Lucene search
K

213680 matches found

Prion
Prion
added 2024/03/02 10:15 p.m.19 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: mm/slabcommon: fix slabcaches list corruption after kmemcachedestroy After the commit in Fixes:, if a module that created a slab cache does not release all of its allocated objects before destroying the cache at rmmod time, we...

7.4AI score0.00222EPSS
Exploits0References3
Prion
Prion
added 2024/03/02 10:15 p.m.19 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: HID: intel-ish-hid: ipc: Disable and reenable ACPI GPE bit The EHL Elkhart Lake based platforms provide a OOB Out of band service, which allows to wakup device when the system is in S5 Soft-Off state. This OOB service can be...

7.2AI score0.00233EPSS
Exploits0References4
Prion
Prion
added 2024/03/02 10:15 p.m.17 views

Path traversal

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential use after free in nilfsgccachesubmitreaddata In nilfsgccachesubmitreaddata, brelsebh is called to drop the reference count of bh when the call to nilfsdattranslate fails. If the reference count hits 0 and it...

7.8AI score0.00222EPSS
Exploits0References8
Prion
Prion
added 2024/03/02 10:15 p.m.15 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: netfs: Only call foliostartfscache one time for each folio If a network filesystem using netfs implements a clamplength function, it can set subrequest lengths smaller than a page size. When we loop through the folios in...

7.2AI score0.00225EPSS
Exploits0References3
Prion
Prion
added 2024/03/02 10:15 p.m.22 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: ceph: drop messages from MDS when unmounting When unmounting all the dirty buffers will be flushed and after the last osd request is finished the last reference of the icount will be released. Then it will flush the dirty cap/sna...

7AI score0.00237EPSS
Exploits0References3
Prion
Prion
added 2024/03/02 10:15 p.m.16 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: net: nfc: llcp: Add lock when modifying device list The device list needs its associated lock held when modifying it, or the list could become corrupted, as syzbot discovered...

7.4AI score0.00183EPSS
Exploits0References6
Prion
Prion
added 2024/03/02 10:15 p.m.20 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: dccp: fix dccpv4err/dccpv6err again dh-dccphx is the 9th byte offset 8 in "struct dccphdr", not in the "byte 7" as Jann claimed. We need to make sure the ICMP messages are big enough, using more standard ways no more assumptions...

7.3AI score0.00229EPSS
Exploits0References7
Prion
Prion
added 2024/03/02 10:15 p.m.15 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: power: supply: rk817: Fix node refcount leak Dan Carpenter reports that the Smatch static checker warning has found that there is another refcount leak in the probe function. While ofnodeput was added in one of the return paths, ...

7.4AI score0.0023EPSS
Exploits0References3
Prion
Prion
added 2024/03/02 10:15 p.m.21 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Avoid memory allocation in iommususpend The iommususpend syscore suspend callback is invoked with IRQ disabled. Allocating memory with the GFPKERNEL flag may re-enable IRQs during the suspend callback, which can cause...

7.2AI score0.00224EPSS
Exploits0References4
Prion
Prion
added 2024/03/02 10:15 p.m.23 views

Design/Logic Flaw

In the Linux kernel, the following vulnerability has been resolved: Revert "tty: ngsm: fix UAF in gsmcleanupmux" This reverts commit 9b9c8195f3f0d74a826077fc1c01b9ee74907239. The commit above is reverted as it did not solve the original issue. gsmcleanupmux tries to free up the virtual ttys by...

7.2AI score0.00237EPSS
Exploits0References5
Prion
Prion
added 2024/03/02 10:15 p.m.15 views

Null pointer dereference

In the Linux kernel, the following vulnerability has been resolved: net: rds: Fix possible NULL-pointer dereference In rdsrdmacmeventhandlercmn check, if conn pointer exists before dereferencing it as rdmasetservicetype argument Found by Linux Verification Center linuxtesting.org with SVACE...

7.4AI score0.00226EPSS
Exploits0References6
Prion
Prion
added 2024/03/02 10:15 p.m.23 views

Null pointer dereference

In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Resolves SECS reclaim vs. page fault for EAUG race The SGX EPC reclaimer ksgxd may reclaim the SECS EPC page for an enclave and set secs.epcpage to NULL. The SECS page is used for EAUG and ELDU in the SGX page fault...

