Lucene search
K

18 matches found

Tenable Nessus
Tenable Nessus
โ€ขadded 2024/08/21 12:0 a.m.โ€ข80 views

EulerOS 2.0 SP11 : kernel (EulerOS-SA-2024-2207)

"According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In the Linux kernel, the following vulnerability has been resolved: afunix: Fix garbage collector racing against connect Garbage collector does n...

9.8CVSS6.5AI score0.02701EPSS
Exploits2References159
Tenable Nessus
Tenable Nessus
โ€ขadded 2024/08/21 12:0 a.m.โ€ข76 views

SUSE SLES15 Security Update : kernel (SUSE-SU-2024:2973-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2973-1 advisory. The SUSE Linux Enterprise 15 SP6 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: -...

9.8CVSS8.2AI score0.02701EPSS
Exploits5References2465
NVD
NVD
โ€ขadded 2024/05/14 2:23 p.m.โ€ข13 views

CVE-2023-52656

In the Linux kernel, the following vulnerability has been resolved: iouring: drop any code related to SCMRIGHTS This is dead code after we dropped support for passing iouring fds over SCMRIGHTS, get rid of it...

5.5CVSS7.8AI score0.00296EPSS
Exploits0References8
UbuntuCve
UbuntuCve
โ€ขadded 2024/05/14 2:23 p.m.โ€ข17 views

CVE-2023-52656

In the Linux kernel, the following vulnerability has been resolved: iouring: drop any code related to SCMRIGHTS This is dead code after we dropped support for passing iouring fds over SCMRIGHTS, get rid of it...

5.5CVSS6.4AI score0.00296EPSS
Exploits0References23
CVE
CVE
โ€ขadded 2024/05/13 1:12 p.m.โ€ข7191 views

CVE-2023-52656

CVE-2023-52656 concerns the Linux kernel io_uring subsystem. The connected documents confirm that the vulnerability arises from dropping any code related to SCM_RIGHTS, i.e., dead code after removing support for passing io_uring fds over SCM_RIGHTS. The practical effect described is that the code...

5.5CVSS6.9AI score0.00296EPSS
Exploits0References8Affected Software1
Vulnrichment
Vulnrichment
โ€ขadded 2024/05/13 1:12 p.m.โ€ข13 views

CVE-2023-52656 io_uring: drop any code related to SCM_RIGHTS

In the Linux kernel, the following vulnerability has been resolved: iouring: drop any code related to SCMRIGHTS This is dead code after we dropped support for passing iouring fds over SCMRIGHTS, get rid of it...

7AI score0.00296EPSS
Exploits0References7
OSV
OSV
โ€ขadded 2024/05/13 1:12 p.m.โ€ข13 views

CVE-2023-52656 io_uring: drop any code related to SCM_RIGHTS

In the Linux kernel, the following vulnerability has been resolved: iouring: drop any code related to SCMRIGHTS This is dead code after we dropped support for passing iouring fds over SCMRIGHTS, get rid of it...

5.5CVSS6.2AI score0.00296EPSS
Exploits0References11
Cvelist
Cvelist
โ€ขadded 2024/05/13 1:12 p.m.โ€ข14 views

CVE-2023-52656 io_uring: drop any code related to SCM_RIGHTS

In the Linux kernel, the following vulnerability has been resolved: iouring: drop any code related to SCMRIGHTS This is dead code after we dropped support for passing iouring fds over SCMRIGHTS, get rid of it...

7AI score0.00296EPSS
Exploits0References7
Debian CVE
Debian CVE
โ€ขadded 2024/05/13 1:12 p.m.โ€ข14 views

CVE-2023-52656

In the Linux kernel, the following vulnerability has been resolved: iouring: drop any code related to SCMRIGHTS This is dead code after we dropped support for passing iouring fds over SCMRIGHTS, get rid of it...

5.5CVSS7.5AI score0.00296EPSS
Exploits0
UbuntuCve
UbuntuCve
โ€ขadded 2024/04/25 6:15 a.m.โ€ข27 views

CVE-2024-26923

In the Linux kernel, the following vulnerability has been resolved: afunix: Fix garbage collector racing against connect Garbage collector does not take into account the risk of embryo getting enqueued during the garbage collection. If such embryo has a peer that carries SCMRIGHTS, two consecutiv...

