Lucene search
K

1534 matches found

UbuntuCve
UbuntuCve
added 2024/07/12 1:15 p.m.22 views

CVE-2024-39504

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftinner: validate mandatory meta and payload Check for mandatory netlink attributes in payload and meta expression when used embedded from the inner expression, otherwise NULL pointer dereference is possible from...

5.5CVSS6.3AI score0.00272EPSS
Exploits0References12
OSV
OSV
added 2024/07/12 1:15 p.m.3 views

UBUNTU-CVE-2024-39504

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftinner: validate mandatory meta and payload Check for mandatory netlink attributes in payload and meta expression when used embedded from the inner expression, otherwise NULL pointer dereference is possible from...

5.5CVSS6.1AI score0.00272EPSS
Exploits0References13
OpenVAS
OpenVAS
added 2024/07/04 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-6867-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.4AI score0.01287EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/06/26 12:46 a.m.7 views

kernel: octeontx2-af: avoid off-by-one read from userspace

In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: avoid off-by-one read from userspace We try to access count + 1 byte from userspace with memdupuserbuffer, count + 1. However, the userspace only provides buffer of count bytes and only these count bytes are verifie...

5.5CVSS6.9AI score0.00238EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/06/26 12:9 a.m.4 views

kernel: octeontx2-af: avoid off-by-one read from userspace

In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: avoid off-by-one read from userspace We try to access count + 1 byte from userspace with memdupuserbuffer, count + 1. However, the userspace only provides buffer of count bytes and only these count bytes are verifie...

5.5CVSS6.9AI score0.00238EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2024/06/20 5:58 p.m.28 views

CVE-2024-38549

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Add 0 size check to mtkdrmgemobj Add a check to mtkdrmgeminit if we attempt to allocate a GEM object of 0 bytes. Currently, no such check exists and the kernel will panic if a userspace application attempts to...

4.4CVSS7AI score0.00281EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/06/20 1:56 p.m.19 views

CVE-2022-48747

In the Linux kernel, the following vulnerability has been resolved: block: Fix wrong offset in biotruncate biotruncate clears the buffer outside of last block of bdev, however current biotruncate is using the wrong offset of page. So it can return the uninitialized data. This happened when both o...

4.4CVSS7AI score0.00915EPSS
Exploits0References4
NVD
NVD
added 2024/06/19 2:15 p.m.14 views

CVE-2024-38549

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Add 0 size check to mtkdrmgemobj Add a check to mtkdrmgeminit if we attempt to allocate a GEM object of 0 bytes. Currently, no such check exists and the kernel will panic if a userspace application attempts to...

5.5CVSS0.00281EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2024/06/19 1:35 p.m.17 views

CVE-2024-38549 drm/mediatek: Add 0 size check to mtk_drm_gem_obj

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Add 0 size check to mtkdrmgemobj Add a check to mtkdrmgeminit if we attempt to allocate a GEM object of 0 bytes. Currently, no such check exists and the kernel will panic if a userspace application attempts to...

6.7AI score0.00281EPSS
Exploits0References9
OSV
OSV
added 2024/06/19 1:35 p.m.15 views

CVE-2024-38549 drm/mediatek: Add 0 size check to mtk_drm_gem_obj

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Add 0 size check to mtkdrmgemobj Add a check to mtkdrmgeminit if we attempt to allocate a GEM object of 0 bytes. Currently, no such check exists and the kernel will panic if a userspace application attempts to...

5.5CVSS6AI score0.00281EPSS
Exploits0References13
RedhatCVE
RedhatCVE
added 2024/06/18 11:17 p.m.24 views

CVE-2024-36974

In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: always validate TCATAPRIOATTRPRIOMAP If one TCATAPRIOATTRPRIOMAP attribute has been provided, taprioparsemqprioopt must validate it, or userspace can inject arbitrary data to the kernel, the second time...

6.1CVSS7AI score0.00281EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2024/06/18 8:15 p.m.17 views

CVE-2024-36974

In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: always validate TCATAPRIOATTRPRIOMAP If one TCATAPRIOATTRPRIOMAP attribute has been provided, taprioparsemqprioopt must validate it, or userspace can inject arbitrary data to the kernel, the second time...

7.8CVSS6.5AI score0.00281EPSS
Exploits0References22
CVE
CVE
added 2024/06/18 7:15 p.m.164 views

CVE-2024-36974

The CVE-2024-36974 issue affects the Linux kernel net/sched taprio: if a TCA_TAPRIO_ATTR_PRIOMAP attribute is provided, taprio_parse_mqprio_opt() must validate it; otherwise, a second taprio_change() with crafted mqprio attributes can cause kernel problems after a first, valid call sets dev->n...

7.8CVSS6.6AI score0.00281EPSS
Exploits0References10Affected Software1
OSV
OSV
added 2024/06/18 7:15 p.m.17 views

CVE-2024-36974 net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP

In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: always validate TCATAPRIOATTRPRIOMAP If one TCATAPRIOATTRPRIOMAP attribute has been provided, taprioparsemqprioopt must validate it, or userspace can inject arbitrary data to the kernel, the second time...

7.8CVSS6.1AI score0.00281EPSS
Exploits0References10
OSV
OSV
added 2024/06/12 3:51 p.m.11 views

USN-6831-1 linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-xilinx-zynqmp vulnerabilities

It was discovered that the HugeTLB file system component of the Linux Kernel contained a NULL pointer dereference vulnerability. A privileged attacker could possibly use this to to cause a denial of service. CVE-2024-0841 Several security issues were discovered in the Linux kernel. An attacker...

7.8CVSS6.6AI score0.01287EPSS
Exploits0References43
CVE
CVE
added 2024/06/05 6:39 p.m.82 views

CVE-2024-27374

CVE-2024-27374 concerns Samsung Mobile Processor Exynos models 980, 850, 1280, 1380, and 1330. The vulnerability is in the function slsi_nan_publish_get_nl_params() where there is no input validation for hal_req->service_specific_info_len sourced from userspace, allowing a potential heap overw...

7.8CVSS6.8AI score0.00196EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/06/04 12:0 a.m.43 views

SUSE SLED15: glibc / glibc-32bit / glibc-devel / glibc-devel-32bit / etc (SUSE-SU-2024:1895-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1895-1 advisory. - CVE-2024-33599: Fixed a stack-based buffer overflow in netgroup cache in nscd bsc1223423 -...

8.1CVSS7.1AI score0.0131EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2024/06/01 2:22 a.m.6 views

SUSE CVE-2024-36957

In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: avoid off-by-one read from userspace We try to access count + 1 byte from userspace with memdupuserbuffer, count + 1. However, the userspace only provides buffer of count bytes and only these count bytes are verifie...

3.3CVSS6.6AI score0.00238EPSS
Exploits0References13
OSV
OSV
added 2024/05/30 4:15 p.m.2 views

DEBIAN-CVE-2024-36957

In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: avoid off-by-one read from userspace We try to access count + 1 byte from userspace with memdupuserbuffer, count + 1. However, the userspace only provides buffer of count bytes and only these count bytes are verifie...

5.5CVSS5.6AI score0.00238EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/05/30 4:15 p.m.18 views

CVE-2024-36931

In the Linux kernel, the following vulnerability has been resolved: s390/cio: Ensure the copied buf is NUL terminated Currently, we allocate a lbuf-sized kernel buffer and copy lbuf from userspace to that buffer. Later, we use scanf on this buffer but we don't ensure that the string is terminated...

7.1CVSS6.5AI score0.00233EPSS
Exploits0References19
Rows per page
Query Builder