CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1000 matches found

OSV•added 2025/01/16 10:35 a.m.•6 views

SUSE-SU-2025:0138-1 Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005568 fixes several issues. The following security issues were fixed: - CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk-trans bsc1233712. - CVE-2022-48956: ipv6: avoid use-after-free in ip6fragment bsc1232637. -...

7.8CVSS8.1AI score0.00343EPSS

Exploits1References29

RedhatCVE•added 2025/01/13 7:21 a.m.•14 views

CVE-2024-54680

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix TCP timers deadlock after rmmod Commit ef7134c7fc48 "smb: client: Fix use-after-free of network namespace." fixed a netns UAF by manually enabled socket refcounting sk-sknetrefcnt=1 and sockinuseaddnet, 1. The...

4.4CVSS7.1AI score

Exploits0References4

CVE•added 2025/01/11 12:35 p.m.•154 views

CVE-2024-54680

Summary: Astra Linux security bulletin links CVE-2024-54680 to a CIFS/SMB client issue in the Linux kernel related to TCP timer handling and netns lifetimes. The advisory states that a prior fix (“smb: client: fix TCP timers deadlock after rmmod”) was reverted, which inadvertently reintroduced a ...

6.5AI score

Exploits0

OSV•added 2025/01/10 12:55 a.m.•4 views

CLSA-2025-1736470534 Fix of 32 CVEs

CVE-url: https://ubuntu.com/security/CVE-2021-47466 - mm, slub: fix potential memoryleak in kmemcacheopen CVE-url: https://ubuntu.com/security/CVE-2024-36968 - Bluetooth: L2CAP: Fix div-by-zero in l2capleflowctlinit Bionic update: upstream stable patchset 2021-06-23 LP: 1933375 // CVE- url:...

7.8CVSS6.9AI score0.00053EPSS

Exploits0References1

SUSE CVE•added 2025/01/07 3:49 a.m.•4 views

SUSE CVE-2024-56645

In the Linux kernel, the following vulnerability has been resolved: can: j1939: j1939sessionnew: fix skb reference counting Since j1939sessionskbqueue does an extra skbget for each new skb, do the same for the initial one in j1939sessionnew to avoid refcount underflow. mkl: clean up commit messag...

7.8CVSS7.7AI score0.00008EPSS

Exploits0References21

Positive Technologies•added 2025/01/01 12:0 a.m.•2 views

PT-2025-37972

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained an issue in the networking component net: rose related to reference counting of rose neigh structures. The implementation maintained separate reference counts ...

6.8CVSS6.1AI score0.00029EPSS

Exploits0

Positive Technologies•added 2025/01/01 12:0 a.m.•2 views

PT-2025-37971

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The 'use' field within the rose neigh structure was not atomic, leading to potential race conditions. Specifically, the structure could be freed while still being referenced, potentially...

7CVSS7.1AI score0.00021EPSS

Exploits0

RedhatCVE•added 2024/12/30 4:24 p.m.•9 views

CVE-2024-56645

5.5CVSS6.8AI score0.00008EPSS

Exploits0References4

SUSE CVE•added 2024/12/30 3:48 a.m.•1 views

SUSE CVE-2024-56718

In the Linux kernel, the following vulnerability has been resolved: net/smc: protect link down work from execute after lgr freed link down work may be scheduled before lgr freed but execute after lgr freed, which may result in crash. So it is need to hold a reference before shedule link down work...

5.9CVSS7.7AI score0.00019EPSS

Exploits0References15

OSV•added 2024/12/29 12:15 p.m.•4 views

AZL-54999 CVE-2024-56729 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: smb: Initialize cfid-tcon before performing network ops Avoid leaking a tcon ref when a lease break races with opening the cached directory. Processing the leak break might take a reference to the tcon in cacheddirleasebreak and...

4.7CVSS5.6AI score0.00022EPSS

Exploits0References1

OSV•added 2024/12/29 11:30 a.m.•7 views

CVE-2024-56749 dlm: fix dlm_recover_members refcount on error

In the Linux kernel, the following vulnerability has been resolved: dlm: fix dlmrecovermembers refcount on error If dlmrecovermembers fails we don't drop the references of the previous created rootlist that holds and keep all rsbs alive during the recovery. It might be not an unlikely event becau...

5.5CVSS6.2AI score0.00035EPSS

Exploits0References6

OSV•added 2024/12/29 9:15 a.m.•1 views

DEBIAN-CVE-2024-56718

5.5CVSS5.7AI score0.00019EPSS

Exploits0References1

SUSE CVE•added 2024/12/28 3:49 a.m.•1 views

SUSE CVE-2024-56549

In the Linux kernel, the following vulnerability has been resolved: cachefiles: Fix NULL pointer dereference in object-file At present, the object-file has the NULL pointer dereference problem in ondemand-mode. The root cause is that the allocated fd and object-file lifetime are inconsistent, and...

4.7CVSS7.7AI score0.00041EPSS

Exploits0References16

NVD•added 2024/12/27 3:15 p.m.•11 views

CVE-2024-56645

5.5CVSS0.00008EPSS

Exploits0References9

OSV•added 2024/12/27 3:15 p.m.•1 views

DEBIAN-CVE-2024-56645

5.5CVSS5.6AI score0.00008EPSS

Exploits0References1

OSV•added 2024/12/27 3:15 p.m.•1 views

UBUNTU-CVE-2024-56645

5.5CVSS6.2AI score0.00008EPSS

Exploits0References46

CVE•added 2024/12/27 3:2 p.m.•1478 views

CVE-2024-56645

CVE-2024-56645 affects the Linux kernel CAN j1939 implementation. The fix in j1939_session_new() adds an extra skb_get() for the initial skb to match j1939_session_skb_queue() and prevent skb refcount underflow. Connected advisories (Astra Linux, AlmaLinux errata, etc.) reiterate the same, confir...

5.5CVSS6.5AI score0.00008EPSS

Exploits0References9Affected Software1