Lucene search
K

1534 matches found

NVD
NVD
added 2024/09/05 5:15 a.m.19 views

CVE-2024-43110

The ctlrequestsense function could expose up to three bytes of the kernel heap to userspace. Malicious software running in a guest VM that exposes virtioscsi can exploit the vulnerabilities to achieve code execution on the host in the bhyve userspace process, which typically runs as root. Note th...

8.8CVSS0.00395EPSS
Exploits0References2
NVD
NVD
added 2024/09/05 5:15 a.m.19 views

CVE-2024-8178

The ctlwritebuffer and ctlreadbuffer functions allocated memory to be returned to userspace, without initializing it. Malicious software running in a guest VM that exposes virtioscsi can exploit the vulnerabilities to achieve code execution on the host in the bhyve userspace process, which...

9.3CVSS0.00601EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/09/05 4:31 a.m.17 views

CVE-2024-42416 Multiple issues in ctl(4) CAM Target Layer

The ctlreportsupportedopcodes function did not sufficiently validate a field provided by userspace, allowing an arbitrary write to a limited amount of kernel help memory. Malicious software running in a guest VM that exposes virtioscsi can exploit the vulnerabilities to achieve code execution on...

7.9AI score0.00395EPSS
Exploits0References1
CVE
CVE
added 2024/09/05 4:31 a.m.60 views

CVE-2024-42416

CVE-2024-42416 affects FreeBSD ctl(4) CAM Target Layer: ctl_report_supported_opcodes did not properly validate a field from userspace, enabling an arbitrary write into limited kernel help memory. Impact: guest VMs using virtio_scsi can abuse this to execute code on the host bhyve process (root), ...

8.8CVSS9.1AI score0.00395EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2024/09/05 4:15 a.m.13 views

CVE-2024-41928

Malicious software running in a guest VM can exploit the buffer overflow to achieve code execution on the host in the bhyve userspace process, which typically runs as root. Note that bhyve runs in a Capsicum sandbox, so malicious code is constrained by the capabilities available to the bhyve...

8.4CVSS0.00244EPSS
Exploits0References2
CVE
CVE
added 2024/09/05 3:32 a.m.51 views

CVE-2024-41928

CVE-2024-41928 affects FreeBSD bhyve: a buffer overflow in the MMIO path when TPM passthrough is enabled can let malware in a guest VM execute code on the host bhyve process (usually running as root). The FreeBSD advisory SA-24:10.bhyve documents the issue, impact, and remediation, including upgr...

8.4CVSS8.7AI score0.00244EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2024/09/05 2:47 a.m.4 views

SUSE CVE-2024-44961

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Forward soft recovery errors to userspace As we discussed before1, soft recovery should be forwarded to userspace, or we can get into a really bad state where apps will keep submitting hanging command buffers cascadin...

4.7CVSS6.3AI score0.0021EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2024/09/04 9:42 p.m.24 views

CVE-2024-45008

In the Linux kernel, the following vulnerability has been resolved: Input: MT - limit max slots syzbot is reporting too large allocation at inputmtinitslots, for numslots is supplied from userspace using ioctlUIDEVCREATE. Since nobody knows possible max slots, this patch chose 1024...

5.5CVSS7AI score0.00237EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2024/09/04 7:54 p.m.15 views

CVE-2024-45008

In the Linux kernel, the following vulnerability has been resolved: Input: MT - limit max slots syzbot is reporting too large allocation at inputmtinitslots, for numslots is supplied from userspace using ioctlUIDEVCREATE. Since nobody knows possible max slots, this patch chose 1024...

5.5CVSS5.6AI score0.00237EPSS
Exploits0
Cvelist
Cvelist
added 2024/09/04 7:54 p.m.24 views

CVE-2024-45008 Input: MT - limit max slots

In the Linux kernel, the following vulnerability has been resolved: Input: MT - limit max slots syzbot is reporting too large allocation at inputmtinitslots, for numslots is supplied from userspace using ioctlUIDEVCREATE. Since nobody knows possible max slots, this patch chose 1024...

0.00237EPSS
Exploits0References8
OSV
OSV
added 2024/09/04 7:54 p.m.17 views

CVE-2024-45008 Input: MT - limit max slots

In the Linux kernel, the following vulnerability has been resolved: Input: MT - limit max slots syzbot is reporting too large allocation at inputmtinitslots, for numslots is supplied from userspace using ioctlUIDEVCREATE. Since nobody knows possible max slots, this patch chose 1024...

5.5CVSS6.2AI score0.00237EPSS
Exploits0References13
NVD
NVD
added 2024/09/04 7:15 p.m.15 views

CVE-2024-44961

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Forward soft recovery errors to userspace As we discussed before1, soft recovery should be forwarded to userspace, or we can get into a really bad state where apps will keep submitting hanging command buffers cascadin...

5.5CVSS0.0021EPSS
Exploits0References3
OSV
OSV
added 2024/09/04 7:15 p.m.9 views

AZL-49959 CVE-2024-44961 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Forward soft recovery errors to userspace As we discussed before1, soft recovery should be forwarded to userspace, or we can get into a really bad state where apps will keep submitting hanging command buffers cascadin...

5.5CVSS6.6AI score0.0021EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/09/04 7:15 p.m.17 views

CVE-2024-44961

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Forward soft recovery errors to userspace As we discussed before1, soft recovery should be forwarded to userspace, or we can get into a really bad state where apps will keep submitting hanging command buffers cascadin...

5.5CVSS6.3AI score0.0021EPSS
Exploits0References10
OSV
OSV
added 2024/09/04 7:15 p.m.2 views

UBUNTU-CVE-2024-44961

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Forward soft recovery errors to userspace As we discussed before1, soft recovery should be forwarded to userspace, or we can get into a really bad state where apps will keep submitting hanging command buffers cascadin...

5.5CVSS6.5AI score0.0021EPSS
Exploits0References11
Cvelist
Cvelist
added 2024/09/04 6:35 p.m.18 views

CVE-2024-44961 drm/amdgpu: Forward soft recovery errors to userspace

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Forward soft recovery errors to userspace As we discussed before1, soft recovery should be forwarded to userspace, or we can get into a really bad state where apps will keep submitting hanging command buffers cascadin...

0.0021EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/09/04 6:35 p.m.17 views

CVE-2024-44961 drm/amdgpu: Forward soft recovery errors to userspace

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Forward soft recovery errors to userspace As we discussed before1, soft recovery should be forwarded to userspace, or we can get into a really bad state where apps will keep submitting hanging command buffers cascadin...

7.1AI score0.0021EPSS
Exploits0References3
CVE
CVE
added 2024/09/04 6:35 p.m.123 views

CVE-2024-44961

Technical specifics for CVE-2024-44961 are not publicly provided in the connected documents. No affected product version, root cause, or fix details are confirmed here. Monitor for updates from vendors and security advisories.

5.5CVSS6AI score0.0021EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2024/09/04 6:35 p.m.15 views

CVE-2024-44961

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Forward soft recovery errors to userspace As we discussed before1, soft recovery should be forwarded to userspace, or we can get into a really bad state where apps will keep submitting hanging command buffers cascadin...

5.5CVSS5.6AI score0.0021EPSS
Exploits0
OSV
OSV
added 2024/09/04 6:35 p.m.15 views

CVE-2024-44961 drm/amdgpu: Forward soft recovery errors to userspace

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Forward soft recovery errors to userspace As we discussed before1, soft recovery should be forwarded to userspace, or we can get into a really bad state where apps will keep submitting hanging command buffers cascadin...

5.5CVSS6AI score0.0021EPSS
Exploits0References6
Rows per page
Query Builder