Lucene search
K

18 matches found

SUSE CVE
SUSE CVE
added 2026/05/09 2:39 a.m.13 views

SUSE CVE-2026-43413

In the Linux kernel, the following vulnerability has been resolved: scsi: hisisas: Fix NULL pointer exception during userscan userscan invokes updated sasuserscan for channel 0, and if successful, iteratively scans remaining channels 1 to shost-maxchannel via scsiscanhostselected in commit...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References10
OSV
OSV
added 2026/01/16 11:57 a.m.6 views

OESA-2026-1077 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Fix crash in transport port remove by using iocinfo During mpt3sastransportportremove, messages were logged with devprintk against...

6.5AI score0.00211EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/13 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2023-53627

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: hisisas: Grab sasdev lock when traversing the members of sasdev.list When freeing slots in function slotcompletev3hw, it is possible that sasdev.list is...

5.5CVSS6AI score0.00164EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/10/07 3:19 p.m.6 views

CVE-2023-53627

In the Linux kernel, the following vulnerability has been resolved: scsi: hisisas: Grab sasdev lock when traversing the members of sasdev.list When freeing slots in function slotcompletev3hw, it is possible that sasdev.list is being traversed elsewhere, and it may trigger a NULL pointer exception...

5.5CVSS5.2AI score0.00164EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.9 views

Vulnerability of the hisi_sas_internal_abort_timeout() function in the drivers/scsi/hisi_sas/hisi_sas_main.c module – This driver for SCSI devices in the Linux operating system allows a hacker to trigger a service failure.

Vulnerability of the hisisasinternalaborttimeout function in the drivers/scsi/hisisas/hisisasmain.c module – The Linux SCSI device support driver is vulnerable to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.5AI score0.00171EPSS
Exploits0References18Affected Software2
SUSE CVE
SUSE CVE
added 2025/01/07 3:49 a.m.5 views

SUSE CVE-2024-56588

In the Linux kernel, the following vulnerability has been resolved: scsi: hisisas: Create all dump files during debugfs initialization For the current debugfs of hisisas, after user triggers dump, the driver allocate memory space to save the register information and create debugfs files to displa...

4.4CVSS7.5AI score0.0023EPSS
Exploits0References16
CNNVD
CNNVD
added 2024/12/27 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an issue with all dump files created during debugfs initialization in the scsi hisisas driver...

5.5CVSS6.4AI score0.0023EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:1 a.m.3 views

SUSE CVE-2009-3939

The pollmodeio file for the megaraidsas driver in the Linux kernel 2.6.31.6 and earlier has world-writable permissions, which allows local users to change the I/O mode of the driver by modifying this file...

7.1CVSS6.2AI score0.00444EPSS
Exploits1References11
OpenVAS
OpenVAS
added 2018/07/03 12:0 a.m.41 views

Ubuntu: Security Advisory (USN-3697-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.3AI score0.0172EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2018/07/03 12:0 a.m.54 views

Ubuntu 16.04 LTS : Linux kernel (OEM) vulnerabilities (USN-3697-2)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3697-2 advisory. It was discovered that a null pointer dereference vulnerability existed in the DCCP protocol implementation in the Linux kernel. A local attacker could u...

7.8CVSS6.6AI score0.0172EPSS
Exploits5References8
Ubuntu
Ubuntu
added 2018/07/02 8:5 p.m.81 views

USN-3697-2: Linux kernel (OEM) vulnerabilities

It was discovered that a null pointer dereference vulnerability existed in the DCCP protocol implementation in the Linux kernel. A local attacker could use this to cause a denial of service system crash. CVE-2018-1130 Jann Horn discovered that the 32 bit adjtimex syscall implementation for 64 bit...

7.8CVSS6.4AI score0.0172EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2018/05/23 12:0 a.m.110 views

Ubuntu 14.04 LTS : Linux kernel (Xenial HWE) vulnerabilities (USN-3654-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3654-2 advisory. USN-3654-1 fixed vulnerabilities and added mitigations in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the...

7.8CVSS8AI score0.60631EPSS
Exploits3References14
Ubuntu
Ubuntu
added 2018/05/22 10:42 p.m.84 views

USN-3656-1: Linux kernel (Raspberry Pi 2, Snapdragon) vulnerabilities

Tuba Yavuz discovered that a double-free error existed in the USBTV007 driver of the Linux kernel. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-17975 It was discovered that a race condition existed in the F2FS implementatio...

7.8CVSS7.1AI score0.00559EPSS
Exploits1
Ubuntu
Ubuntu
added 2018/05/22 3:33 a.m.110 views

USN-3654-1: Linux kernel vulnerabilities

Jann Horn and Ken Johnson discovered that microprocessors utilizing speculative execution of a memory read may allow unauthorized memory reads via a sidechannel attack. This flaw is known as Spectre Variant 4. A local attacker could use this to expose sensitive information, including kernel memor...

7.8CVSS7.8AI score0.60631EPSS
Exploits3References1
OSV
OSV
added 2018/03/15 4:29 a.m.4 views

UBUNTU-CVE-2017-18232

The Serial Attached SCSI SAS implementation in the Linux kernel through 4.15.9 mishandles a mutex within libsas, which allows local users to cause a denial of service deadlock by triggering certain error-handling code...

5.5CVSS6.6AI score0.00424EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2010/02/02 8:26 p.m.7 views

kernel: megaraid_sas permissions in sysfs

The dbglvl file for the megaraidsas driver in the Linux kernel before 2.6.27 has world-writable permissions, which allows local users to change the 1 behavior and 2 logging level of the driver by modifying this file...

6.6CVSS5.8AI score0.00531EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2009/12/03 11:27 a.m.6 views

kernel: megaraid_sas permissions in sysfs

The dbglvl file for the megaraidsas driver in the Linux kernel before 2.6.27 has world-writable permissions, which allows local users to change the 1 behavior and 2 logging level of the driver by modifying this file...

6.6CVSS5.8AI score0.00531EPSS
Exploits2References4
Positive Technologies
Positive Technologies
added 2009/11/16 12:0 a.m.5 views

PT-2009-6113 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.27 Description: The issue concerns the megaraid sas driver in the Linux kernel, where the dbg lvl file has world-writable permissions. This allows local users to modify the file, which in turn enables them t...

7.8CVSS6AI score0.11051EPSS
Exploits15References47
Rows per page
Query Builder