Lucene search
K

68 matches found

CVE
CVE
added 2025/03/27 4:42 p.m.66 views

CVE-2022-49747

Summary (concrete details found in connected docs): CVE-2022-49747 refers to a Linux kernel issue where the offset calculation in erofs/zmap.c was incorrect, causing iomap->length to be set to 0 and triggering a WARN_ON in iomap_iter_done(). The issue affects the kernel’s handling path involvi...

5.5CVSS6.5AI score0.00176EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/03/27 4:42 p.m.17 views

CVE-2022-49747 erofs/zmap.c: Fix incorrect offset calculation

In the Linux kernel, the following vulnerability has been resolved: erofs/zmap.c: Fix incorrect offset calculation Effective offset to add to length was being incorrectly calculated, which resulted in iomap-length being set to 0, triggering a WARNON in iomapiterdone. Fix that, and describe it in...

0.00176EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/03/27 4:42 p.m.5 views

CVE-2022-49747

In the Linux kernel, the following vulnerability has been resolved: erofs/zmap.c: Fix incorrect offset calculation Effective offset to add to length was being incorrectly calculated, which resulted in iomap-length being set to 0, triggering a WARNON in iomapiterdone. Fix that, and describe it in...

5.5CVSS5.4AI score0.00176EPSS
Exploits0
OSV
OSV
added 2025/03/27 4:42 p.m.12 views

CVE-2022-49747 erofs/zmap.c: Fix incorrect offset calculation

In the Linux kernel, the following vulnerability has been resolved: erofs/zmap.c: Fix incorrect offset calculation Effective offset to add to length was being incorrectly calculated, which resulted in iomap-length being set to 0, triggering a WARNON in iomapiterdone. Fix that, and describe it in...

5.5CVSS5AI score0.00176EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/03/27 12:0 a.m.3 views

PT-2025-13289 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to an incorrect offset calculation in the Linux kernel, specifically in the erofs/zmap.c file. This miscalculation resulted in the iomap-length being set to 0,...

4.6CVSS4.9AI score0.00176EPSS
Exploits0References19
CNNVD
CNNVD
added 2025/03/27 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an error in the calculation of the erofs offset...

5.5CVSS6.3AI score0.00176EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/06/06 12:0 a.m.27 views

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 : OpenJDK 17 vulnerabilities (USN-6812-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6812-1 advisory. It was discovered that the Hotspot component of OpenJDK 17 incorrectly handled certain exceptions with specially crafted...

3.7CVSS6.9AI score0.01361EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/05/09 12:0 a.m.26 views

EulerOS 2.0 SP10 : xorg-x11-server (EulerOS-SA-2024-1605)

According to the versions of the xorg-x11-server package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in X.Org Server Overlay Window. A Use-After-Free may lead to local privilege escalation. If a client explicitly destroy...

7.8CVSS6.6AI score0.00715EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/04/06 1:59 a.m.1 views

SUSE CVE-2024-26721

In the Linux kernel, the following vulnerability has been resolved: drm/i915/dsc: Fix the macro that calculates DSCC/DSCA PPS reg address Commit bd077259d0a9 "drm/i915/vdsc: Add function to read any PPS register" defines a new macro to calculate the DSC PPS register addresses with PPS number as a...

5.5CVSS7.5AI score0.00196EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/04/03 2:54 p.m.29 views

CVE-2024-26697 nilfs2: fix data corruption in dsync block recovery for small block sizes

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix data corruption in dsync block recovery for small block sizes The helper function nilfsrecoverycopyblock of nilfsrecoverydsyncblocks, which recovers data from logs created by data sync writes during a mount after an...

6.8AI score0.00234EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2024/04/03 2:54 p.m.30 views

CVE-2024-26697

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix data corruption in dsync block recovery for small block sizes The helper function nilfsrecoverycopyblock of nilfsrecoverydsyncblocks, which recovers data from logs created by data sync writes during a mount after an...

5.5CVSS7.3AI score0.00234EPSS
Exploits0
OSV
OSV
added 2024/02/29 11:15 p.m.1 views

UBUNTU-CVE-2021-47066

In the Linux kernel, the following vulnerability has been resolved: asyncxor: increase srcoffs when dropping destination page Now we support sharing one page if PAGESIZE is not equal stripe size. To support this, it needs to support calculating xor value with different offsets for each r5dev. One...

5.5CVSS6.6AI score0.00232EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/12/22 12:0 a.m.30 views

CentOS 7 : xorg-x11-server (RHSA-2023:6802)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:6802 advisory. - A out-of-bounds write flaw was found in the xorg-x11-server. This issue occurs due to an incorrect calculation of a buffer offset when copying data stored in...

7.8CVSS6.6AI score0.0062EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/10/25 12:0 a.m.36 views

FreeBSD : xorg-server -- Multiple vulnerabilities (9e2fdfc7-e237-4393-9fa5-2d50908c66b3)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 9e2fdfc7-e237-4393-9fa5-2d50908c66b3 advisory. - The X.Org project reports: When prepending values to an existing property an invalid offset...

7.8CVSS6.6AI score0.00715EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/02/13 12:0 a.m.3 views

PT-2023-35126 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.92 Description: The issue is related to an incorrect offset calculation in the erofs/zmap.c file. The actual impact and attack plausibility have not yet been proven. Recommendations: For versions prior to...

7.1AI score
Exploits0References1
NVD
NVD
added 2020/12/11 11:15 p.m.14 views

CVE-2020-17440

An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. The code that parses incoming DNS packets does not validate that domain names present in the DNS responses have '\0' termination. This results in errors when calculating the offset of the pointer that jumps over domain...

7.5CVSS8AI score0.02761EPSS
Exploits0References2
OSV
OSV
added 2020/12/11 11:15 p.m.16 views

CVE-2020-17440

An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. The code that parses incoming DNS packets does not validate that domain names present in the DNS responses have '\0' termination. This results in errors when calculating the offset of the pointer that jumps over domain...

7.5CVSS6.9AI score
Exploits0References2
Cvelist
Cvelist
added 2020/12/11 10:27 p.m.18 views

CVE-2020-17440

An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. The code that parses incoming DNS packets does not validate that domain names present in the DNS responses have '\0' termination. This results in errors when calculating the offset of the pointer that jumps over domain...

8AI score0.02761EPSS
Exploits0References2
OSV
OSV
added 2017/05/09 9:29 p.m.1 views

DEBIAN-CVE-2017-0350

All versions of the NVIDIA GPU Display Driver contain a vulnerability in the kernel mode layer handler where a value passed from a user to the driver is not correctly validated and used in an offset calculation may lead to denial of service or potential escalation of privileges...

7.8CVSS7AI score0.00381EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/05/09 9:0 p.m.26 views

CVE-2017-0350

All versions of the NVIDIA GPU Display Driver contain a vulnerability in the kernel mode layer handler where a value passed from a user to the driver is not correctly validated and used in an offset calculation may lead to denial of service or potential escalation of privileges...

7.5AI score0.00381EPSS
Exploits0References2
Rows per page
Query Builder