CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2024/06/19 3:15 p.m.•16 views

CVE-2021-47607

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix kernel address leakage in atomic cmpxchg's r0 aux reg The implementation of BPFCMPXCHG on a high level has the following parameters: .-old-val .-new-val BPFR0 = cmpxchg32,64DSTREG + insn-off, BPFR0, SRCREG -mem-loc...

5.5CVSS8.4AI score

UbuntuCve•added 2024/06/19 3:15 p.m.•20 views

CVE-2021-47608

5.5CVSS5.8AI score0.00062EPSS

Exploits0References4

OSV•added 2024/06/19 3:15 p.m.•0 views

UBUNTU-CVE-2021-47608

5.5CVSS5.8AI score0.00062EPSS

Cvelist•added 2024/06/19 2:54 p.m.•37 views

CVE-2021-47608 bpf: Fix kernel address leakage in atomic fetch

0.00062EPSS

CVE•added 2024/06/19 2:54 p.m.•70 views

CVE-2021-47608

CVE-2021-47608 involves a bug in the Linux kernel BPF fetch path (bpf: Fix kernel address leakage in atomic fetch) where a faulty check_mem_access() handling could cause leakage of kernel pointers from spilled stack registers when performing atomic XADD. The issue arises in the BPF_FETCH path, wh...

5.5CVSS6.7AI score0.00062EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2024/06/19 2:54 p.m.•12 views

CVE-2021-47608 bpf: Fix kernel address leakage in atomic fetch

6.5AI score0.00062EPSS

CNNVD•added 2024/06/19 12:0 a.m.•1 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a problematic change to the checkmemaccess handling that allows unprivileged users to disclose kernel pointe...

5.5CVSS6.1AI score0.00062EPSS

Exploits0References4

Positive Technologies•added 2024/06/17 12:0 a.m.•2 views

PT-2024-10621 · Lighttpd · Lighttpd

Name of the Vulnerable Software and Affected Versions: lighttpd versions = 1.4.50 Description: The issue is related to a use-after-free vulnerability that can allow access to compare data in a case-insensitive manner with a reused pointer. This vulnerability might read from invalid pointers to...

5.3CVSS6.5AI score0.00223EPSS

Exploits0References13

RedHat Linux•added 2024/06/11 7:56 p.m.•4 views

ruby: Arbitrary memory address read vulnerability with Regex search

A flaw was found in Ruby. If attacker-supplied data is provided to the Ruby regex compiler, it is possible to extract arbitrary heap data relative to the start of the text, including pointers and sensitive strings...

RedHat Linux•added 2024/06/06 2:3 p.m.•6 views

ruby: Arbitrary memory address read vulnerability with Regex search

RedHat Linux•added 2024/06/06 9:32 a.m.•2 views

ruby: Arbitrary memory address read vulnerability with Regex search

OSV•added 2024/06/04 9:56 a.m.•19 views

BIT-RUBY-2024-27282

An issue was discovered in Ruby 3.x through 3.3.0. If attacker-supplied data is provided to the Ruby regex compiler, it is possible to extract arbitrary heap data relative to the start of the text, including pointers and sensitive strings. The fixed versions are 3.0.7, 3.1.5, 3.2.4, and 3.3.1...

6.6CVSS8.1AI score0.00637EPSS

Exploits0References7

RedHat Linux•added 2024/06/03 6:41 p.m.•4 views

ruby: Arbitrary memory address read vulnerability with Regex search