Lucene search
K

64 matches found

CVE
CVE
added 2024/10/08 5:35 p.m.40 views

CVE-2024-35215

The CVE-2024-35215 issue affects QNX Software Development Platform (SDP) 7.0 and 7.1, where a NULL pointer dereference in the IP socket options processing of the Networking Stack can allow a local attacker to cause a denial-of-service in the Networking Stack process. This is the explicit root cau...

6.2CVSS6.7AI score0.00162EPSS
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
added 2024/08/08 4:53 a.m.5 views

kernel: tls: fix missing memory barrier in tls_init

In the Linux kernel, the following vulnerability has been resolved: tls: fix missing memory barrier in tlsinit In tlsinit, a write memory barrier is missing, and store-store reordering may cause NULL dereference in tlssetsockopt,getsockopt. CPU0 CPU1 ----- ----- // In tlsinit // In tlsctxcreate c...

5.5CVSS6.5AI score0.00253EPSS
Exploits0References5
OSV
OSV
added 2024/05/21 3:15 p.m.2 views

UBUNTU-CVE-2021-47304

In the Linux kernel, the following vulnerability has been resolved: tcp: fix tcpinittransfer to not reset icskcainitialized This commit fixes a bug found by syzkaller that could cause spurious double-initializations for congestion control modules, which could cause memory leaks or other problems...

5.5CVSS6.4AI score0.00235EPSS
Exploits0References6
OSV
OSV
added 2024/05/19 9:15 a.m.1 views

UBUNTU-CVE-2024-35894

In the Linux kernel, the following vulnerability has been resolved: mptcp: prevent BPF accessing lowat from a subflow socket. Alexei reported the following splat: WARNING: CPU: 32 PID: 3276 at net/mptcp/subflow.c:1430 subflowdataready+0x147/0x1c0 Modules linked in: dummy bpftestmodO last unloaded...

7.8CVSS6.4AI score0.0022EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2023/02/15 5:45 a.m.2 views

SUSE CVE-2012-3552

Race condition in the IP implementation in the Linux kernel before 3.0 might allow remote attackers to cause a denial of service slab corruption and system crash by sending packets to an application that sets socket options during the handling of network traffic...

5.9CVSS6.6AI score0.0285EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:42 a.m.4 views

SUSE CVE-2012-6704

The socksetsockopt function in net/core/sock.c in the Linux kernel before 3.5 mishandles negative values of sksndbuf and skrcvbuf, which allows local users to cause a denial of service memory corruption and system crash or possibly have unspecified other impact by leveraging the CAPNETADMIN...

6.7CVSS6.7AI score0.00412EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2022/07/19 9:9 p.m.5 views

kernel: Race condition in races in sk_peer_pid and sk_peer_cred accesses

A use-after-free read flaw was found in sockgetsockopt in net/core/sock.c due to SOPEERCRED and SOPEERGROUPS race with listen and connect in the Linux kernel. In this flaw, an attacker with a user privileges may crash the system or leak internal kernel information...

6.8CVSS6.6AI score0.01747EPSS
Exploits1References7
CNNVD
CNNVD
added 2022/03/10 12:0 a.m.4 views

Linux kernel 资源管理错误漏洞

Linux kernel is the kernel used by the Linux Foundation's open source operating system, Linux. Linux kernel is vulnerable to a denial-of-service vulnerability caused by a "use before read" flaw in the sockgetsockopt function in net/core/sock.c. " flaw in the sockgetsockopt function in...

6.8CVSS7.3AI score0.01747EPSS
Exploits1References27
Gitee
Gitee
added 2021/12/02 11:0 a.m.10 views

Exploit for CVE-2016-2384

This repository contains proof-of-concept PoC exploits for various vulnerabilities in the Linux kernel. The exploits target different vulnerabilities, including CVE-2016-2384, CVE-2016-9793, and CVE-2017-1000112. CVE-2016-2384 is a use-after-free vulnerability in the usb-midi driver, which allows...

