Lucene search
K

112 matches found

RedHat Linux
RedHat Linux
added 2023/01/23 3:30 p.m.2 views

kernel: watch queue race condition can lead to privilege escalation

A race condition was found in the Linux kernel's watch queue due to a missing lock in the piperesizering. The race condition occurs when a thread uses ioctlIOCWATCHQUEUESETSIZE to resize the pipe buffer and free the old pipe buffer, while another thread uses keyctl to trigger a notification in th...

7CVSS6.7AI score0.00361EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/01/23 3:23 p.m.3 views

kernel: watch queue race condition can lead to privilege escalation

A race condition was found in the Linux kernel's watch queue due to a missing lock in the piperesizering. The race condition occurs when a thread uses ioctlIOCWATCHQUEUESETSIZE to resize the pipe buffer and free the old pipe buffer, while another thread uses keyctl to trigger a notification in th...

7CVSS6.7AI score0.00361EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/01/23 3:21 p.m.5 views

kernel: watch queue race condition can lead to privilege escalation

A race condition was found in the Linux kernel's watch queue due to a missing lock in the piperesizering. The race condition occurs when a thread uses ioctlIOCWATCHQUEUESETSIZE to resize the pipe buffer and free the old pipe buffer, while another thread uses keyctl to trigger a notification in th...

7CVSS6.7AI score0.00361EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/01/23 12:0 a.m.37 views

RHEL 9 : kernel (RHSA-2023:0334)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0334 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: watch queue race condition can...

7.8CVSS7.1AI score0.21314EPSS
Exploits1References16
Gitee
Gitee
added 2023/01/12 9:59 a.m.6 views

Exploit for Out-of-bounds Write in Linux Linux_Kernel

This is a PoC exploit for CVE-2022-0995, a heap out-of-bounds write in the watchqueue Linux kernel component. The exploit targets Ubuntu 21.10 with kernel 5.13.0-37. It uses the same technique described in a Google Security Research writeup for CVE-2021-22555. The exploit is not 100% reliable and...

8.3CVSS7.4AI score0.78684EPSS
Exploits27
Tenable Nessus
Tenable Nessus
added 2022/12/16 12:0 a.m.92 views

RHEL 9 : kpatch-patch (RHSA-2022:9082)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:9082 advisory. This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel...

7.8CVSS7.3AI score0.21314EPSS
Exploits6References10
RedHat Linux
RedHat Linux
added 2022/12/15 4:27 p.m.6 views

kernel: watch queue race condition can lead to privilege escalation

A race condition was found in the Linux kernel's watch queue due to a missing lock in the piperesizering. The race condition occurs when a thread uses ioctlIOCWATCHQUEUESETSIZE to resize the pipe buffer and free the old pipe buffer, while another thread uses keyctl to trigger a notification in th...

7CVSS6.7AI score0.00361EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/12/13 4:9 p.m.5 views

kernel: watch queue race condition can lead to privilege escalation

A race condition was found in the Linux kernel's watch queue due to a missing lock in the piperesizering. The race condition occurs when a thread uses ioctlIOCWATCHQUEUESETSIZE to resize the pipe buffer and free the old pipe buffer, while another thread uses keyctl to trigger a notification in th...

7CVSS6.7AI score0.00361EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/12/13 4:8 p.m.5 views

kernel: watch queue race condition can lead to privilege escalation

A race condition was found in the Linux kernel's watch queue due to a missing lock in the piperesizering. The race condition occurs when a thread uses ioctlIOCWATCHQUEUESETSIZE to resize the pipe buffer and free the old pipe buffer, while another thread uses keyctl to trigger a notification in th...

7CVSS6.7AI score0.00361EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2022/09/16 12:0 a.m.41 views

Ubuntu 22.04 LTS : Linux kernel (Intel IoTG) vulnerabilities (USN-5616-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5616-1 advisory. Asaf Modelevsky discovered that the IntelR 10GbE PCI Express ixgbe Ethernet driver for the Linux kernel performed insufficient control flow management. A...

