Lucene search
+L

56 matches found

RedHat Linux
RedHat Linux
added 2021/10/26 7:48 a.m.3 views

kernel: use-after-free in drivers/infiniband/core/ucma.c ctx use-after-free

An issue was discovered in the Linux kernels Userspace Connection Manager Access for RDMA. This could allow a local attacker to crash the system, corrupt memory or escalate privileges...

7.8CVSS6.7AI score0.01476EPSS
Exploits0References4
OSV
OSV
added 2021/07/24 11:3 a.m.8 views

OESA-2021-1279 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: there was a null pointer dereference in llcpsockgetname in net/nfc/llcpsock.c and reproduced it in linux-5.13.0-rc2. An unprivileged user can trigger this bug and cause denial of service. Root Cause After creating an nfc socket,...

8.3CVSS8AI score0.78684EPSS
Exploits28References13
OSV
OSV
added 2021/06/07 12:15 p.m.2 views

DEBIAN-CVE-2020-36385

An issue was discovered in the Linux kernel before 5.10. drivers/infiniband/core/ucma.c has a use-after-free because the ctx is reached via the ctxlist in some ucmamigrateid situations where ucmaclose is called, aka CID-f5449e74802c...

7.8CVSS6.5AI score0.01476EPSS
Exploits0References1
OSV
OSV
added 2021/06/07 12:15 p.m.4 views

UBUNTU-CVE-2020-36385

An issue was discovered in the Linux kernel before 5.10. drivers/infiniband/core/ucma.c has a use-after-free because the ctx is reached via the ctxlist in some ucmamigrateid situations where ucmaclose is called, aka CID-f5449e74802c...

7.8CVSS6.7AI score0.01476EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2019/08/06 12:47 p.m.4 views

kernel: use-after-free in ucma_leave_multicast in drivers/infiniband/core/ucma.c

A flaw was found in the Linux Kernel in the ucmaleavemulticast function in drivers/infiniband/core/ucma.c which allows access to a certain data structure after freeing it in ucmaprocessjoin. This allows an attacker to cause a use-after-free bug and to induce kernel memory corruption, leading to a...

7.8CVSS7AI score0.00566EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/04/23 2:31 p.m.5 views

kernel: use-after-free in ucma_leave_multicast in drivers/infiniband/core/ucma.c

A flaw was found in the Linux Kernel in the ucmaleavemulticast function in drivers/infiniband/core/ucma.c which allows access to a certain data structure after freeing it in ucmaprocessjoin. This allows an attacker to cause a use-after-free bug and to induce kernel memory corruption, leading to a...

7.8CVSS7AI score0.00566EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2019/03/12 12:0 a.m.5 views

A vulnerability in the Linux kernel’s drivers/infiniband/core/ucma.c file, which allows a hacker to trigger a service failure.

The vulnerability in the Linux kernel’s drivers/infiniband/core/ucma.c file is related to the use of memory after it has been freed. Exploiting this vulnerability could allow an attacker to cause a service failure...

7.8CVSS7AI score0.00566EPSS
Exploits0References39Affected Software4
Tenable Nessus
Tenable Nessus
added 2018/12/17 12:0 a.m.31 views

openSUSE Security Update : the Linux Kernel (openSUSE-2018-1549)

The openSUSE Leap 42.3 kernel was updated to 4.4.165-81.1 to receive various bugfixes. The following non-security bugs were fixed : - 9p locks: fix glock.clientid leak in dolock bnc1012382. - 9p: clear dangling pointers in p9statfree bnc1012382. - ACPI / LPSS: Add alternative ACPI HIDs for Cherry...

5.5AI score
Exploits0References35
OPENSUSE Linux
OPENSUSE Linux
added 2018/12/15 12:8 a.m.159 views

Security update for the Linux Kernel (important)

The openSUSE Leap 42.3 kernel was updated to 4.4.165-81.1 to receive various bugfixes. The following non-security bugs were fixed: - 9p locks: fix glock.clientid leak in dolock bnc1012382. - 9p: clear dangling pointers in p9statfree bnc1012382. - ACPI / LPSS: Add alternative ACPI HIDs for Cherry...

7.5AI score
Exploits0References35
CNVD
CNVD
added 2018/07/30 12:0 a.m.12 views

Linux kernel denial of service vulnerability (CNVD-2018-17477)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the drivers/infiniband/core/ucma.c file in Linux kernel version 4.17.11 and earlier, which stems from the 'ucmaprocessjoin' function...

7.8CVSS7.1AI score0.00566EPSS
Exploits0References1
Prion
Prion
added 2018/07/29 11:29 p.m.23 views

Double free

drivers/infiniband/core/ucma.c in the Linux kernel through 4.17.11 allows ucmaleavemulticast to access a certain data structure after a cleanup step in ucmaprocessjoin, which allows attackers to cause a denial of service use-after-free...

6.1CVSS7AI score0.00566EPSS
Exploits0References14Affected Software3
OSV
OSV
added 2018/07/29 11:29 p.m.2 views

DEBIAN-CVE-2018-14734

drivers/infiniband/core/ucma.c in the Linux kernel through 4.17.11 allows ucmaleavemulticast to access a certain data structure after a cleanup step in ucmaprocessjoin, which allows attackers to cause a denial of service use-after-free...

7.8CVSS7AI score0.00566EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2017/01/07 9:4 p.m.28 views

Description of the cumulative update for Office Communications Server 2007 R2, Unified Communications Managed API 2.0 Core Redist 64-bit: March, 2011

Describes the bugs that are resolved in the cumulative update for Office Communications Server 2007 R2, Unified Communications Managed API 2.0 Core Redist 64-bit that is dated March 2011.SummaryThis article describes the issues that is fixed in the cumulative update for Office Communications Serv...

0.2AI score
Exploits0
Microsoft KB
Microsoft KB
added 2012/04/09 9:39 a.m.19 views

A DTMF-based IVR application that is developed by using Lync Server 2010, UCMA 3.0 Workflow APIs crashes

Fixes an issue in which a DTMF-based IVR application crashes when a user barges-in multiple times with invalid DTMF digits or barges-in to request help. This issue occurs if the application is developed by using Lync Server 2010, UCMA 3.0 Workflow APIs.SymptomsConsider the following scenario: You...

6.4AI score
Exploits0
Microsoft KB
Microsoft KB
added 1970/01/01 12:0 a.m.28 views

Security update 1970-01-01

...

5.3AI score
Exploits0
Microsoft KB
Microsoft KB
added 1970/01/01 12:0 a.m.24 views

Security update 1970-01-01

...

5.3AI score
Exploits0
Rows per page
Query Builder