Lucene search
K

334 matches found

NVD
NVD
added 2025/01/11 1:15 p.m.8 views

CVE-2024-47408

In the Linux kernel, the following vulnerability has been resolved: net/smc: check smcdv2extoffset when receiving proposal msg When receiving proposal msg in server, the field smcdv2extoffset in proposal msg is from the remote client and can not be fully trusted. Once the value of smcdv2extoffset...

5.5CVSS0.00218EPSS
Exploits0References6
OSV
OSV
added 2025/01/11 1:15 p.m.2 views

DEBIAN-CVE-2024-47408

In the Linux kernel, the following vulnerability has been resolved: net/smc: check smcdv2extoffset when receiving proposal msg When receiving proposal msg in server, the field smcdv2extoffset in proposal msg is from the remote client and can not be fully trusted. Once the value of smcdv2extoffset...

5.5CVSS5.7AI score0.00218EPSS
Exploits0References1
OSV
OSV
added 2025/01/11 1:15 p.m.2 views

UBUNTU-CVE-2024-47408

In the Linux kernel, the following vulnerability has been resolved: net/smc: check smcdv2extoffset when receiving proposal msg When receiving proposal msg in server, the field smcdv2extoffset in proposal msg is from the remote client and can not be fully trusted. Once the value of smcdv2extoffset...

5.5CVSS6.2AI score0.00218EPSS
Exploits0References35
OSV
OSV
added 2025/01/11 1:15 p.m.3 views

UBUNTU-CVE-2024-49568

In the Linux kernel, the following vulnerability has been resolved: net/smc: check v2extoffset/eidcnt/ismgidcnt when receiving proposal msg When receiving proposal msg in server, the fields v2extoffset/ eidcnt/ismgidcnt in proposal msg are from the remote client and can not be fully trusted...

5.5CVSS6.2AI score0.00212EPSS
Exploits0References22
OSV
OSV
added 2025/01/11 1:15 p.m.2 views

UBUNTU-CVE-2024-49571

In the Linux kernel, the following vulnerability has been resolved: net/smc: check ipareaoffset and ipv6prefixescnt when receiving proposal msg When receiving proposal msg in server, the field ipareaoffset and the field ipv6prefixescnt in proposal msg are from the remote client and can not be ful...

5.5CVSS6.2AI score0.00214EPSS
Exploits0References36
Cvelist
Cvelist
added 2025/01/11 12:35 p.m.11 views

CVE-2024-49568 net/smc: check v2_ext_offset/eid_cnt/ism_gid_cnt when receiving proposal msg

In the Linux kernel, the following vulnerability has been resolved: net/smc: check v2extoffset/eidcnt/ismgidcnt when receiving proposal msg When receiving proposal msg in server, the fields v2extoffset/ eidcnt/ismgidcnt in proposal msg are from the remote client and can not be fully trusted...

0.00212EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/01/11 12:35 p.m.20 views

CVE-2024-49571 net/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal msg

In the Linux kernel, the following vulnerability has been resolved: net/smc: check ipareaoffset and ipv6prefixescnt when receiving proposal msg When receiving proposal msg in server, the field ipareaoffset and the field ipv6prefixescnt in proposal msg are from the remote client and can not be ful...

0.00214EPSS
Exploits0References6
OSV
OSV
added 2025/01/11 12:35 p.m.10 views

CVE-2024-49568 net/smc: check v2_ext_offset/eid_cnt/ism_gid_cnt when receiving proposal msg

In the Linux kernel, the following vulnerability has been resolved: net/smc: check v2extoffset/eidcnt/ismgidcnt when receiving proposal msg When receiving proposal msg in server, the fields v2extoffset/ eidcnt/ismgidcnt in proposal msg are from the remote client and can not be fully trusted...

5.5CVSS6.2AI score0.00212EPSS
Exploits0References6
CVE
CVE
added 2025/01/11 12:35 p.m.246 views

CVE-2024-49568

CVE-2024-49568 affects the Linux kernel net/smc implementation. The issue arises when receiving a proposal message: fields v2_ext_offset, eid_cnt, and ism_gid_cnt from the remote client are not fully trustworthy; if v2_ext_offset exceeds the max value, it can trigger an out-of-bounds access and a...

