Lucene search
K

167 matches found

Cvelist
Cvelist
added 2025/10/30 9:47 a.m.12 views

CVE-2025-40092 usb: gadget: f_ncm: Refactor bind path to use __free()

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fncm: Refactor bind path to use free After an bind/unbind cycle, the ncm-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

0.00188EPSS
Exploits0References6
Qualys Blog
Qualys Blog
added 2025/10/07 6:33 p.m.9 views

Subscription Health Dashboard 2025 Update

Deployment health is mission-critical in today’s digital environment. Duplicate records, ghost hosts, and stale data obscure insights, slow decisions, and erode confidence. Building on last year’s Subscription Health Dashboard blog and best practices, the 2025 update delivers cleaner visibility,...

7.4AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.12 views

EUVD-2021-13206

Malware in sbrugna...

4CVSS4.8AI score0.00228EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-32639

Malicious code in bioql PyPI...

7.5CVSS8.3AI score0.02111EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-35657

Malicious code in bioql PyPI...

6CVSS5.5AI score0.00309EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-4076

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Client queries that trigger serving stale data and that also require lookups in local authoritative zone data may result in an assertion failure. This issue...

7.5CVSS7.9AI score0.02111EPSS
Exploits0References2
NVD
NVD
added 2025/08/16 11:15 a.m.5 views

CVE-2025-38511

In the Linux kernel, the following vulnerability has been resolved: drm/xe/pf: Clear all LMTT pages on alloc Our LMEM buffer objects are not cleared by default on alloc and during VF provisioning we only setup LMTT PTEs for the actually provisioned LMEM range. But beyond that valid range we might...

5.5CVSS0.00135EPSS
Exploits0References3
OSV
OSV
added 2025/08/16 10:54 a.m.5 views

CVE-2025-38511 drm/xe/pf: Clear all LMTT pages on alloc

In the Linux kernel, the following vulnerability has been resolved: drm/xe/pf: Clear all LMTT pages on alloc Our LMEM buffer objects are not cleared by default on alloc and during VF provisioning we only setup LMTT PTEs for the actually provisioned LMEM range. But beyond that valid range we might...

5.5CVSS6.3AI score0.00135EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/08/16 12:0 a.m.4 views

PT-2025-33554

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw in the DRM/XE/PF subsystem related to the allocation of LMTT pages. LMEM buffer objects are not cleared by default during allocation, and during VF...

5.5CVSS6AI score0.00135EPSS
Exploits0
AstraLinux
AstraLinux
added 2025/05/19 2:38 p.m.3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: iouring/uringcmd: unconditionally copy SQEs at prep time This isn't generally necessary, but conditions have been observed where SQE data is accessed from the original SQE after prep has been done and outside of the initial issue...

6.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2023-31346

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Failure to initialize memory in SEV Firmware may allow a privileged attacker to access stale data from other guests. CVE-2023-31346 Note that Nessus relies on t...

6CVSS6.1AI score0.00309EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.1 views

Astra Linux – Vulnerability in bind9

Client queries that trigger the delivery of stale data and also require lookups in local authoritative zone data may result in assertion failures. This issue affects BIND 9 versions 9.16.13 through 9.16.50, 9.18.0 through 9.18.27, 9.19.0 through 9.19.24, 9.11.33-S1 through 9.11.37-S1, 9.16.13-S1...

7.5CVSS7.3AI score0.02111EPSS
Exploits0References3
Qualys Blog
Qualys Blog
added 2024/12/12 5:48 p.m.10 views

Qualys Performance Tuning Series: Remove Stale Compliance Data for the Best Performance

In our first post in the Performance Tuning Series, we talked about removing stale assets to improve performance. In this installment, we will address the benefits of removing data once it becomes stale. Why does data become stale? The IT environment of any enterprise is very dynamic, and more so...

7.2AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2024/11/21 9:57 p.m.17 views

Security Bulletin: IBM Technical Support Appliance - possible access to stale data

Summary Failure to initialize memory in SEV Firmware may allow a privileged attacker to access stale data from other guests. Vulnerability Details CVEID:CVE-2023-31346 DESCRIPTION: AMD SEV-SNP Firmware could allow a local authenticated attacker to obtain sensitive information, caused by the failu...

6CVSS5.9AI score0.00309EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/11/01 5:26 p.m.17 views

MGASA-2024-0342 Updated bind packages fix security vulnerabilities

A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. CVE-2024-0760 Resolver caches and authoritative zone databases that...

7.5CVSS7.5AI score0.0468EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/10/28 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2024-2765)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.2AI score0.02114EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/10/09 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2024-2545)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.2AI score0.02114EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/09/24 12:40 a.m.3 views

kernel: serial: core: fix transmit-buffer reset and memleak

In the Linux kernel, the following vulnerability has been resolved: serial: core: fix transmit-buffer reset and memleak Commit 761ed4a94582 "tty: serialcore: convert uartclose to use ttyportclose" converted serial core to use ttyportclose but failed to notice that the transmit buffer still needs ...

5.5CVSS6.8AI score0.00251EPSS
Exploits0References5
OSV
OSV
added 2024/09/17 2:26 p.m.8 views

CLSA-2024-1726583188 bind: Fix of 2 CVEs

CVE-2024-4076: avoid assertion failure from client queries triggering stale data and needing local zone lookups - CVE-2024-1975: remove support for SIG0 message verification...

7.5CVSS7.2AI score0.02114EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/08/15 7:27 a.m.5 views

bind: bind9: Assertion failure when serving both stale cache data and authoritative zone content

A flaw was found in the bind9 package, where a client query triggers stale data and also requires local lookups may trigger a assertion failure. This issue results in a denial of service of the bind server...

7.5CVSS7.3AI score0.02111EPSS
Exploits0References4
Rows per page
Query Builder