Lucene search
+L

113 matches found

SUSE CVE
SUSE CVE
added 2024/05/25 3:34 a.m.4 views

SUSE CVE-2021-47401

In the Linux kernel, the following vulnerability has been resolved: ipack: ipoctal: fix stack information leak The tty driver name is used also after registering the driver and must specifically not be allocated on the stack to avoid leaking information to user space or triggering an oops. Driver...

5.5CVSS6.3AI score0.00243EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2024/05/22 10:3 a.m.5 views

kernel: tty: n_gsm: add sanity check for gsm->receive in gsm_receive_buf()

In the Linux kernel, the following vulnerability has been resolved: tty: ngsm: add sanity check for gsm-receive in gsmreceivebuf A null pointer dereference can happen when attempting to access the "gsm-receive" function in gsmldreceivebuf. Currently, the code assumes that gsm-recieve is only call...

5.5CVSS6.4AI score0.0019EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2024/05/22 8:57 a.m.25 views

CVE-2021-47403

In the Linux kernel, the following vulnerability has been resolved: ipack: ipoctal: fix module reference leak A reference to the carrier module was taken on every open but was only released once when the final reference to the tty struct was dropped. Fix this by taking the module reference and...

5.5CVSS6.5AI score0.00249EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/05/22 8:57 a.m.25 views

CVE-2021-47401

In the Linux kernel, the following vulnerability has been resolved: ipack: ipoctal: fix stack information leak The tty driver name is used also after registering the driver and must specifically not be allocated on the stack to avoid leaking information to user space or triggering an oops. Driver...

4.4CVSS6.2AI score0.00243EPSS
Exploits0References4
NVD
NVD
added 2024/05/21 3:15 p.m.38 views

CVE-2021-47401

In the Linux kernel, the following vulnerability has been resolved: ipack: ipoctal: fix stack information leak The tty driver name is used also after registering the driver and must specifically not be allocated on the stack to avoid leaking information to user space or triggering an oops. Driver...

5.5CVSS6.2AI score0.00243EPSS
Exploits0References8
OSV
OSV
added 2024/05/21 3:15 p.m.1 views

DEBIAN-CVE-2021-47403

In the Linux kernel, the following vulnerability has been resolved: ipack: ipoctal: fix module reference leak A reference to the carrier module was taken on every open but was only released once when the final reference to the tty struct was dropped. Fix this by taking the module reference and...

7.1CVSS5.7AI score0.00249EPSS
Exploits0References1
OSV
OSV
added 2024/05/21 3:15 p.m.35 views

CVE-2021-47401

In the Linux kernel, the following vulnerability has been resolved: ipack: ipoctal: fix stack information leak The tty driver name is used also after registering the driver and must specifically not be allocated on the stack to avoid leaking information to user space or triggering an oops. Driver...

5.5CVSS6.2AI score
Exploits0References8
OSV
OSV
added 2024/05/21 3:15 p.m.3 views

DEBIAN-CVE-2021-47401

In the Linux kernel, the following vulnerability has been resolved: ipack: ipoctal: fix stack information leak The tty driver name is used also after registering the driver and must specifically not be allocated on the stack to avoid leaking information to user space or triggering an oops. Driver...

5.5CVSS5.1AI score0.00243EPSS
Exploits0References1
NVD
NVD
added 2024/05/21 3:15 p.m.22 views

CVE-2021-47358

In the Linux kernel, the following vulnerability has been resolved: staging: greybus: uart: fix tty use after free User space can hold a tty open indefinitely and tty drivers must not release the underlying structures until the last user is gone. Switch to using the tty-port reference counter to...

7.8CVSS6.6AI score0.00242EPSS
Exploits0References7
OSV
OSV
added 2024/05/21 3:15 p.m.16 views

UBUNTU-CVE-2021-47401

In the Linux kernel, the following vulnerability has been resolved: ipack: ipoctal: fix stack information leak The tty driver name is used also after registering the driver and must specifically not be allocated on the stack to avoid leaking information to user space or triggering an oops. Driver...

