Lucene search
K

425 matches found

NVD
NVD
added 2024/07/12 1:15 p.m.15 views

CVE-2024-40959

In the Linux kernel, the following vulnerability has been resolved: xfrm6: check ip6dstidev return value in xfrm6getsaddr ip6dstidev can return NULL, xfrm6getsaddr must act accordingly. syzbot reported: Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 1...

5.5CVSS0.00278EPSS
Exploits0References13
UbuntuCve
UbuntuCve
added 2024/07/12 1:15 p.m.15 views

CVE-2024-40905

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible race in fib6droppcpufrom syzbot found a race in fib6droppcpufrom 1 If compiler reads more than once ppcpurt, second read could read NULL, if another cpu clears the value in rt6getpcpuroute. Add a READONCE to...

4.7CVSS6.3AI score0.0027EPSS
Exploits0References28
UbuntuCve
UbuntuCve
added 2024/07/12 1:15 p.m.20 views

CVE-2024-40959

In the Linux kernel, the following vulnerability has been resolved: xfrm6: check ip6dstidev return value in xfrm6getsaddr ip6dstidev can return NULL, xfrm6getsaddr must act accordingly. syzbot reported: Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 1...

5.5CVSS6.4AI score0.00278EPSS
Exploits0References33
Vulnrichment
Vulnrichment
added 2024/07/12 12:32 p.m.12 views

CVE-2024-40959 xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr()

In the Linux kernel, the following vulnerability has been resolved: xfrm6: check ip6dstidev return value in xfrm6getsaddr ip6dstidev can return NULL, xfrm6getsaddr must act accordingly. syzbot reported: Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 1...

6.7AI score0.00278EPSS
Exploits0References8
CVE
CVE
added 2024/07/12 12:32 p.m.170 views

CVE-2024-40959

The CVE-2024-40959 entry concerns a Linux kernel issue where ip6_dst_idev() can return NULL, and xfrm6_get_saddr() must handle that, otherwise a NULL pointer dereference may occur. The vulnerability arises in xfrm6_policy.c (xfrm6_get_saddr) and could lead to denial of service via a kernel NULL d...

5.5CVSS6.9AI score0.00278EPSS
Exploits0References13Affected Software1
Cvelist
Cvelist
added 2024/07/12 12:32 p.m.23 views

CVE-2024-40959 xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr()

In the Linux kernel, the following vulnerability has been resolved: xfrm6: check ip6dstidev return value in xfrm6getsaddr ip6dstidev can return NULL, xfrm6getsaddr must act accordingly. syzbot reported: Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 1...

0.00278EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2024/07/12 12:32 p.m.11 views

CVE-2024-40959

In the Linux kernel, the following vulnerability has been resolved: xfrm6: check ip6dstidev return value in xfrm6getsaddr ip6dstidev can return NULL, xfrm6getsaddr must act accordingly. syzbot reported: Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 1...

5.5CVSS5.6AI score0.00278EPSS
Exploits0
Cvelist
Cvelist
added 2024/07/12 12:20 p.m.24 views

CVE-2024-40905 ipv6: fix possible race in __fib6_drop_pcpu_from()

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible race in fib6droppcpufrom syzbot found a race in fib6droppcpufrom 1 If compiler reads more than once ppcpurt, second read could read NULL, if another cpu clears the value in rt6getpcpuroute. Add a READONCE to...

0.0027EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2024/07/12 12:20 p.m.19 views

CVE-2024-40905

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible race in fib6droppcpufrom syzbot found a race in fib6droppcpufrom 1 If compiler reads more than once ppcpurt, second read could read NULL, if another cpu clears the value in rt6getpcpuroute. Add a READONCE to...

4.7CVSS6.2AI score0.0027EPSS
Exploits0
OSV
OSV
added 2024/07/11 2:54 p.m.20 views

CVE-2024-38536 Suricata http/range: NULL-ptr deref when http.memcap is reached

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A memory allocation failure due to http.memcap being reached leads to a NULL-ptr reference leading to a crash. Upgrade to 7.0.6...

7.5CVSS7.2AI score0.00874EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2024/07/11 2:54 p.m.22 views

CVE-2024-38536 Suricata http/range: NULL-ptr deref when http.memcap is reached

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A memory allocation failure due to http.memcap being reached leads to a NULL-ptr reference leading to a crash. Upgrade to 7.0.6...

