Lucene search

K
LinuxLinux Kernel

10926 matches found

CVE
CVE
added 2024/09/27 1:15 p.m.63 views

CVE-2024-46851

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid race between dcn10_set_drr() and dc_state_destruct() dc_state_destruct() nulls the resource context of the DC state. The pipecontext passed to dcn10_set_drr() is a member of this resource context. If dc_state...

4.7CVSS4.4AI score0.00065EPSS
CVE
CVE
added 2024/10/09 2:15 p.m.63 views

CVE-2024-46870

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Disable DMCUB timeout for DCN35 [Why]DMCUB can intermittently take longer than expected to process commands. Old ASIC policy was to continue while logging a diagnostic error - whichworks fine for ASIC without IPS, ...

4.7CVSS4.5AI score0.00027EPSS
CVE
CVE
added 2024/10/09 2:15 p.m.63 views

CVE-2024-47658

In the Linux kernel, the following vulnerability has been resolved: crypto: stm32/cryp - call finalize with bh disabled The finalize operation in interrupt mode produce a produces a spinlockrecursion warning. The reason is the fact that BH must be disabledduring this process.

5.5CVSS6.6AI score0.00039EPSS
CVE
CVE
added 2024/10/21 12:15 p.m.63 views

CVE-2024-47688

In the Linux kernel, the following vulnerability has been resolved: driver core: Fix a potential null-ptr-deref in module_add_driver() Inject fault while probing of-fpga-region, if kasprintf() fails inmodule_add_driver(), the second sysfs_remove_link() in exit path will causenull-ptr-deref as below...

5.5CVSS6.8AI score0.00048EPSS
CVE
CVE
added 2024/10/21 1:15 p.m.63 views

CVE-2024-47731

In the Linux kernel, the following vulnerability has been resolved: drivers/perf: Fix ali_drw_pmu driver interrupt status clearing The alibaba_uncore_pmu driver forgot to clear all interrupt statusin the interrupt processing function. After the PMU counter overflowinterrupt occurred, an interrupt s...

5.5CVSS5.2AI score0.00047EPSS
CVE
CVE
added 2024/11/05 5:15 p.m.63 views

CVE-2024-50091

In the Linux kernel, the following vulnerability has been resolved: dm vdo: don't refer to dedupe_context after releasing it Clear the dedupe_context pointer in a data_vio whenever ownership ofthe context is lost, so that vdo can't examine it accidentally.

5.5CVSS5.2AI score0.00034EPSS
CVE
CVE
added 2024/11/09 11:15 a.m.63 views

CVE-2024-50217

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free of block device file in __btrfs_free_extra_devids() Mounting btrfs from two images (which have the same one fsid and twodifferent dev_uuids) in certain executing order may trigger an UAF forvariable 'devic...

7.8CVSS7.5AI score0.00061EPSS
CVE
CVE
added 2024/11/19 2:16 a.m.63 views

CVE-2024-50289

In the Linux kernel, the following vulnerability has been resolved: media: av7110: fix a spectre vulnerability As warned by smatch:drivers/staging/media/av7110/av7110_ca.c:270 dvb_ca_ioctl() warn: potential spectre issue 'av7110->ci_slot' [w] (local cap) There is a spectre-related vulnerability ...

6.6AI score0.00054EPSS
CVE
CVE
added 2024/11/19 6:15 p.m.63 views

CVE-2024-53083

In the Linux kernel, the following vulnerability has been resolved: usb: typec: qcom-pmic: init value of hdr_len/txbuf_len earlier If the read of USB_PDPHY_RX_ACKNOWLEDGE_REG failed, then hdr_len andtxbuf_len are uninitialized. This commit stops to print uninitializedvalue and misleading/false data...

5.5CVSS6.4AI score0.00028EPSS
CVE
CVE
added 2024/11/21 7:15 p.m.63 views

CVE-2024-53092

In the Linux kernel, the following vulnerability has been resolved: virtio_pci: Fix admin vq cleanup by using correct info pointer vp_modern_avq_cleanup() and vp_del_vqs() clean up admin vqresources by virtio_pci_vq_info pointer. The info pointer of adminvq is stored in vp_dev->admin_vq.info ins...

5.5CVSS6.2AI score0.00034EPSS
CVE
CVE
added 2024/12/27 2:15 p.m.63 views

CVE-2024-53225

In the Linux kernel, the following vulnerability has been resolved: iommu/tegra241-cmdqv: Fix alignment failure at max_n_shift When configuring a kernel with PAGE_SIZE=4KB, depending on its setting ofCONFIG_CMA_ALIGNMENT, VCMDQ_LOG2SIZE_MAX=19 could fail the alignment testand trigger a WARN_ON:WARN...

