Lucene search
K

198 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/20 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2023-53314

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fbdev/ep93xx-fb: Do not assign to struct fbinfo.dev Do not assing the Linux device to struct fbinfo.dev. The call to registerframebuffer initializes the field t...

5.5CVSS6.2AI score0.00146EPSS
Exploits0References2
OSV
OSV
added 2025/09/16 5:15 p.m.4 views

UBUNTU-CVE-2023-53314

In the Linux kernel, the following vulnerability has been resolved: fbdev/ep93xx-fb: Do not assign to struct fbinfo.dev Do not assing the Linux device to struct fbinfo.dev. The call to registerframebuffer initializes the field to the fbdev device. Drivers should not override its value. Fixes a bu...

5.5CVSS5.9AI score0.00146EPSS
Exploits0References11
CVE
CVE
added 2025/09/16 4:11 p.m.27 views

CVE-2023-53314

CVE-2023-53314 affects the Linux kernel fbdev/ep93xx-fb driver. The vulnerability stems from assigning the Linux device to struct fb_info.dev; register_framebuffer() already initializes this field, and drivers must not override it. The bug could cause a leak by incorrectly decreasing the hardware...

5.5CVSS6.1AI score0.00146EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2025/09/15 3:15 p.m.2 views

DEBIAN-CVE-2022-50274

In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: adopts refcnt to avoid UAF dvbunregisterdevice is known that prone to use-after-free. That is, the cleanup from dvbunregisterdevice releases the dvbdevice even if there are pointers stored in file-privatedata still...

7.8CVSS5.8AI score0.0015EPSS
Exploits0References1
NVD
NVD
added 2025/09/15 3:15 p.m.4 views

CVE-2022-50274

In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: adopts refcnt to avoid UAF dvbunregisterdevice is known that prone to use-after-free. That is, the cleanup from dvbunregisterdevice releases the dvbdevice even if there are pointers stored in file-privatedata still...

7.8CVSS0.0015EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/09/15 12:0 a.m.3 views

PT-2025-37576

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a use-after-free issue within the dvbdev module. The dvb unregister device function can release the dvb device structure while pointers in file-private data...

6.2AI score0.0015EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2025/09/12 12:0 a.m.4 views

SUSE SLED15: xen / xen-devel / xen-libs / xen-tools / xen-tools-domU / etc (SUSE-SU-2025:03172-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03172-1 advisory. Security issues fixed: - CVE-2025-27466: NULL pointer dereference in the Viridian interface when updating the...

9.8CVSS5.8AI score0.00435EPSS
Exploits0References9
OSV
OSV
added 2025/09/11 12:54 p.m.3 views

SUSE-SU-2025:03172-1 Security update for xen

This update for xen fixes the following issues: Security issues fixed: - CVE-2025-27466: NULL pointer dereference in the Viridian interface when updating the reference TSC area bsc1248807. - CVE-2025-58142: NULL pointer dereference in the Viridian interface due to assumption that the SIM page is...

9.8CVSS5.8AI score0.00435EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2025/09/11 12:54 p.m.3 views

Security update for xen

This update for xen fixes the following issues: Security issues fixed: CVE-2025-27466: NULL pointer dereference in the Viridian interface when updating the reference TSC area bsc1248807. CVE-2025-58142: NULL pointer dereference in the Viridian interface due to assumption that the SIM page is mapp...

7CVSS6.5AI score0.00435EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2021-47358

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: staging: greybus: uart: fix tty use after free User space can hold a tty open indefinitely a...

7.8CVSS6.2AI score0.00242EPSS
Exploits0References2
OSV
OSV
added 2025/08/19 5:15 p.m.4 views

UBUNTU-CVE-2025-38565

In the Linux kernel, the following vulnerability has been resolved: perf/core: Exit early on perfmmap fail When perfmmap fails to allocate a buffer, it still invokes the eventmapped callback of the related event. On X86 this might increase the perfrdpmcallowed reference counter. But nothing undoe...

7.8CVSS6.5AI score0.00168EPSS
Exploits0References24
Debian CVE
Debian CVE
added 2025/08/19 5:2 p.m.11 views

CVE-2025-38565

In the Linux kernel, the following vulnerability has been resolved: perf/core: Exit early on perfmmap fail When perfmmap fails to allocate a buffer, it still invokes the eventmapped callback of the related event. On X86 this might increase the perfrdpmcallowed reference counter. But nothing undoe...

7.8CVSS6.1AI score0.00168EPSS
Exploits0
CVE
CVE
added 2025/08/19 5:2 p.m.60 views

CVE-2025-38565

CVE-2025-38565: In the Linux kernel perf_mmap() path, if buffer allocation fails the code still invokes event_mapped(), which can increment perf_rdpmc_allowed on x86 and leaks references because perf_mmap_close() is not called. The documented fix is to return early on failure to prevent the refer...

7.8CVSS7.1AI score0.00168EPSS
Exploits0References11Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-53118

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix a procfs host directory removal regression scsiprochostdirrm decreases a...

5.5CVSS5.7AI score0.00166EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2025/05/02 4:15 p.m.7 views

CVE-2023-53118

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix a procfs host directory removal regression scsiprochostdirrm decreases a reference counter and hence must only be called once per host that is removed. This change does not require a scsiaddhostwithdma change sinc...

5.5CVSS6.2AI score0.00166EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2025/05/02 4:15 p.m.11 views

CVE-2023-53118

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix a procfs host directory removal regression scsiprochostdirrm decreases a reference counter and hence must only be called once per host that is removed. This change does not require a scsiaddhostwithdma change sinc...

5.5CVSS0.00166EPSS
Exploits0References6
OSV
OSV
added 2025/05/02 4:15 p.m.3 views

UBUNTU-CVE-2023-53118

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix a procfs host directory removal regression scsiprochostdirrm decreases a reference counter and hence must only be called once per host that is removed. This change does not require a scsiaddhostwithdma change sinc...

5.5CVSS6AI score0.00166EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/05/02 3:55 p.m.12 views

CVE-2023-53118 scsi: core: Fix a procfs host directory removal regression

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix a procfs host directory removal regression scsiprochostdirrm decreases a reference counter and hence must only be called once per host that is removed. This change does not require a scsiaddhostwithdma change sinc...

0.00166EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/05/02 12:0 a.m.5 views

PT-2025-18882 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A regression in the removal of procfs host directories has been fixed in the Linux kernel. The issue is related to the scsi proc hostdir rm function, which decreases a reference counte...

8.8CVSS7.3AI score0.0129EPSS
Exploits2References610
Redos
Redos
added 2025/04/30 12:0 a.m.14 views

ROS-20250430-11

The vulnerability in the PHP programming language interpreter is related to flaws in header processing of of HTTP requests. Exploitation of the vulnerability could allow an attacker acting remotely to send a hidden HTTP request HTTP Request Smuggling attack. A hidden HTTP request HTTP Request...

9.8CVSS5.9AI score0.01357EPSS
Exploits3
Rows per page
Query Builder