7.5CVSS6.9AI score0.00874EPSS
Exploits1References3
NVD
NVD
added 2024/06/21 11:15 a.m.27 views

CVE-2024-36270

In the Linux kernel, the following vulnerability has been resolved: netfilter: tproxy: bail out if IP has been disabled on the device syzbot reports: general protection fault, probably for non-canonical address 0xdffffc0000000003: 0000 1 PREEMPT SMP KASAN PTI KASAN: null-ptr-deref in range...

5.5CVSS0.00258EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2024/06/20 2:29 p.m.22 views

CVE-2024-38608

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix netif state handling mlx5esuspend cleans resources only if netifdevicepresent returns true. However, mlx5eresume changes the state of netif, via mlx5enicenable, only if regstate == NETREGREGISTERED. In the below...

5.5CVSS6.7AI score0.00188EPSS
Exploits0References4
NVD
NVD
added 2024/06/19 3:15 p.m.20 views

CVE-2021-47612

In the Linux kernel, the following vulnerability has been resolved: nfc: fix segfault in nfcgenldumpdevicesdone When kmalloc in nfcgenldumpdevices fails then nfcgenldumpdevicesdone segfaults as below KASAN: null-ptr-deref in range 0x0000000000000008-0x000000000000000f CPU: 0 PID: 25 Comm:...

5.5CVSS0.00223EPSS
Exploits0References8
OSV
OSV
added 2024/06/19 3:15 p.m.17 views

CVE-2021-47610

In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix null ptr access msmioctlgemsubmit Fix the below null pointer dereference in msmioctlgemsubmit: 26545.260705: Call trace: 26545.263223: krefput+0x1c/0x60 26545.266452: msmioctlgemsubmit+0x254/0x744 26545.270937:...

5.5CVSS7AI score
Exploits0References2
OSV
OSV
added 2024/06/19 3:15 p.m.22 views

CVE-2021-47594

In the Linux kernel, the following vulnerability has been resolved: mptcp: never allow the PM to close a listener subflow Currently, when deleting an endpoint the netlink PM treverses all the local MPTCP sockets, regardless of their status. If an MPTCP listener socket is bound to the IP matching...

5.5CVSS6.1AI score
Exploits0References2
UbuntuCve
UbuntuCve
added 2024/06/19 3:15 p.m.26 views

CVE-2021-47612

In the Linux kernel, the following vulnerability has been resolved: nfc: fix segfault in nfcgenldumpdevicesdone When kmalloc in nfcgenldumpdevices fails then nfcgenldumpdevicesdone segfaults as below KASAN: null-ptr-deref in range 0x0000000000000008-0x000000000000000f CPU: 0 PID: 25 Comm:...

5.5CVSS6.2AI score0.00223EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2024/06/19 3:15 p.m.27 views

CVE-2021-47594

In the Linux kernel, the following vulnerability has been resolved: mptcp: never allow the PM to close a listener subflow Currently, when deleting an endpoint the netlink PM treverses all the local MPTCP sockets, regardless of their status. If an MPTCP listener socket is bound to the IP matching...

5.5CVSS5.9AI score0.00208EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/06/19 2:58 p.m.25 views

CVE-2021-47612 nfc: fix segfault in nfc_genl_dump_devices_done

In the Linux kernel, the following vulnerability has been resolved: nfc: fix segfault in nfcgenldumpdevicesdone When kmalloc in nfcgenldumpdevices fails then nfcgenldumpdevicesdone segfaults as below KASAN: null-ptr-deref in range 0x0000000000000008-0x000000000000000f CPU: 0 PID: 25 Comm:...

0.00223EPSS
Exploits0References8
Cvelist
Cvelist
added 2024/06/19 2:53 p.m.23 views

CVE-2021-47594 mptcp: never allow the PM to close a listener subflow

In the Linux kernel, the following vulnerability has been resolved: mptcp: never allow the PM to close a listener subflow Currently, when deleting an endpoint the netlink PM treverses all the local MPTCP sockets, regardless of their status. If an MPTCP listener socket is bound to the IP matching...

0.00208EPSS
Exploits0References2
Rows per page
Query Builder