5.5CVSS6.6AI score0.00212EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/01/11 12:35 p.m.15 views

CVE-2024-49571 net/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal msg

In the Linux kernel, the following vulnerability has been resolved: net/smc: check ipareaoffset and ipv6prefixescnt when receiving proposal msg When receiving proposal msg in server, the field ipareaoffset and the field ipv6prefixescnt in proposal msg are from the remote client and can not be ful...

5.5CVSS6.1AI score0.00214EPSS
Exploits0References10
Debian CVE
Debian CVE
added 2025/01/11 12:35 p.m.11 views

CVE-2024-49571

In the Linux kernel, the following vulnerability has been resolved: net/smc: check ipareaoffset and ipv6prefixescnt when receiving proposal msg When receiving proposal msg in server, the field ipareaoffset and the field ipv6prefixescnt in proposal msg are from the remote client and can not be ful...

5.5CVSS5.7AI score0.00214EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/01/11 12:35 p.m.7 views

CVE-2024-49568

In the Linux kernel, the following vulnerability has been resolved: net/smc: check v2extoffset/eidcnt/ismgidcnt when receiving proposal msg When receiving proposal msg in server, the fields v2extoffset/ eidcnt/ismgidcnt in proposal msg are from the remote client and can not be fully trusted...

5.5CVSS5.7AI score0.00212EPSS
Exploits0
Cvelist
Cvelist
added 2025/01/11 12:35 p.m.11 views

CVE-2024-47408 net/smc: check smcd_v2_ext_offset when receiving proposal msg

In the Linux kernel, the following vulnerability has been resolved: net/smc: check smcdv2extoffset when receiving proposal msg When receiving proposal msg in server, the field smcdv2extoffset in proposal msg is from the remote client and can not be fully trusted. Once the value of smcdv2extoffset...

0.00218EPSS
Exploits0References5
CVE
CVE
added 2025/01/11 12:35 p.m.147 views

CVE-2024-47408

CVE-2024-47408 affects the Linux kernel net/smc implementation. The vulnerability arises when processing a proposal message: the field smcd_v2_ext_offset in the proposal is provided by the remote client and may not be trusted. If the value of smcd_v2_ext_offset exceeds the maximum, an attacker co...

5.5CVSS6.6AI score0.00218EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2025/01/11 12:35 p.m.11 views

CVE-2024-47408 net/smc: check smcd_v2_ext_offset when receiving proposal msg

In the Linux kernel, the following vulnerability has been resolved: net/smc: check smcdv2extoffset when receiving proposal msg When receiving proposal msg in server, the field smcdv2extoffset in proposal msg is from the remote client and can not be fully trusted. Once the value of smcdv2extoffset...

5.5CVSS6.2AI score0.00218EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2025/01/11 12:35 p.m.6 views

CVE-2024-47408

In the Linux kernel, the following vulnerability has been resolved: net/smc: check smcdv2extoffset when receiving proposal msg When receiving proposal msg in server, the field smcdv2extoffset in proposal msg is from the remote client and can not be fully trusted. Once the value of smcdv2extoffset...

5.5CVSS5.7AI score0.00218EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/01/02 6:44 p.m.4 views

libreswan: IKEv1 default AH/ESP responder can crash and restart

A flaw was found in Libreswan, where it was identified to contain an assertion failure issue in the computeprotokeymat function. The vulnerability can be exploited when an IKEv1 connection is loaded with an AH/ESP default setting when no esp= line is present in the connection. This flaw allows an...

6.5CVSS6.3AI score0.008EPSS
Exploits0References5
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/12/11 12:1 a.m.1 views

Malicious code in plugin-proposal-json-strings (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c11469c014eaf5720410613f78c79dd6cd0aa28aca6fd52a0152441fb13b242e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/11 12:0 a.m.10 views

PT-2025-2832

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.74 Description The issue concerns the Linux kernel, specifically the net/smc component. When receiving a proposal message in the server, the fields v2 ext offset, eid cnt, and ism gid cnt in the proposal...

5.5CVSS5.4AI score0.00212EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/12/02 1:20 a.m.22 views

Moderate: Red Hat Security Advisory: libreswan security update

An update for libreswan is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.5CVSS6.6AI score0.01606EPSS
Exploits1References6
Rows per page
Query Builder