Lucene search
K

151 matches found

RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.8 views

kernel: jbd2: fix assertion 'jh->b_frozen_data == NULL' failure when journal aborted

A flaw was found in the jbd2 module in the Linux kernel. An assertion failure can be triggered when a specific sequence of transactions and operations is performed due to incorrect synchronization, potentially resulting in a denial of service...

5.5CVSS6.5AI score0.0016EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.6 views

kernel: Bluetooth: use hdev->workqueue when queuing hdev->{cmd,ncmd}_timer works

n the Linux kernel’s Bluetooth subsystem there is a flaw in the way Bluetooth HCI work items are queued. Under certain conditions, work associated with command timeouts hdev-cmd,ncmdtimer could be scheduled on the wrong workqueue while the intended workqueue is being drained. This occurs because...

5.8AI score0.00198EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/03/15 12:0 a.m.5 views

PT-2023-36408 · Gnu +1 · Linux +1

Уязвимость сетевого интерфейса B.A.T.M.A.N. Better Approach To Mobile Adhoc Networking ядра операционной системы Linux связана с некорректной синхронизации процесса удаления сетевого устройства и выполнения отложенных задач в функции batadv dat start timer в модуле distributed-arp-table.c...

6.2CVSS7.2AI score
Exploits0References10
Positive Technologies
Positive Technologies
added 2023/01/17 12:0 a.m.3 views

PT-2023-33242 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.82 Description: The issue is related to the synchronization of EFI page table's kernel mappings before switching. The actual impact and attack plausibility have not yet been proven. Recommendations: For...

7.1AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/01/17 12:0 a.m.4 views

PT-2023-33149 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.12 Description: The issue is related to the synchronization of EFI page table's kernel mappings before switching. The actual impact and attack plausibility have not yet been proven. Recommendations: For Lin...

7.1AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/01/13 12:0 a.m.9 views

PT-2025-13328 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.1.0-rc6+ Description: A synchronization issue exists in the Linux kernel's fscache module. The freeing of a relinquished volume wakes up pending volume acquisition using wake up bit, but this is mismatched wit...

7.8CVSS7.3AI score0.00266EPSS
Exploits0References127
Positive Technologies
Positive Technologies
added 2023/01/09 12:0 a.m.3 views

PT-2025-13355

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue concerns data corruption on vram allocated by svm if initialization is not complete and an application is writing to the memory. To resolve this, a sync has been added after...

7.8CVSS6.5AI score0.00221EPSS
Exploits0References113
BDU FSTEC
BDU FSTEC
added 2022/12/19 12:0 a.m.12 views

The vulnerability of the Windows Error Reporting error reporting service on Windows operating systems allows a perpetrator to escalate their privileges.

The vulnerability of the Windows Error Reporting registration service in Windows operating systems is related to synchronization errors when using a shared resource “Race Conditions”. Exploiting this vulnerability can allow an attacker to increase their privileges...

7CVSS7.2AI score0.003EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/09/14 12:0 a.m.7 views

The vulnerability affects Unix extensions such as SMB1 and NFS, which are components of network communication software like Samba. This vulnerability allows attackers to compromise data integrity.

The vulnerability of Unix extensions like SMB1 and NFS network communication software such as Samba is related to the simultaneous execution using a shared resource with incorrect synchronization. Exploiting this vulnerability allows an attacker to compromise data integrity...

2.5CVSS6.5AI score0.00376EPSS
Exploits1References8Affected Software4
BDU FSTEC
BDU FSTEC
added 2022/07/26 12:0 a.m.8 views

The vulnerability of Intel SSD microprogramming software lies in the simultaneous execution using a shared resource with improper synchronization, which allows a hacker to cause service failure.

The vulnerability of Intel SSD microprogramming software is related to the simultaneous execution using a shared resource with incorrect synchronization. Exploiting this vulnerability can allow an attacker to cause service failures...