6.4AI score0.00042EPSS
CVE
CVE
added 2025/02/27 2:15 a.m.63 views

CVE-2024-57978

In the Linux kernel, the following vulnerability has been resolved: media: imx-jpeg: Fix potential error pointer dereference in detach_pm() The proble is on the first line: if (jpeg->pd_dev[i] && !pm_runtime_suspended(jpeg->pd_dev[i])) If jpeg->pd_dev[i] is an error pointer, then passing i...

5.5CVSS5.4AI score0.00035EPSS
CVE
CVE
added 2025/01/21 1:15 p.m.63 views

CVE-2025-21657

In the Linux kernel, the following vulnerability has been resolved: sched_ext: Replace rq_lock() to raw_spin_rq_lock() in scx_ops_bypass() scx_ops_bypass() iterates all CPUs to re-enqueue all the scx tasks.For each CPU, it acquires a lock using rq_lock() regardless of whethera CPU is offline or the...

6.5AI score0.0004EPSS
CVE
CVE
added 2025/02/27 2:15 a.m.63 views

CVE-2025-21729

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: fix race between cancel_hw_scan and hw_scan completion The rtwdev->scanning flag isn't protected by mutex originally, socancel_hw_scan can pass the condition, but suddenly hw_scan completionunset the flag and calls ...

7.8CVSS6.5AI score0.00025EPSS
CVE
CVE
added 2025/03/27 3:15 p.m.63 views

CVE-2025-21884

In the Linux kernel, the following vulnerability has been resolved: net: better track kernel sockets lifetime While kernel sockets are dismantled during pernet_operations->exit(),their freeing can be delayed by any tx packets still held in qdiscor device queues, due to skb_set_owner_w() prior ca...

6.8AI score0.00025EPSS
CVE
CVE
added 2025/04/01 4:15 p.m.63 views

CVE-2025-21923

In the Linux kernel, the following vulnerability has been resolved: HID: hid-steam: Fix use-after-free when detaching device When a hid-steam device is removed it must clean up the client_hdev used forintercepting hidraw access. This can lead to scheduling deferred work toreattach the input device....

7.8CVSS7.2AI score0.00023EPSS
CVE
CVE
added 2025/04/16 3:15 p.m.63 views

CVE-2025-22039

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix overflow in dacloffset bounds check The dacloffset field was originally typed as int and used in anunchecked addition, which could overflow and bypass the existingbounds check in both smb_check_perm_dacl() and smb_inheri...

6.7AI score0.00034EPSS
CVE
CVE
added 2025/04/16 3:16 p.m.63 views

CVE-2025-22116

In the Linux kernel, the following vulnerability has been resolved: idpf: check error for register_netdev() on init Current init logic ignores the error code from register_netdev(),which will cause WARN_ON() on attempt to unregister it, if there was one,and there is no info for the user that the cr...

6.6AI score0.00044EPSS
CVE
CVE
added 2025/05/01 2:15 p.m.63 views

CVE-2025-37761

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix an out-of-bounds shift when invalidating TLB When the size of the range invalidated is larger thanrounddown_pow_of_two(ULONG_MAX),The function macro roundup_pow_of_two(length) will hit an out-of-boundsshift [1]. Use a f...

6.5AI score0.00025EPSS
CVE
CVE
added 2025/05/08 7:15 a.m.63 views

CVE-2025-37809

In the Linux kernel, the following vulnerability has been resolved: usb: typec: class: Fix NULL pointer access Concurrent calls to typec_partner_unlink_device can lead to a NULL pointerdereference. This patch adds a mutex to protect USB device pointers andprevent this issue. The same mutex protects...

5.3AI score0.00025EPSS
CVE
CVE
added 2025/05/09 7:16 a.m.63 views

CVE-2025-37864

In the Linux kernel, the following vulnerability has been resolved: net: dsa: clean up FDB, MDB, VLAN entries on unbind As explained in many places such as commit b117e1e8a86d ("net: dsa:delete dsa_legacy_fdb_add and dsa_legacy_fdb_del"), DSA is written giventhe assumption that higher layers have b...

6.5AI score0.00026EPSS
CVE
CVE
added 2025/05/20 11:15 a.m.63 views

CVE-2025-37892

In the Linux kernel, the following vulnerability has been resolved: mtd: inftlcore: Add error check for inftl_read_oob() In INFTL_findwriteunit(), the return value of inftl_read_oob()need to be checked. A proper implementation can befound in INFTL_deleteblock(). The status will be set asSECTOR_IGNO...

6.8AI score0.00049EPSS
CVE
CVE
added 2025/04/18 7:15 a.m.63 views

CVE-2025-38479

In the Linux kernel, the following vulnerability has been resolved: dmaengine: fsl-edma: free irq correctly in remove path Add fsl_edma->txirq/errirq check to avoid below warning because noerrirq at i.MX9 platform. Otherwise there will be kernel dump:WARNING: CPU: 0 PID: 11 at kernel/irq/devres....

