Lucene search
K

221 matches found

Tenable Nessus
Tenable Nessus
added 2025/10/02 12:0 a.m.3 views

Fedora 43 : xen (2025-873ad6df70)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-873ad6df70 advisory. Rebuilt for Python 3.14.0rc3 bytecode ---- Mutiple vulnerabilities in the Viridian interface XSA-472, CVE-2025-27466, CVE-2025-58142, CVE-2025-58143...

9.8CVSS5.9AI score0.00435EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/10/01 12:0 a.m.8 views

Fedora 41 : xen (2025-643cc72c6f)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-643cc72c6f advisory. Mutiple vulnerabilities in the Viridian interface XSA-472, CVE-2025-27466, CVE-2025-58142, CVE-2025-58143 Arm issues with page refcounting XSA-473,...

9.8CVSS5.9AI score0.00435EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/09/25 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2022-50417

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/panfrost: Fix GEM handle creation ref-counting panfrostgemcreatewithhandle previously returned a BO but with the only reference being from the handle, which...

7.8CVSS6.4AI score0.00149EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/19 12:0 a.m.4 views

Fedora 42 : xen (2025-7a1f93f58a)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-7a1f93f58a advisory. Mutiple vulnerabilities in the Viridian interface XSA-472, CVE-2025-27466, CVE-2025-58142, CVE-2025-58143 Arm issues with page refcounting XSA-473,...

9.8CVSS5.9AI score0.00435EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/09/14 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2025-39764

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netfilter: ctnetlink: remove refcounting in expectation dumpers Same pattern as previous patch: do not keep the expectation object alive via refcount, only stor...

5.5CVSS6.2AI score0.00147EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2025/09/13 1:2 a.m.4 views

netfilter: ctnetlink: remove refcounting in expectation dumpers

...

5.5CVSS7AI score0.00147EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/09/11 11:24 p.m.10 views

SUSE CVE-2025-39764

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: remove refcounting in expectation dumpers Same pattern as previous patch: do not keep the expectation object alive via refcount, only store a cookie value and then use that as the skip hint for dump...

5.5CVSS6.5AI score0.00147EPSS
Exploits0References22
NVD
NVD
added 2025/09/11 5:15 p.m.7 views

CVE-2025-39764

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: remove refcounting in expectation dumpers Same pattern as previous patch: do not keep the expectation object alive via refcount, only store a cookie value and then use that as the skip hint for dump...

5.5CVSS0.00147EPSS
Exploits0References7
OSV
OSV
added 2025/09/11 5:15 p.m.6 views

AZL-67160 CVE-2025-39764 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: remove refcounting in expectation dumpers Same pattern as previous patch: do not keep the expectation object alive via refcount, only store a cookie value and then use that as the skip hint for dump...

5.5CVSS5.6AI score0.00147EPSS
Exploits0References1
OSV
OSV
added 2025/09/11 5:15 p.m.5 views

DEBIAN-CVE-2025-39764

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: remove refcounting in expectation dumpers Same pattern as previous patch: do not keep the expectation object alive via refcount, only store a cookie value and then use that as the skip hint for dump...

5.5CVSS5.2AI score0.00147EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/09/11 4:52 p.m.3 views

CVE-2025-39764

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: remove refcounting in expectation dumpers Same pattern as previous patch: do not keep the expectation object alive via refcount, only store a cookie value and then use that as the skip hint for dump...

5.5CVSS5.5AI score0.00147EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2025/09/11 4:52 p.m.36 views

CVE-2025-39764

The CVE-2025-39764 entry concerns a Linux kernel netfilter issue: ctnetlink path dumpers initially kept an expectation object alive via refcounting, risking a refcounting bug (double-increment) when exp == last, leading to a memory leak. The patch removes refcounting for the expectation object an...

5.5CVSS6.1AI score0.00147EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2025/09/11 4:52 p.m.10 views

CVE-2025-39764 netfilter: ctnetlink: remove refcounting in expectation dumpers

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: remove refcounting in expectation dumpers Same pattern as previous patch: do not keep the expectation object alive via refcount, only store a cookie value and then use that as the skip hint for dump...

0.00147EPSS
Exploits0References7
OSV
OSV
added 2025/09/11 4:52 p.m.7 views

CVE-2025-39764 netfilter: ctnetlink: remove refcounting in expectation dumpers

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: remove refcounting in expectation dumpers Same pattern as previous patch: do not keep the expectation object alive via refcount, only store a cookie value and then use that as the skip hint for dump...

5.5CVSS6.1AI score0.00147EPSS
Exploits0References10
Cvelist
Cvelist
added 2025/09/11 2:5 p.m.8 views

CVE-2025-58145 Arm issues with page refcounting

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. There are two issues related to the mapping of pages belonging to other domains: For one, an assertion is wrong there, where the case actually needs handling. A NULL...

0.00329EPSS
Exploits0References1
CVE
CVE
added 2025/09/11 2:5 p.m.33 views

CVE-2025-58144

CVE-2025-58144 affects the Xen hypervisor; a vulnerability in mapping pages from other domains can cause a NULL pointer dereference, potentially on a release build. The record also notes a related issue (CVE-2025-58145) about the P2M lock and domain boundary integrity, but the provided documents ...

7.5CVSS6.6AI score0.0042EPSS
Exploits0References3Affected Software1
Xen Project
Xen Project
added 2025/09/09 12:0 p.m.14 views

Arm issues with page refcounting

ISSUE DESCRIPTION There are two issues related to the mapping of pages belonging to other domains: For one, an assertion is wrong there, where the case actually needs handling. A NULL pointer de-reference could result on a release build. This is CVE-2025-58144. And then the P2M lock isn't held...

7.5CVSS6.5AI score0.0042EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/09/05 12:0 a.m.6 views

PT-2025-46759

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel has a flaw in how user message limits are handled within the Intelligent Platform Management Interface IPMI. The existing implementation had issues with incorrect messag...

4.6CVSS7.7AI score0.00166EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/08/07 12:0 a.m.10 views

PT-2025-37222

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The netfilter component in the Linux kernel contains an issue in the ctnetlink module related to expectation dumpers. A flaw exists where the refcount of an expectation object may be...

5.5CVSS7AI score0.00147EPSS
Exploits0
NVD
NVD
added 2025/05/08 7:15 a.m.12 views

CVE-2025-37804

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

Exploits0
Rows per page
Query Builder