4.7CVSS5.7AI score0.00147EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/04/11 12:0 a.m.10 views

The vulnerability of the SSL socket layer of the Asterisk IP telephony management system, which implements the SIP protocol PJSIP, allows attackers to induce a service failure.

The vulnerability of the SSL socket layer of the Asterisk IP telephony management system, where the SIP protocol PJSIP is implemented, is related to the simultaneous execution using a shared resource with incorrect synchronization. Exploiting this vulnerability allows an attacker who operates...

7.1CVSS7.2AI score0.02082EPSS
Exploits0References8Affected Software4
BDU FSTEC
BDU FSTEC
added 2022/03/28 12:0 a.m.9 views

The vulnerability of the Tablet Windows User Interface Application component of the Microsoft Windows operating system, which allows a perpetrator to increase their privileges

The vulnerability of the Tablet Windows User Interface Application component of the Microsoft Windows operating system is related to the use of a common resource with incorrect synchronization. Exploiting this vulnerability can allow an attacker to increase their privileges...

7CVSS7.2AI score0.01943EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/02/22 12:0 a.m.22 views

PT-2022-7490 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The vulnerability is related to a race condition in the configfs component of the Linux kernel. When configfs register subsystem or configfs unregister subsystem is executing link grou...

8.8CVSS6.7AI score0.0193EPSS
Exploits16References1677
Positive Technologies
Positive Technologies
added 2021/09/24 12:0 a.m.9 views

PT-2021-7323 · Linux +9 · Linux Kernel Overlayfs Subsystem +9

Name of the Vulnerable Software and Affected Versions: Linux kernel OverlayFS subsystem affected versions not specified Description: A race condition accessing file object in the Linux kernel OverlayFS subsystem was found in the way users do rename in specific ways with OverlayFS. This issue coul...

9.8CVSS7.2AI score0.89063EPSS
Exploits332References1433
OSV
OSV
added 2021/05/26 12:15 p.m.10 views

CVE-2020-25668

A flaw was found in Linux Kernel because access to the global variable fgconsole is not properly synchronized leading to a use after free in confontop...

7CVSS7.2AI score
Exploits0References9
OSV
OSV
added 2021/04/14 7:15 a.m.28 views

CVE-2018-25008

In the standard library in Rust before 1.29.0, there is weak synchronization in the Arc::getmut method. This synchronization issue can be lead to memory safety issues through race conditions...

5.9CVSS6.9AI score0.01054EPSS
Exploits0References2
OSV
OSV
added 2020/11/18 7:15 p.m.3 views

CVE-2020-3471

A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to maintain bidirectional audio despite being expelled from an active Webex session. The vulnerability is due to a synchronization issue between meeting and media services on a...

6.5CVSS6.7AI score0.01734EPSS
Exploits0References1
Prion
Prion
added 2020/11/18 7:15 p.m.24 views

Design/Logic Flaw

A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to maintain bidirectional audio despite being expelled from an active Webex session. The vulnerability is due to a synchronization issue between meeting and media services on a...

5CVSS6.5AI score0.01734EPSS
Exploits0References1Affected Software1
Citrix
Citrix
added 2020/09/18 12:0 a.m.13 views

Citrix WEM Agents not Synchronizing Error “No Connection Could be Made Because The Target Machine Actively Refused it”

Citrix Virtual Delivery Agents running Workspace Environment Management WEM Agents are not synchronizing with two or more WEM Broker servers load balanced via Citrix Gateway. Policies delivered through WEM are not applying to agents Event Viewer shows the following error:“No connection could be...

7AI score
Exploits0
Microsoft KB
Microsoft KB
added 2020/04/21 12:0 a.m.4 views

Description of the SharePoint Workspace 2010 update: November 13, 2012

Description of the SharePoint Workspace 2010 update: November 13, 2012 INTRODUCTION Microsoft has released an update for Microsoft SharePoint Workspace 2010. This update provides the latest fixes for the 32-bit and 64-bit editions of SharePoint Workspace 2010. Issue that this update fixes When yo...

6.4AI score
Exploits0
Rows per page
Query Builder