Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

342 matches found

OSV
OSVadded 2024/11/21 7:15 p.m.2 views

AZL-54646 CVE-2024-53094 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Add sendpageok check to disable MSGSPLICEPAGES While running ISER over SIW, the initiator machine encounters a warning from skbsplicefromiter indicating that a slab page is being used in sendpage. To address this, it is...

5.5CVSS6.8AI score0.00025EPSS
Exploits0References1
OSV
OSVadded 2024/11/21 7:15 p.m.1 views

UBUNTU-CVE-2024-53094

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Add sendpageok check to disable MSGSPLICEPAGES While running ISER over SIW, the initiator machine encounters a warning from skbsplicefromiter indicating that a slab page is being used in sendpage. To address this, it is...

5.5CVSS6.6AI score0.00025EPSS
Exploits0References15
Vulnrichment
Vulnrichmentadded 2024/11/21 6:17 p.m.1 views

CVE-2024-53094 RDMA/siw: Add sendpage_ok() check to disable MSG_SPLICE_PAGES

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Add sendpageok check to disable MSGSPLICEPAGES While running ISER over SIW, the initiator machine encounters a warning from skbsplicefromiter indicating that a slab page is being used in sendpage. To address this, it is...

7.6AI score0.00025EPSS
Exploits0References3
CNNVD
CNNVDadded 2024/11/21 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not disabling MSGSPLICEPAGES...

5.5CVSS6.6AI score0.00025EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2024/10/11 12:0 a.m.3 views

PT-2024-35558

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.65 Description A vulnerability in the Linux kernel has been resolved by adding a sendpage ok check to disable MSG SPLICE PAGES while running ISER over SIW. The initiator machine encounters a warning from skb...

5.5CVSS5.3AI score0.00025EPSS
Exploits0
SUSE CVE
SUSE CVEadded 2024/07/17 4:18 a.m.1 views

SUSE CVE-2022-48819

In the Linux kernel, the following vulnerability has been resolved: tcp: take care of mixed splice/sendmsgMSGZEROCOPY case syzbot found that mixing sendpage and sendmsgMSGZEROCOPY calls over the same TCP socket would again trigger the infamous warning in inetsockdestruct WARNONskforwardallocgetsk...

5.5CVSS6.3AI score0.00033EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2024/07/16 10:25 p.m.13 views

CVE-2022-48819

In the Linux kernel, the following vulnerability has been resolved: tcp: take care of mixed splice/sendmsgMSGZEROCOPY case syzbot found that mixing sendpage and sendmsgMSGZEROCOPY calls over the same TCP socket would again trigger the infamous warning in inetsockdestruct WARNONskforwardallocgetsk...

5.5CVSS6.9AI score0.00033EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2024/07/16 12:15 p.m.14 views

CVE-2022-48819

In the Linux kernel, the following vulnerability has been resolved: tcp: take care of mixed splice/sendmsgMSGZEROCOPY case syzbot found that mixing sendpage and sendmsgMSGZEROCOPY calls over the same TCP socket would again trigger the infamous warning in inetsockdestruct WARNONskforwardallocgetsk...

5.5CVSS5.8AI score0.00033EPSS
Exploits0References4
OSV
OSVadded 2024/07/16 12:15 p.m.1 views

UBUNTU-CVE-2022-48819

In the Linux kernel, the following vulnerability has been resolved: tcp: take care of mixed splice/sendmsgMSGZEROCOPY case syzbot found that mixing sendpage and sendmsgMSGZEROCOPY calls over the same TCP socket would again trigger the infamous warning in inetsockdestruct WARNONskforwardallocgetsk...

5.5CVSS5.8AI score0.00033EPSS
Exploits0References5
CVE
CVEadded 2024/07/16 11:44 a.m.51 views

CVE-2022-48819

Summary: CVE-2022-48819 affects the Linux kernel TCP path. When mixing sendpage() data and MSG_ZEROCOPY via the same socket, a warning in inet_sock_destruct() (sk_forward_alloc_get(sk)) could be triggered, due to the sendpage() path being forgotten in zerocopy handling and the need to keep zeroco...

5.5CVSS6.5AI score0.00033EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2024/07/16 11:44 a.m.9 views

CVE-2022-48819 tcp: take care of mixed splice()/sendmsg(MSG_ZEROCOPY) case

In the Linux kernel, the following vulnerability has been resolved: tcp: take care of mixed splice/sendmsgMSGZEROCOPY case syzbot found that mixing sendpage and sendmsgMSGZEROCOPY calls over the same TCP socket would again trigger the infamous warning in inetsockdestruct WARNONskforwardallocgetsk...