8.2CVSS7.2AI score0.02972EPSS
Exploits2References11
Tenable Nessus
Tenable Nessus
added 2022/09/08 12:0 a.m.48 views

Ubuntu 22.04 LTS : Linux kernel (Raspberry Pi) vulnerabilities (USN-5602-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5602-1 advisory. Asaf Modelevsky discovered that the IntelR 10GbE PCI Express ixgbe Ethernet driver for the Linux kernel performed insufficient control flow management. A...

8.2CVSS7.2AI score0.02972EPSS
Exploits1References10
OSV
OSV
added 2022/09/07 11:4 a.m.6 views

OESA-2022-1893 kernel security update

Security Fixes: An out-of-bounds read flaw was found in the Linux kernel’s TeleTYpe subsystem. The issue occurs in how a user triggers a race condition using ioctls TIOCSPTLCK and TIOCGPTPEER and TIOCSTI and TCXONC with leakage of memory in the flushtoldisc function. This flaw allows a local user...

7.8CVSS6.3AI score0.00361EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2022/09/05 12:0 a.m.53 views

Ubuntu 22.04 LTS : Linux kernel (Oracle) vulnerabilities (USN-5599-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5599-1 advisory. Asaf Modelevsky discovered that the IntelR 10GbE PCI Express ixgbe Ethernet driver for the Linux kernel performed insufficient control flow management. A...

8.2CVSS7.2AI score0.02972EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2022/09/02 12:0 a.m.51 views

Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-5594-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5594-1 advisory. Asaf Modelevsky discovered that the IntelR 10GbE PCI Express ixgbe Ethernet driver for the Linux kernel performed insufficient control flow...

8.2CVSS7AI score0.02972EPSS
Exploits1References10
ATTACKERKB
ATTACKERKB
added 2022/08/25 6:15 p.m.1 views

CVE-2022-2959

A race condition was found in the Linux kernel's watch queue due to a missing lock in piperesizering. The specific flaw exists within the handling of pipe buffers. The issue results from the lack of proper locking when performing operations on an object. This flaw allows a local user to crash the...

7CVSS6.1AI score0.00361EPSS
Exploits0References4
OSV
OSV
added 2022/08/25 6:15 p.m.9 views

CVE-2022-2959

A race condition was found in the Linux kernel's watch queue due to a missing lock in piperesizering. The specific flaw exists within the handling of pipe buffers. The issue results from the lack of proper locking when performing operations on an object. This flaw allows a local user to crash the...

7CVSS7.4AI score
Exploits0References3
OSV
OSV
added 2022/08/25 6:15 p.m.4 views

AZL-10692 CVE-2022-2959 affecting package kernel for versions less than 5.15.67.1-4

A race condition was found in the Linux kernel's watch queue due to a missing lock in piperesizering. The specific flaw exists within the handling of pipe buffers. The issue results from the lack of proper locking when performing operations on an object. This flaw allows a local user to crash the...

7CVSS6.7AI score0.00361EPSS
Exploits0References1
NVD
NVD
added 2022/08/25 6:15 p.m.18 views

CVE-2022-2959

A race condition was found in the Linux kernel's watch queue due to a missing lock in piperesizering. The specific flaw exists within the handling of pipe buffers. The issue results from the lack of proper locking when performing operations on an object. This flaw allows a local user to crash the...

7CVSS0.00361EPSS
Exploits0References3
OSV
OSV
added 2022/08/25 6:15 p.m.4 views

UBUNTU-CVE-2022-2959

A race condition was found in the Linux kernel's watch queue due to a missing lock in piperesizering. The specific flaw exists within the handling of pipe buffers. The issue results from the lack of proper locking when performing operations on an object. This flaw allows a local user to crash the...

7CVSS6.7AI score0.00361EPSS
Exploits0References9
Cvelist
Cvelist
added 2022/08/25 12:0 a.m.25 views

CVE-2022-2959

A race condition was found in the Linux kernel's watch queue due to a missing lock in piperesizering. The specific flaw exists within the handling of pipe buffers. The issue results from the lack of proper locking when performing operations on an object. This flaw allows a local user to crash the...

7.2AI score0.00361EPSS
Exploits0References3
Rows per page
Query Builder