Lucene search
+L

103 matches found

SUSE CVE
SUSE CVE
added 2025/04/09 1:33 a.m.6 views

SUSE CVE-2025-22016

In the Linux kernel, the following vulnerability has been resolved: dpll: fix xaalloccyclic error handling In case of returning 1 from xaalloccyclic wrapping ERRPTR1 will be returned, which will cause ISERR to be false. Which can lead to dereference not allocated pointer pin. Fix it by checking i...

5.5CVSS7.6AI score0.00181EPSS
Exploits0References15
SUSE CVE
SUSE CVE
added 2025/04/09 1:33 a.m.5 views

SUSE CVE-2025-22017

In the Linux kernel, the following vulnerability has been resolved: devlink: fix xaalloccyclic error handling In case of returning 1 from xaalloccyclic wrapping ERRPTR1 will be returned, which will cause ISERR to be false. Which can lead to dereference not allocated pointer rel. Fix it by checkin...

5.5CVSS7.6AI score0.00183EPSS
Exploits0References15
OSV
OSV
added 2025/04/08 9:15 a.m.3 views

DEBIAN-CVE-2025-22017

In the Linux kernel, the following vulnerability has been resolved: devlink: fix xaalloccyclic error handling In case of returning 1 from xaalloccyclic wrapping ERRPTR1 will be returned, which will cause ISERR to be false. Which can lead to dereference not allocated pointer rel. Fix it by checkin...

5.5CVSS5.5AI score0.00183EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/27 4:37 p.m.15 views

CVE-2023-52931 drm/i915: Avoid potential vm use-after-free

In the Linux kernel, the following vulnerability has been resolved: drm/i915: Avoid potential vm use-after-free Adding the vm to the vmxa table makes it visible to userspace, which could try to race with us to close the vm. So we need to take our extra reference before putting it in the table...

0.00221EPSS
Exploits0References2
OSV
OSV
added 2025/03/12 10:15 a.m.13 views

UBUNTU-CVE-2025-21857

In the Linux kernel, the following vulnerability has been resolved: net/sched: clsapi: fix error handling causing NULL dereference tcfextsmisscookiebasealloc calls xaalloccyclic which can return 1 if the allocation succeeded after wrapping. This was treated as an error, with value 1 returned to...

5.7CVSS6.5AI score0.00204EPSS
Exploits0References16
OSV
OSV
added 2025/02/26 7:0 a.m.4 views

UBUNTU-CVE-2022-49206

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix memory leak in error flow for subscribe event routine In case the second xainsert fails, the objevent is not released. Fix the error unwind flow to free that memory to avoid a memory leak...

5.5CVSS6.2AI score0.00253EPSS
Exploits0References9
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: ocfs2: removing an entry instead of using null-ptr-dereference in ocfs2xaremove Syzkaller can trigger null-ptr-dereference in ocfs2xaremove: 57.319872 a.out,1161,7:ocfs2xaremove:2028 ERROR: status = -12 57.320420...

5.5CVSS6.4AI score0.00309EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2025/01/29 8:0 a.m.9 views

ksmbd: Fix the missing xa_store error check

...

5.5CVSS7AI score0.00228EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.14 views

PT-2025-30787

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability exists in the Linux kernel related to RDMA/mlx5, specifically concerning the initialization of obj event-obj sub list before its insertion using xa insert. This can lead ...

5.5CVSS6.7AI score0.0017EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2024/12/27 3:15 p.m.5 views

CVE-2024-56584

In the Linux kernel, the following vulnerability has been resolved: iouring/tctx: work around xastore allocation error issue syzbot triggered the following WARNON: WARNING: CPU: 0 PID: 16 at iouring/tctx.c:51 iouringfree+0xfa/0x140 iouring/tctx.c:51 which is the WARNONONCE!xaempty&tctx-;xa; sanit...

5.5CVSS6.2AI score0.00231EPSS
Exploits0References7Affected Software1
CNNVD
CNNVD
added 2024/12/27 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from an incorrect allocation of xastore memory in the iouring/tctx subsystem...

5.5CVSS6.4AI score0.00231EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/11/20 3:49 a.m.4 views

SUSE CVE-2024-53044

In the Linux kernel, the following vulnerability has been resolved: net/sched: schapi: fix xainsert error path in tcfblockgetext This command: $ tc qdisc replace dev eth0 ingressblock 1 egressblock 1 clsact Error: block dev insert failed: -EBUSY. fails because user space requests the same block...

5.5CVSS7.7AI score0.002EPSS
Exploits0References4
OSV
OSV
added 2024/11/19 6:15 p.m.4 views

UBUNTU-CVE-2024-53077

In the Linux kernel, the following vulnerability has been resolved: rpcrdma: Always release the rpcrdmadevice's xaarray Dai pointed out that the xainitflags in rpcrdmaaddone needs to have a matching xadestroy in rpcrdmaremoveone to release underlying memory that the xarray might have accrued duri...

5.5CVSS5.7AI score0.00186EPSS
Exploits0References8
OSV
OSV
added 2024/11/19 2:16 a.m.5 views

AZL-53531 CVE-2024-50284 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix the missing xastore error check xastore can fail, it return xaerr-EINVAL if the entry cannot be stored in an XArray, or xaerr-ENOMEM if memory allocation failed, so check error for xastore to fix it...

5.5CVSS6.3AI score0.00228EPSS
Exploits0References1
OSV
OSV
added 2024/11/08 6:15 a.m.6 views

DEBIAN-CVE-2024-50174

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fix race when converting group handle to group object XArray provides it's own internal lock which protects the internal array when entries are being simultaneously added and removed. However there is still a race...

4.7CVSS4.9AI score0.00187EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/10/26 3:2 a.m.7 views

SUSE CVE-2024-49865

In the Linux kernel, the following vulnerability has been resolved: drm/xe/vm: move xaalloc to prevent UAF Evil user can guess the next id of the vm before the ioctl completes and then call vm destroy ioctl to trigger UAF since create ioctl is still referencing the same vm. Move the xaalloc all t...

7CVSS7.7AI score0.00228EPSS
Exploits0References6
OSV
OSV
added 2024/10/21 6:15 p.m.6 views

UBUNTU-CVE-2024-49865

In the Linux kernel, the following vulnerability has been resolved: drm/xe/vm: move xaalloc to prevent UAF Evil user can guess the next id of the vm before the ioctl completes and then call vm destroy ioctl to trigger UAF since create ioctl is still referencing the same vm. Move the xaalloc all t...

7.8CVSS6.5AI score0.00228EPSS
Exploits0References19
OSV
OSV
added 2024/10/21 6:15 p.m.5 views

UBUNTU-CVE-2024-49876

In the Linux kernel, the following vulnerability has been resolved: drm/xe: fix UAF around queue destruction We currently do stuff like queuing the final destruction step on a random system wq, which will outlive the driver instance. With bad timing we can teardown the driver with one or more wor...

7.8CVSS6.5AI score0.00245EPSS
Exploits0References20
UbuntuCve
UbuntuCve
added 2024/08/17 10:15 a.m.31 views

CVE-2024-43834

In the Linux kernel, the following vulnerability has been resolved: xdp: fix invalid wait context of pagepooldestroy If the driver uses a page pool, it creates a page pool with pagepoolcreate. The reference count of page pool is 1 as default. A page pool will be destroyed only when a reference...

5.5CVSS6.2AI score0.00247EPSS
Exploits0References18
Debian CVE
Debian CVE
added 2024/08/17 9:21 a.m.41 views

CVE-2024-43834

In the Linux kernel, the following vulnerability has been resolved: xdp: fix invalid wait context of pagepooldestroy If the driver uses a page pool, it creates a page pool with pagepoolcreate. The reference count of page pool is 1 as default. A page pool will be destroyed only when a reference...

5.5CVSS5.4AI score0.00247EPSS
Exploits0
Rows per page
Query Builder