Lucene search
K

50 matches found

Positive Technologies
Positive Technologies
added 2025/05/01 12:0 a.m.21 views

PT-2025-18606 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel's tracing subsystem has been resolved. The issue arises when the number of listed CPUs exceeds the actual number of existing CPUs. The tracing...

8.8CVSS7.5AI score0.0129EPSS
Exploits4References663
SUSE CVE
SUSE CVE
added 2025/02/28 2:20 a.m.15 views

SUSE CVE-2025-21778

In the Linux kernel, the following vulnerability has been resolved: tracing: Do not allow mmap of persistent ring buffer When trying to mmap a trace instance buffer that is attached to reservemem, it would crash: BUG: unable to handle page fault for address: ffffe97bd00025c8 PF: supervisor read...

5.5CVSS6.6AI score0.00191EPSS
Exploits0References3
NVD
NVD
added 2025/02/26 7:0 a.m.9 views

CVE-2022-49065

In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fix the svcdeferredevent trace class Fix a NULL deref crash that occurs when an svcrqst is deferred while the sunrpc tracing subsystem is enabled. svcrevisit sets dr-xprt to NULL, so it can't be relied upon in the...

5.5CVSS0.00252EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/02/26 1:54 a.m.11 views

CVE-2022-49065 SUNRPC: Fix the svc_deferred_event trace class

In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fix the svcdeferredevent trace class Fix a NULL deref crash that occurs when an svcrqst is deferred while the sunrpc tracing subsystem is enabled. svcrevisit sets dr-xprt to NULL, so it can't be relied upon in the...

0.00252EPSS
Exploits0References4
CVE
CVE
added 2025/02/26 1:54 a.m.99 views

CVE-2022-49065

In CVE-2022-49065, the Linux kernel SUNRPC service saw a NULL dereference when a sunrpc svc_rqst was deferred with tracing enabled. The fix avoids relying on dr->xprt after reevaluating the trace event format; the dr::addr is converted to a presentation address and stored as a string in TP_fas...

5.5CVSS5.4AI score0.00252EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.6 views

PT-2025-52657

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the tracing subsystem related to Virtual Memory Area VMA handling. Specifically, when a VMA is split, the ring buffer unmap function can be call...

6.5AI score0.00169EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.5 views

PT-2025-36278

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.16.0 Description A flaw exists in the Linux kernel related to tracing functionality. Specifically, insufficient bounds checking when handling strings longer than FTRACE BUFF MAX within the ftrace process regex...

7.1CVSS6.7AI score0.00162EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/06/08 2:59 a.m.13 views

SUSE CVE-2024-26920

In the Linux kernel, the following vulnerability has been resolved: tracing/trigger: Fix to return error if failed to alloc snapshot Fix registersnapshottrigger to return error code if it failed to allocate a snapshot instead of 0 success. Unless that, it will register snapshot trigger without an...

5.5CVSS6.2AI score0.00256EPSS
Exploits0References24
RedhatCVE
RedhatCVE
added 2024/05/23 2:6 p.m.36 views

CVE-2021-47262

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Ensure liveliness of nested VM-Enter fail tracepoint message Use the string machinery provided by the tracing subystem to make a copy of the string literals consumed by the "nested VM-Enter failed" tracepoint. A complet...

5.5CVSS6.7AI score0.0023EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:55 a.m.4 views

SUSE CVE-2016-9754

The ringbufferresize function in kernel/trace/ringbuffer.c in the profiling subsystem in the Linux kernel before 4.6.1 mishandles certain integer calculations, which allows local users to gain privileges by writing to the /sys/kernel/debug/tracing/buffersizekb file...

7.8CVSS7.9AI score0.00532EPSS
Exploits1References4
Ubuntu
Ubuntu
added 2022/02/22 10:16 a.m.147 views

USN-5299-1: Linux kernel vulnerabilities

Mathy Vanhoef discovered that the Linux kernel’s WiFi implementation could reassemble mixed encrypted and plaintext fragments. A physically proximate attacker could possibly use this issue to inject packets or exfiltrate selected fragments. CVE-2020-26147 It was discovered that the bluetooth...