4.7CVSS6.3AI score0.00193EPSS
Exploits0References33
Vulnrichment
Vulnrichment
โ€ขadded 2024/04/24 9:49 p.m.โ€ข32 views

CVE-2024-26923 af_unix: Fix garbage collector racing against connect()

In the Linux kernel, the following vulnerability has been resolved: afunix: Fix garbage collector racing against connect Garbage collector does not take into account the risk of embryo getting enqueued during the garbage collection. If such embryo has a peer that carries SCMRIGHTS, two consecutiv...

6.7AI score0.00193EPSS
Exploits0References8
Cvelist
Cvelist
โ€ขadded 2024/04/24 9:49 p.m.โ€ข34 views

CVE-2024-26923 af_unix: Fix garbage collector racing against connect()

In the Linux kernel, the following vulnerability has been resolved: afunix: Fix garbage collector racing against connect Garbage collector does not take into account the risk of embryo getting enqueued during the garbage collection. If such embryo has a peer that carries SCMRIGHTS, two consecutiv...

7.7AI score0.00193EPSS
Exploits0References8
OSV
OSV
โ€ขadded 2024/04/24 9:49 p.m.โ€ข27 views

CVE-2024-26923 af_unix: Fix garbage collector racing against connect()

In the Linux kernel, the following vulnerability has been resolved: afunix: Fix garbage collector racing against connect Garbage collector does not take into account the risk of embryo getting enqueued during the garbage collection. If such embryo has a peer that carries SCMRIGHTS, two consecutiv...

4.7CVSS6.2AI score0.00193EPSS
Exploits0References13
CVE
CVE
โ€ขadded 2024/04/24 9:49 p.m.โ€ข9215 views

CVE-2024-26923

CVE-2024-26923 is a Linux kernel vulnerability in AF_UNIX garbage collection. The race occurs when a GC pass enqueues an embryo that has a peer carrying SCM_RIGHTS, causing the inflight set to differ between passes. This can leave a dangling pointer in the gc_inflight_list and may lead to memory ...

4.7CVSS6.3AI score0.00193EPSS
Exploits0References13Affected Software1
NVD
NVD
โ€ขadded 2024/04/02 7:15 a.m.โ€ข15 views

CVE-2024-26676

In the Linux kernel, the following vulnerability has been resolved: afunix: Call kfreeskb for dead unixsk-oobskb in GC. syzbot reported a warning 0 in unixgc with a repro, which creates a socketpair and sends one socket's fd to itself using the peer. socketpairAFUNIX, SOCKSTREAM, 0, 3, 4 = 0...

5.5CVSS7.4AI score0.00229EPSS
Exploits0References5
GoogleProjectZero
GoogleProjectZero
โ€ขadded 2022/08/10 12:0 a.m.โ€ข100 views

The quantum state of Linux kernel garbage collection CVE-2021-0920 (Part I)

A deep dive into an in-the-wild Android exploit Guest Post by Xingyu Jin, Android Security Research This is part one of a two-part guest blog post, where first we'll look at the root cause of the CVE-2021-0920 vulnerability. In the second post, we'll dive into the in-the-wild 0-day exploitation o...

7CVSS7.3AI score0.00811EPSS
Exploits0
Ubuntu
Ubuntu
โ€ขadded 2008/11/27 5:43 p.m.โ€ข78 views

USN-679-1: Linux kernel vulnerabilities

It was discovered that the Xen hypervisor block driver did not correctly validate requests. A user with root privileges in a guest OS could make a malicious IO request with a large number of blocks that would crash the host OS, leading to a denial of service. This only affected Ubuntu 7.10...

7.8CVSS7.1AI score0.0368EPSS
Exploits7
CVE
CVE
โ€ขadded 2008/11/10 4:0 p.m.โ€ข121 views

CVE-2008-5029

CVE-2008-5029 affects the Linux kernel 2.6.27.4, 2.6.26 and earlier via the __scm_destroy function in net/core/scm.c, which can cause indirect recursive calls when closing sockets after an SCM_RIGHTS message. This local DoS (panic) condition results from the kernelโ€™s handling of UNIX domain socke...

4.9CVSS5.5AI score0.00504EPSS
Exploits2References36Affected Software1
Rows per page
Query Builder