Lucene search
K

129 matches found

OSV
OSV
added 2023/03/27 9:15 p.m.11 views

CVE-2021-3923

A flaw was found in the Linux kernel's implementation of RDMA over infiniband. An attacker with a privileged local account can leak kernel stack information when issuing commands to the /dev/infiniband/rdmacm device node. While this access is unlikely to leak sensitive user information, it can be...

2.3CVSS7AI score
Exploits0References2
OSV
OSV
added 2023/03/27 9:15 p.m.5 views

UBUNTU-CVE-2021-3923

A flaw was found in the Linux kernel's implementation of RDMA over infiniband. An attacker with a privileged local account can leak kernel stack information when issuing commands to the /dev/infiniband/rdmacm device node. While this access is unlikely to leak sensitive user information, it can be...

2.3CVSS6.6AI score0.00199EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2023/03/24 6:11 p.m.62 views

CVE-2021-3923

A flaw was found in the Linux kernel's implementation of RDMA over infiniband. An attacker with a privileged local account can leak kernel stack information when issuing commands to the /dev/infiniband/rdmacm device node. While this access is unlikely to leak sensitive user information, it can be...

3.3CVSS5.3AI score0.00199EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:55 a.m.4 views

SUSE CVE-2010-4525

Linux kernel 2.6.33 and 2.6.34.y does not initialize the kvmvcpuevents-interrupt.pad structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via unspecified vectors...

1.9CVSS6.3AI score0.00341EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:56 a.m.5 views

SUSE CVE-2016-9178

The getuserasmex macro in arch/x86/include/asm/uaccess.h in the Linux kernel before 4.7.5 does not initialize a certain integer variable, which allows local users to obtain sensitive information from kernel stack memory by triggering failure of a getuserex call...

5.5CVSS7.1AI score0.00417EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:23 a.m.5 views

SUSE CVE-2018-17972

An issue was discovered in the procpidstack function in fs/proc/base.c in the Linux kernel through 4.18.11. It does not ensure that only root may inspect the kernel stack of an arbitrary task, allowing a local attacker to exploit racy stack unwinding and leak kernel task stack contents...

5.5CVSS6.2AI score0.0035EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2022/05/10 1:58 p.m.5 views

kernel: stack information leak in infiniband RDMA

A flaw was found in the Linux kernel's implementation of RDMA over infiniband. An attacker with a privileged local account can leak kernel stack information when issuing commands to the /dev/infiniband/rdmacm device node. While this access is unlikely to leak sensitive user information, it can be...

2.3CVSS6.7AI score0.00199EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/05/10 1:43 p.m.3 views

kernel: stack information leak in infiniband RDMA

A flaw was found in the Linux kernel's implementation of RDMA over infiniband. An attacker with a privileged local account can leak kernel stack information when issuing commands to the /dev/infiniband/rdmacm device node. While this access is unlikely to leak sensitive user information, it can be...

2.3CVSS6.7AI score0.00199EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/11/04 12:53 a.m.3 views

kernel: kernel stack information leak on s390/s390x

A stack information leak flaw was found in s390/s390x in the Linux kernel’s memory manager functionality, where it incorrectly writes to the /proc/sys/vm/cmmtimeout file. This flaw allows a local user to see the kernel data...

4.4CVSS6.7AI score0.00366EPSS
Exploits0References5
OSV
OSV
added 2020/09/10 5:15 p.m.1 views

DEBIAN-CVE-2020-10773

A stack information leak flaw was found in s390/s390x in the Linux kernel’s memory manager functionality, where it incorrectly writes to the /proc/sys/vm/cmmtimeout file. This flaw allows a local user to see the kernel data...

4.4CVSS6AI score0.00366EPSS
Exploits0References1
OSV
OSV
added 2020/03/24 6:15 p.m.4 views

CVE-2020-10854

An issue was discovered on Samsung mobile devices with O8.x, P9.0, and Q10.0 software. Kernel stack addresses are leaked to userspace. The Samsung ID is SVE-2019-16161 January 2020...