7.1AI score0.00225EPSS
Exploits0References3
Prion
Prion
added 2024/03/02 10:15 p.m.23 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: mm: hugememory: don't force huge page alignment on 32 bit commit efa7df3e3bb5 "mm: align larger anonymous mappings on THP boundaries" caused two issues 1 2 reported on 32 bit system or compat userspace. It doesn't make too much...

7.2AI score0.00277EPSS
Exploits0References3
Prion
Prion
added 2024/03/02 10:15 p.m.12 views

Open redirect

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

6.8AI score
Exploits0
Prion
Prion
added 2024/03/02 10:15 p.m.17 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: ipv4, ipv6: Fix handling of transhdrlen in ip,6appenddata Including the transhdrlen in length is a problem when the packet is partially filled e.g. something like sendMSGMORE happened previously when appending to an IPv4 or IPv6...

7.3AI score0.00226EPSS
Exploits0References8
Prion
Prion
added 2024/03/02 10:15 p.m.19 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: x86/mm, kexec, ima: Use memblockfreelate from imafreekexecbuffer The code calling imafreekexecbuffer runs long after the memblock allocator has already been torn down, potentially resulting in a use after free in...

7.7AI score0.00219EPSS
Exploits0References3
Prion
Prion
added 2024/03/02 10:15 p.m.16 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: x86/srso: Fix SBPB enablement for specrstackoverflow=off If the user has requested no SRSO mitigation, other mitigations can use the lighter-weight SBPB instead of IBPB...

7.5AI score
Exploits0References5
Prion
Prion
added 2024/03/02 10:15 p.m.20 views

Design/Logic Flaw

In the Linux kernel, the following vulnerability has been resolved: phy: lynx-28g: serialize concurrent physetmodeext calls to shared registers The protocol converter configuration registers PCC8, PCCC, PCCD implemented by the driver, as well as others, control protocol converters from multiple...

7.6AI score0.00168EPSS
Exploits0References3
Prion
Prion
added 2024/03/02 10:15 p.m.17 views

Null pointer dereference

In the Linux kernel, the following vulnerability has been resolved: serial: 8250port: Check IRQ data before use In case the leaf driver wants to use IRQ polling irq = 0 and IIR register shows that an interrupt happened in the 8250 hardware the IRQ data can be NULL. In such a case we need to skip...

7.2AI score0.00226EPSS
Exploits0References8
Prion
Prion
added 2024/03/02 10:15 p.m.17 views

Design/Logic Flaw

In the Linux kernel, the following vulnerability has been resolved: net: nfc: fix races in nfcllcpsockget and nfcllcpsockgetsn Sili Luo reported a race in nfcllcpsockget, leading to UAF. Getting a reference on the socket found in a lookup while holding a lock should happen before releasing the...

7.3AI score0.00173EPSS
Exploits0References7
Prion
Prion
added 2024/03/02 10:15 p.m.20 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: vfio/mdev: Fix a null-ptr-deref bug for mdevunregisterparent Inject fault while probing mdpy.ko, if kstrdup of createdir fails in kobjectaddinternal in kobjectinitandadd in mdevtypeadd in parentcreatesysfsfiles, it will return 0...

7.6AI score0.00222EPSS
Exploits0References3
Prion
Prion
added 2024/03/02 10:15 p.m.23 views

Null pointer dereference

In the Linux kernel, the following vulnerability has been resolved: nvme-fc: Prevent null pointer dereference in nvmefciogetuuid The nvmefcfcpop structure describing an AEN operation is initialized with a null request structure pointer. An FC LLDD may make a call to nvmefciogetuuid passing a...

7.3AI score0.00225EPSS
Exploits0References3
Prion
Prion
added 2024/03/02 10:15 p.m.28 views

Design/Logic Flaw

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcicodec: Fix leaking content of localcodecs The following memory leak can be observed when the controller supports codecs which are stored in localcodecs list but the elements are never freed: unreferenced object...

7AI score0.00238EPSS
Exploits0References3
Prion
Prion
added 2024/03/02 10:15 p.m.29 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: net: usb: smsc75xx: Fix uninit-value access in smsc75xxreadreg syzbot reported the following uninit-value access issue: ===================================================== BUG: KMSAN: uninit-value in smsc75xxwaitready...

7.3AI score0.00228EPSS
Exploits0References8
Prion
Prion
added 2024/03/02 10:15 p.m.27 views

Design/Logic Flaw

In the Linux kernel, the following vulnerability has been resolved: net: bridge: use DEVSTATSINC syzbot/KCSAN reported data-races in brhandleframefinish 1 This function can run from multiple cpus without mutual exclusion. Adopt SMP safe DEVSTATSINC to update dev-stats fields. Handles updates to...

