Lucene search
+L

102 matches found

SUSE CVE
SUSE CVE
added 2024/11/06 3:48 a.m.6 views

SUSE CVE-2024-50133

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Don't crash in stacktop for tasks without vDSO Not all tasks have a vDSO mapped, for example kthreads never do. If such a task ever ends up calling stacktop, it will derefence the NULL vdso pointer and crash. This can...

5.5CVSS7.7AI score0.00217EPSS
Exploits0References5
NVD
NVD
added 2024/11/05 6:15 p.m.22 views

CVE-2024-50133

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Don't crash in stacktop for tasks without vDSO Not all tasks have a vDSO mapped, for example kthreads never do. If such a task ever ends up calling stacktop, it will derefence the NULL vdso pointer and crash. This can...

5.5CVSS0.00217EPSS
Exploits0References5
OSV
OSV
added 2024/11/05 6:15 p.m.6 views

DEBIAN-CVE-2024-50133

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Don't crash in stacktop for tasks without vDSO Not all tasks have a vDSO mapped, for example kthreads never do. If such a task ever ends up calling stacktop, it will derefence the NULL vdso pointer and crash. This can...

5.5CVSS5.7AI score0.00217EPSS
Exploits0References1
OSV
OSV
added 2024/11/05 6:15 p.m.5 views

UBUNTU-CVE-2024-50133

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Don't crash in stacktop for tasks without vDSO Not all tasks have a vDSO mapped, for example kthreads never do. If such a task ever ends up calling stacktop, it will derefence the NULL vdso pointer and crash. This can...

5.5CVSS6.2AI score0.00217EPSS
Exploits0References19
Cvelist
Cvelist
added 2024/11/05 5:10 p.m.24 views

CVE-2024-50133 LoongArch: Don't crash in stack_top() for tasks without vDSO

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Don't crash in stacktop for tasks without vDSO Not all tasks have a vDSO mapped, for example kthreads never do. If such a task ever ends up calling stacktop, it will derefence the NULL vdso pointer and crash. This can...

0.00217EPSS
Exploits0References4
OSV
OSV
added 2024/11/05 5:10 p.m.13 views

CVE-2024-50133 LoongArch: Don't crash in stack_top() for tasks without vDSO

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Don't crash in stacktop for tasks without vDSO Not all tasks have a vDSO mapped, for example kthreads never do. If such a task ever ends up calling stacktop, it will derefence the NULL vdso pointer and crash. This can...

5.5CVSS6.2AI score0.00217EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2024/08/16 12:0 a.m.125 views

SUSE SLES15: cluster-md-kmp-default / dlm-kmp-default / gfs2-kmp-default / etc (SUSE-SU-2024:2929-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2929-1 advisory. The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: -...

9.8CVSS6.8AI score0.01483EPSS
Exploits6References609
Oracle linux
Oracle linux
added 2023/10/12 12:0 a.m.70 views

glibc security update

2.28-225.0.4.6 - CVE-2023-4527: Stack read overflow in getaddrinfo in no-aaa mode. - CVE-2203-4806: potential use-after-free in getaddrinfo. - CVE-2023-4813: potential use-after-free in gaihinet RHEL-2435. - CVE-2023-4813: work around RHEL-8 limitation in test RHEL-2435. Reviewed by: Jose E...

7.7AI score0.81422EPSS
Exploits29
Gitee
Gitee
added 2023/03/28 1:56 p.m.12 views

Exploit for Race Condition in Canonical Ubuntu_Linux

This repository is a proof-of-concept PoC for the Dirty COW CVE-2016-5195 vulnerability. The PoC relies on ptrace to patch the vDSO Virtual Dynamic Shared Object instead of modifying filesystem binaries. This approach has several advantages, including no setuid binary required, SELinux bypass,...

7.2CVSS7.3AI score0.83524EPSS
Exploits82
Circl
Circl
added 2023/02/17 4:13 p.m.18 views

CVE-2023-23586

creationtimestamp| type| source ---|---|--- 2023-02-17 16:13:07+00:00| published-proof-of-concept| https://t.me/cibsecurity/58430 2024-12-10 23:00:00+00:00| seen| https://u1f383.github.io/linux/2024/12/11/linux-vdso-and-vvar.html 2024-12-20 18:02:36+00:00| published-proof-of-concept|...

