Lucene search
K

292 matches found

Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.42 views

Rocky Linux 8 : kernel (RLSA-2022:6460)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:6460 advisory. - Incomplete cleanup of multi-core shared buffers for some IntelR Processors may allow an authenticated user to potentially enable information disclosur...

5.5CVSS6.6AI score0.06451EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/07/06 12:0 a.m.10 views

Linux kernel 资源管理错误漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A resource management error vulnerability exists in Linux kernel 6.4.2 and earlier versions, which stems from a carefully crafted UDF filesystem image that can cause write...

5.5CVSS6.5AI score0.00361EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2023/06/21 12:0 a.m.42 views

AlmaLinux 9 : kpatch-patch (ALSA-2023:3705)

The remote AlmaLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2023:3705 advisory. - A use-after-free vulnerability in the Linux Kernel Performance Events system can be exploited to achieve local privilege escalation. The perfgroupdetach...

7.8CVSS7.2AI score0.12966EPSS
Exploits7References3
Tenable Nessus
Tenable Nessus
added 2023/06/05 12:0 a.m.27 views

AlmaLinux 8 : kernel-rt (ALSA-2023:3350)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:3350 advisory. - In the Linux kernel through 6.3.1, a use-after-free in Netfilter nftables when processing batch requests can be abused to perform arbitrary read and write...

7.8CVSS7.1AI score0.12966EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2023/06/05 12:0 a.m.38 views

AlmaLinux 8 : kernel (ALSA-2023:3349)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:3349 advisory. - In the Linux kernel through 6.3.1, a use-after-free in Netfilter nftables when processing batch requests can be abused to perform arbitrary read and write...

7.8CVSS7.1AI score0.12966EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2023/05/30 12:0 a.m.35 views

Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6123-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6123-1 advisory. Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests,...

7.8CVSS7.3AI score0.12966EPSS
Exploits8References6
OSV
OSV
added 2023/04/19 8:57 a.m.8 views

USN-6026-1 vim vulnerabilities

It was discovered that Vim was incorrectly processing Vim buffers. An attacker could possibly use this issue to perform illegal memory access and expose sensitive information. This issue only affected Ubuntu 20.04 LTS. CVE-2021-4166 It was discovered that Vim was using freed memory when dealing...

9.8CVSS7.8AI score0.26583EPSS
Exploits20References21
SUSE CVE
SUSE CVE
added 2023/02/15 3:33 a.m.2 views

SUSE CVE-2022-1943

A flaw out of bounds memory write in the Linux kernel UDF file system functionality was found in the way user triggers some file operation which triggers udfwritefi. A local user could use this flaw to crash the system or potentially...

7.8CVSS6.5AI score0.00282EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2022/11/21 8:38 p.m.27 views

Insufficient Verification of Proofs generated by the immudb server in client SDK.

Impact In certain scenario a malicious immudb server can provide a falsified proof that will be accepted by the client SDK signing a falsified transaction replacing the genuine one. This situation can not be triggered by a genuine immudb server and requires the client to perform a specific list o...

5.4CVSS5.3AI score0.00384EPSS
Exploits1References9Affected Software1
RedHat Linux
RedHat Linux
added 2022/11/08 9:32 a.m.4 views

kernel: ALSA: pcm: Fix potential AB/BA lock with buffer_mutex and mmap_lock

In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Fix potential AB/BA lock with buffermutex and mmaplock syzbot caught a potential deadlock between the PCM runtime-buffermutex and the mm-mmaplock. It was brought by the recent fix to cover the racy read/write and other...

5.5CVSS6.3AI score0.00192EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2022/11/01 12:0 a.m.37 views

RHEL 8 : kernel (RHSA-2022:7279)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:7279 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: a use-after-free in clsroute...

7.8CVSS6.9AI score0.06451EPSS
Exploits7References10
RedhatCVE
RedhatCVE
added 2022/09/16 10:17 a.m.40 views

CVE-2022-40307

A race condition in the Linux kernel's EFI capsule loader driver was found in the way it handled write and flush operations on the device node of the EFI capsule. A local user could potentially use this flaw to crash the system...

4.7CVSS5.9AI score0.00199EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/09/13 12:0 a.m.65 views

RHEL 8 : kernel-rt (RHSA-2022:6437)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:6437 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...

5.5CVSS6.7AI score0.06451EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2022/09/13 12:0 a.m.76 views

RHEL 8 : kernel (RHSA-2022:6460)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:6460 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: Incomplete cleanup of multi-core share...

7.8CVSS6.8AI score0.06451EPSS
Exploits0References11
Cvelist
Cvelist
added 2022/09/07 10:50 p.m.31 views

CVE-2022-36086 linked_list_allocator vulnerable to out-of-bound writes on `Heap` initialization and `Heap::extend`

linkedlistallocator is an allocator usable for nostd systems. Prior to version 0.10.2, the heap initialization methods were missing a minimum size check for the given heap size argument. This could lead to out-of-bound writes when a heap was initialized with a size smaller than 3 sizeof:: because...

8.4CVSS9.7AI score0.00754EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/09/07 12:0 a.m.49 views

OracleVM 3.4 : xen (OVMSA-2022-0023)

The remote OracleVM system is missing necessary patches to address security updates: - Incomplete cleanup of multi-core shared buffers for some IntelR Processors may allow an authenticated user to potentially enable information disclosure via local access. CVE-2022-21123 - Incomplete cleanup of...

5.5CVSS6.5AI score0.06451EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2022/08/09 12:0 a.m.275 views

RHEL 7 : kernel (RHSA-2022:5937)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:5937 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: Incomplete cleanup of multi-core share...

7.8CVSS6.9AI score0.06451EPSS
Exploits2References10
Tenable Nessus
Tenable Nessus
added 2022/08/09 12:0 a.m.44 views

RHEL 7 : kernel-rt (RHSA-2022:5939)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:5939 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...

5.5CVSS7.1AI score0.06451EPSS
Exploits0References10
Amazon
Amazon
added 2022/08/05 12:0 a.m.53 views

Critical: exim

Issue Overview: Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the log directory owned by a non-root user, a symlink or hard link attack allows overwriting critical root-owned files anywhere on the filesystem. CVE-2020-28007 Exim 4 before 4.94....

9.8CVSS9.3AI score0.61664EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2022/07/15 12:0 a.m.94 views

Amazon Linux 2 : golang (ALAS-2022-1811)

The version of golang installed on the remote host is prior to 1.16.15-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2022-1811 advisory. An infinite loop vulnerability was found in golang. If an application defines a custom token parser initializing with...

9.8CVSS7.2AI score0.10299EPSS
Exploits3References34
Rows per page
Query Builder