-SU-2022:0552-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0552-1 advisory. This update for the Linux Kernel 4.4.180-94138 fixes several issues. The following security issues were fixed: - CVE-2021-4202: Fix...

7CVSS6.8AI score0.00357EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2022/02/23 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-5297-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.4AI score0.02579EPSS
Exploits7References2
OpenVAS
OpenVAS
added 2022/02/23 12:0 a.m.45 views

Ubuntu: Security Advisory (USN-5298-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.5AI score0.05918EPSS
Exploits8References4
Veracode
Veracode
added 2022/02/22 5:34 p.m.37 views

Use-After-Free

A use-after-free flaw was found in ncirequest in net/nfc/nci/core.c in NFC Controller Interface NCI in the Linux kernel. This flaw could allow a local attacker with user privileges to cause a data race problem while the device is getting removed, leading to a privilege escalation problem...

7CVSS4.5AI score0.00357EPSS
Exploits1References9Affected Software2
Ubuntu
Ubuntu
added 2022/02/22 7:52 a.m.153 views

USN-5294-2: Linux kernel vulnerabilities

It was discovered that the Packet network protocol implementation in the Linux kernel contained a double-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2021-22600 Szymon Heidrich discovered that the USB Gadget...

7.8CVSS7.4AI score0.05918EPSS
Exploits9
OSV
OSV
added 2022/02/22 7:52 a.m.9 views

USN-5294-2 linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-azure-fde, linux-bluefield, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-gkeop-5.4, linux-hwe-5.4, linux-ibm, linux-ibm-5.4 linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerabilities

It was discovered that the Packet network protocol implementation in the Linux kernel contained a double-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2021-22600 Szymon Heidrich discovered that the USB Gadget...

7.8CVSS6.9AI score0.05918EPSS
Exploits9References9
Ubuntu
Ubuntu
added 2022/02/22 7:43 a.m.166 views

USN-5297-1: Linux kernel (GKE) vulnerabilities

Szymon Heidrich discovered that the USB Gadget subsystem in the Linux kernel did not properly restrict the size of control requests for certain gadget types, leading to possible out of bounds reads or writes. A local attacker could use this to cause a denial of service system crash or possibly...

7.8CVSS7.1AI score0.02579EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2022/02/22 12:0 a.m.52 views

Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel (GKE) vulnerabilities (USN-5297-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5297-1 advisory. Szymon Heidrich discovered that the USB Gadget subsystem in the Linux kernel did not properly restrict the size of control requests for certa...

7.8CVSS7.3AI score0.02579EPSS
Exploits7References8
Tenable Nessus
Tenable Nessus
added 2022/02/22 12:0 a.m.39 views

Ubuntu 16.04 ESM / 18.04 LTS : Linux kernel vulnerabilities (USN-5298-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5298-1 advisory. It was discovered that the Packet network protocol implementation in the Linux kernel contained a double- free vulnerability. A local attacke...

7.8CVSS7.7AI score0.05918EPSS
Exploits8References13
Rows per page
Query Builder