CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

130 matches found

OSV•added 2024/09/18 7:12 a.m.•12 views

CVE-2024-46762 xen: privcmd: Fix possible access to a freed kirqfd instance

In the Linux kernel, the following vulnerability has been resolved: xen: privcmd: Fix possible access to a freed kirqfd instance Nothing prevents simultaneous ioctl calls to privcmdirqfdassign and privcmdirqfddeassign. If that happens, it is possible that a kirqfd created and added to the...

5.5CVSS6AI score0.00236EPSS

Exploits0References6

RedhatCVE•added 2024/05/22 8:58 a.m.•18 views

CVE-2021-47407

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Handle SRCU initialization failure during page track init Check the return of initsrcustruct, which can fail due to OOM, when initializing the page track mechanism. Lack of checking leads to a NULL pointer deref found b...

4.4CVSS6.5AI score0.0025EPSS

Exploits0References4

OSV•added 2024/05/21 3:15 p.m.•2 views

DEBIAN-CVE-2021-47407

5.5CVSS5.3AI score0.0025EPSS

Exploits0References1

OSV•added 2024/05/21 3:15 p.m.•0 views

UBUNTU-CVE-2021-47407

5.5CVSS6.2AI score0.0025EPSS

Exploits0References6

Debian CVE•added 2024/05/21 3:3 p.m.•17 views

CVE-2021-47407

5.5CVSS6.7AI score0.0025EPSS

Exploits0

Cvelist•added 2024/05/21 3:3 p.m.•16 views

CVE-2021-47407 KVM: x86: Handle SRCU initialization failure during page track init

6.4AI score0.0025EPSS

Exploits0References3

Vulnrichment•added 2024/05/21 3:3 p.m.•13 views

CVE-2021-47407 KVM: x86: Handle SRCU initialization failure during page track init

6.7AI score0.0025EPSS

Exploits0References3

CVE•added 2024/05/21 3:3 p.m.•100 views

CVE-2021-47407

The CVE-2021-47407 issue is in the Linux kernel's KVM x86 code related to SRCU initialization during page track setup. The root cause is a missing validation of init_srcu_struct()’s return value, which can fail (e.g., due to OOM) and lead to a NULL pointer dereference found by a modified syzkalle...

5.5CVSS6.7AI score0.0025EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2024/04/02 6:49 a.m.•11 views

CVE-2023-52632 drm/amdkfd: Fix lock dependency warning with srcu

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix lock dependency warning with srcu ====================================================== WARNING: possible circular locking dependency detected 6.5.0-kfd-yangp 2289 Not tainted...

6.7AI score0.00168EPSS

Exploits0References4

Cvelist•added 2024/04/02 6:49 a.m.•15 views

CVE-2023-52632 drm/amdkfd: Fix lock dependency warning with srcu

7.6AI score0.00168EPSS

Exploits0References4

Debian CVE•added 2024/04/02 6:49 a.m.•16 views

CVE-2023-52632

5.5CVSS6.8AI score0.00168EPSS

Exploits0

Positive Technologies•added 2024/04/02 12:0 a.m.•2 views

PT-2024-14669

Name of the Vulnerable Software and Affected Versions Linux kernel versions 6.5.0-kfd-yangp 2289 and earlier Description A possible circular locking dependency has been detected in the Linux kernel, specifically in the drm/amdkfd module. This issue occurs when a task attempts to acquire a lock th...

5.5CVSS5.4AI score0.00168EPSS

Exploits0

NVD•added 2024/02/29 11:15 p.m.•14 views

CVE-2021-47061

In the Linux kernel, the following vulnerability has been resolved: KVM: Destroy I/O bus devices on unregister failure after sync'ing SRCU If allocating a new instance of an I/O bus fails when unregistering a device, wait to destroy the device until after all readers are guaranteed to see the new...

7.8CVSS7.4AI score0.00241EPSS

Exploits0References4

UbuntuCve•added 2024/02/29 11:15 p.m.•14 views

CVE-2021-47061

7.8CVSS6.4AI score0.00241EPSS

Exploits0References2

CVE•added 2024/02/29 10:37 p.m.•118 views

CVE-2021-47061

CVE-2021-47061 : Concrete details in connected advisories show a Linux kernel/KVM issue where destroying an I/O bus device must occur after unregister, and after SRCU-synchronization. The root cause is a use-after-free risk if devices are destroyed before the bus is nullified, because readers exp...

7.8CVSS6.4AI score0.00241EPSS

Exploits0References4Affected Software1

Debian CVE•added 2024/02/29 10:37 p.m.•22 views

CVE-2021-47061

7.8CVSS7.2AI score0.00241EPSS

Exploits0

NVD•added 2023/10/31 2:15 p.m.•25 views

CVE-2023-4610

Rejected reason: The SRCU code was added in upstream kernel v6.4-rc1 and removed before v6.4. This bug only existed in development kernels. Please see https://lore.kernel.org/all/[email protected] and https://bugzilla.suse.com/showbug.cgi?id=1215932 for more information...

6.6AI score

Exploits0

UbuntuCve•added 2023/10/31 2:15 p.m.•18 views

CVE-2023-4610

5.9AI score

Exploits0References3

RedHat Linux•added 2023/05/09 10:4 a.m.•1 views

kernel: srcu: Tighten cleanup_srcu_struct() GP checks

In the Linux kernel, the following vulnerability has been resolved: srcu: Tighten cleanupsrcustruct GP checks Currently, cleanupsrcustruct checks for a grace period in progress, but it does not check for a grace period that has not yet started but which might start at any time. Such a situation...

7.8CVSS6.3AI score0.00235EPSS

Exploits0References5

OSV•added 2023/01/17 4:7 p.m.•13 views

GSD-2023-1000162 nvme: fix SRCU protection of nvme_ns_head list

nvme: fix SRCU protection of nvmenshead list This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.82 by commit...

7.2AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by