Lucene search
K

79 matches found

Cvelist
Cvelist
added 2024/11/21 6:17 p.m.29 views

CVE-2024-53095 smb: client: Fix use-after-free of network namespace.

In the Linux kernel, the following vulnerability has been resolved: smb: client: Fix use-after-free of network namespace. Recently, we got a customer report that CIFS triggers oops while reconnecting to a server. 0 The workload runs on Kubernetes, and some pods mount CIFS servers in non-root...

0.00223EPSS
Exploits0References3
CVE
CVE
added 2024/11/21 6:17 p.m.189 views

CVE-2024-53095

CVE-2024-53095 – Linux kernel SMB CIFS client UAF Issue: The CIFS/SMB client in the Linux kernel can use-after-free the network namespace (netns) when sockets are freed after the netns lifetime, triggering oopses during reconnect in Kubernetes pods that mount CIFS shares in non-root netns. Root c...

7.8CVSS6.6AI score0.00223EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2024/11/09 11:15 a.m.15 views

CVE-2024-50257

In the Linux kernel, the following vulnerability has been resolved: netfilter: Fix use-after-free in getinfo ip6tablenat module unload has refcnt warning for UAF. call trace is: WARNING: CPU: 1 PID: 379 at kernel/module/main.c:853 moduleput+0x6f/0x80 Modules linked in: ip6tablenat- CPU: 1 UID: 0...

7.8CVSS0.00257EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/11/09 10:15 a.m.30 views

CVE-2024-50257 netfilter: Fix use-after-free in get_info()

In the Linux kernel, the following vulnerability has been resolved: netfilter: Fix use-after-free in getinfo ip6tablenat module unload has refcnt warning for UAF. call trace is: WARNING: CPU: 1 PID: 379 at kernel/module/main.c:853 moduleput+0x6f/0x80 Modules linked in: ip6tablenat- CPU: 1 UID: 0...

0.00257EPSS
Exploits0References5
NVD
NVD
added 2024/10/21 6:15 p.m.12 views

CVE-2024-49988

In the Linux kernel, the following vulnerability has been resolved: ksmbd: add refcnt to ksmbdconn struct When sending an oplock break request, opinfo-conn is used, But freed -conn can be used on multichannel. This patch add a reference count to the ksmbdconn struct so that it can be freed when i...

5.5CVSS0.00233EPSS
Exploits0References4
OSV
OSV
added 2024/10/21 6:2 p.m.9 views

CVE-2024-49988 ksmbd: add refcnt to ksmbd_conn struct

In the Linux kernel, the following vulnerability has been resolved: ksmbd: add refcnt to ksmbdconn struct When sending an oplock break request, opinfo-conn is used, But freed -conn can be used on multichannel. This patch add a reference count to the ksmbdconn struct so that it can be freed when i...

5.5CVSS6AI score0.00233EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2024/10/21 6:2 p.m.32 views

CVE-2024-49982 aoe: fix the potential use-after-free problem in more places

In the Linux kernel, the following vulnerability has been resolved: aoe: fix the potential use-after-free problem in more places For fixing CVE-2023-6270, f98364e92662 "aoe: fix the potential use-after-free problem in aoecmdcfgpkts" makes tx calling devput instead of doing in aoecmdcfgpkts. It...

6.9AI score0.00259EPSS
Exploits0References9
OSV
OSV
added 2024/09/30 10:52 a.m.28 views

SUSE-SU-2024:3499-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-48791: Fix use-after-free for aborted TMF sastask bsc1228002 - CVE-2024-44947: Initialize beyond-EOF page contents before setting uptodate bsc1229454. -...

8.4CVSS7.9AI score0.00879EPSS
Exploits4References66
Vulnrichment
Vulnrichment
added 2024/07/29 3:52 p.m.14 views

CVE-2024-42075 bpf: Fix remap of arena.

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix remap of arena. The bpf arena logic didn't account for mremap operation. Add a refcnt for multiple mmap events to prevent use-after-free in arenavmclose...

