Lucene search
K

401 matches found

Tenable Nessus
Tenable Nessus
added 2024/08/25 12:0 a.m.38 views

RHEL 9 : kernel-rt (RHSA-2024:5673)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:5673 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...

9.1CVSS7AI score0.01219EPSS
Exploits0References24
RedHat Linux
RedHat Linux
added 2024/08/21 12:17 a.m.43 views

Important: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

9.1CVSS6.9AI score0.01219EPSS
Exploits0References12
BDU FSTEC
BDU FSTEC
added 2024/08/07 12:0 a.m.6 views

The vulnerability of the may_update_sockmap() function in the BPF subsystem of the Linux operating system allows a attacker to compromise the integrity of the protected information.

The vulnerability of the mayupdatesockmap function in the kernel/bpf/verifier.c module of the BPF subsystem of the Linux operating system is related to insufficient privilege checks. Exploiting this vulnerability could allow an attacker to compromise the integrity of protected information...

4.7CVSS6.1AI score0.0022EPSS
Exploits0References20Affected Software5
SUSE CVE
SUSE CVE
added 2024/08/06 2:1 a.m.4 views

SUSE CVE-2024-41048

In the Linux kernel, the following vulnerability has been resolved: skmsg: Skip zero length skb in skmsgrecvmsg When running BPF selftests ./testprogs -t sockmapbasic on a Loongarch platform, the following kernel panic occurs: ... Oops1: CPU: 22 PID: 2824 Comm: testprogs Tainted: G OE 6.10.0-rc2+...

6.5CVSS6.3AI score0.00273EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2024/08/06 12:0 a.m.24 views

CBL Mariner 2.0 Security Update: kernel (CVE-2024-38662)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-38662 advisory. - In the Linux kernel, the following vulnerability has been resolved: bpf: Allow delete from sockmap/sockhash...

4.7CVSS5.9AI score0.0022EPSS
Exploits0References2
OSV
OSV
added 2024/07/29 3:15 p.m.1 views

DEBIAN-CVE-2024-41048

In the Linux kernel, the following vulnerability has been resolved: skmsg: Skip zero length skb in skmsgrecvmsg When running BPF selftests ./testprogs -t sockmapbasic on a Loongarch platform, the following kernel panic occurs: ... Oops1: CPU: 22 PID: 2824 Comm: testprogs Tainted: G OE 6.10.0-rc2+...

5.5CVSS5.7AI score0.00273EPSS
Exploits0References1
OSV
OSV
added 2024/07/29 3:15 p.m.1 views

UBUNTU-CVE-2024-41048

In the Linux kernel, the following vulnerability has been resolved: skmsg: Skip zero length skb in skmsgrecvmsg When running BPF selftests ./testprogs -t sockmapbasic on a Loongarch platform, the following kernel panic occurs: ... Oops1: CPU: 22 PID: 2824 Comm: testprogs Tainted: G OE 6.10.0-rc2+...

5.5CVSS6.2AI score0.00273EPSS
Exploits0References24
NVD
NVD
added 2024/06/21 12:15 p.m.27 views

CVE-2024-38662

In the Linux kernel, the following vulnerability has been resolved: bpf: Allow delete from sockmap/sockhash only if update is allowed We have seen an influx of syzkaller reports where a BPF program attached to a tracepoint triggers a locking rule violation by performing a mapdelete on a...

4.7CVSS0.0022EPSS
Exploits0References8
OSV
OSV
added 2024/06/21 12:15 p.m.6 views

AZL-42842 CVE-2024-38662 affecting package kernel for versions less than 5.15.162.2-1

In the Linux kernel, the following vulnerability has been resolved: bpf: Allow delete from sockmap/sockhash only if update is allowed We have seen an influx of syzkaller reports where a BPF program attached to a tracepoint triggers a locking rule violation by performing a mapdelete on a...

4.7CVSS6.1AI score0.0022EPSS
Exploits0References1
OSV
OSV
added 2024/06/21 12:15 p.m.8 views

AZL-42847 CVE-2024-38662 affecting package kernel for versions less than 6.6.35.1-4

In the Linux kernel, the following vulnerability has been resolved: bpf: Allow delete from sockmap/sockhash only if update is allowed We have seen an influx of syzkaller reports where a BPF program attached to a tracepoint triggers a locking rule violation by performing a mapdelete on a...