7.3AI score0.0019EPSS
Exploits0References7
Prion
Prion
added 2024/03/02 10:15 p.m.18 views

Design/Logic Flaw

In the Linux kernel, the following vulnerability has been resolved: net/core: Fix ETHP1588 flow dissector When a PTP ethernet raw frame with a size of more than 256 bytes followed by a 0xff pattern is sent to skbflowdissect, nhoff value calculation is wrong. For example: hdr-messagelength takes t...

7.2AI score0.00225EPSS
Exploits0References4
Prion
Prion
added 2024/03/02 10:15 p.m.29 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: net: fix possible store tearing in neighperiodicwork While looking at a related syzbot report involving neighperiodicwork, I found that I forgot to add an annotation when deleting an RCU protected item from a list. Readers use...

7.3AI score0.00228EPSS
Exploits0References6
Prion
Prion
added 2024/03/02 10:15 p.m.19 views

Null pointer dereference

In the Linux kernel, the following vulnerability has been resolved: team: fix null-ptr-deref when team device type is changed Get a null-ptr-deref bug as follows with reproducer 1. BUG: kernel NULL pointer dereference, address: 0000000000000228 ... RIP: 0010:vlandevhardheader+0x35/0x140 8021q...

7.2AI score0.00228EPSS
Exploits0References8
Prion
Prion
added 2024/03/02 10:15 p.m.25 views

Design/Logic Flaw

In the Linux kernel, the following vulnerability has been resolved: spi: sun6i: fix race between DMA RX transfer completion and RX FIFO drain Previously the transfer complete IRQ immediately drained to RX FIFO to read any data remaining in FIFO to the RX buffer. This behaviour is correct when...

7.3AI score0.0018EPSS
Exploits0References4
Prion
Prion
added 2024/03/02 10:15 p.m.18 views

Buffer overflow

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: fix memleak when more than 255 elements expired When more than 255 elements expired we're supposed to switch to a new gc container structure. This never happens: u8 type will wrap before reaching the boundary...

7.3AI score0.00255EPSS
Exploits0References2
Prion
Prion
added 2024/03/02 10:15 p.m.22 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: platform/x86: think-lmi: Fix reference leak If a duplicate attribute is found using ksetfindobj, a reference to that attribute is returned which needs to be disposed accordingly using kobjectput. Move the setting name validation...

7.6AI score0.00239EPSS
Exploits0References4
Prion
Prion
added 2024/03/02 10:15 p.m.17 views

Null pointer dereference

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Reject skmsg egress redirects to non-TCP sockets With a SOCKMAP/SOCKHASH map and an skmsg program user can steer messages sent from one TCP socket s1 to actually egress from another TCP socket s2: tcpbpfsendmsgs1 //...

7.2AI score0.00225EPSS
Exploits0References4
Prion
Prion
added 2024/03/02 10:15 p.m.17 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix TX CQE error handling For an unknown TX CQE error type probably from a newer hardware, still free the SKB, update the queue tail, etc., otherwise the accounting will be wrong. Also, TX errors can be triggered by...

7.4AI score0.0023EPSS
Exploits0References3
Prion
Prion
added 2024/03/02 10:15 p.m.15 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: ravb: Fix use-after-free issue in ravbtxtimeoutwork The ravbstop should call cancelworksync. Otherwise, ravbtxtimeoutwork is possible to use the freed priv after ravbremove was called like below: CPU0 CPU1 ravbtxtimeout ravbremov...

7.4AI score0.00242EPSS
Exploits0References6
Prion
Prion
added 2024/03/02 10:15 p.m.22 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix oob check condition in mwifiexprocessrxpacket Only skip the code path trying to access the rfc1042 headers when the buffer is too small, so the driver can still process packets without rfc1042 headers...

7.5AI score0.00236EPSS
Exploits0References7
Prion
Prion
added 2024/03/02 10:15 p.m.13 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: spi: sun6i: reduce DMA RX transfer width to single byte Through empirical testing it has been determined that sometimes RX SPI transfers with DMA enabled return corrupted data. This is down to single or even multiple bytes lost...

