Lucene search
+L

149 matches found

Positive Technologies
Positive Technologies
added 2025/10/04 12:0 a.m.5 views

PT-2025-40659

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.18.0-305.3.1.el8 Description The Linux kernel contained a flaw within the IB/mad component where a function that could potentially sleep was being called while in an atomic context. This could lead to a system...

6.3AI score0.00146EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-0854

Malicious code in bioql PyPI...

7.5CVSS7.8AI score0.01533EPSS
Exploits0References50
OSV
OSV
added 2025/08/18 3:57 p.m.8 views

SUSE-SU-2025:02851-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-49138: Bluetooth: hcievent: Fix checking conn for leconncompleteevt bsc1238160. - CVE-2023-52923: netfilter: nftables: split async and sync catchall in t...

7.8CVSS8.6AI score0.00334EPSS
Exploits2References59
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-42157

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Wipe sensitive data on failure Wipe sensitive data from stack also if the...

4.1CVSS6.2AI score0.0022EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-38257

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - s390/pkey: Prevent overflow in size calculation for memdupuser Number of apqn target list entries contained in 'nrapqns' variable is determined by userspace via...

7.8CVSS6.8AI score0.00147EPSS
Exploits0References4
OSV
OSV
added 2025/08/01 12:35 p.m.4 views

SUSE-SU-2025:02588-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-49138: Bluetooth: hcievent: Fix checking conn for leconncompleteevt bsc1238160. - CVE-2023-52923: netfilter: nftables: split async and sync catchall in two...

7.8CVSS6.7AI score0.00334EPSS
Exploits2References39
SUSE CVE
SUSE CVE
added 2025/07/09 11:22 p.m.5 views

SUSE CVE-2025-38257

In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Prevent overflow in size calculation for memdupuser Number of apqn target list entries contained in 'nrapqns' variable is determined by userspace via an ioctl call so the result of the product in calculation of size...

7.8CVSS6.7AI score0.00147EPSS
Exploits0References31
OSV
OSV
added 2025/07/09 11:15 a.m.6 views

AZL-64871 CVE-2025-38257 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Prevent overflow in size calculation for memdupuser Number of apqn target list entries contained in 'nrapqns' variable is determined by userspace via an ioctl call so the result of the product in calculation of size...

7.8CVSS6.8AI score0.00147EPSS
Exploits0References1
OSV
OSV
added 2025/07/09 11:15 a.m.4 views

DEBIAN-CVE-2025-38257

In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Prevent overflow in size calculation for memdupuser Number of apqn target list entries contained in 'nrapqns' variable is determined by userspace via an ioctl call so the result of the product in calculation of size...

7.8CVSS5.9AI score0.00147EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/09 10:42 a.m.11 views

CVE-2025-38257 s390/pkey: Prevent overflow in size calculation for memdup_user()

In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Prevent overflow in size calculation for memdupuser Number of apqn target list entries contained in 'nrapqns' variable is determined by userspace via an ioctl call so the result of the product in calculation of size...

0.00147EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/07/09 12:0 a.m.4 views

PT-2025-28885

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the s390/pkey subsystem. A calculation error in the memdup user function, related to the number of apqn target list entries determined by a...

7.8CVSS6.9AI score0.00147EPSS
Exploits0
OSV
OSV
added 2025/07/04 2:44 p.m.6 views

OESA-2025-1747 edk2 security update

EDK II is a modern, feature-rich, cross-platform firmware development environment for the UEFI and PI specifications. Security Fixes: Issue summary: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow. Impact summary: Applications th...

5.3CVSS6.9AI score0.04459EPSS
Exploits0References2
OSV
OSV
added 2025/06/30 8:26 a.m.8 views

CLSA-2025-1751271968 openssl: Fix of CVE-2019-1563

CVE-2019-1563: fix information disclosure in PKCS7dataDecode and CMSdecryptset1pkey...

4.3CVSS6.7AI score0.03838EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.8 views

kernel: RDMA/mlx5: Move events notifier registration to be after device registration

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Move events notifier registration to be after device registration Move pkey change work initialization and cleanup from device resources stage to notifier stage, since this is the stage which handles this work events...

5.5CVSS6.7AI score0.00217EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.5 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Wipe sensitive data upon failure. Also, sensitive data is wiped from the stack if the copytouser function fails...

4.1CVSS6.2AI score0.0022EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.1 views

Astra Linux – Vulnerability in OpenSSL

Issue summary: Checking excessively long invalid RSA public keys may take a long time. Impact summary: Applications that use the function EVPPKEYpubliccheck to check RSA public keys may experience long delays. If the key being checked was obtained from a trusted source, this could lead to a Denia...

5.9CVSS6.6AI score0.02303EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/01/29 12:0 a.m.6 views

The vulnerability in the driver/s390/crypto/pkey_api.c component of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability in the drivers/s390/crypto/pkeyapi.c component of the Linux operating system’s kernel is related to incomplete cleanup of temporary or auxiliary resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

1.9CVSS6.1AI score0.00188EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/01/29 12:0 a.m.10 views

The vulnerability in the driver/s390/crypto/pkey_api.c component of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability in the drivers/s390/crypto/pkeyapi.c component of the Linux operating system’s kernel is related to incomplete cleanup of temporary or auxiliary resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

4.1CVSS6.1AI score0.00214EPSS
Exploits0References6Affected Software2
OSV
OSV
added 2024/12/27 2:15 p.m.9 views

AZL-56331 CVE-2024-53224 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Move events notifier registration to be after device registration Move pkey change work initialization and cleanup from device resources stage to notifier stage, since this is the stage which handles this work events...

5.5CVSS6.8AI score0.00217EPSS
Exploits0References1
OSV
OSV
added 2024/12/27 2:15 p.m.1 views

DEBIAN-CVE-2024-53224

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Move events notifier registration to be after device registration Move pkey change work initialization and cleanup from device resources stage to notifier stage, since this is the stage which handles this work events...

5.5CVSS5.6AI score0.00217EPSS
Exploits0References1
Rows per page
Query Builder