Lucene search
+L

22 matches found

astralinux
astralinux
added 2026/06/24 3:11 p.m.9 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: bpf: Fixed the stackmap overflow check in bpfgetstackid Syzkaller reported a KASAN vulnerability related to out-of-bounds write operations in bpfgetstackid, when copying stack trace data. This issue occurs when the perf trace...

5.9AI score0.00157EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.9 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: “perf trace: Really free the evsel-priv area” In 3cb4d5e00e037c70 “perf trace: Free syscall tp fields in evsel-priv”, it only freed the area if strcmpevsel-tpformat-system, “syscalls” returned zero. However, the initialization of...

5.5CVSS6AI score0.00184EPSS
Exploits0References2
nessus
nessus
added 2026/01/16 12:0 a.m.6 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004343)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004343 advisory. In the Linux kernel 5.3.10, there is a use-after-free read in the perftracelockacquire function related to include/trace/events/lock.h. Tenable has extracted the...

6.7CVSS6.4AI score0.01337EPSS
Exploits0References9
ptsecurity
ptsecurity
added 2026/01/01 12:0 a.m.8 views

PT-2026-27755

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel tracing subsystem contains a flaw in the dma map sg tracepoint. When tracing large scatter-gather lists, the tracepoint can trigger a buffer overflow due to exceeding th...

7.8CVSS6AI score0.00131EPSS
Exploits0References20
euvd
euvd
added 2025/12/24 12:30 p.m.3 views

EUVD-2025-205076

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix stackmap overflow check in bpfgetstackid Syzkaller reported a KASAN slab-out-of-bounds write in bpfgetstackid when copying stack trace data. The issue occurs when the perf trace contains more stack entries than the stack...

6.4AI score0.00157EPSS
Exploits0References5
nvd
nvd
added 2025/12/24 11:16 a.m.8 views

CVE-2025-68378

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix stackmap overflow check in bpfgetstackid Syzkaller reported a KASAN slab-out-of-bounds write in bpfgetstackid when copying stack trace data. The issue occurs when the perf trace contains more stack entries than the stack...

0.00157EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2025/12/24 12:0 a.m.4 views

PT-2025-52914

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the bpf get stackid function related to a stackmap overflow check. This issue, identified by Syzkaller, can lead to a KASAN slab-out-of-bounds write...

6.6AI score0.00157EPSS
Exploits0
nessus
nessus
added 2025/10/13 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-53649

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: perf trace: Really free the evsel-priv area In 3cb4d5e00e037c70 perf trace: Free syscall tp...

5.5CVSS6AI score0.00184EPSS
Exploits0References3
susecve
susecve
added 2025/10/08 11:30 p.m.4 views

SUSE CVE-2023-53649

In the Linux kernel, the following vulnerability has been resolved: perf trace: Really free the evsel-priv area In 3cb4d5e00e037c70 "perf trace: Free syscall tp fields in evsel-priv" it only was freeing if strcmpevsel-tpformat-system, "syscalls" returned zero, while the corresponding initializati...

3.3CVSS7.6AI score0.00184EPSS
Exploits0References15
nvd
nvd
added 2025/10/07 4:15 p.m.4 views

CVE-2023-53649

In the Linux kernel, the following vulnerability has been resolved: perf trace: Really free the evsel-priv area In 3cb4d5e00e037c70 "perf trace: Free syscall tp fields in evsel-priv" it only was freeing if strcmpevsel-tpformat-system, "syscalls" returned zero, while the corresponding initializati...

5.5CVSS0.00184EPSS
Exploits0References4
osv
osv
added 2025/10/07 4:15 p.m.6 views

UBUNTU-CVE-2023-53649

In the Linux kernel, the following vulnerability has been resolved: perf trace: Really free the evsel-priv area In 3cb4d5e00e037c70 "perf trace: Free syscall tp fields in evsel-priv" it only was freeing if strcmpevsel-tpformat-system, "syscalls" returned zero, while the corresponding initializati...

