CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

297 matches found

Debian CVE•added 2024/09/18 7:12 a.m.•12 views

CVE-2024-46787

In the Linux kernel, the following vulnerability has been resolved: userfaultfd: fix checks for huge PMDs Patch series "userfaultfd: fix races around pmdtranshuge check", v2. The pmdtranshuge code in mfillatomic is wrong in three different ways depending on kernel version: 1. The pmdtranshuge che...

4.7CVSS5.8AI score0.00198EPSS

Exploits0

OSV•added 2024/09/18 7:12 a.m.•13 views

CVE-2024-46787 userfaultfd: fix checks for huge PMDs

4.7CVSS6.1AI score0.00198EPSS

Exploits0References6

OpenVAS•added 2024/09/10 12:0 a.m.•12 views

Fedora: Security Advisory (FEDORA-2024-9974808629)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.00652EPSS

Exploits0References2

OSV•added 2024/09/09 10:1 a.m.•4 views

CLSA-2024-1725876080 kernel: Fix of 44 CVEs

dmaengine: idxd: Fix possible Use-After-Free in irqprocessworklist CVE-2024-40956 - userfaultfd: fix a race between writeprotect and exitmmap CVE-2021-47461 - netfilter: nftables: use timestamp to check for set element timeout CVE-2024-27397 - x86/sev: Harden VC instruction emulation somewhat...

7.8CVSS7AI score0.00948EPSS

Exploits0References1

RedHat Linux•added 2024/09/04 7:24 a.m.•3 views

kernel: userfaultfd: fix a race between writeprotect and exit_mmap()

A possible race condition flaw was found in the Linux kernel. When a process exits, its virtual memory areas VMAs are removed by exitmmap, and at the same time, userfaultfdwriteprotect is called...

4.7CVSS7.2AI score0.00164EPSS

Exploits0References5

0day.today•added 2024/09/04 12:0 a.m.•301 views

Linux Kernel 5.6.13 Use-After-Free Exploit

Proof of concept exploit that uses a use-after-free vulnerability due to a race condition in MIDI devices in Linux Kernel version 5.6.13. // gcc -o exploit exploit.c -masm=intel -static -s -lpthread define GNUSOURCE include include include include include include include include include include...

7.8CVSS7AI score0.00311EPSS

Exploits2

Positive Technologies•added 2024/09/01 12:0 a.m.•2 views

PT-2024-32200

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5 Description The vulnerability is related to the userfaultfd feature in the Linux kernel, specifically with the pmd trans huge code in mfill atomic. The issue arises from a racy check that can lead to a BUG ON...

4.7CVSS5.5AI score0.00198EPSS

Exploits0

Amazon•added 2024/08/13 12:0 a.m.•1 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix a use-after-free CVE-2022-48666 In the Linux kernel, the following vulnerability has been resolved: net: relax socket state check at accept time. CVE-2024-36484 In the Linux kernel, the following...

7.8CVSS6.6AI score0.00301EPSS

Exploits0

RedHat Linux•added 2024/08/08 4:53 a.m.•2 views

kernel: userfaultfd: fix a race between writeprotect and exit_mmap()

A possible race condition flaw was found in the Linux kernel. When a process exits, its virtual memory areas VMAs are removed by exitmmap, and at the same time, userfaultfdwriteprotect is called...

4.7CVSS7.2AI score0.00164EPSS

Exploits0References5

RedHat Linux•added 2024/08/08 4:44 a.m.•2 views

kernel: userfaultfd: fix a race between writeprotect and exit_mmap()

A possible race condition flaw was found in the Linux kernel. When a process exits, its virtual memory areas VMAs are removed by exitmmap, and at the same time, userfaultfdwriteprotect is called...

4.7CVSS7.2AI score0.00164EPSS

Exploits0References5

SUSE CVE•added 2024/08/06 2:2 a.m.•2 views

SUSE CVE-2024-41027

In the Linux kernel, the following vulnerability has been resolved: Fix userfaultfdapi to return EINVAL as expected Currently if we request a feature that is not set in the Kernel config we fail silently and return all the available features. However, the man page indicates we should return an...

3.3CVSS6.5AI score0.00282EPSS

Exploits0References3

OSV•added 2024/07/29 3:15 p.m.•2 views

DEBIAN-CVE-2024-41027

3.3CVSS5.5AI score0.00282EPSS

Exploits0References1

OSV•added 2024/07/29 3:15 p.m.•0 views

UBUNTU-CVE-2024-41027

3.3CVSS6.1AI score0.00282EPSS

Exploits0References24

RedhatCVE•added 2024/06/02 4:3 p.m.•26 views

CVE-2024-36881

In the Linux kernel, the following vulnerability has been resolved: mm/userfaultfd: reset ptes when close for wr-protected ones Userfaultfd unregister includes a step to remove wr-protect bits from all the relevant pgtable entries, but that only covered an explicit UFFDIOUNREGISTER ioctl, not a...

5.3CVSS7.2AI score0.00239EPSS

Exploits0References4

SUSE CVE•added 2024/06/01 2:23 a.m.•1 views

SUSE CVE-2024-36881

6.4AI score0.00239EPSS

Exploits0References10

OSV•added 2024/05/30 4:15 p.m.•1 views

DEBIAN-CVE-2024-36943

In the Linux kernel, the following vulnerability has been resolved: fs/proc/taskmmu: fix loss of young/dirty bits during pagemap scan makeuffdwppte was previously doing: pte = ptepgetptep; ptepmodifyprotstartptep; pte = ptemkuffdwppte; ptepmodifyprotcommitptep, pte; But if another thread accessed...

4.7CVSS5.2AI score0.00176EPSS

Exploits0References1

OSV•added 2024/05/30 4:15 p.m.•2 views

DEBIAN-CVE-2024-36881

5.5CVSS5.6AI score0.00239EPSS

Exploits0References1