6.5AI score0.00034EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.62 views

CVE-2002-0429

The iBCS routines in arch/i386/kernel/traps.c for Linux kernels 2.4.18 and earlier on x86 systems allow local users to kill arbitrary processes via a a binary compatibility interface (lcall).

3.6CVSS6AI score0.00078EPSS
CVE
CVE
added 2004/06/01 4:0 a.m.62 views

CVE-2004-0109

Buffer overflow in the ISO9660 file system component for Linux kernel 2.4.x, 2.5.x and 2.6.x, allows local users with physical access to overflow kernel memory and execute arbitrary code via a malformed CD containing a long symbolic link entry.

4.6CVSS6.6AI score0.00159EPSS
CVE
CVE
added 2005/01/10 5:0 a.m.62 views

CVE-2004-1016

The scm_send function in the scm layer for Linux kernel 2.4.x up to 2.4.28, and 2.6.x up to 2.6.9, allows local users to cause a denial of service (system hang) via crafted auxiliary messages that are passed to the sendmsg function, which causes a deadlock condition.

2.1CVSS7AI score0.00322EPSS
CVE
CVE
added 2006/05/31 10:0 a.m.62 views

CVE-2005-0489

The /proc handling (proc/base.c) Linux kernel 2.4 before 2.4.17 allows local users to cause a denial of service via unknown vectors that cause an invalid access of free memory.

4.9CVSS5.8AI score0.00079EPSS
CVE
CVE
added 2005/05/02 4:0 a.m.62 views

CVE-2005-0815

Multiple "range checking flaws" in the ISO9660 filesystem handler in Linux 2.6.11 and earlier may allow attackers to cause a denial of service or corrupt memory via a crafted filesystem.

6.4CVSS5.2AI score0.09342EPSS
CVE
CVE
added 2005/09/14 7:3 p.m.62 views

CVE-2005-2492

The raw_sendmsg function in the Linux kernel 2.6 before 2.6.13.1 allows local users to cause a denial of service (change hardware state) or read from arbitrary memory via crafted input.

3.6CVSS5.6AI score0.00071EPSS
CVE
CVE
added 2005/08/12 4:0 a.m.62 views

CVE-2005-2553

The find_target function in ptrace32.c in the Linux kernel 2.4.x before 2.4.29 does not properly handle a NULL return value from another function, which allows local users to cause a denial of service (kernel crash/oops) by running a 32-bit ltrace program with the -i option on a 64-bit executable p...

2.1CVSS5.5AI score0.0009EPSS
CVE
CVE
added 2005/09/30 10:5 a.m.62 views

CVE-2005-3109

The HFS and HFS+ (hfsplus) modules in Linux 2.6 allow attackers to cause a denial of service (oops) by using hfsplus to mount a filesystem that is not hfsplus.

2.1CVSS4.9AI score0.00071EPSS
CVE
CVE
added 2005/10/12 1:4 p.m.62 views

CVE-2005-3180

The Orinoco driver (orinoco.c) in Linux kernel 2.6.13 and earlier does not properly clear memory from a previously used packet whose length is increased, which allows remote attackers to obtain sensitive information.

5CVSS4.9AI score0.01881EPSS
CVE
CVE
added 2005/11/27 9:3 p.m.62 views

CVE-2005-3857

The time_out_leases function in locks.c for Linux kernel before 2.6.15-rc3 allows local users to cause a denial of service (kernel log message consumption) by causing a large number of broken leases, which is recorded to the log using the printk function.

4.9CVSS4.5AI score0.00295EPSS
CVE
CVE
added 2006/03/09 1:6 p.m.62 views

CVE-2006-0742

The die_if_kernel function in arch/ia64/kernel/unaligned.c in Linux kernel 2.6.x before 2.6.15.6, possibly when compiled with certain versions of gcc, has the "noreturn" attribute set, which allows local users to cause a denial of service by causing user faults on Itanium systems.

4.6CVSS6.9AI score0.00058EPSS
CVE
CVE
added 2006/08/21 7:4 p.m.62 views

CVE-2006-4145

The Universal Disk Format (UDF) filesystem driver in Linux kernel 2.6.17 and earlier allows local users to cause a denial of service (hang and crash) via certain operations involving truncated files, as demonstrated via the dd command.

4.9CVSS6.8AI score0.00122EPSS
CVE
CVE
added 2006/09/19 7:7 p.m.62 views

CVE-2006-4535

The Linux kernel 2.6.17.10 and 2.6.17.11 and 2.6.18-rc5 allows local users to cause a denial of service (crash) via an SCTP socket with a certain SO_LINGER value, possibly related to the patch for CVE-2006-3745. NOTE: older kernel versions for specific Linux distributions are also affected, due to ...