7.8CVSS6.6AI score0.20797EPSS
Exploits30
0day.today
0day.today
added 2017/05/23 12:0 a.m.26 views

Apple iOS / macOS Kernel - Memory Disclosure Due to Lack of Bounds Checking in netagent Socket Optio

Exploit for multiple platform in category dos / poc / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1140 netagentctlsetopt is the setsockopt handler for netagent control sockets. Options of type NETAGENTOPTIONTYPEREGISTER are handled by netagenthandleregistersetopt. Here's the...

7.1AI score
Exploits0
OSV
OSV
added 2016/12/28 7:59 a.m.3 views

UBUNTU-CVE-2012-6704

The socksetsockopt function in net/core/sock.c in the Linux kernel before 3.5 mishandles negative values of sksndbuf and skrcvbuf, which allows local users to cause a denial of service memory corruption and system crash or possibly have unspecified other impact by leveraging the CAPNETADMIN...

7.8CVSS7AI score0.00412EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2016/12/15 8:22 p.m.38 views

CVE-2016-3841

It was found that the Linux kernel's IPv6 implementation mishandled socket options. A local attacker could abuse concurrent access to the socket options to escalate their privileges, or cause a denial of service use-after-free and system crash via a crafted sendmsg system call...

8.4CVSS6.7AI score0.00299EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2016/12/15 12:0 a.m.6 views

The vulnerability in the net/packet/af_packet.c component of the Linux operating system allows a hacker to trigger a service failure or increase their privileges.

The vulnerability in the net/packet/afpacket.c component of the Linux operating system exists due to insufficient checking of resource states when resources are allowed to be shared among multiple processes. Exploiting this vulnerability can allow an attacker to increase their privileges or cause...

7.8CVSS6.8AI score0.11127EPSS
Exploits16References63Affected Software1
RedHat Linux
RedHat Linux
added 2016/11/09 4:48 p.m.6 views

kernel: use-after-free via crafted IPV6 sendmsg for raw / tcp / udp / l2tp sockets.

It was found that the Linux kernel's IPv6 implementation mishandled socket options. A local attacker could abuse concurrent access to the socket options to escalate their privileges, or cause a denial of service use-after-free and system crash via a crafted sendmsg system call...

7.3CVSS7AI score0.00299EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2016/11/03 8:8 a.m.86 views

Important: Red Hat Security Advisory: kernel-rt security, bug fix, and enhancement update

An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

10CVSS6.8AI score0.14546EPSS
Exploits18References45
RedHat Linux
RedHat Linux
added 2016/11/03 8:6 a.m.145 views

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

10CVSS6.7AI score0.14546EPSS
Exploits18References46
RedHat Linux
RedHat Linux
added 2016/11/03 8:6 a.m.5 views

kernel: use-after-free via crafted IPV6 sendmsg for raw / tcp / udp / l2tp sockets.

It was found that the Linux kernel's IPv6 implementation mishandled socket options. A local attacker could abuse concurrent access to the socket options to escalate their privileges, or cause a denial of service use-after-free and system crash via a crafted sendmsg system call...

7.3CVSS7AI score0.00299EPSS
Exploits0References4
OSV
OSV
added 2016/09/14 1:36 p.m.7 views

SUSE-SU-2016:2306-1 Security update for samba

This update for samba provides the following fixes: - CVE-2016-2119: Prevent client-side SMB2 signing downgrade. bsc986869 - Fix possible ctdb crash when opening sockets with htonsIPPROTORAW. bsc969522 - Honor smb.conf socket options in winbind. bsc975131 - Fix ntlm-auth segmentation fault with...

7.5CVSS7.6AI score0.03097EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2016/07/20 12:0 a.m.26 views

openSUSE Security Update : samba (openSUSE-2016-881)

"This update for samba fixes the following issues : - Prevent client-side SMB2 signing downgrade; CVE-2016-2119; bso11860 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2016-881. The...

7.5CVSS7.1AI score0.03097EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2016/05/10 6:43 p.m.5 views

kernel: use-after-free via crafted IPV6 sendmsg for raw / tcp / udp / l2tp sockets.

It was found that the Linux kernel's IPv6 implementation mishandled socket options. A local attacker could abuse concurrent access to the socket options to escalate their privileges, or cause a denial of service use-after-free and system crash via a crafted sendmsg system call...

7.3CVSS7AI score0.00299EPSS
Exploits0References4
Rows per page
Query Builder