CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

392 matches found

SUSE Linux•added 2025/03/27 2:32 p.m.•1 views

Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfcworkerwakeup bsc1225820. CVE-2024-27397: netfilter: nftables: use timestamp to check for set...

8.8CVSS8.1AI score0.02589EPSS

Exploits4References1694

OSV•added 2025/01/31 12:15 p.m.•1 views

DEBIAN-CVE-2025-21670

In the Linux kernel, the following vulnerability has been resolved: vsock/bpf: return early if transport is not assigned Some of the core functions can only be called if the transport has been assigned. As Michal reported, a socket might have the transport at NULL, for example after a failed...

5.5CVSS5.7AI score0.00019EPSS

Exploits0References1

OSV•added 2025/01/31 12:15 p.m.•0 views

UBUNTU-CVE-2025-21670

5.5CVSS6.2AI score0.00019EPSS

Exploits0References16

Cvelist•added 2025/01/11 12:35 p.m.•12 views

CVE-2024-57791 net/smc: check return value of sock_recvmsg when draining clc data

In the Linux kernel, the following vulnerability has been resolved: net/smc: check return value of sockrecvmsg when draining clc data When receiving clc msg, the field length in smcclcmsghdr indicates the length of msg should be received from network and the value should not be fully trusted as i...

0.0009EPSS

Exploits0References6

OSV•added 2024/12/02 2:15 p.m.•0 views

UBUNTU-CVE-2024-53122

In the Linux kernel, the following vulnerability has been resolved: mptcp: cope racing subflow creation in mptcprcvspaceadjust Additional active subflows - i.e. created by the in kernel path manager - are included into the subflow list before starting the 3whs. A racing recvmsg spooling data...

5.5CVSS6.2AI score0.00006EPSS

Exploits0References30

CVE•added 2024/12/02 1:44 p.m.•181 views

CVE-2024-53122

CVE-2024-53122 affects the Linux kernel in mptcp: racing subflow creation in mptcp_rcv_space_adjust can trigger a race when handling spooled data on a subflow, potentially causing a divide-by-zero during tcp_cleanup_rbuf() on newly created subflows. The fix adds a state check to ensure the subflo...

5.5CVSS6.4AI score0.00006EPSS

Exploits0References6Affected Software1

Microsoft CVE•added 2024/10/15 7:0 a.m.•1 views

vsock: fix recursive ->recvmsg calls

...

5.5CVSS6.9AI score0.00028EPSS

Exploits0

SUSE CVE•added 2024/09/05 2:46 a.m.•1 views

SUSE CVE-2024-44996

In the Linux kernel, the following vulnerability has been resolved: vsock: fix recursive -recvmsg calls After a vsock socket has been added to a BPF sockmap, its prot-recvmsg has been replaced with vsockbpfrecvmsg. Thus the following recursiion could happen: vsockbpfrecvmsg - vsockrecvmsg -...

5.5CVSS7.2AI score0.00028EPSS

Exploits0References13

RedhatCVE•added 2024/09/04 10:16 p.m.•12 views

CVE-2024-44996

A vulnerability was found in the Linux kernel related to vsock, involving recursive calls due to BPF sockmap integration. When a vsock socket was added to a BPF sockmap, the prot-recvmsg function was replaced with vsockbpfrecvmsg. This could lead to recursion as vsockbpfrecvmsg called vsockrecvms...

5.5CVSS5.1AI score0.00028EPSS

Exploits0References4

OSV•added 2024/09/04 8:15 p.m.•1 views

DEBIAN-CVE-2024-44996

5.5CVSS5.6AI score0.00028EPSS

Exploits0References1

NVD•added 2024/09/04 8:15 p.m.•10 views

CVE-2024-44996

5.5CVSS0.00028EPSS

Exploits0References3

OSV•added 2024/09/04 8:15 p.m.•2 views

AZL-49300 CVE-2024-44996 affecting package kernel for versions less than 6.6.51.1-1

5.5CVSS6.3AI score0.00028EPSS

Exploits0References1

UbuntuCve•added 2024/09/04 8:15 p.m.•14 views

CVE-2024-44996

5.5CVSS6.4AI score0.00028EPSS

Exploits0References10

OSV•added 2024/09/04 8:15 p.m.•0 views

UBUNTU-CVE-2024-44996

5.5CVSS6.5AI score0.00028EPSS

Exploits0References11

Cvelist•added 2024/09/04 7:54 p.m.•14 views

CVE-2024-44996 vsock: fix recursive ->recvmsg calls

0.00028EPSS

Exploits0References3

Debian CVE•added 2024/09/04 7:54 p.m.•12 views

CVE-2024-44996

5.5CVSS5.6AI score0.00028EPSS

Exploits0

CVE•added 2024/08/29 9:5 a.m.•97 views

CVE-2021-4442

CVE-2021-4442 – The Linux kernel TCP stack vulnerability described as: a syzkaller repro could cause RCV_SEQ to be advanced after data restoration in the receive queue, enabling an out-of-order or invalid sequence handling when TCP_QUEUE_SEQ is used on non-empty queues. The connected documents (A...

5.5CVSS6.7AI score0.00023EPSS

Exploits1References5Affected Software1

CVE•added 2024/08/17 9:8 a.m.•175 views

CVE-2024-42283

The CVE-2024-42283 issue in the Linux kernel concerns net/nexthop: two reserved fields in the nexthop_grp were not initialized by nla_put_nh_group(), allowing garbage to leak from the kernel. The public description notes these fields are reserved and currently unused, but their non‑zero values ca...

5.5CVSS6.5AI score0.00013EPSS

Exploits0References10Affected Software1

OSV•added 2024/07/16 1:15 p.m.•0 views

UBUNTU-CVE-2022-48839

In the Linux kernel, the following vulnerability has been resolved: net/packet: fix slab-out-of-bounds access in packetrecvmsg syzbot found that when an AFPACKET socket is using PACKETCOPYTHRESH and mmap operations, tpacketrcv is queueing skbs with garbage in skb-cb, triggering a too big copy 1...

5.5CVSS6.1AI score0.00012EPSS

Exploits0References11

RedHat Linux•added 2024/06/12 2:0 a.m.•3 views

kernel: bluetooth: bt_sock_ioctl race condition leads to use-after-free in bt_sock_recvmsg

A flaw was found in the Bluetooth subsystem of the Linux kernel. A race condition between the btsockrecvmsg and btsockioctl functions could lead to a use-after-free on a socket buffer "skb". This flaw allows a local user to cause a denial of service condition or potential code execution...

7CVSS7AI score0.00126EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by