7.2AI score0.00805EPSS
Exploits0References4
Prion
Prion
added 2024/03/02 10:15 p.m.12 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Avoid leaking tags when processing OPCINBSETCONTROLLERCONFIG command Tags allocated for OPCINBSETCONTROLLERCONFIG command need to be freed when we receive the response...

7.5AI score0.00229EPSS
Exploits0References5
Prion
Prion
added 2024/03/02 10:15 p.m.18 views

Design/Logic Flaw

In the Linux kernel, the following vulnerability has been resolved: dma-debug: don't call dmaentryalloccheckleak under freeentrieslock dmaentryalloccheckleak calls into printk - serial console output qcom geni and grabs port-lock under freeentrieslock spin lock, which is a reverse locking...

7.6AI score0.00171EPSS
Exploits0References5
Prion
Prion
added 2024/03/02 10:15 p.m.24 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: RDMA/srp: Do not call scsidone from srpabort After scmdehaborthandler has called the SCSI LLD ehaborthandler callback, it performs one of the following actions: Call scsiqueueinsert. Call scsifinishcommand. Call scsiehscmdadd...

7.5AI score0.0023EPSS
Exploits0References5
Prion
Prion
added 2024/03/02 10:15 p.m.14 views

Design/Logic Flaw

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fix OOB read If the index provided by the user is bigger than the mask size, we might do an out of bound read...

7.5AI score0.00233EPSS
Exploits0References3
Prion
Prion
added 2024/03/02 10:15 p.m.25 views

Race condition

In the Linux kernel, the following vulnerability has been resolved: tee: amdtee: fix use-after-free vulnerability in amdteeclosesession There is a potential race condition in amdteeclosesession that may cause use-after-free in amdteeopensession. For instance, if a session has refcount == 1, and o...

7.4AI score0.00258EPSS
Exploits0References5
Prion
Prion
added 2024/03/02 10:15 p.m.14 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: erofs: fix memory leak of LZMA global compressed deduplication When stressing microLZMA EROFS images with the new global compressed deduplication feature enabled -Ededupe, I found some short-lived temporary pages weren't properly...

7.4AI score0.00222EPSS
Exploits0References3
Prion
Prion
added 2024/03/02 10:15 p.m.24 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: powerpc/47x: Fix 47x syscall return crash Eddie reported that newer kernels were crashing during boot on his 476 FSP2 system: kernel tried to execute user page b7ee2000 - exploit attempt? uid: 0 BUG: Unable to handle kernel...

7.6AI score0.00222EPSS
Exploits0References4
Prion
Prion
added 2024/03/02 10:15 p.m.20 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: HID: sony: Fix a potential memory leak in sonyprobe If an error occurs after a successful usballocurb call, usbfreeurb should be called...

7.3AI score0.00228EPSS
Exploits0References4
Prion
Prion
added 2024/03/02 10:15 p.m.24 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix connection failure handling In case immediate MPA request processing fails, the newly created endpoint unlinks the listening endpoint and is ready to be dropped. This special case was not handled correctly by the co...

7.4AI score0.0023EPSS
Exploits0References6
Prion
Prion
added 2024/03/02 10:15 p.m.15 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Do not attempt to read past "commit" When iterating over the ring buffer while the ring buffer is active, the writer can corrupt the reader. There's barriers to help detect this and handle it, but that code missed th...

7.4AI score0.0023EPSS
Exploits0References5
Prion
Prion
added 2024/03/02 10:15 p.m.26 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: nfc: nci: assert requested protocol is valid The protocol is used in a bit mask to determine if the protocol is supported. Assert the provided protocol is less than the maximum defined so it doesn't potentially perform a...

7.3AI score0.00237EPSS
Exploits0References8
Prion
Prion
added 2024/03/02 10:15 p.m.9 views

Open redirect

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

6.8AI score
Exploits0
Prion
Prion
added 2024/03/02 1:15 p.m.14 views

Cross site scripting

The Ultimate Bootstrap Elements for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘headingtitletag’ and ’headingsubtitletag’ parameters in all versions up to, and including, 1.3.6 due to insufficient input sanitization and output escaping. This makes it...

5.5CVSS6.1AI score0.0051EPSS
Exploits0References3
Prion
Prion
added 2024/03/02 12:16 p.m.28 views

Cross site scripting

The Master Slider – Responsive Touch Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's msslide shortcode in all versions up to, and including, 3.9.5 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possib...

5.5CVSS6.1AI score0.00433EPSS
Exploits0References2
Total number of security vulnerabilities213680