6.8AI score0.0021EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/07/12 12:24 p.m.23 views

CVE-2024-40914 mm/huge_memory: don't unpoison huge_zero_folio

In the Linux kernel, the following vulnerability has been resolved: mm/hugememory: don't unpoison hugezerofolio When I did memory failure tests recently, below panic occurs: kernel BUG at include/linux/mm.h:1135! invalid opcode: 0000 1 PREEMPT SMP NOPTI CPU: 9 PID: 137 Comm: kswapd1 Not tainted...

6.5AI score0.00277EPSS
Exploits0References5
OSV
OSV
added 2024/07/12 12:24 p.m.22 views

CVE-2024-40914 mm/huge_memory: don't unpoison huge_zero_folio

In the Linux kernel, the following vulnerability has been resolved: mm/hugememory: don't unpoison hugezerofolio When I did memory failure tests recently, below panic occurs: kernel BUG at include/linux/mm.h:1135! invalid opcode: 0000 1 PREEMPT SMP NOPTI CPU: 9 PID: 137 Comm: kswapd1 Not tainted...

5.5CVSS5.8AI score0.00277EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/07/05 12:0 a.m.37 views

OracleVM 3.4 : kernel-uek (OVMSA-2024-0006)

The remote OracleVM system is missing necessary patches to address security updates: 4.1.12-124.87.2- net: sched: fix race condition in qdiscgraft Eric Dumazet Orabug: 35250827 CVE-2023-05904.1.12-124.87.1- ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet Zhengchao Shao Orabug:...

7.8CVSS6.9AI score0.00553EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2024/05/27 10:32 a.m.25 views

CVE-2021-47532

In the Linux kernel, the following vulnerability has been resolved: drm/msm/devfreq: Fix OPP refcnt leak...

4.4CVSS6.6AI score0.00193EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/05/27 9:57 a.m.30 views

CVE-2021-47555

In the Linux kernel, the following vulnerability has been resolved: net: vlan: fix underflow for the realdev refcnt Inject error before devholdrealdev in registervlandev, and execute the following testcase: ip link add dev dummy1 type dummy ip link add name dummy1.100 link dummy1 type vlan id 100...

4.4CVSS9AI score0.00208EPSS
Exploits0References4
OSV
OSV
added 2024/05/24 3:15 p.m.18 views

CVE-2021-47555

In the Linux kernel, the following vulnerability has been resolved: net: vlan: fix underflow for the realdev refcnt Inject error before devholdrealdev in registervlandev, and execute the following testcase: ip link add dev dummy1 type dummy ip link add name dummy1.100 link dummy1 type vlan id 100...

5.5CVSS6.5AI score
Exploits0References4
NVD
NVD
added 2024/05/24 3:15 p.m.12 views

CVE-2021-47532

In the Linux kernel, the following vulnerability has been resolved: drm/msm/devfreq: Fix OPP refcnt leak...

5.5CVSS6.5AI score0.00193EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2024/05/24 3:15 p.m.27 views

CVE-2021-47555

In the Linux kernel, the following vulnerability has been resolved: net: vlan: fix underflow for the realdev refcnt Inject error before devholdrealdev in registervlandev, and execute the following testcase: ip link add dev dummy1 type dummy ip link add name dummy1.100 link dummy1 type vlan id 100...

5.5CVSS5.9AI score0.00208EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2024/05/24 3:15 p.m.13 views

CVE-2021-47532

In the Linux kernel, the following vulnerability has been resolved: drm/msm/devfreq: Fix OPP refcnt leak...

5.5CVSS5.8AI score0.00193EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/05/24 3:9 p.m.16 views

CVE-2021-47555 net: vlan: fix underflow for the real_dev refcnt

In the Linux kernel, the following vulnerability has been resolved: net: vlan: fix underflow for the realdev refcnt Inject error before devholdrealdev in registervlandev, and execute the following testcase: ip link add dev dummy1 type dummy ip link add name dummy1.100 link dummy1 type vlan id 100...

6.6AI score0.00208EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/05/24 3:9 p.m.22 views

CVE-2021-47555 net: vlan: fix underflow for the real_dev refcnt

In the Linux kernel, the following vulnerability has been resolved: net: vlan: fix underflow for the realdev refcnt Inject error before devholdrealdev in registervlandev, and execute the following testcase: ip link add dev dummy1 type dummy ip link add name dummy1.100 link dummy1 type vlan id 100...

7AI score0.00208EPSS
Exploits0References4
Rows per page
Query Builder