Lucene search
K

23 matches found

Tenable Nessus
Tenable Nessus
added 2026/02/23 12:0 a.m.6 views

Ubuntu 22.04 LTS / 24.04 LTS : U-Boot vulnerabilities (USN-8056-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8056-1 advisory. Simon Diepold discovered that U-Boot incorrectly handled certain DHCP responses. An attacker on the local network could possibly use this iss...

8.1CVSS6.2AI score0.00598EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.8 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986578)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986578 advisory. In the Linux kernel, the following vulnerability has been resolved: Squashfs: sanity check symbolic link size Syzkiller reports a KMSAN: uninit-value in picklink bug...

7.8CVSS6.2AI score0.00299EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-4767

Malicious code in bioql PyPI...

7.1CVSS8AI score0.00359EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2025/09/04 3:4 a.m.3 views

An integer overflow in sqfs_inode_size in Das U-Boot before 2025.01-rc1 occurs in the symlink size calculation via a crafted squashfs filesystem.

...

7.1CVSS7AI score0.00359EPSS
Exploits0
OSV
OSV
added 2025/02/18 11:15 p.m.6 views

CVE-2024-57254

An integer overflow in sqfsinodesize in Das U-Boot before 2025.01-rc1 occurs in the symlink size calculation via a crafted squashfs filesystem...

6.8CVSS6.9AI score
Exploits0References3
NVD
NVD
added 2025/02/18 11:15 p.m.10 views

CVE-2024-57254

An integer overflow in sqfsinodesize in Das U-Boot before 2025.01-rc1 occurs in the symlink size calculation via a crafted squashfs filesystem...

7.1CVSS0.00359EPSS
Exploits0References3
OSV
OSV
added 2025/02/18 11:15 p.m.1 views

DEBIAN-CVE-2024-57254

An integer overflow in sqfsinodesize in Das U-Boot before 2025.01-rc1 occurs in the symlink size calculation via a crafted squashfs filesystem...

6.8CVSS7.9AI score0.00359EPSS
Exploits0References1
OSV
OSV
added 2025/02/18 11:15 p.m.1 views

UBUNTU-CVE-2024-57254

An integer overflow in sqfsinodesize in Das U-Boot before 2025.01-rc1 occurs in the symlink size calculation via a crafted squashfs filesystem...

7.1CVSS7.3AI score0.00359EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/02/18 1:38 p.m.1 views

SUSE CVE-2024-57254

An integer overflow in sqfsinodesize in Das U-Boot before 2025.01-rc1 occurs in the symlink size calculation via a crafted squashfs filesystem...

7.1CVSS7.2AI score0.00359EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2025/02/18 12:0 a.m.8 views

CVE-2024-57254

An integer overflow in sqfsinodesize in Das U-Boot before 2025.01-rc1 occurs in the symlink size calculation via a crafted squashfs filesystem...

7.1CVSS7AI score0.00359EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/02/18 12:0 a.m.10 views

CVE-2024-57254

An integer overflow in sqfsinodesize in Das U-Boot before 2025.01-rc1 occurs in the symlink size calculation via a crafted squashfs filesystem...

7.1CVSS0.00359EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/02/18 12:0 a.m.7 views

CVE-2024-57254

An integer overflow in sqfsinodesize in Das U-Boot before 2025.01-rc1 occurs in the symlink size calculation via a crafted squashfs filesystem...

7.1CVSS7AI score0.00359EPSS
Exploits0References2
CVE
CVE
added 2025/02/18 12:0 a.m.71 views

CVE-2024-57254

CVE-2024-57254 describes an integer overflow in the sqfs_inode_size calculation within Das U-Boot up to the 2025.01-rc1 release, triggered by a crafted squashfs filesystem affecting the symlink size calculation. Products affected: Das U-Boot (DENX Software Engineering) prior to 2025.01-rc1. Impac...

7.1CVSS7.2AI score0.00359EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/10/25 3:25 p.m.5 views

CLSA-2024-1729869774 kernel: Fix of 12 CVEs

ftrace: Fix possible use-after-free issue in ftracelocation CVE-2024-38588 - ftrace: Fix possible warning on checking all pages used in ftraceprocesslocs CVE-2024-38588 - ftrace: Store the order of pages allocated in ftracepage CVE-2024-38588 - ftrace: Check if pages were allocated before calling...

7.8CVSS6.8AI score0.00299EPSS
Exploits0References1
OSV
OSV
added 2024/10/14 7:53 p.m.8 views

CLSA-2024-1728935304 kernel: Fix of 12 CVEs

xfs: don't walk off the end of a directory data block CVE-2024-41013 - net/sched: clsu32: fix netns refcount changes in u32change CVE-2022-29581 - net/packet: fix slab-out-of-bounds access in packetrecvmsg CVE-2022-20368 - openvswitch: fix OOB access in reservesfasize CVE-2022-2639 - net: sched:...

8.6CVSS6.9AI score0.03763EPSS
Exploits9References1
Amazon
Amazon
added 2024/10/14 12:0 a.m.6 views

Medium: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: perf/aux: Fix AUX buffer serialization CVE-2024-46713 In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race between direct IO write and fsync when using same fd CVE-2024-46734 In the...

7.8CVSS8AI score0.00299EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/09/19 3:10 a.m.2 views

SUSE CVE-2024-46744

In the Linux kernel, the following vulnerability has been resolved: Squashfs: sanity check symbolic link size Syzkiller reports a "KMSAN: uninit-value in picklink" bug. This is caused by an uninitialised page, which is ultimately caused by a corrupted symbolic link size read from disk. The reason...

5.5CVSS6.4AI score0.00299EPSS
Exploits0References18
CVE
CVE
added 2024/09/18 7:12 a.m.127 views

CVE-2024-46744

The CVE-2024-46744 issue in the Linux kernel affects Squashfs by failing to sanity-check the symbolic link size read from disk. This causes the size (i_size) to be corrupted, which is later used to derive a length value that overflows a signed int in squashfs_symlink_read_folio(), leading to a po...

7.8CVSS7.4AI score0.00299EPSS
Exploits0References12Affected Software1
Cvelist
Cvelist
added 2024/09/18 7:12 a.m.25 views

CVE-2024-46744 Squashfs: sanity check symbolic link size

In the Linux kernel, the following vulnerability has been resolved: Squashfs: sanity check symbolic link size Syzkiller reports a "KMSAN: uninit-value in picklink" bug. This is caused by an uninitialised page, which is ultimately caused by a corrupted symbolic link size read from disk. The reason...

0.00299EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1485)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7AI score0.09828EPSS
Exploits2References2
Rows per page
Query Builder