Lucene search
+L

52 matches found

CVE
CVE
added 2025/02/27 8:4 p.m.129 views

CVE-2025-21820

CVE-2025-21820 affects the Linux kernel tty/xilinx_uartps driver. A deadlock could occur due to a circular lock dependency between uart_port_lock and console_lock when handling sysrq. The fix splits sysrq handling into two parts: using a prepare step under the port lock and deferring actual handl...

5.5CVSS6.5AI score0.00155EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2025/02/27 8:4 p.m.25 views

CVE-2025-21820 tty: xilinx_uartps: split sysrq handling

In the Linux kernel, the following vulnerability has been resolved: tty: xilinxuartps: split sysrq handling lockdep detects the following circular locking dependency: CPU 0 CPU 1 ========================== ============================ cdnsuartisr printk uartportlockport consolelock...

0.00155EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2025/02/27 8:4 p.m.13 views

CVE-2025-21820

In the Linux kernel, the following vulnerability has been resolved: tty: xilinxuartps: split sysrq handling lockdep detects the following circular locking dependency: CPU 0 CPU 1 ========================== ============================ cdnsuartisr printk uartportlockport consolelock...

5.5CVSS5.7AI score0.00155EPSS
Exploits0
CNNVD
CNNVD
added 2025/02/27 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the failure to properly handle sysrq in the cdnsuartconsolewrite function, which could lead to a deadlock...

5.5CVSS6.4AI score0.00155EPSS
Exploits0References7
OSV
OSV
added 2024/10/01 12:0 a.m.14 views

PUB-A-325927059

There is a possible Local bypass of user interaction due to an insecure default value. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.2AI score0.00078EPSS
Exploits0References1
NVD
NVD
added 2024/06/19 3:15 p.m.22 views

CVE-2021-47590

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix deadlock in mptcppushpending mptcppushpending may call mptcpflushjoinlist with subflow socket lock held. If such call hits mptcpsockoptsyncall then subsequently mptcpsockoptsync could try to lock the subflow socket for...

5.5CVSS0.00156EPSS
Exploits0References2
OSV
OSV
added 2024/06/19 3:15 p.m.19 views

CVE-2021-47590

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix deadlock in mptcppushpending mptcppushpending may call mptcpflushjoinlist with subflow socket lock held. If such call hits mptcpsockoptsyncall then subsequently mptcpsockoptsync could try to lock the subflow socket for...

5.5CVSS6.8AI score
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/06/19 2:53 p.m.13 views

CVE-2021-47590 mptcp: fix deadlock in __mptcp_push_pending()

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix deadlock in mptcppushpending mptcppushpending may call mptcpflushjoinlist with subflow socket lock held. If such call hits mptcpsockoptsyncall then subsequently mptcpsockoptsync could try to lock the subflow socket for...

6.7AI score0.00156EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 5:4 a.m.4 views

SUSE CVE-2016-3707

The icmpchecksysrq function in net/ipv4/icmp.c in the kernel.org projects/rt patches for the Linux kernel, as used in the kernel-rt package before 3.10.0-327.22.1 in Red Hat Enterprise Linux for Real Time 7 and other products, allows remote attackers to execute SysRq commands via crafted ICMP Ech...

8.1CVSS8AI score0.03387EPSS
Exploits0References6
OSV
OSV
added 2022/06/28 6:53 p.m.11 views

GSD-2022-1003208 sysrq: do not omit current cpu when showing backtrace of all active CPUs

sysrq: do not omit current cpu when showing backtrace of all active CPUs This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.47 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/06/28 6:26 p.m.9 views

GSD-2022-1002898 sysrq: do not omit current cpu when showing backtrace of all active CPUs

sysrq: do not omit current cpu when showing backtrace of all active CPUs This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/06/28 5:56 p.m.9 views

GSD-2022-1002537 sysrq: do not omit current cpu when showing backtrace of all active CPUs

sysrq: do not omit current cpu when showing backtrace of all active CPUs This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.4 by commit...