7.5CVSS5.8AI score0.00413EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2019/11/05 8:44 p.m.5 views

kernel: Heap address information leak while using L2CAP_GET_CONF_OPT

A flaw was found in the Linux kernel's implementation of Logical Link Control and Adaptation Protocol L2CAP, part of the Bluetooth stack. An attacker, within the range of standard Bluetooth transmissions, can create and send a specially crafted packet. The response to this specially crafted packe...

6.5CVSS7AI score0.01827EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2019/08/13 3:18 p.m.1 views

kernel: Unprivileged users able to inspect kernel stacks of arbitrary tasks

An issue was discovered in the procpidstack function in fs/proc/base.c in the Linux kernel. An attacker with a local account can trick the stack unwinder code to leak stack contents to userspace. The fix allows only root to inspect the kernel stack of an arbitrary task...

5.5CVSS7.3AI score0.0035EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/04/09 12:0 a.m.56 views

EulerOS Virtualization 2.5.4 : kernel (EulerOS-SA-2019-1223)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A new software page cache side channel attack scenario was discovered in operating systems that implement the very common 'page...

7.8CVSS6.5AI score0.02179EPSS
Exploits6References10
RedHat Linux
RedHat Linux
added 2019/03/13 11:13 p.m.5 views

kernel: Unprivileged users able to inspect kernel stacks of arbitrary tasks

An issue was discovered in the procpidstack function in fs/proc/base.c in the Linux kernel. An attacker with a local account can trick the stack unwinder code to leak stack contents to userspace. The fix allows only root to inspect the kernel stack of an arbitrary task...

5.5CVSS7.3AI score0.0035EPSS
Exploits0References4
Amazon
Amazon
added 2018/11/07 12:0 a.m.85 views

Medium: kernel

Issue Overview: An issue was discovered in the procpidstack function in fs/proc/base.c in the Linux kernel. An attacker with a local account can trick the stack unwinder code to leak stack contents to userspace. The fix allows only root to inspect the kernel stack of an arbitrary task...

7.1CVSS7AI score0.00694EPSS
Exploits1
Amazon
Amazon
added 2018/11/05 12:0 a.m.8 views

Important: kernel

Issue Overview: An issue was discovered in the procpidstack function in fs/proc/base.c in the Linux kernel. An attacker with a local account can trick the stack unwinder code to leak stack contents to userspace. The fix allows only root to inspect the kernel stack of an arbitrary...

7.1CVSS6.2AI score0.0057EPSS
Exploits0
OSV
OSV
added 2018/10/03 10:29 p.m.10 views

CVE-2018-17972

An issue was discovered in the procpidstack function in fs/proc/base.c in the Linux kernel through 4.18.11. It does not ensure that only root may inspect the kernel stack of an arbitrary task, allowing a local attacker to exploit racy stack unwinding and leak kernel task stack contents...

5.5CVSS6.9AI score
Exploits0References21
OSV
OSV
added 2018/10/03 12:0 a.m.4 views

UBUNTU-CVE-2018-17972

An issue was discovered in the procpidstack function in fs/proc/base.c in the Linux kernel through 4.18.11. It does not ensure that only root may inspect the kernel stack of an arbitrary task, allowing a local attacker to exploit racy stack unwinding and leak kernel task stack contents...

5.5CVSS6.8AI score0.0035EPSS
Exploits0References15
RedHat Linux
RedHat Linux
added 2018/05/08 7:4 p.m.9 views

kernel: Stack information leak in the EFS element

A flaw was found in the processing of incoming L2CAP bluetooth commands. Uninitialized stack variables can be sent to an attacker leaking data in kernel address space...

7.5CVSS7AI score0.04252EPSS
Exploits0References4
Rows per page
Query Builder