Lucene search
+L

247 matches found

Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987133)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987133 advisory. In the Linux kernel, the following vulnerability has been resolved: net/mlx4en: Fix an use-after-free bug in mlx4entryallocresources In mlx4entryallocresources,...

7.8CVSS6.1AI score0.00295EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-47955

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.02685EPSS
Exploits4References2
NVD
NVD
added 2025/10/01 8:15 a.m.7 views

CVE-2025-39925

In the Linux kernel, the following vulnerability has been resolved: can: j1939: implement NETDEVUNREGISTER notification handler syzbot is reporting unregisternetdevice: waiting for vcan0 to become free. Usage count = 2 problem, for j1939 protocol did not have NETDEVUNREGISTER notification handler...

5.5CVSS0.00119EPSS
Exploits0References2
OSV
OSV
added 2025/10/01 8:7 a.m.4 views

CVE-2025-39925 can: j1939: implement NETDEV_UNREGISTER notification handler

In the Linux kernel, the following vulnerability has been resolved: can: j1939: implement NETDEVUNREGISTER notification handler syzbot is reporting unregisternetdevice: waiting for vcan0 to become free. Usage count = 2 problem, for j1939 protocol did not have NETDEVUNREGISTER notification handler...

5.5CVSS6.4AI score0.00119EPSS
Exploits0References5
OSV
OSV
added 2025/09/18 2:15 p.m.6 views

UBUNTU-CVE-2022-50390

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: fix undefined behavior in bit shift for TTMTTFLAGPRIVPOPULATED Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN:...

5.5CVSS5.7AI score0.00152EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2025/09/18 1:33 p.m.3 views

CVE-2022-50390

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: fix undefined behavior in bit shift for TTMTTFLAGPRIVPOPULATED Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN:...

5.5CVSS5.1AI score0.00152EPSS
Exploits0
CVE
CVE
added 2025/09/18 1:33 p.m.32 views

CVE-2022-50390

The CVE-2022-50390 issue is in the Linux kernel DRM TTM code. It fixes an undefined behavior when shifting a signed 32-bit value by 31 bits in TTM_TT_FLAG_PRIV_POPULATED, by changing the operation to unsigned to avoid UBSAN/shift-out-of-bounds warnings observed during framebuffer/VM operations. T...

5.5CVSS6.1AI score0.00152EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2025/09/15 2:2 p.m.25 views

CVE-2022-50245

CVE-2022-50245 concerns a Linux kernel issue in the rapidio driver where a UAF can occur if kfifo_alloc() fails during mport_cdev_open(). The fix removes priv from the chdev->file_list before freeing it to prevent traversal from accessing a freed object (the smatch warning reference). Affected...

7.8CVSS6.2AI score0.00156EPSS
Exploits0References9Affected Software1
CNNVD
CNNVD
added 2025/09/15 12:0 a.m.7 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the failure to remove priv from the list when kfifoalloc fails, which could lead to reuse after release...

7.8CVSS4.9AI score0.00156EPSS
Exploits0References10
CVE
CVE
added 2025/09/05 5:21 p.m.21 views

CVE-2025-39696

CVE-2025-39696 affects the Linux kernel ALSA HDA path for tas2781. The root cause was a wrong reference assignment during calibration data management: tasdevice_priv was set to h->hda_priv instead of h->priv, causing memory corruption and crashes due to a void pointer. The issue is resolved...

5.5CVSS6AI score0.00128EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/09/05 12:0 a.m.6 views

PT-2025-36290

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel related to the ALSA subsystem and the tas2781 driver. A wrong reference to tasdevice priv was set to h-hda priv instead of h-priv during calibration...

5.9AI score0.00128EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/08/27 5:32 a.m.3 views

CVE-2025-9513 editso fuso mod.rs PenetrateRsaAndAesHandshake inadequate encryption

A flaw has been found in editso fuso up to 1.0.4-beta.7. This affects the function PenetrateRsaAndAesHandshake of the file src/net/penetrate/handshake/mod.rs. This manipulation of the argument privkey causes inadequate encryption strength. Remote exploitation of the attack is possible. A high...

6.3CVSS4.2AI score0.00141EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2025/08/26 12:0 a.m.8 views

pam security update

1.3.1-38.0.1 - pamlimits: fix use after free in pamsmopensession Orabug: 36272695 1.3.1-38 - pamnamespace: fix potential privilege escalation. Resolves: CVE-2025-6020 and RHEL-96724...

7.8CVSS7.6AI score0.00399EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/08/25 12:0 a.m.11 views

PT-2025-40099

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel has an issue where the j1939 protocol lacked a NETDEV UNREGISTER notification handler, leading to problems when unregistering network devices. Specifically, the j1939 sk...

5.5CVSS5.5AI score0.00119EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/08/25 12:0 a.m.7 views

PT-2025-34654 · D Link · Dsl-7740C

Name of the Vulnerable Software and Affected Versions: D-Link DSL-7740C versions DSL7740C.V6.TR069.20211230 Description: An incorrect access control issue exists in the Maintenance module. Authenticated attackers with low-level privileges can arbitrarily change high-privileged account passwords a...

5.3CVSS6.5AI score0.00543EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/08/24 4:7 p.m.5 views

CVE-2025-38662

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8365-dai-i2s: pass correct size to mt8365daisetpriv Given mt8365daisetpriv allocate privsize space to copy privdata which means we should pass mt8365i2sprivi or "struct mtkafei2spriv" instead of afepriv which ha...

5.5CVSS6.3AI score0.00151EPSS
Exploits0References4
NVD
NVD
added 2025/08/22 4:15 p.m.8 views

CVE-2025-38662

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8365-dai-i2s: pass correct size to mt8365daisetpriv Given mt8365daisetpriv allocate privsize space to copy privdata which means we should pass mt8365i2sprivi or "struct mtkafei2spriv" instead of afepriv which ha...

7.8CVSS0.00151EPSS
Exploits0References3
OSV
OSV
added 2025/08/22 4:15 p.m.4 views

UBUNTU-CVE-2025-38662

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8365-dai-i2s: pass correct size to mt8365daisetpriv Given mt8365daisetpriv allocate privsize space to copy privdata which means we should pass mt8365i2sprivi or "struct mtkafei2spriv" instead of afepriv which ha...

7.8CVSS5.7AI score0.00151EPSS
Exploits0References12
CVE
CVE
added 2025/08/22 4:2 p.m.37 views

CVE-2025-38662

CVE-2025-38662 in the Linux kernel affects the ASoC Mediatek mt8365 PCM/DAI code. The issue arises in mt8365_dai_set_priv where priv_size is allocated for the destination, but the code passes afe_priv (the size of struct mt8365_afe_private) instead of the correct priv structure (mt8365_i2s_priv[i...

7.8CVSS6.5AI score0.00151EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2025/08/22 4:2 p.m.7 views

CVE-2025-38662

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8365-dai-i2s: pass correct size to mt8365daisetpriv Given mt8365daisetpriv allocate privsize space to copy privdata which means we should pass mt8365i2sprivi or "struct mtkafei2spriv" instead of afepriv which ha...

7.8CVSS5.8AI score0.00151EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder