Lucene search
K

10 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: ext4: use of a stale path after allocation in ext4extinsertextent As Ojaswin mentioned in the link, in ext4extinsertextent, if the path is reallocated during ext4extcreatenewleaf, we will use a stale path, leading to a...

7.8CVSS6.2AI score0.00275EPSS
Exploits0References2
NVD
NVD
added 2026/03/22 6:16 p.m.6 views

CVE-2026-4557

A vulnerability was detected in code-projects Exam Form Submission 1.0. This impacts an unknown function of the file /admin/updates1.php. Performing a manipulation of the argument sname results in cross site scripting. The attack may be initiated remotely. The exploit is now public and may be use...

5.3CVSS0.00265EPSS
Exploits0References5
CVE
CVE
added 2025/12/24 10:32 a.m.14 views

CVE-2025-68370

In the Linux kernel, CVE-2025-68370 affects the coresight tmc path handling. The fix adds the event handle to the coresight_path so dependent devices can access it (required to retrieve AUX_EVENT per CPU in perf mode). Reproduction example uses perf record -e cs_etm//k -C 0-9, which could trigger...

6.1AI score0.00155EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.4 views

kernel: ext4: aovid use-after-free in ext4_ext_insert_extent()

In the Linux kernel, the following vulnerability has been resolved: ext4: aovid use-after-free in ext4extinsertextent As Ojaswin mentioned in Link, in ext4extinsertextent, if the path is reallocated in ext4extcreatenewleaf, we'll use the stale path and cause UAF. Below is a sample trace with dumm...

7.8CVSS6.4AI score0.00275EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/10/25 3:7 a.m.1 views

SUSE CVE-2024-49883

In the Linux kernel, the following vulnerability has been resolved: ext4: aovid use-after-free in ext4extinsertextent As Ojaswin mentioned in Link, in ext4extinsertextent, if the path is reallocated in ext4extcreatenewleaf, we'll use the stale path and cause UAF. Below is a sample trace with dumm...

5.5CVSS6.6AI score0.00275EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2024/10/24 3:19 a.m.11 views

SUSE CVE-2024-49881

In the Linux kernel, the following vulnerability has been resolved: ext4: update origpath in ext4findextent In ext4findextent, if the path is not big enough, we free it and set origpath to NULL. But after reallocating and successfully initializing the path, we don't update origpath, in which case...

5.5CVSS6.4AI score0.00249EPSS
Exploits0References21
OSV
OSV
added 2024/10/21 6:15 p.m.6 views

AZL-51544 CVE-2024-49881 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: ext4: update origpath in ext4findextent In ext4findextent, if the path is not big enough, we free it and set origpath to NULL. But after reallocating and successfully initializing the path, we don't update origpath, in which case...

5.5CVSS6.7AI score0.00249EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 6:15 p.m.2 views

UBUNTU-CVE-2024-49883

In the Linux kernel, the following vulnerability has been resolved: ext4: aovid use-after-free in ext4extinsertextent As Ojaswin mentioned in Link, in ext4extinsertextent, if the path is reallocated in ext4extcreatenewleaf, we'll use the stale path and cause UAF. Below is a sample trace with dumm...

7.8CVSS6.2AI score0.00275EPSS
Exploits0References51
ATTACKERKB
ATTACKERKB
added 2022/04/10 9:15 p.m.2 views

CVE-2022-27476

A cross-site scripting XSS vulnerability at /admin/goods/update in Newbee-Mall v1.0.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the goodsName parameter...

6.1CVSS6AI score0.00547EPSS
Exploits1References2
OSV
OSV
added 2021/02/12 10:38 a.m.9 views

SUSE-SU-2021:0449-1 Security update for perl-File-Path

This update for perl-File-Path fixes the following issues: - Provide File::Path version 2.15 to SLE-12-SP5 jscSLE-17088, jscECO-3050 - CVE-2017-6512: fix a race condition in the File-Path module for Perl...

5.9CVSS5.9AI score0.02359EPSS
Exploits0References2
Rows per page
Query Builder