EUVD-2018-19251

Malware in sbrugna...

Azure Linux 3.0 Security Update: kernel (CVE-2024-44989)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-44989 advisory. - In the Linux kernel, the following vulnerability has been resolved: bonding: fix xfrm realdev null pointer...

CVE-2023-52889 apparmor: Fix null pointer deref when receiving skb during sock creation

In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix null pointer deref when receiving skb during sock creation The panic below is observed when receiving ICMP packets with secmark set while an ICMP raw socket is being created. SKCTXsk-label is updated in...

CVE-2021-47463

CVE-2021-47463 concerns a Linux kernel NULL pointer dereference in mm/secretmem during GUP operations. The issue arises from dereferencing page->mapping without ensuring it is non-NULL as a page mapping can be nulled while gup() runs (e.g., by reclaim or truncation). A fix was implemented to ...

CVE-2022-48673

CVE-2022-48673 affects the Linux kernel net/smc implementation. Root cause: after modifying a QP to Error, the code completes RX work with IB_WC_WR_FLUSH_ERR but destroys the QP and frees the link group without waiting for the tasklet to finish, risking access to freed memory in tasklet context. ...

CVE-2024-26626 ipmr: fix kernel panic when forwarding mcast packets

In the Linux kernel, the following vulnerability has been resolved: ipmr: fix kernel panic when forwarding mcast packets The stacktrace was: 86.305548 BUG: kernel NULL pointer dereference, address: 0000000000000092 86.306815 PF: supervisor read access in kernel mode 86.307717 PF: errorcode0x0000 ...

PT-2024-26756

Name of the Vulnerable Software and Affected Versions Linux kernel version 6.7.0-rc7-custom+ Description The vulnerability is related to the bcachefs filesystem in the Linux kernel. The issue arises from the incorrect freeing of memory allocated for bch fs::snapshots using kfree instead of kvfree...

VulnCheck KEV: CVE-2018-7522

In Schneider Electric Triconex Tricon MP model 3008 firmware versions 10.0-10.4, when a system call is made, registers are stored to a fixed memory location. Modifying the data in this location could allow attackers to gain supervisor-level access and control system states...

CVE-2018-7522

In Schneider Electric Triconex Tricon MP model 3008 firmware versions 10.0-10.4, when a system call is made, registers are stored to a fixed memory location. Modifying the data in this location could allow attackers to gain supervisor-level access and control system states...

Schneider Electric Triconex Tricon Unauthorized Operation Vulnerability (CNVD-2018-08449)

Triconex Tricon 3008 is a network equipment product from Schneider Electric France. An unauthorized operation vulnerability exists in the Schneider Electric Triconex Tricon. When a system call is made, registers are stored to a fixed storage location. Modifying the data in this location could all...

SNMPc v5 and v6 remote vulnerability

Topic: SNMPc v5 and v6 remote vulnerability Impact: Any remote user can gain Supervisor access to NMS Versions affected: All versions up to and including 6.0.8 Fix: available Remote: yes Exploit: available I. Description SNMPc is a general-purpose Distributed Network Manager by Castle Rock...