UBUNTU-CVE-2021-47026

In the Linux kernel, the following vulnerability has been resolved: RDMA/rtrs-clt: destroy sysfs after removing session from active list A session can be removed dynamically by sysfs interface "removepath" that eventually calls rtrscltremovepathfromsysfs function. The current...

kernel: amdgpu/pm: prevent array underflow in vega20_odn_edit_dpm_table()

An array underflow vulnerability was found in the Linux kernel's AMD GPU power management driver. In vega20odneditdpmtable, the inputindex variable is validated to be at most 2 but is not checked for negative values. Since this value is user-controlled via sysfs, a user can provide a negative val...

PT-2024-11190 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability has been resolved in the Linux kernel related to the iommu/amd component. The issue occurs when switching a device between IOMMU and direct DMA through sysfs, which doe...

PT-2024-11126 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A use-after-free problem can occur in the Linux kernel when a session is removed dynamically by the sysfs interface "remove path" that calls the rtrs clt remove path from sysfs functio...

Missing Linux Kernel mitigations for 'SRBDS - Special Register Buffer Data Sampling' hardware vulnerabilities

The remote host is missing one or more known mitigations on Linux Kernel side for the referenced SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-onl...

Missing Linux Kernel mitigations for 'Meltdown' hardware vulnerabilities

The remote host is missing one or more known mitigations on Linux Kernel side for the referenced SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-onl...

Missing Linux Kernel mitigations for 'Spectre variant 2' hardware vulnerabilities

The remote host is missing one or more known mitigations on Linux Kernel side for the referenced SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-onl...

UBUNTU-CVE-2020-10781

A flaw was found in the Linux Kernel before 5.8-rc6 in the ZRAM kernel module, where a user with a local account and the ability to read the /sys/class/zram-control/hotadd file can create ZRAM device nodes in the /dev/ directory. This read allocates kernel memory and is not accounted for a user...

Missing Linux Kernel mitigations for 'iTLB multihit' hardware vulnerabilities

The remote host is missing one or more known mitigations on Linux Kernel side for the referenced SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-onl...

Missing Linux Kernel mitigations for hardware vulnerabilities (sysfs interface not available)

The remote host is missing all known mitigations on Linux Kernel side for the referenced hardware vulnerabilities. Note: The sysfs interface to read the migitation status from the Linux Kernel is not available. Based on this it is assumed that no Linux Kernel mitigations are available and that th...

CVE-2017-18692

An issue was discovered on Samsung mobile devices with M6.0 and N7.0 MSM8939, MSM8996, MSM8998, Exynos7580, Exynos8890, or Exynos8895 chipsets software. There is a race condition, with a resultant buffer overflow, in the sects touchscreen sysfs interface. The Samsung ID is SVE-2016-7501 January...

Ubuntu: Security Advisory (USN-3583-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 14.04 LTS : Linux kernel (Xenial HWE) vulnerabilities (USN-3469-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3469-2 advisory. USN-3469-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enableme...

Debian DSA-1872-1 : linux-2.6 - denial of service/privilege escalation/information leak

Several vulnerabilities have been discovered in the Linux kernel that may lead to denial of service, privilege escalation or a leak of sensitive memory. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-2698 Herbert Xu discovered an issue in the way U...

kernel: megaraid_sas permissions in sysfs

The dbglvl file for the megaraidsas driver in the Linux kernel before 2.6.27 has world-writable permissions, which allows local users to change the 1 behavior and 2 logging level of the driver by modifying this file...