CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

kernel: proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al

In the Linux kernel, the following vulnerability has been resolved: proc: use the same treatment to check proclseek as ones for procreaditer et.al Check pde-procops-proclseek directly may cause UAF in rmmod scenario. It's a gap in procregopen after commit 654b33ada4ab"proc: fix UAF in...

7.8CVSS5.8AI score0.00026EPSS

Exploits0References5

RedHat Linux•added 2 days ago•4 views

kernel: proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al

7.8CVSS5.8AI score0.00026EPSS

Exploits0References5

RedHat Linux•added 2026/05/28 2:41 a.m.•6 views

kernel: proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al

7.8CVSS6.6AI score0.00026EPSS

Exploits0References5

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-6.1, linux, linux-5.15, linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: smb: client: fixed a use-after-free bug in cifsdebugdataprocshow Skipped SMB sessions that are being terminated e.g., @ses-sesstatus == SESEXITING in cifsdebugdataProcShow to avoid use-after-free in @ses. This fixes the...

7.8CVSS6.4AI score0.00016EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: In the proc subsystem, the same handling is used for checking proclseek as for procreaditer and others. Directly checking pde-procops-proclseek may lead to a Use-After-Value UAF in the rmmod scenario. This issue arises from a fla...

7.8CVSS5.7AI score0.00026EPSS

Exploits0References2

Tenable Nessus•added 2026/04/21 12:0 a.m.•1 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-012947)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-012947 advisory. In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free bug in cifsdebugdataprocshow Skip SMB sessions that are being...

7.8CVSS6.2AI score0.00016EPSS

Exploits0References3

Tenable Nessus•added 2026/01/22 12:0 a.m.•3 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-47709)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47709 advisory. - In the Linux kernel, the following vulnerability has been resolved: can: bcm: Clear bo-bcmprocread after...

5.5CVSS6.6AI score0.0002EPSS

Exploits0References2

Tenable Nessus•added 2026/01/15 12:0 a.m.•2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002638)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002638 advisory. A flaw was found affecting the Linux kernel before version 4.17. By mmaping a FUSE-backed file onto a process's memory containing command line arguments or environme...

5.3CVSS6.3AI score0.0144EPSS

Exploits5References18

OSV•added 2025/09/15 3:15 p.m.•3 views

DEBIAN-CVE-2023-53217

In the Linux kernel, the following vulnerability has been resolved: nubus: Partially revert proccreatesingledata conversion The conversion to proccreatesingledata introduced a regression whereby reading a file in /proc/bus/nubus results in a seg fault: grep -r . /proc/bus/nubus/e/ Data read fault...

7.8CVSS5.5AI score0.00022EPSS

Exploits0References1

RedhatCVE•added 2025/08/24 4:6 p.m.•4 views

CVE-2025-38653

5.1CVSS6.3AI score0.00026EPSS

Exploits0References4

NVD•added 2025/08/22 4:15 p.m.•3 views

CVE-2025-38653

7.8CVSS0.00026EPSS

Exploits0References7

OSV•added 2025/08/22 4:15 p.m.•0 views

UBUNTU-CVE-2025-38653

7.8CVSS6.5AI score0.00026EPSS

Exploits0References31

Debian CVE•added 2025/08/22 4:0 p.m.•3 views

CVE-2025-38653

7.8CVSS6.1AI score0.00026EPSS

Exploits0

SUSE CVE•added 2024/10/21 3:47 p.m.•7 views

SUSE CVE-2024-47709

In the Linux kernel, the following vulnerability has been resolved: can: bcm: Clear bo-bcmprocread after removeprocentry. syzbot reported a warning in bcmrelease. 0 The blamed change fixed another warning that is triggered when connect is issued again for a socket whose connected device has been...

5.5CVSS6.3AI score0.0002EPSS

Exploits0References19

OSV•added 2024/10/21 12:15 p.m.•0 views

UBUNTU-CVE-2024-47709

5.5CVSS6.2AI score0.0002EPSS

Exploits0References43

Vulnrichment•added 2024/10/21 11:53 a.m.•14 views

CVE-2024-47709 can: bcm: Clear bo->bcm_proc_read after remove_proc_entry().

6.8AI score0.0002EPSS

Exploits0References9

OSV•added 2024/05/21 4:15 p.m.•3 views

AZL-42208 CVE-2023-52752 affecting package kernel for versions less than 5.15.167.1-2

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free bug in cifsdebugdataprocshow Skip SMB sessions that are being teared down e.g. @ses-sesstatus == SESEXITING in cifsdebugdataprocshow to avoid use-after-free in @ses. This fixes the following GPF wh...

7.8CVSS6.2AI score0.00016EPSS

Exploits0References1

OSV•added 2024/05/21 4:15 p.m.•1 views

DEBIAN-CVE-2023-52752

7.8CVSS5.5AI score0.00016EPSS

Exploits0References1

SUSE CVE•added 2023/02/15 6:11 a.m.•3 views

SUSE CVE-2007-4571

The sndmemprocread function in sound/core/memalloc.c in the Advanced Linux Sound Architecture ALSA in the Linux kernel before 2.6.22.8 does not return the correct write size, which allows local users to obtain sensitive information kernel memory contents via a small count argument, as demonstrate...

2.1CVSS6.1AI score0.00156EPSS

Exploits4References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by