Lucene search
+L

159 matches found

OSV
OSV
added 2025/03/27 3:15 p.m.1 views

DEBIAN-CVE-2025-21873

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: bsg: Fix crash when arpmb command fails If the device doesn't support arpmb we'll crash due to copying user data in bsgtransportsgiofn. In the case where ufsbsgexecadvancedrpmbreq returns an error, do not set the...

5.5CVSS5.7AI score0.00189EPSS
Exploits0References1
OSV
OSV
added 2025/03/27 3:15 p.m.6 views

UBUNTU-CVE-2025-21882

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix vport QoS cleanup on error When enabling vport QoS fails, the scheduling node was never freed, causing a leak. Add the missing free and reset the vport scheduling node pointer to NULL...

5.5CVSS5.7AI score0.00161EPSS
Exploits0References5
OSV
OSV
added 2025/03/27 2:57 p.m.5 views

CVE-2025-21882 net/mlx5: Fix vport QoS cleanup on error

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix vport QoS cleanup on error When enabling vport QoS fails, the scheduling node was never freed, causing a leak. Add the missing free and reset the vport scheduling node pointer to NULL...

5.5CVSS7.6AI score0.00161EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/02/27 3:3 a.m.2 views

SUSE CVE-2022-49628

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix leaks in probe These two error paths should clean up before returning...

5.5CVSS6.5AI score0.00243EPSS
Exploits0References7
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.6 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: IB/core: Fixed the issue with the cleanup of the ibcachesetupone function. When ibcacheupdate returns an error, the ibcachesetupone function is exited immediately without proper cleanup. This occurs even though we have already...

6.5CVSS6.2AI score0.0099EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.2 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: bpf: Zero the value of ARGPTRTOLONG,INT in cases of errors. For all non-tracing helpers that previously had ARGPTRTOLONG,INT as input arguments, the value is set to zero in cases of errors. This prevents a potential memory leak...

5.5CVSS6.1AI score0.00235EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/01/09 12:21 a.m.3 views

SUSE CVE-2024-56630

In the Linux kernel, the following vulnerability has been resolved: ocfs2: free inode when ocfs2getinitinode fails syzbot is reporting busy inodes after unmount, for commit 9c89fe0af826 "ocfs2: Handle error from dquotinitialize" forgot to call iput when newinode succeeded and dquotinitialize fail...

5.5CVSS7.7AI score0.0025EPSS
Exploits0References14
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.10 views

PT-2026-8177

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's smb/server component within the create smb2 pipe function. Specifically, if the ksmbd iov pin rsp function fails, the ksmbd session rpc close function...

7.8CVSS6.8AI score0.0013EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.10 views

PT-2025-52657

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the tracing subsystem related to Virtual Memory Area VMA handling. Specifically, when a VMA is split, the ring buffer unmap function can be call...

6.5AI score0.00169EPSS
Exploits0
OSV
OSV
added 2024/12/29 12:15 p.m.8 views

AZL-54857 CVE-2024-56752 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: drm/nouveau/gr/gf100: Fix missing unlock in gf100grchannew When the call to gf100grctxgenerate fails, unlock gr-fecs.mutex before returning the error. Fixes smatch warning: drivers/gpu/drm/nouveau/nvkm/engine/gr/gf100.c:480...

5.5CVSS6.7AI score0.00201EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/11/14 12:0 a.m.9 views

The vulnerability in the `TracePluginImpl::writePacket` method of the `TracePluginImpl.cpp` module of the “Red Database” database management system allows a hacker to perform operations without being recorded in the audit log.

The vulnerability of the TracePluginImpl::writePacket method in the TracePluginImpl.cpp module of the “Red Database” database management system is related to the use of binary auditing when the cancelonerror parameter is enabled. Exploiting this vulnerability allows a remote attacker to even canc...

3.5CVSS5.5AI score
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/11/09 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the presence of an uffd call on error...

4.7CVSS6.6AI score0.00167EPSS
Exploits0References2
OSV
OSV
added 2024/10/21 8:15 p.m.1 views

DEBIAN-CVE-2024-50062

In the Linux kernel, the following vulnerability has been resolved: RDMA/rtrs-srv: Avoid null pointer deref during path establishment For RTRS path establishment, RTRS client initiates and completes connum of connections. After establishing all its connections, the information is exchanged betwee...

5.5CVSS5.8AI score0.00219EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 1:15 p.m.15 views

AZL-50703 CVE-2024-47728 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: bpf: Zero former ARGPTRTOLONG,INT args in case of error For all non-tracing helpers which formerly had ARGPTRTOLONG,INT as input arguments, zero the value for the case of an error as otherwise it could leak memory. For tracing, i...

5.5CVSS6.7AI score0.00235EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2024/08/16 7:0 a.m.5 views

ata: libata-core: Fix double free on error

...

7.8CVSS7.3AI score0.00244EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/08/12 12:0 a.m.9 views

PT-2024-41479 · Ооо 'Ред Софт' · Ред База Данных

Уязвимость метода TracePluginImpl::writePacket модуля TracePluginImpl.cpp системы управления базами данных «Ред База Данных» связана с использованием бинарного аудита при включенном параметре cancel on error . Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, даже при...

3.5CVSS7.2AI score
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/08/08 4:53 a.m.7 views

kernel: irqchip/gic-v3-its: Prevent double free on error

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Prevent double free on error The Linux kernel CVE team has assigned CVE-2024-35847 to this issue. Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024051738-CVE-2024-35847-7e4b@gregkh/T...

7.8CVSS6.3AI score0.00248EPSS
Exploits0References5
OSV
OSV
added 2024/07/16 12:15 p.m.5 views

UBUNTU-CVE-2022-48794

In the Linux kernel, the following vulnerability has been resolved: net: ieee802154: at86rf230: Stop leaking skb's Upon error the ieee802154xmitcomplete helper is not called. Only ieee802154wakequeue is called manually. In the Tx case we then leak the skb structure. Free the skb structure upon...

5.5CVSS6.2AI score0.00239EPSS
Exploits0References11
OSV
OSV
added 2024/07/12 1:15 p.m.7 views

UBUNTU-CVE-2024-40999

In the Linux kernel, the following vulnerability has been resolved: net: ena: Add validation for completion descriptors consistency Validate that first flag is set only for the first descriptor in multi-buffer packets. In case of an invalid descriptor, a reset will occur. A new reset reason for R...

5.5CVSS6.1AI score0.00237EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2024/06/21 3:37 a.m.3 views

SUSE CVE-2022-48722

In the Linux kernel, the following vulnerability has been resolved: net: ieee802154: ca8210: Stop leaking skb's Upon error the ieee802154xmitcomplete helper is not called. Only ieee802154wakequeue is called manually. We then leak the skb structure. Free the skb structure upon error before returni...

4.7CVSS7.6AI score0.00223EPSS
Exploits0References13
Rows per page
Query Builder