5.5CVSS5.7AI score0.00184EPSS
Exploits0References7
cve
cve
added 2025/10/07 3:19 p.m.17 views

CVE-2023-53649

CVE-2023-53649 concerns a memory-leak in the Linux kernel related to perf trace. The described fix corrects how the evsel->priv area is freed: previously, freeing occurred only when evsel->tp_format->system compared to 'syscalls' yielded zero, but evsel->priv could be non-zero in othe...

5.5CVSS6.1AI score0.00184EPSS
Exploits0References4Affected Software1
cvelist
cvelist
added 2025/10/07 3:19 p.m.5 views

CVE-2023-53649 perf trace: Really free the evsel->priv area

In the Linux kernel, the following vulnerability has been resolved: perf trace: Really free the evsel-priv area In 3cb4d5e00e037c70 "perf trace: Free syscall tp fields in evsel-priv" it only was freeing if strcmpevsel-tpformat-system, "syscalls" returned zero, while the corresponding initializati...

0.00184EPSS
Exploits0References4
osv
osv
added 2025/10/07 3:19 p.m.4 views

CVE-2023-53649 perf trace: Really free the evsel->priv area

In the Linux kernel, the following vulnerability has been resolved: perf trace: Really free the evsel-priv area In 3cb4d5e00e037c70 "perf trace: Free syscall tp fields in evsel-priv" it only was freeing if strcmpevsel-tpformat-system, "syscalls" returned zero, while the corresponding initializati...

5.5CVSS6.5AI score0.00184EPSS
Exploits0References7
susecve
susecve
added 2025/09/05 11:22 p.m.5 views

SUSE CVE-2025-39705

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix a Null pointer dereference vulnerability Why A null pointer dereference vulnerability exists in the AMD display driver's DC module cleanup function dcdestruct. When display control context dc-ctx construction...

5.5CVSS6.4AI score0.00134EPSS
Exploits0References23
cve
cve
added 2025/09/05 5:21 p.m.27 views

CVE-2025-39705

The CVE-2025-39705 entry concerns a NULL pointer dereference in the AMD display driver (DC module) for the Linux kernel. Root cause: during cleanup in dc_destruct(), if dc->ctx construction failed, dc->ctx is NULL but code dereferenced dc->ctx->perf_trace. The fix added a NULL check f...

5.5CVSS5.8AI score0.00134EPSS
Exploits0References3Affected Software1
redhat
redhat
added 2024/04/30 9:57 a.m.4 views

kernel: perf trace: Really free the evsel->priv area

A memory leak flaw was found in the Linux kernel's perf trace tool in the event selector cleanup logic. A local user can trigger this issue by running perf trace commands, causing the tool to free memory based on an incorrect condition check that inverts the intended logic for non-syscall...

5.5CVSS7.2AI score0.00184EPSS
Exploits0References5
susecve
susecve
added 2023/02/15 4:5 a.m.3 views

SUSE CVE-2019-19769

In the Linux kernel 5.3.10, there is a use-after-free read in the perftracelockacquire function related to include/trace/events/lock.h...

5.3CVSS6.7AI score0.01337EPSS
Exploits0References17
redhat
redhat
added 2022/05/10 1:58 p.m.2 views

kernel: perf trace: Really free the evsel->priv area

A memory leak flaw was found in the Linux kernel's perf trace tool in the event selector cleanup logic. A local user can trigger this issue by running perf trace commands, causing the tool to free memory based on an incorrect condition check that inverts the intended logic for non-syscall...

5.5CVSS7.2AI score0.00184EPSS
Exploits0References5
amazon
amazon
added 2022/01/28 12:0 a.m.16 views

Important: kernel

Issue Overview: In the Linux kernel 5.3.10, there is a use-after-free read in the perftracelockacquire function related to include/trace/events/lock.h. CVE-2019-19769 A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem. This flaw occurs while importing the Commercial...

7.1CVSS6.3AI score0.03097EPSS
Exploits1
Rows per page
Query Builder