Lucene search
K

145 matches found

RedHat Linux
RedHat Linux
added 2024/04/18 9:58 a.m.3 views

Mozilla: Potential use-after-free due to AlignedBuffer self-move

The Mozilla Foundation Security Advisory describes this flaw as: If an AlignedBuffer were assigned to itself, the subsequent self-move could result in an incorrect reference count and later use-after-free...

4CVSS7.3AI score0.00226EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/02/28 12:0 a.m.2 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the fact that PM reference counts are not expected to be incremented upon return in xiicxfer and xiici2cremo...

5.5CVSS6.5AI score0.00225EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2024/02/27 6:2 p.m.36 views

CVE-2021-46937

In the Linux kernel, the following vulnerability has been resolved: mm/damon/dbgfs: fix 'struct pid' leaks in 'dbgfstargetidswrite' DAMON debugfs interface increases the reference counts of 'struct pid's for targets from the 'targetids' file write callback 'dbgfstargetidswrite', but decreases the...

5.5CVSS6.6AI score0.00222EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2024/02/27 10:15 a.m.5 views

CVE-2021-46937

In the Linux kernel, the following vulnerability has been resolved: mm/damon/dbgfs: fix 'struct pid' leaks in 'dbgfstargetidswrite' DAMON debugfs interface increases the reference counts of 'struct pid's for targets from the 'targetids' file write callback 'dbgfstargetidswrite', but decreases the...

5.5CVSS5.9AI score0.00222EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/02/27 10:15 a.m.0 views

DEBIAN-CVE-2021-46937

In the Linux kernel, the following vulnerability has been resolved: mm/damon/dbgfs: fix 'struct pid' leaks in 'dbgfstargetidswrite' DAMON debugfs interface increases the reference counts of 'struct pid's for targets from the 'targetids' file write callback 'dbgfstargetidswrite', but decreases the...

5.5CVSS5.4AI score0.00222EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/04/24 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a flaw in the netdevsim device driver where reference counts are improperly managed, which can be exploited ...

4.4CVSS6.6AI score0.0034EPSS
Exploits0References4
CVE
CVE
added 2023/04/07 12:0 a.m.102 views

CVE-2020-11935

CVE-2020-11935 concerns the aufs filesystem implementation in the Linux kernel, where inode reference counts are improperly managed in the vfsub_dentry_open() method. This defect can allow a local attacker to trigger a denial-of-service condition. The connected documents consistently describe the...

5.5CVSS5.1AI score0.002EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/04/07 12:0 a.m.48 views

CVE-2020-11935 aufs: improperly managed inode reference counts in the vfsub_dentry_open() method

It was discovered that aufs improperly managed inode reference counts in the vfsubdentryopen method. A local attacker could use this vulnerability to cause a denial of service attack...

4.4CVSS5.9AI score0.002EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2023/04/07 12:0 a.m.38 views

CVE-2020-11935

Removed by vendor...

5.5CVSS5.9AI score0.002EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 5:2 a.m.1 views

SUSE CVE-2016-4558

The BPF subsystem in the Linux kernel before 4.5.5 mishandles reference counts, which allows local users to cause a denial of service use-after-free or possibly have unspecified other impact via a crafted application on 1 a system with more than 32 Gb of memory, related to the program reference...

7CVSS7.4AI score0.00865EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:32 a.m.3 views

SUSE CVE-2022-2327

iouring use workflags to determine which identity need to grab from the calling process to make sure it is consistent with the calling process when executing IORINGOP. Some operations are missing some types, which can lead to incorrect reference counts which can then lead to a double free. We...

7.8CVSS5.5AI score0.00261EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/09/05 12:0 a.m.6 views

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS, which stems from improper update of reference counts. An attacker could exploit the vulnerability to cau...

9.8CVSS8.3AI score0.00531EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/08/19 12:0 a.m.3 views

Red Hat Enterprise Linux 资源管理错误漏洞

Red Hat Enterprise Linux is a Linux operating system for business users from Red Hat, Inc. A security vulnerability in Red Hat Enterprise Linux exists because the onstreamio function and the dnsstreamcomplete function in resolved-dns-stream.c do not increment the reference count of a DnsStream...

9.8CVSS7.5AI score0.01052EPSS
Exploits0References29
OSV
OSV
added 2022/07/22 10:15 a.m.7 views

CVE-2022-2327

iouring use workflags to determine which identity need to grab from the calling process to make sure it is consistent with the calling process when executing IORINGOP. Some operations are missing some types, which can lead to incorrect reference counts which can then lead to a double free. We...

7.8CVSS6.4AI score
Exploits0References6
Cvelist
Cvelist
added 2022/07/22 12:0 a.m.22 views

CVE-2022-2327 Use-after-free in io_uring ad work_flags in Linux Kernel

iouring use workflags to determine which identity need to grab from the calling process to make sure it is consistent with the calling process when executing IORINGOP. Some operations are missing some types, which can lead to incorrect reference counts which can then lead to a double free. We...

7.5CVSS7.7AI score0.00261EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/07/22 12:0 a.m.2 views

PT-2022-7703 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the version containing commit df3f3bb5059d20ef094d6b2f0256c4bf4127a859 Description: The issue is related to a double free vulnerability in the Linux kernel, specifically with the io uring feature. This...

7.8CVSS5.3AI score0.00261EPSS
Exploits0References17
Debian CVE
Debian CVE
added 2022/07/22 12:0 a.m.44 views

CVE-2022-2327

iouring use workflags to determine which identity need to grab from the calling process to make sure it is consistent with the calling process when executing IORINGOP. Some operations are missing some types, which can lead to incorrect reference counts which can then lead to a double free. We...

7.8CVSS5.7AI score0.00261EPSS
Exploits0
OSV
OSV
added 2022/06/09 5:15 p.m.1 views

DEBIAN-CVE-2022-26364

x86 pv: Insufficient care with non-coherent mappings This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Xen maintains a type reference count for pages, in addition to a regular reference count. This scheme is used to...

6.7CVSS6.2AI score0.00494EPSS
Exploits3References1
ATTACKERKB
ATTACKERKB
added 2022/06/09 5:15 p.m.2 views

CVE-2022-26364

x86 pv: Insufficient care with non-coherent mappings This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Xen maintains a type reference count for pages, in addition to a regular reference count. This scheme is used to...

7.2CVSS5.8AI score0.00494EPSS
Exploits3References11
ATTACKERKB
ATTACKERKB
added 2022/06/09 5:15 p.m.2 views

CVE-2022-26363

x86 pv: Insufficient care with non-coherent mappings This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Xen maintains a type reference count for pages, in addition to a regular reference count. This scheme is used to...

7.2CVSS7AI score0.00341EPSS
Exploits0References10
Rows per page
Query Builder