Lucene search
K

25 matches found

SUSE CVE
SUSE CVE
added 2026/05/02 1:25 a.m.13 views

SUSE CVE-2026-31714

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid memory leak in f2fsrename syzbot reported a f2fs bug as below: BUG: memory leak unreferenced object 0xffff888127f70830 size 16: comm "syz.0.23", pid 6144, jiffies 4294943712 hex dump first 16 bytes: 3c af 57 72...

3.3CVSS5.8AI score0.00114EPSS
Exploits0References3
NVD
NVD
added 2026/05/01 2:16 p.m.9 views

CVE-2026-31714

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid memory leak in f2fsrename syzbot reported a f2fs bug as below: BUG: memory leak unreferenced object 0xffff888127f70830 size 16: comm "syz.0.23", pid 6144, jiffies 4294943712 hex dump first 16 bytes: 3c af 57 72...

5.5CVSS0.00114EPSS
Exploits0References5
CVE
CVE
added 2026/05/01 1:56 p.m.26 views

CVE-2026-31714

The CVE-2026-31714 issue affects the Linux kernel F2FS component, where a memory leak occurs in f2fs_rename() due to an unpaired call to f2fs_free_filename() after f2fs_setup_filename() was added in commit 40b2d55e0452. Exploitation details are local (AV:L/AC:L) with a high availability impact (A...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2025/12/02 9:10 p.m.12 views

Apptainer ineffectively applies selinux and apparmor --security options

Impact In Apptainer versions less than 1.4.5, a container can disable two of the forms of the little used --security option, in particular the forms --security=apparmor: and --security=selinux: which otherwise put restrictions on operations that containers can do. The --security option has always...

5.3CVSS6.7AI score0.00198EPSS
Exploits0References8Affected Software1
Snyk
Snyk
added 2025/11/05 6:40 p.m.2 views

Race Condition Enabling Link Following

Overview Affected versions of this package are vulnerable to Race Condition Enabling Link Following in the handling of procfs file writes. An attacker can cause arbitrary writes to sensitive files or trigger a denial of service by redirecting write operations through race conditions and...

8.2CVSS6.4AI score0.00523EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-26453

Malware in sbrugna...

8.8CVSS8.8AI score0.00385EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/23 9:20 a.m.3 views

CVE-2024-32900

In lwisfencesignal of lwisdebug.c, there is a possible Use after Free due to improper locking. This could lead to local escalation of privilege from halcameradefault SELinux label with no additional execution privileges needed. User interaction is not needed for exploitation...

9.8CVSS6.9AI score0.00166EPSS
Exploits0References1
CVE
CVE
added 2024/06/13 9:1 p.m.86 views

CVE-2024-32900

The CVE-2024-32900 issue affects the LWIS (lwis_fence_signal) path in lwis_debug.c. It describes a Use-After-Free caused by improper locking, enabling local escalation of privilege from the hal_camera_default SELinux label without additional execution privileges. The vulnerability is documented a...

9.8CVSS7AI score0.00166EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/06/13 9:1 p.m.24 views

CVE-2024-32900

In lwisfencesignal of lwisdebug.c, there is a possible Use after Free due to improper locking. This could lead to local escalation of privilege from halcameradefault SELinux label with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00166EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/13 9:1 p.m.15 views

CVE-2024-32900

In lwisfencesignal of lwisdebug.c, there is a possible Use after Free due to improper locking. This could lead to local escalation of privilege from halcameradefault SELinux label with no additional execution privileges needed. User interaction is not needed for exploitation...

8AI score0.00166EPSS
Exploits0References1
OSV
OSV
added 2024/06/01 12:0 a.m.13 views

PUB-A-322327063

In lwisfencesignal of lwisdebug.c, there is a possible Use after Free due to improper locking. This could lead to local escalation of privilege from halcameradefault SELinux label with no additional execution privileges needed. User interaction is not needed for exploitation...

9.8CVSS7.2AI score0.00166EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:21 a.m.3 views

SUSE CVE-2015-1334

attach.c in LXC 1.1.2 and earlier uses the proc filesystem in a container, which allows local container users to escape AppArmor or SELinux confinement by mounting a proc filesystem with a crafted 1 AppArmor profile or 2 SELinux label...