7.2AI score
Exploits0
OpenVAS
OpenVAS
added 2021/03/15 12:0 a.m.6 views

SYS.2.3.A20

Es SOLLTE festgelegt werden, welche SysRq-Funktionen von den Benutzern ausgefuehrt werden duerfen. Generell SOLLTEN keine kritischen SysRq-Funktionen von den Benutzern ausgeloest werden koennen. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced...

7.3AI score
Exploits0References1
Veracode
Veracode
added 2019/05/02 5:35 a.m.47 views

Remote Command Execution

kernel-rt is vulnerable to remote command execution. The vulnerability exists as a brute-force attack can be used to retrieve a cookie which can be used to execute SysRq commands via ICMP Echo Request packets...

8.1CVSS8.3AI score0.03387EPSS
Exploits0References12Affected Software1
seebug.org
seebug.org
added 2017/06/14 12:0 a.m.68 views

Nexus 9 vs. Malicious Headphones, Take Two

Nexus 9 vs. Malicious Headphones, Take Two In March 2017 we disclosed CVE-2017-0510, a critical vulnerability in Nexus 9, that allowed for quite unique an attack by malicious headphones. Interestingly, its patch was insufficient. We had responsibly reported that finding CVE-2017-0648 to Google,...

9.3CVSS7.6AI score0.02087EPSS
Exploits7
NVD
NVD
added 2016/06/27 10:59 a.m.32 views

CVE-2016-3707

The icmpchecksysrq function in net/ipv4/icmp.c in the kernel.org projects/rt patches for the Linux kernel, as used in the kernel-rt package before 3.10.0-327.22.1 in Red Hat Enterprise Linux for Real Time 7 and other products, allows remote attackers to execute SysRq commands via crafted ICMP Ech...

8.1CVSS7.8AI score0.03387EPSS
Exploits0References7
OSV
OSV
added 2016/06/27 10:59 a.m.10 views

CVE-2016-3707

The icmpchecksysrq function in net/ipv4/icmp.c in the kernel.org projects/rt patches for the Linux kernel, as used in the kernel-rt package before 3.10.0-327.22.1 in Red Hat Enterprise Linux for Real Time 7 and other products, allows remote attackers to execute SysRq commands via crafted ICMP Ech...

8.1CVSS7.9AI score
Exploits0References7
UbuntuCve
UbuntuCve
added 2016/06/27 10:59 a.m.40 views

CVE-2016-3707

The icmpchecksysrq function in net/ipv4/icmp.c in the kernel.org projects/rt patches for the Linux kernel, as used in the kernel-rt package before 3.10.0-327.22.1 in Red Hat Enterprise Linux for Real Time 7 and other products, allows remote attackers to execute SysRq commands via crafted ICMP Ech...

8.1CVSS7.2AI score0.03387EPSS
Exploits0References9
Prion
Prion
added 2016/06/27 10:59 a.m.18 views

Design/Logic Flaw

The icmpchecksysrq function in net/ipv4/icmp.c in the kernel.org projects/rt patches for the Linux kernel, as used in the kernel-rt package before 3.10.0-327.22.1 in Red Hat Enterprise Linux for Real Time 7 and other products, allows remote attackers to execute SysRq commands via crafted ICMP Ech...

6.8CVSS7.4AI score0.03387EPSS
Exploits0References7Affected Software4
OSV
OSV
added 2016/06/27 10:59 a.m.3 views

UBUNTU-CVE-2016-3707

The icmpchecksysrq function in net/ipv4/icmp.c in the kernel.org projects/rt patches for the Linux kernel, as used in the kernel-rt package before 3.10.0-327.22.1 in Red Hat Enterprise Linux for Real Time 7 and other products, allows remote attackers to execute SysRq commands via crafted ICMP Ech...

8.1CVSS7.2AI score0.03387EPSS
Exploits0References10
Rows per page
Query Builder