5.5CVSS6.2AI score0.0027EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:24 a.m.3 views

SUSE CVE-2014-9585

The vdsoaddr function in arch/x86/vdso/vma.c in the Linux kernel through 3.18.2 does not properly choose memory locations for the vDSO area, which makes it easier for local users to bypass the ASLR protection mechanism by guessing a location at the end of a PMD...

2.1CVSS6.2AI score0.00557EPSS
Exploits1References11
OSV
OSV
added 2022/11/14 6:49 p.m.7 views

GSD-2022-1006910 riscv: vdso: fix NULL deference in vdso_join_timens() when vfork

riscv: vdso: fix NULL deference in vdsojointimens when vfork This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.3 by commit...

7.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2022/11/14 12:0 a.m.5 views

PT-2022-35165 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.3 Description: The issue is related to a NULL deference in the vdso join timens function when vfork is used. This problem was introduced in version v5.19 and is fixed in Linux Kernel version v6.0.3. The...

7AI score
Exploits0References1
Oracle linux
Oracle linux
added 2022/09/22 12:0 a.m.84 views

Unbreakable Enterprise kernel security update

5.4.17-2136.311.6 - Revert 'KVM: x86: Print error code in exception injection tracepoint iff valid' Sherry Yang Orabug: 34535896 5.4.17-2136.311.5 - netfilter: nftables: do not allow RULEID to refer to another chain Thadeu Lima de Souza Cascardo Orabug: 34495567 CVE-2022-2586 - netfilter: nftable...

7.8CVSS7.6AI score0.12746EPSS
Exploits8
Gitee
Gitee
added 2021/10/09 12:39 p.m.14 views

Exploit for Race Condition in Canonical Ubuntu_Linux

This repository is an exploit module for the Dirty COW CVE-2016-5195 vulnerability. The exploit relies on ptrace to patch the vDSO Virtual Dynamic Shared Object and gain root privileges. The payload is written in assembly and is executed whenever a process makes a call to clockgettime. If the...

7.2CVSS7.5AI score0.83524EPSS
Exploits82
Gitee
Gitee
added 2020/12/18 10:54 a.m.14 views

Exploit for Race Condition in Canonical Ubuntu_Linux

PoC exploit for CVE-2016-5195 Dirty COW. The target product/service is Linux, specifically the vDSO Virtual Dynamic Shared Object component. The vulnerability class/vector is a privilege escalation vulnerability, allowing an unprivileged user to gain root privileges. The probable entry point is t...

7.2CVSS7.8AI score0.83524EPSS
Exploits82
Gitee
Gitee
added 2020/05/09 6:35 p.m.8 views

kernel_exploit_series

This is a collection of files related to a vulnerable driver, specifically targeting the Linux kernel. The files are part of a repository called "povcfe/kernelexploitseries". The files include: 1. 1-heapsprayUAF/easyuaf.c: This file appears to be a simple example of a heap spray vulnerability,...

6.8AI score
Exploits0
Gitee
Gitee
added 2020/05/03 6:44 p.m.14 views

Exploit for Race Condition in Canonical Ubuntu_Linux

This is a PoC Proof of Concept exploit for CVE-2016-5195, also known as Dirty COW. The exploit relies on ptrace to patch the vDSO Virtual Dynamic Shared Object and gain root privileges. The exploit is architecture-dependent and may not work on every Linux version. The payload is written in assemb...

7.2CVSS7AI score0.83524EPSS
Exploits82
Veracode
Veracode
added 2020/04/10 12:28 a.m.42 views

Privilege Escalation

kernel is vulnerable to privilege escalation. The vulnerability exists due to missing boundary checks in the Virtual Dynamic Shared Objects vDSO implementation. This could allow a local unprivileged user to cause a denial of service or escalate privileges...

4.6CVSS3.9AI score0.00377EPSS
Exploits2References14Affected Software1
Gitee
Gitee
added 2020/03/06 8:17 p.m.4 views

kernel_exploit_series

This repository is an exploit series for learning how to exploit kernel vulnerabilities, specifically targeting the Linux kernel. The repository contains various exploit modules and tools, including: 1. 1-heapsprayUAF: This directory contains exploit code for a use-after-free UAF vulnerability in...

6.9AI score
Exploits0
Rows per page
Query Builder