4.6CVSS6.5AI score0.0037EPSS
Exploits0References4
OSV
OSV
added 2022/02/28 6:13 p.m.9 views

CLSA-2022-1646071990 Fix of CVE: CVE-2021-3667, CVE-2021-3631

CVE-2021-3631: security: fix SELinux label generation logic - CVE-2021-3667: storagedriver: Unlock object on ACL fail in storagePoolLookupByTargetPath...

6.5CVSS6.7AI score0.01366EPSS
Exploits1References1
OSV
OSV
added 2021/08/23 10:18 a.m.9 views

OPENSUSE-SU-2021:2812-1 Security update for libvirt

This update for libvirt fixes the following issues: Security issues fixed: - CVE-2021-3631: fix SELinux label generation logic bsc1187871 - CVE-2021-3667: Unlock object on ACL fail in storagePoolLookupByTargetPath bsc1188843 Non-security issues fixed: - virtlockd: Don't report error if lockspace...

6.5CVSS6.7AI score0.01366EPSS
Exploits1References7
OSV
OSV
added 2021/08/23 10:18 a.m.7 views

SUSE-SU-2021:2812-1 Security update for libvirt

This update for libvirt fixes the following issues: Security issues fixed: - CVE-2021-3631: fix SELinux label generation logic bsc1187871 - CVE-2021-3667: Unlock object on ACL fail in storagePoolLookupByTargetPath bsc1188843 Non-security issues fixed: - virtlockd: Don't report error if lockspace...

6.5CVSS6.6AI score0.01366EPSS
Exploits1References7
OSV
OSV
added 2021/08/10 4:6 a.m.5 views

OPENSUSE-SU-2021:1119-1 Security update for libvirt

This update for libvirt fixes the following issues: - CVE-2021-3631: fix SELinux label generation logic bsc1187871 This update was imported from the SUSE:SLE-15-SP2:Update update project...

6.3CVSS6.6AI score0.00493EPSS
Exploits1References4
OSV
OSV
added 2021/07/27 8:37 a.m.5 views

SUSE-SU-2021:2471-1 Security update for libvirt

This update for libvirt fixes the following issues: - CVE-2021-3631: fix SELinux label generation logic bsc1187871...

6.3CVSS6.5AI score0.00493EPSS
Exploits1References4
OSV
OSV
added 2020/07/06 7:54 p.m.6 views

USN-4412-1 linux, linux-aws, linux-aws-5.3, linux-azure, linux-azure-5.3, linux-gcp, linux-gcp-5.3, linux-gke-5.3, linux-hwe, linux-kvm, linux-oracle, linux-oracle-5.3, linux-raspi2-5.3 vulnerabilities

Matthew Sheets discovered that the SELinux network label handling implementation in the Linux kernel could be coerced into de-referencing a NULL pointer. A remote attacker could use this to cause a denial of service system crash. CVE-2020-10711 It was discovered that the SCSI generic sg driver in...

6.7CVSS6.7AI score0.04505EPSS
Exploits0References6
0day.today
0day.today
added 2018/07/30 12:0 a.m.167 views

fusermount - user_allow_other Restriction Bypass and SELinux Label Control Exploit

Exploit for linux platform in category dos / poc / It is possible to bypass fusermount's restrictions on the use of the "allowother" mount option as follows if SELinux is active. Here's a minimal demo, tested on a Debian system with SELinux enabled in permissive mode:...

6.7AI score0.01414EPSS
Exploits3
Packet Storm
Packet Storm
added 2018/07/30 12:0 a.m.63 views

fusermount Restriction Bypass

fusermount userallowother restriction bypass and SELinux label control CVE-2018-10906 It is possible to bypass fusermount's restrictions on the use of the "allowother" mount option as follows if SELinux is active. Here's a minimal demo, tested on a Debian system with SELinux enabled in permissive...

0.2AI score0.01414EPSS
Exploits3
Rows per page
Query Builder