Lucene search
K

6 matches found

BDU FSTEC
BDU FSTEC
added 2024/06/14 12:0 a.m.5 views

The vulnerability of the do_setvfinfo() function in the implementation of the TCP/IP protocol stack in Linux’s operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the dosetvfinfo function in the net/core/rtnetlink.c module, which is part of the Linux kernel’s TCP/IP stack, involves reading memory beyond the allocated buffer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

7.8CVSS6.3AI score0.00249EPSS
Exploits0References43Affected Software5
Vulnrichment
Vulnrichment
added 2024/05/21 3:4 p.m.13 views

CVE-2021-47418 net_sched: fix NULL deref in fifo_set_limit()

In the Linux kernel, the following vulnerability has been resolved: netsched: fix NULL deref in fifosetlimit syzbot reported another NULL deref in fifosetlimit 1 I could repro the issue with : unshare -n tc qd add dev lo root handle 1:0 tbf limit 200000 burst 70000 rate 100Mbit tc qd replace dev ...

6.5AI score0.00234EPSS
Exploits0References8
Veracode
Veracode
added 2019/05/02 4:54 a.m.24 views

Information Disclosure

kernel-rt is vulnerable to information disclosure. The vulnerability exists as the rtnlfillifinfo function in net/core/rtnetlink.c does not initialize a certain structure member...

1.9CVSS5AI score0.00429EPSS
Exploits0References22Affected Software1
Prion
Prion
added 2013/03/22 11:59 a.m.13 views

Design/Logic Flaw

The rtnlfillifinfo function in net/core/rtnetlink.c in the Linux kernel before 3.8.4 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel stack memory via a crafted application...

1.9CVSS5.8AI score0.00429EPSS
Exploits0References14Affected Software1
Debian CVE
Debian CVE
added 2013/03/22 10:0 a.m.27 views

CVE-2013-2635

The rtnlfillifinfo function in net/core/rtnetlink.c in the Linux kernel before 3.8.4 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel stack memory via a crafted application...

1.9CVSS5.1AI score0.00429EPSS
Exploits0
CVE
CVE
added 2013/03/22 10:0 a.m.88 views

CVE-2013-2635

The CVE-2013-2635 issue affects the Linux kernel’s rtnetlink path: rtnl_fill_ifinfo in net/core/rtnetlink.c does not initialize a structure member, enabling a local attacker to read kernel stack memory. The vulnerability is associated with Linux kernel versions prior to 3.8.4; the documented fix ...

1.9CVSS4.5AI score0.00429EPSS
Exploits0References14Affected Software1
Rows per page
Query Builder