Lucene search
K

1534 matches found

NVD
NVD
added 2025/02/26 7:1 a.m.9 views

CVE-2022-49559

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Drop WARNs that assert a triple fault never "escapes" from L2 Remove WARNs that sanity check that KVM never lets a triple fault for L2 escape and incorrectly end up in L1. In normal operation, the sanity check is...

5.5CVSS0.00283EPSS
Exploits0References4
OSV
OSV
added 2025/02/26 7:1 a.m.1 views

DEBIAN-CVE-2022-49293

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: initialize registers in nftdochain Initialize registers to avoid stack leak into userspace...

5.5CVSS5.5AI score0.00274EPSS
Exploits0References1
OSV
OSV
added 2025/02/26 7:1 a.m.1 views

DEBIAN-CVE-2022-49236

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix UAF due to race between btftrygetmodule and loadmodule While working on code to populate kfunc BTF ID sets for module BTF from its initcall, I noticed that by the time the initcall is invoked, the module BTF can already ...

7.8CVSS5.6AI score0.00252EPSS
Exploits0References1
OSV
OSV
added 2025/02/26 7:1 a.m.4 views

UBUNTU-CVE-2022-49335

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/cs: make commands with 0 chunks illegal behaviour. Submitting a cs with 0 chunks, causes an oops later, found trying to execute the wrong userspace driver. MESALOADERDRIVEROVERRIDE=v3d glxinfo 172536.665184 BUG: kernel...

5.5CVSS6.3AI score0.00255EPSS
Exploits0References12
OSV
OSV
added 2025/02/26 7:1 a.m.0 views

UBUNTU-CVE-2022-49293

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: initialize registers in nftdochain Initialize registers to avoid stack leak into userspace...

5.5CVSS6.2AI score0.00274EPSS
Exploits0References12
NVD
NVD
added 2025/02/26 7:0 a.m.13 views

CVE-2022-49164

In the Linux kernel, the following vulnerability has been resolved: powerpc/tm: Fix more userspace r13 corruption Commit cf13435b730a "powerpc/tm: Fix userspace r13 corruption" fixes a problem in treclaim where a SLB miss can occur on the threadstruct-ckptregs while SCRATCH0 is live with the save...

5.5CVSS0.00244EPSS
Exploits0References3
OSV
OSV
added 2025/02/26 7:0 a.m.2 views

UBUNTU-CVE-2022-49122

In the Linux kernel, the following vulnerability has been resolved: dm ioctl: prevent potential spectre v1 gadget It appears like cmd could be a Spectre v1 gadget as it's supplied by a user and used as an array index. Prevent the contents of kernel memory from being leaked to userspace via...

5.5CVSS6.2AI score0.00288EPSS
Exploits0References12
Debian CVE
Debian CVE
added 2025/02/26 2:14 a.m.5 views

CVE-2022-49559

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Drop WARNs that assert a triple fault never "escapes" from L2 Remove WARNs that sanity check that KVM never lets a triple fault for L2 escape and incorrectly end up in L1. In normal operation, the sanity check is...

5.5CVSS5.3AI score0.00283EPSS
Exploits0
Cvelist
Cvelist
added 2025/02/26 2:14 a.m.13 views

CVE-2022-49559 KVM: x86: Drop WARNs that assert a triple fault never "escapes" from L2

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Drop WARNs that assert a triple fault never "escapes" from L2 Remove WARNs that sanity check that KVM never lets a triple fault for L2 escape and incorrectly end up in L1. In normal operation, the sanity check is...

0.00283EPSS
Exploits0References4
CVE
CVE
added 2025/02/26 2:14 a.m.124 views

CVE-2022-49559

CVE-2022-49559 (Linux kernel, KVM/x86) is resolved. The issue involved dropping WARNs that incorrectly assumed KVM cannot let a triple fault (KVM_REQ_TRIPLE_FAULT) escape from L2 to L1. The vulnerability could be triggered when userspace injects a machine check while L2 is active with CR4.MCE=0, ...

5.5CVSS5.2AI score0.00283EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2025/02/26 1:56 a.m.12 views

CVE-2022-49264 exec: Force single empty string when argv is empty

In the Linux kernel, the following vulnerability has been resolved: exec: Force single empty string when argv is empty Quoting1 Ariadne Conill: "In several other operating systems, it is a hard requirement that the second argument to execve2 be the name of a program, thus prohibiting a scenario...

0.00276EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/02/26 1:55 a.m.16 views

CVE-2022-49164 powerpc/tm: Fix more userspace r13 corruption

In the Linux kernel, the following vulnerability has been resolved: powerpc/tm: Fix more userspace r13 corruption Commit cf13435b730a "powerpc/tm: Fix userspace r13 corruption" fixes a problem in treclaim where a SLB miss can occur on the threadstruct-ckptregs while SCRATCH0 is live with the save...

0.00244EPSS
Exploits0References3
CVE
CVE
added 2025/02/26 1:55 a.m.95 views

CVE-2022-49164

CVE-2022-49164 describes a Linux kernel vulnerability on PowerPC with TM (transaction memory) that could corrupt the user r13 register due to a SLB miss during treclaim/trechkpt handling. The issue occurs when SCRATCH0 is live with the saved user r13 value, which can be clobbered by the kernel r1...

5.5CVSS5.1AI score0.00244EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/02/26 1:55 a.m.14 views

CVE-2022-49164 powerpc/tm: Fix more userspace r13 corruption

In the Linux kernel, the following vulnerability has been resolved: powerpc/tm: Fix more userspace r13 corruption Commit cf13435b730a "powerpc/tm: Fix userspace r13 corruption" fixes a problem in treclaim where a SLB miss can occur on the threadstruct-ckptregs while SCRATCH0 is live with the save...

5.5CVSS5.1AI score0.00244EPSS
Exploits0References6
OSV
OSV
added 2025/02/25 7:6 p.m.13 views

USN-7289-3 linux-ibm vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - x86 architecture; - Block layer subsystem; - ACPI drivers; - GPU drivers; - HID subsystem; -...

7.8CVSS6.7AI score0.03301EPSS
Exploits2References104
RedhatCVE
RedhatCVE
added 2025/02/07 9:44 a.m.16 views

CVE-2024-45584

Memory corruption can occur when a compat IOCTL call is followed by a normal IOCTL call from userspace...

7.8CVSS7.1AI score0.00097EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 11:2 a.m.9 views

CVE-2024-21455

Memory corruption when a compat IOCTL call is followed by another IOCTL call from userspace to a driver...

7.8CVSS6.9AI score0.00169EPSS
Exploits0References1
NVD
NVD
added 2025/02/03 5:15 p.m.18 views

CVE-2024-45584

Memory corruption can occur when a compat IOCTL call is followed by a normal IOCTL call from userspace...

7.8CVSS0.00097EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/02/03 12:0 a.m.5 views

PT-2025-2716 · Qualcomm · Snapdragon +108

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: Memory corruption can occur when a compat IOCTL call is followed by a normal IOCTL call from userspace. This issue arises due to the sequence of these...

7.8CVSS7.1AI score0.00097EPSS
Exploits0References6
NVD
NVD
added 2025/01/31 12:15 p.m.53 views

CVE-2025-21672

In the Linux kernel, the following vulnerability has been resolved: afs: Fix merge preference rule failure condition syzbot reported a lock held when returning to userspace1. This is because if argc is less than 0 and the function returns directly, the held inode lock is not released. Fix this by...

5.5CVSS0.00136EPSS
Exploits0References2
Rows per page
Query Builder