4.7CVSS6.1AI score0.0022EPSS
Exploits0References1
OSV
OSV
added 2024/06/21 12:15 p.m.2 views

UBUNTU-CVE-2024-38662

In the Linux kernel, the following vulnerability has been resolved: bpf: Allow delete from sockmap/sockhash only if update is allowed We have seen an influx of syzkaller reports where a BPF program attached to a tracepoint triggers a locking rule violation by performing a mapdelete on a...

4.7CVSS6.1AI score0.0022EPSS
Exploits0References21
UbuntuCve
UbuntuCve
added 2024/06/21 12:15 p.m.18 views

CVE-2024-38662

In the Linux kernel, the following vulnerability has been resolved: bpf: Allow delete from sockmap/sockhash only if update is allowed We have seen an influx of syzkaller reports where a BPF program attached to a tracepoint triggers a locking rule violation by performing a mapdelete on a...

4.7CVSS6.2AI score0.0022EPSS
Exploits0References20
Cvelist
Cvelist
added 2024/06/21 11:15 a.m.31 views

CVE-2024-38662 bpf: Allow delete from sockmap/sockhash only if update is allowed

In the Linux kernel, the following vulnerability has been resolved: bpf: Allow delete from sockmap/sockhash only if update is allowed We have seen an influx of syzkaller reports where a BPF program attached to a tracepoint triggers a locking rule violation by performing a mapdelete on a...

0.0022EPSS
Exploits0References6
OSV
OSV
added 2024/06/21 11:15 a.m.21 views

CVE-2024-38662 bpf: Allow delete from sockmap/sockhash only if update is allowed

In the Linux kernel, the following vulnerability has been resolved: bpf: Allow delete from sockmap/sockhash only if update is allowed We have seen an influx of syzkaller reports where a BPF program attached to a tracepoint triggers a locking rule violation by performing a mapdelete on a...

4.7CVSS6.2AI score0.0022EPSS
Exploits0References9
CVE
CVE
added 2024/06/21 11:15 a.m.166 views

CVE-2024-38662

CVE-2024-38662 affects the Linux kernel (BPF) where deletion from sockmap/sockhash is allowed only if the program was previously allowed to update that map. The issue arises when a BPF program attached to a tracepoint performs map_delete on these maps, triggering a locking-rule violation. The ver...

4.7CVSS7AI score0.0022EPSS
Exploits0References8Affected Software1
RedhatCVE
RedhatCVE
added 2024/06/12 12:26 a.m.29 views

CVE-2023-52735

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Don't let sockmapclose,destroy,unhash call itself sockmap proto callbacks should never call themselves by design. Protect against bugs like 1 and break out of the recursive loop to avoid a stack overflow in favor of...

4.4CVSS7.5AI score0.01219EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/05/28 3:1 p.m.2 views

SUSE CVE-2023-52735

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Don't let sockmapclose,destroy,unhash call itself sockmap proto callbacks should never call themselves by design. Protect against bugs like 1 and break out of the recursive loop to avoid a stack overflow in favor of...

5.5CVSS6.5AI score0.01219EPSS
Exploits0References17
RedhatCVE
RedhatCVE
added 2024/05/23 1:32 p.m.16 views

CVE-2021-47298

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix potential memory leak on unlikely error case If skblinearize is needed and fails we could leak a msg on the error handling. To fix ensure we kfree the msg block before returning error. Found during code review...

4.4CVSS6.7AI score0.00232EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/05/23 3:4 a.m.6 views

SUSE CVE-2021-47298

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix potential memory leak on unlikely error case If skblinearize is needed and fails we could leak a msg on the error handling. To fix ensure we kfree the msg block before returning error. Found during code review...

5.5CVSS6.7AI score0.00232EPSS
Exploits0References3
NVD
NVD
added 2024/05/21 4:15 p.m.16 views

CVE-2023-52735

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Don't let sockmapclose,destroy,unhash call itself sockmap proto callbacks should never call themselves by design. Protect against bugs like 1 and break out of the recursive loop to avoid a stack overflow in favor of...

9.1CVSS6.6AI score0.01219EPSS
Exploits0References3
Rows per page
Query Builder