7.8CVSS8.2AI score0.07604EPSS
Exploits6
OpenVAS
OpenVAS
added 2021/10/21 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-5115-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.9AI score0.01476EPSS
Exploits11References2
OSV
OSV
added 2021/10/20 6:39 p.m.7 views

USN-5115-1 linux-oem-5.10 vulnerabilities

It was discovered that a race condition existed in the Atheros Ath9k WiFi driver in the Linux kernel. An attacker could possibly use this to expose sensitive information WiFi network traffic. CVE-2020-3702 Ofek Kirzner, Adam Morrison, Benedict Schlueter, and Piotr Krysiuk discovered that the BPF...

7.8CVSS7.2AI score0.01476EPSS
Exploits11References17
Ubuntu
Ubuntu
added 2021/10/20 6:39 p.m.143 views

USN-5115-1: Linux kernel (OEM) vulnerabilities

It was discovered that a race condition existed in the Atheros Ath9k WiFi driver in the Linux kernel. An attacker could possibly use this to expose sensitive information WiFi network traffic. CVE-2020-3702 Ofek Kirzner, Adam Morrison, Benedict Schlueter, and Piotr Krysiuk discovered that the BPF...

7.8CVSS7.4AI score0.01476EPSS
Exploits11
Ubuntu
Ubuntu
added 2021/09/30 5:4 p.m.147 views

USN-5094-2: Linux kernel (Raspberry Pi) vulnerabilities

It was discovered that the KVM hypervisor implementation in the Linux kernel did not properly perform reference counting in some situations, leading to a use-after-free vulnerability. An attacker who could start and control a VM could possibly use this to expose sensitive information or execute...

8.7CVSS7AI score0.00734EPSS
Exploits1
Ubuntu
Ubuntu
added 2021/09/30 3:51 p.m.143 views

USN-5091-2: Linux kernel (Raspberry Pi) vulnerabilities

Ofek Kirzner, Adam Morrison, Benedict Schlueter, and Piotr Krysiuk discovered that the BPF verifier in the Linux kernel missed possible mispredicted branches due to type confusion, allowing a side-channel attack. An attacker could use this to expose sensitive information. CVE-2021-33624 It was...

7.8CVSS6.9AI score0.01245EPSS
Exploits3
OpenVAS
OpenVAS
added 2021/09/30 12:0 a.m.38 views

Ubuntu: Security Advisory (USN-5094-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.7CVSS6.8AI score0.00734EPSS
Exploits2References2
OSV
OSV
added 2021/09/29 10:27 p.m.16 views

USN-5096-1 linux-oem-5.13 vulnerabilities

Valentina Palmiotti discovered that the iouring subsystem in the Linux kernel could be coerced to free adjacent memory. A local attacker could use this to execute arbitrary code. CVE-2021-41073 Benedict Schlueter discovered that the BPF subsystem in the Linux kernel did not properly protect again...

7.8CVSS7.4AI score0.03365EPSS
Exploits5References17
Ubuntu
Ubuntu
added 2021/09/29 9:2 a.m.141 views

USN-5092-2: Linux kernel vulnerabilities

Valentina Palmiotti discovered that the iouring subsystem in the Linux kernel could be coerced to free adjacent memory. A local attacker could use this to execute arbitrary code. CVE-2021-41073 Ofek Kirzner, Adam Morrison, Benedict Schlueter, and Piotr Krysiuk discovered that the BPF verifier in...

7.8CVSS7.4AI score0.03365EPSS
Exploits8
OSV
OSV
added 2021/09/29 9:2 a.m.7 views

USN-5092-2 linux-hwe-5.11, linux-azure, linux-azure-5.11, linux-oracle-5.11 vulnerabilities

Valentina Palmiotti discovered that the iouring subsystem in the Linux kernel could be coerced to free adjacent memory. A local attacker could use this to execute arbitrary code. CVE-2021-41073 Ofek Kirzner, Adam Morrison, Benedict Schlueter, and Piotr Krysiuk discovered that the BPF verifier in...

7.8CVSS7.2AI score0.03365EPSS
Exploits8References13
Rows per page
Query Builder