5.5CVSS5.9AI score0.00243EPSS
Exploits0References11
Vulnrichment
Vulnrichment
added 2024/05/21 3:3 p.m.19 views

CVE-2021-47403 ipack: ipoctal: fix module reference leak

In the Linux kernel, the following vulnerability has been resolved: ipack: ipoctal: fix module reference leak A reference to the carrier module was taken on every open but was only released once when the final reference to the tty struct was dropped. Fix this by taking the module reference and...

6.8AI score0.00249EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2024/05/21 3:3 p.m.47 views

CVE-2021-47403

In the Linux kernel, the following vulnerability has been resolved: ipack: ipoctal: fix module reference leak A reference to the carrier module was taken on every open but was only released once when the final reference to the tty struct was dropped. Fix this by taking the module reference and...

7.1CVSS7.1AI score0.00249EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/05/21 3:3 p.m.21 views

CVE-2021-47401 ipack: ipoctal: fix stack information leak

In the Linux kernel, the following vulnerability has been resolved: ipack: ipoctal: fix stack information leak The tty driver name is used also after registering the driver and must specifically not be allocated on the stack to avoid leaking information to user space or triggering an oops. Driver...

6.5AI score0.00243EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2024/05/21 3:3 p.m.53 views

CVE-2021-47401

In the Linux kernel, the following vulnerability has been resolved: ipack: ipoctal: fix stack information leak The tty driver name is used also after registering the driver and must specifically not be allocated on the stack to avoid leaking information to user space or triggering an oops. Driver...

5.5CVSS6.5AI score0.00243EPSS
Exploits0
Cvelist
Cvelist
added 2024/05/21 3:3 p.m.55 views

CVE-2021-47401 ipack: ipoctal: fix stack information leak

In the Linux kernel, the following vulnerability has been resolved: ipack: ipoctal: fix stack information leak The tty driver name is used also after registering the driver and must specifically not be allocated on the stack to avoid leaking information to user space or triggering an oops. Driver...

6.1AI score0.00243EPSS
Exploits0References8
Prion
Prion
added 2024/03/02 10:15 p.m.24 views

Design/Logic Flaw

In the Linux kernel, the following vulnerability has been resolved: Revert "tty: ngsm: fix UAF in gsmcleanupmux" This reverts commit 9b9c8195f3f0d74a826077fc1c01b9ee74907239. The commit above is reverted as it did not solve the original issue. gsmcleanupmux tries to free up the virtual ttys by...

7.2AI score0.00237EPSS
Exploits0References5
OSV
OSV
added 2024/03/02 9:59 p.m.6 views

CVE-2023-52564 Revert "tty: n_gsm: fix UAF in gsm_cleanup_mux"

In the Linux kernel, the following vulnerability has been resolved: Revert "tty: ngsm: fix UAF in gsmcleanupmux" This reverts commit 9b9c8195f3f0d74a826077fc1c01b9ee74907239. The commit above is reverted as it did not solve the original issue. gsmcleanupmux tries to free up the virtual ttys by...

5.5CVSS5.6AI score0.00237EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2023/09/18 12:0 a.m.5 views

PT-2023-8791 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a null pointer dereference in the Linux kernel. The gsm cleanup mux function tries to free up virtual ttys by calling gsm dlci release for each available DLCI...

7.8CVSS6.6AI score0.08555EPSS
Exploits7References1100
OSV
OSV
added 2023/04/24 6:15 a.m.3 views

UBUNTU-CVE-2023-31082

An issue was discovered in drivers/tty/ngsm.c in the Linux kernel 6.2. There is a sleeping function called from an invalid context in gsmldwrite, which will block the kernel. Note: This has been disputed by 3rd parties as not a valid vulnerability...

5.5CVSS5.8AI score0.0036EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2023/03/07 8:0 a.m.6 views

An issue was discovered in the Linux kernel through 6.2.0-rc2. drivers/tty/vcc.c has a race condition and resultant use-after-free if a physically proximate attacker removes a VCC device while calling open() aka a race condition between vcc_open() and vcc_remove().

...

5.7CVSS7.3AI score0.00217EPSS
Exploits0
Rows per page
Query Builder