6.8AI score0.00033EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/07/16 11:44 a.m.17 views

CVE-2022-48819 tcp: take care of mixed splice()/sendmsg(MSG_ZEROCOPY) case

In the Linux kernel, the following vulnerability has been resolved: tcp: take care of mixed splice/sendmsgMSGZEROCOPY case syzbot found that mixing sendpage and sendmsgMSGZEROCOPY calls over the same TCP socket would again trigger the infamous warning in inetsockdestruct WARNONskforwardallocgetsk...

0.00033EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2024/06/04 12:25 p.m.3 views

SUSE CVE-2024-0646

An out-of-bounds memory write flaw was found in the Linux kernel's Transport Layer Security functionality in how a user calls a function splice with a ktls socket as the destination. This flaw allows a local user to crash or potentially escalate their privileges on the system...

7CVSS6.3AI score0.00019EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2024/05/23 2:57 a.m.1 views

SUSE CVE-2023-52767

In the Linux kernel, the following vulnerability has been resolved: tls: fix NULL deref on tlsswspliceeof with empty record syzkaller discovered that if tlsswspliceeof is executed as part of sendfile when the plaintext/ciphertext skmsg are empty, the send path gets confused because the empty...

5.5CVSS6.9AI score0.0008EPSS
Exploits0References10
OSV
OSVadded 2024/05/21 4:15 p.m.1 views

DEBIAN-CVE-2023-52767

In the Linux kernel, the following vulnerability has been resolved: tls: fix NULL deref on tlsswspliceeof with empty record syzkaller discovered that if tlsswspliceeof is executed as part of sendfile when the plaintext/ciphertext skmsg are empty, the send path gets confused because the empty...

5.5CVSS5.6AI score0.0008EPSS
Exploits0References1
SUSE CVE
SUSE CVEadded 2024/05/21 1:59 a.m.1 views

SUSE CVE-2024-35841

In the Linux kernel, the following vulnerability has been resolved: net: tls, fix WARNIING in skmsgfree A splice with MSGSPLICEPAGES will cause tls code to use the tlsswsendmsgsplice path in the TLS sendmsg code to move the user provided pages from the msg into the msgpl. This will loop over the...

5.5CVSS6.9AI score0.00028EPSS
Exploits0References13
RedhatCVE
RedhatCVEadded 2024/05/18 1:6 a.m.17 views

CVE-2024-35841

A vulnerability was found in the Linux kernel's Transport Layer Security TLS implementation, specifically involving a warning triggered in the skmsgfree function. This issue is related to improper resource cleanup, and could result in unnecessary warnings or potential memory management problems...

5.5CVSS7.2AI score0.00028EPSS
Exploits0References4
OSV
OSVadded 2024/05/17 3:15 p.m.0 views

UBUNTU-CVE-2024-35841

In the Linux kernel, the following vulnerability has been resolved: net: tls, fix WARNIING in skmsgfree A splice with MSGSPLICEPAGES will cause tls code to use the tlsswsendmsgsplice path in the TLS sendmsg code to move the user provided pages from the msg into the msgpl. This will loop over the...

5.5CVSS6.6AI score0.00028EPSS
Exploits0References14
UbuntuCve
UbuntuCveadded 2024/05/17 3:15 p.m.17 views

CVE-2024-35841

In the Linux kernel, the following vulnerability has been resolved: net: tls, fix WARNIING in skmsgfree A splice with MSGSPLICEPAGES will cause tls code to use the tlsswsendmsgsplice path in the TLS sendmsg code to move the user provided pages from the msg into the msgpl. This will loop over the...

5.5CVSS6.5AI score0.00028EPSS
Exploits0References13
OSV
OSVadded 2024/05/17 2:27 p.m.9 views

CVE-2024-35841 net: tls, fix WARNIING in __sk_msg_free

In the Linux kernel, the following vulnerability has been resolved: net: tls, fix WARNIING in skmsgfree A splice with MSGSPLICEPAGES will cause tls code to use the tlsswsendmsgsplice path in the TLS sendmsg code to move the user provided pages from the msg into the msgpl. This will loop over the...

5.5CVSS6.3AI score0.00028EPSS
Exploits0References6
Rows per page
Query Builder