Lucene search
K

404 matches found

RedHat Linux
RedHat Linux
added 2025/09/29 5:35 a.m.3 views

kernel: tls: fix handling of zero-length records on the rx_list

In the Linux kernel, the following vulnerability has been resolved: tls: fix handling of zero-length records on the rxlist Each recvmsg call must process either - only contiguous DATA records any number of them - one non-DATA record If the next record has different type than what has already been...

7.1CVSS6.7AI score0.00178EPSS
Exploits1References5
OSV
OSV
added 2025/09/18 4:15 p.m.3 views

DEBIAN-CVE-2023-53445

In the Linux kernel, the following vulnerability has been resolved: net: qrtr: Fix a refcount bug in qrtrrecvmsg Syzbot reported a bug as following: refcountt: addition on 0; use-after-free. ... RIP: 0010:refcountwarnsaturate+0x17c/0x1f0 lib/refcount.c:25 ... Call Trace: refcountadd...

5.5CVSS5.4AI score0.00131EPSS
Exploits0References1
CVE
CVE
added 2025/09/18 4:4 p.m.27 views

CVE-2023-53445

CVE-2023-53445 corresponds to a Linux kernel fix for a refcount bug in the qrtr_recvmsg() path, implicated in a use-after-free scenario during concurrent qrtr_recvmsg() and qrtr_endpoint_unregister() operations. The issue involves refcount_t handling and kref/qrtr node references in net/qrtr/af_q...

5.5CVSS6.1AI score0.00131EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/18 4:4 p.m.2 views

CVE-2023-53445 net: qrtr: Fix a refcount bug in qrtr_recvmsg()

In the Linux kernel, the following vulnerability has been resolved: net: qrtr: Fix a refcount bug in qrtrrecvmsg Syzbot reported a bug as following: refcountt: addition on 0; use-after-free. ... RIP: 0010:refcountwarnsaturate+0x17c/0x1f0 lib/refcount.c:25 ... Call Trace: refcountadd...

6.1AI score0.00131EPSS
Exploits0References5
NVD
NVD
added 2025/09/05 6:15 p.m.3 views

CVE-2025-39682

In the Linux kernel, the following vulnerability has been resolved: tls: fix handling of zero-length records on the rxlist Each recvmsg call must process either - only contiguous DATA records any number of them - one non-DATA record If the next record has different type than what has already been...

7.1CVSS0.00178EPSS
Exploits1References7
OSV
OSV
added 2025/09/05 6:15 p.m.13 views

AZL-67001 CVE-2025-39682 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: tls: fix handling of zero-length records on the rxlist Each recvmsg call must process either - only contiguous DATA records any number of them - one non-DATA record If the next record has different type than what has already been...

7.1CVSS6.8AI score0.00178EPSS
Exploits1References1
OSV
OSV
added 2025/09/05 6:15 p.m.0 views

DEBIAN-CVE-2025-39682

In the Linux kernel, the following vulnerability has been resolved: tls: fix handling of zero-length records on the rxlist Each recvmsg call must process either - only contiguous DATA records any number of them - one non-DATA record If the next record has different type than what has already been...

7.1CVSS6.1AI score0.00178EPSS
Exploits1References1
OSV
OSV
added 2025/09/05 5:20 p.m.4 views

CVE-2025-39682 tls: fix handling of zero-length records on the rx_list

In the Linux kernel, the following vulnerability has been resolved: tls: fix handling of zero-length records on the rxlist Each recvmsg call must process either - only contiguous DATA records any number of them - one non-DATA record If the next record has different type than what has already been...

7.1CVSS6AI score0.00178EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2025/08/31 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-38524

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rxrpc: Fix recv-recv race of completed call If a call receives an event such as incoming data, the call gets placed on the socket's queue and a thread in recvms...

4.7CVSS5.8AI score0.00104EPSS
Exploits0References4
OSV
OSV
added 2025/08/19 5:15 p.m.5 views

AZL-66485 CVE-2025-38566 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix handling of server side tls alerts Scott Mayhew discovered a security exploit in NFS over TLS in tlsalertrecv due to its assumption it can read data from the msg iterator's kvec.. kTLS implementation splits TLS non-da...

7.5CVSS6AI score0.00528EPSS
Exploits0References1
OSV
OSV
added 2025/08/19 5:15 p.m.2 views

DEBIAN-CVE-2025-38566

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix handling of server side tls alerts Scott Mayhew discovered a security exploit in NFS over TLS in tlsalertrecv due to its assumption it can read data from the msg iterator's kvec.. kTLS implementation splits TLS non-da...

7.5CVSS5.8AI score0.00528EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/08/16 11:22 p.m.4 views

SUSE CVE-2025-38524

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix recv-recv race of completed call If a call receives an event such as incoming data, the call gets placed on the socket's queue and a thread in recvmsg can be awakened to go and process it. Once the thread has picked up...

5.5CVSS6.3AI score0.00104EPSS
Exploits0References22
OSV
OSV
added 2025/08/16 12:15 p.m.1 views

DEBIAN-CVE-2025-38524

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix recv-recv race of completed call If a call receives an event such as incoming data, the call gets placed on the socket's queue and a thread in recvmsg can be awakened to go and process it. Once the thread has picked up...

4.7CVSS4.9AI score0.00104EPSS
Exploits0References1
OSV
OSV
added 2025/08/16 12:15 p.m.8 views

AZL-66374 CVE-2025-38524 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix recv-recv race of completed call If a call receives an event such as incoming data, the call gets placed on the socket's queue and a thread in recvmsg can be awakened to go and process it. Once the thread has picked up...

4.7CVSS5.5AI score0.00104EPSS
Exploits0References1
OSV
OSV
added 2025/08/16 12:15 p.m.2 views

UBUNTU-CVE-2025-38524

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix recv-recv race of completed call If a call receives an event such as incoming data, the call gets placed on the socket's queue and a thread in recvmsg can be awakened to go and process it. Once the thread has picked up...

4.7CVSS5.7AI score0.00104EPSS
Exploits0References29
OSV
OSV
added 2025/08/16 11:12 a.m.7 views

CVE-2025-38524 rxrpc: Fix recv-recv race of completed call

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix recv-recv race of completed call If a call receives an event such as incoming data, the call gets placed on the socket's queue and a thread in recvmsg can be awakened to go and process it. Once the thread has picked up...

4.7CVSS5.9AI score0.00104EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-53133

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf, sockmap: Fix an infinite loop error when len is 0 in tcpbpfrecvmsgparser When the buffer length of the recvmsg system call is 0, we got the flollowing sof...

5.5CVSS6.3AI score0.00155EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/07/29 12:0 a.m.2 views

PT-2025-33765

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A security issue was identified in the Linux kernel related to the handling of server-side TLS alerts within the sunrpc component. The tls alert recv function incorrectly assumed it...

7.8CVSS6.3AI score0.00528EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/04 4:40 p.m.16 views

CVE-2023-53133

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix an infinite loop error when len is 0 in tcpbpfrecvmsgparser When the buffer length of the recvmsg system call is 0, we got the flollowing soft lockup problem: watchdog: BUG: soft lockup - CPU3 stuck for 27s!...

5.5CVSS6.9AI score0.00155EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/05/03 2:50 a.m.5 views

SUSE CVE-2023-53133

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix an infinite loop error when len is 0 in tcpbpfrecvmsgparser When the buffer length of the recvmsg system call is 0, we got the flollowing soft lockup problem: watchdog: BUG: soft lockup - CPU3 stuck for 27s!...

5.5CVSS6.6AI score0.00155EPSS
Exploits0References4
Rows per page
Query Builder