Lucene search
K

250 matches found

Positive Technologies
Positive Technologies
added 2022/09/16 12:0 a.m.5 views

PT-2022-33567 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v5.19 through v5.19.1 Description: A file pointer leak was discovered in the power turbostat tool. The issue was introduced in version v5.19 and is fixed in version v5.19.2. The actual impact and attack plausibility have...

7.1AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/08/02 12:0 a.m.35 views

SUSE SLES15 Security Update : kernel (SUSE-SU-2022:2615-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:2615-1 advisory. - Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage...

8.2CVSS8.1AI score0.06451EPSS
Exploits41References345
Tenable Nessus
Tenable Nessus
added 2022/05/10 12:0 a.m.33 views

NewStart CGSL MAIN 6.02 : kernel Multiple Vulnerabilities (NS-SA-2022-0059)

The remote NewStart CGSL host, running version MAIN 6.02, has kernel packages installed that are affected by multiple vulnerabilities: - In doepollctl and eploopcheckproc of eventpoll.c, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with...

8.1CVSS7.7AI score0.09729EPSS
Exploits13References31
Tenable Nessus
Tenable Nessus
added 2022/04/13 12:0 a.m.51 views

SUSE SLES15 Security Update : kernel (SUSE-SU-2022:1163-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1163-1 advisory. - In aiopollcompletework of aio.c, there is a possible memory corruption due to a use after free. This could lead to local escalati...

8.8CVSS6.9AI score0.05524EPSS
Exploits20References109
OSV
OSV
added 2022/04/11 8:15 p.m.6 views

CVE-2022-20064

In ccci, there is a possible leak of kernel pointer due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06108617; Issue ID: ALPS06108617...

6.7CVSS6.7AI score0.0012EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/04/11 8:15 p.m.5 views

CVE-2022-20064

In ccci, there is a possible leak of kernel pointer due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06108617; Issue ID: ALPS06108617...

7.2CVSS6.7AI score0.0012EPSS
Exploits0References2
Prion
Prion
added 2022/04/11 8:15 p.m.23 views

Out-of-bounds

In ccci, there is a possible leak of kernel pointer due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06108617; Issue ID: ALPS06108617...

7.2CVSS5.8AI score0.0012EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/04/11 12:0 a.m.3 views

多款 MediaTek 产品缓冲区错误漏洞

MediaTek chips are a variety of chips from MediaTek, a division of China's MediaTek Mediatek. A security vulnerability exists in several MediaTek products, which stems from an incorrect boundary check in ccci, where a kernel pointer may be leaked...

7.2CVSS6.6AI score0.0012EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/04/11 12:0 a.m.6 views

PT-2022-14310 · Ccci · Ccci

Name of the Vulnerable Software and Affected Versions: ccci affected versions not specified Description: The issue is related to an incorrect bounds check, which could lead to a leak of kernel pointer. This might result in local information disclosure, requiring System execution privileges for...

7.2CVSS6.1AI score0.0012EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/03/31 12:0 a.m.50 views

SUSE SLED15: cluster-md-kmp-default / dlm-kmp-default / gfs2-kmp-default / etc (SUSE-SU-2022:1039-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1039-1 advisory. The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following...

7.8CVSS7.5AI score0.02633EPSS
Exploits12References87
Microsoft CVE
Microsoft CVE
added 2022/02/24 8:0 a.m.4 views

The check_alu_op() function in kernel/bpf/verifier.c in the Linux kernel through v5.16-rc5 did not properly update bounds while handling the mov32 instruction which allows local users to obtain potentially sensitive address information aka a "pointer leak."

...

5.5CVSS7.1AI score0.00416EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2022/02/11 3:15 p.m.2 views

CVE-2021-45402

The checkaluop function in kernel/bpf/verifier.c in the Linux kernel through v5.16-rc5 did not properly update bounds while handling the mov32 instruction, which allows local users to obtain potentially sensitive address information, aka a "pointer leak."...

5.5CVSS6.8AI score0.00416EPSS
Exploits1References4
NVD
NVD
added 2022/02/11 3:15 p.m.13 views

CVE-2021-45402

The checkaluop function in kernel/bpf/verifier.c in the Linux kernel through v5.16-rc5 did not properly update bounds while handling the mov32 instruction, which allows local users to obtain potentially sensitive address information, aka a "pointer leak."...

5.5CVSS0.00416EPSS
Exploits1References3
OSV
OSV
added 2022/02/11 3:15 p.m.9 views

CVE-2021-45402

The checkaluop function in kernel/bpf/verifier.c in the Linux kernel through v5.16-rc5 did not properly update bounds while handling the mov32 instruction, which allows local users to obtain potentially sensitive address information, aka a "pointer leak."...

5.5CVSS7.2AI score
Exploits0References3
OSV
OSV
added 2022/02/11 3:15 p.m.8 views

AZL-8605 CVE-2021-45402 affecting package kernel for versions less than 5.15.26.1-1

The checkaluop function in kernel/bpf/verifier.c in the Linux kernel through v5.16-rc5 did not properly update bounds while handling the mov32 instruction, which allows local users to obtain potentially sensitive address information, aka a "pointer leak."...

5.5CVSS6.7AI score0.00416EPSS
Exploits1References1
OSV
OSV
added 2022/02/11 3:15 p.m.1 views

DEBIAN-CVE-2021-45402

The checkaluop function in kernel/bpf/verifier.c in the Linux kernel through v5.16-rc5 did not properly update bounds while handling the mov32 instruction, which allows local users to obtain potentially sensitive address information, aka a "pointer leak."...

5.5CVSS6.6AI score0.00416EPSS
Exploits1References1
Prion
Prion
added 2022/02/11 3:15 p.m.28 views

Design/Logic Flaw

The checkaluop function in kernel/bpf/verifier.c in the Linux kernel through v5.16-rc5 did not properly update bounds while handling the mov32 instruction, which allows local users to obtain potentially sensitive address information, aka a "pointer leak."...

2.1CVSS5.1AI score0.00416EPSS
Exploits1References3Affected Software1
UbuntuCve
UbuntuCve
added 2022/02/11 3:15 p.m.72 views

CVE-2021-45402

The checkaluop function in kernel/bpf/verifier.c in the Linux kernel through v5.16-rc5 did not properly update bounds while handling the mov32 instruction, which allows local users to obtain potentially sensitive address information, aka a "pointer leak."...

5.5CVSS6.8AI score0.00416EPSS
Exploits1References9
Cvelist
Cvelist
added 2022/02/11 2:36 p.m.17 views

CVE-2021-45402

The checkaluop function in kernel/bpf/verifier.c in the Linux kernel through v5.16-rc5 did not properly update bounds while handling the mov32 instruction, which allows local users to obtain potentially sensitive address information, aka a "pointer leak."...

6.2AI score0.00416EPSS
Exploits1References3
CVE
CVE
added 2022/02/11 2:36 p.m.204 views

CVE-2021-45402

CVE-2021-45402 affects the Linux kernel where check_alu_op() in kernel/bpf/verifier.c does not update bounds properly when handling mov32, enabling local attackers to leak potentially sensitive addresses (pointer leak). The description is consistently cited across multiple connected advisories (e...

5.5CVSS5.6AI score0.00416EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder