Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

334 matches found

OSV
OSVadded 2024/07/12 1:15 p.m.1 views

DEBIAN-CVE-2024-40900

In the Linux kernel, the following vulnerability has been resolved: cachefiles: remove requests from xarray during flushing requests Even with CACHEFILESDEAD set, we can still read the requests, so in the following concurrency the request may be used after it has been freed: mount | daemonthread1...

7.8CVSS6AI score0.00015EPSS
Exploits0References1
OSV
OSVadded 2024/07/12 1:15 p.m.0 views

UBUNTU-CVE-2024-40900

In the Linux kernel, the following vulnerability has been resolved: cachefiles: remove requests from xarray during flushing requests Even with CACHEFILESDEAD set, we can still read the requests, so in the following concurrency the request may be used after it has been freed: mount | daemonthread1...

7.8CVSS6.3AI score0.00015EPSS
Exploits0References14
Vulnrichment
Vulnrichmentadded 2024/07/12 12:20 p.m.17 views

CVE-2024-40900 cachefiles: remove requests from xarray during flushing requests

In the Linux kernel, the following vulnerability has been resolved: cachefiles: remove requests from xarray during flushing requests Even with CACHEFILESDEAD set, we can still read the requests, so in the following concurrency the request may be used after it has been freed: mount | daemonthread1...

6.6AI score0.00015EPSS
Exploits0References4
OSV
OSVadded 2024/07/12 12:20 p.m.12 views

CVE-2024-40899 cachefiles: fix slab-use-after-free in cachefiles_ondemand_get_fd()

In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix slab-use-after-free in cachefilesondemandgetfd We got the following issue in a fuzz test of randomly issuing the restore command: ================================================================== BUG: KASAN:...

7.8CVSS6.2AI score0.00015EPSS
Exploits0References8
Cvelist
Cvelistadded 2024/07/12 12:20 p.m.22 views

CVE-2024-40899 cachefiles: fix slab-use-after-free in cachefiles_ondemand_get_fd()

In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix slab-use-after-free in cachefilesondemandgetfd We got the following issue in a fuzz test of randomly issuing the restore command: ================================================================== BUG: KASAN:...

0.00015EPSS
Exploits0References4
CNNVD
CNNVDadded 2024/07/12 12:0 a.m.1 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure of the cachefiles component to remove requests from the xarray when refreshing them, which could...

7.8CVSS8.2AI score0.00015EPSS
Exploits0References6
RedhatCVE
RedhatCVEadded 2024/06/20 1:52 p.m.21 views

CVE-2022-48726

In the Linux kernel, the following vulnerability has been resolved: RDMA/ucma: Protect mc during concurrent multicast leaves Partially revert the commit mentioned in the Fixes line to make sure that allocation and erasing multicast struct are locked. BUG: KASAN: use-after-free in...

4.4CVSS7AI score0.00019EPSS
Exploits0References4
NVD
NVDadded 2024/06/20 12:15 p.m.11 views

CVE-2022-48726

In the Linux kernel, the following vulnerability has been resolved: RDMA/ucma: Protect mc during concurrent multicast leaves Partially revert the commit mentioned in the Fixes line to make sure that allocation and erasing multicast struct are locked. BUG: KASAN: use-after-free in...

7.8CVSS0.00019EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2024/06/20 11:13 a.m.12 views

CVE-2022-48726 RDMA/ucma: Protect mc during concurrent multicast leaves

In the Linux kernel, the following vulnerability has been resolved: RDMA/ucma: Protect mc during concurrent multicast leaves Partially revert the commit mentioned in the Fixes line to make sure that allocation and erasing multicast struct are locked. BUG: KASAN: use-after-free in...

6.8AI score0.00019EPSS
Exploits0References4
CVE
CVEadded 2024/06/20 11:13 a.m.65 views

CVE-2022-48726

CVE-2022-48726 affects the Linux kernel’s RDMA/ucma code path, specifically a use-after-free in ucma_cleanup_multicast and related flows (ucma_destroy_private_ctx, ucma_write) caused by touching a concurrently freed multicast structure during a multicast leaves operation. The description notes th...

7.8CVSS8.4AI score0.00019EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2024/06/20 11:13 a.m.18 views

CVE-2022-48726 RDMA/ucma: Protect mc during concurrent multicast leaves

In the Linux kernel, the following vulnerability has been resolved: RDMA/ucma: Protect mc during concurrent multicast leaves Partially revert the commit mentioned in the Fixes line to make sure that allocation and erasing multicast struct are locked. BUG: KASAN: use-after-free in...

0.00019EPSS
Exploits0References4
OSV
OSVadded 2024/06/20 11:13 a.m.12 views

CVE-2022-48726 RDMA/ucma: Protect mc during concurrent multicast leaves

In the Linux kernel, the following vulnerability has been resolved: RDMA/ucma: Protect mc during concurrent multicast leaves Partially revert the commit mentioned in the Fixes line to make sure that allocation and erasing multicast struct are locked. BUG: KASAN: use-after-free in...

7.8CVSS5.8AI score0.00019EPSS
Exploits0References7
RedhatCVE
RedhatCVEadded 2024/05/23 11:7 a.m.19 views

CVE-2021-47481

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Initialize the ODP xarray when creating an ODP MR Normally the zero fill would hide the missing initialization, but an errant set to descsize in regcreate causes a crash: BUG: unable to handle page fault for address:...

4.4CVSS6.3AI score0.00031EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2024/05/22 11:5 a.m.16 views

CVE-2021-47365

A vulnerability was found in the afsextendwriteback function in the Linux kernel’s AFS module. A loop designed to enhance write efficiency can leak memory caused by the removal of the cleanup loop when the code switches from using findgetpagescontig to xarray scanning, as the latter only gets a...

5.5CVSS9.1AI score0.00014EPSS
Exploits0References4
NVD
NVDadded 2024/05/22 9:15 a.m.17 views

CVE-2021-47481

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Initialize the ODP xarray when creating an ODP MR Normally the zero fill would hide the missing initialization, but an errant set to descsize in regcreate causes a crash: BUG: unable to handle page fault for address:...

5.5CVSS6.3AI score0.00031EPSS
Exploits0References2
OSV
OSVadded 2024/05/22 9:15 a.m.11 views

CVE-2021-47481

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Initialize the ODP xarray when creating an ODP MR Normally the zero fill would hide the missing initialization, but an errant set to descsize in regcreate causes a crash: BUG: unable to handle page fault for address:...

5.5CVSS6.2AI score
Exploits0References2
Cvelist
Cvelistadded 2024/05/22 8:19 a.m.22 views

CVE-2021-47481 RDMA/mlx5: Initialize the ODP xarray when creating an ODP MR

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Initialize the ODP xarray when creating an ODP MR Normally the zero fill would hide the missing initialization, but an errant set to descsize in regcreate causes a crash: BUG: unable to handle page fault for address:...

6.2AI score0.00031EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/05/22 8:19 a.m.16 views

CVE-2021-47481 RDMA/mlx5: Initialize the ODP xarray when creating an ODP MR

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Initialize the ODP xarray when creating an ODP MR Normally the zero fill would hide the missing initialization, but an errant set to descsize in regcreate causes a crash: BUG: unable to handle page fault for address:...

6.6AI score0.00031EPSS
Exploits0References2
CVE
CVEadded 2024/05/22 8:19 a.m.76 views

CVE-2021-47481

CVE-2021-47481 concerns the Linux kernel RDMA mlx5 path. The connected sources confirm a concrete flaw where the ODP xarray was not initialized when creating an ODP MR, allowing an out-of-bounds/invalid access that triggers a crash (page fault) due to reg_create() setting a desc_size. The fix des...

5.5CVSS6.5AI score0.00031EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVEadded 2024/05/22 8:19 a.m.16 views

CVE-2021-47481

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Initialize the ODP xarray when creating an ODP MR Normally the zero fill would hide the missing initialization, but an errant set to descsize in regcreate causes a crash: BUG: unable to handle page fault for address:...

5.5CVSS6.4AI score0.00031EPSS
Exploits0
Rows per page
Query Builder