4.9CVSS7.1AI score0.00131EPSS
CVE
CVE
added 2007/03/02 9:18 p.m.62 views

CVE-2007-1217

Buffer overflow in the bufprint function in capiutil.c in libcapi, as used in Linux kernel 2.6.9 to 2.6.20 and isdn4k-utils, allows local users to cause a denial of service (crash) and possibly gain privileges via a crafted CAPI packet.

6.9CVSS6.1AI score0.0011EPSS
CVE
CVE
added 2007/08/13 7:17 p.m.62 views

CVE-2007-3851

The drm/i915 component in the Linux kernel before 2.6.22.2, when used with i965G and later chipsets, allows local users with access to an X11 session and Direct Rendering Manager (DRM) to write to arbitrary memory locations and gain privileges via a crafted batchbuffer.

6CVSS6AI score0.00086EPSS
CVE
CVE
added 2008/06/30 10:41 p.m.62 views

CVE-2008-2729

arch/x86_64/lib/copy_user.S in the Linux kernel before 2.6.19 on some AMD64 systems does not erase destination memory locations after an exception during kernel memory copy, which allows local users to obtain sensitive information.

4.9CVSS7AI score0.00063EPSS
CVE
CVE
added 2008/12/09 12:30 a.m.62 views

CVE-2008-5395

The parisc_show_stack function in arch/parisc/kernel/traps.c in the Linux kernel before 2.6.28-rc7 on PA-RISC allows local users to cause a denial of service (system crash) via vectors associated with an attempt to unwind a stack that contains userspace addresses.

4.9CVSS5.7AI score0.0006EPSS
CVE
CVE
added 2009/08/14 3:16 p.m.62 views

CVE-2009-2767

The init_posix_timers function in kernel/posix-timers.c in the Linux kernel before 2.6.31-rc6 allows local users to cause a denial of service (OOPS) or possibly gain privileges via a CLOCK_MONOTONIC_RAW clock_nanosleep call that triggers a NULL pointer dereference.

7.2CVSS7.3AI score0.00132EPSS
CVE
CVE
added 2010/01/27 5:30 p.m.62 views

CVE-2009-3556

A certain Red Hat configuration step for the qla2xxx driver in the Linux kernel 2.6.18 on Red Hat Enterprise Linux (RHEL) 5, when N_Port ID Virtualization (NPIV) hardware is used, sets world-writable permissions for the (1) vport_create and (2) vport_delete files under /sys/class/scsi_host/, which ...

1.9CVSS7AI score0.00029EPSS
CVE
CVE
added 2010/03/31 6:0 p.m.62 views

CVE-2010-1187

The Transparent Inter-Process Communication (TIPC) functionality in Linux kernel 2.6.16-rc1 through 2.6.33, and possibly other versions, allows local users to cause a denial of service (kernel OOPS) by sending datagrams through AF_TIPC before entering network mode, which triggers a NULL pointer der...

4.9CVSS6.3AI score0.00066EPSS
CVE
CVE
added 2010/12/29 6:0 p.m.62 views

CVE-2010-4343

drivers/scsi/bfa/bfa_core.c in the Linux kernel before 2.6.35 does not initialize a certain port data structure, which allows local users to cause a denial of service (system crash) via read operations on an fc_host statistics file.

5.5CVSS4.9AI score0.00073EPSS
CVE
CVE
added 2011/02/23 7:0 p.m.62 views

CVE-2011-0999

mm/huge_memory.c in the Linux kernel before 2.6.38-rc5 does not prevent creation of a transparent huge page (THP) during the existence of a temporary stack for an exec system call, which allows local users to cause a denial of service (memory consumption) or possibly have unspecified other impact v...

4.9CVSS7.3AI score0.00113EPSS
CVE
CVE
added 2012/05/24 11:55 p.m.62 views

CVE-2011-2521

The x86_assign_hw_event function in arch/x86/kernel/cpu/perf_event.c in the Performance Events subsystem in the Linux kernel before 2.6.39 does not properly calculate counter values, which allows local users to cause a denial of service (panic) via the perf program.

4.9CVSS5.1AI score0.00063EPSS
CVE
CVE
added 2013/02/18 11:56 a.m.62 views

CVE-2012-5375

The CRC32C feature in the Btrfs implementation in the Linux kernel before 3.8-rc1 allows local users to cause a denial of service (prevention of file creation) by leveraging the ability to write to a directory important to the victim, and creating a file with a crafted name that is associated with ...

4CVSS5.8AI score0.0008EPSS
CVE
CVE
added 2013/03/22 11:59 a.m.62 views

CVE-2013-1826

The xfrm_state_netlink function in net/xfrm/xfrm_user.c in the Linux kernel before 3.5.7 does not properly handle error conditions in dump_one_state function calls, which allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) by leveraging the...

6.2CVSS5.4AI score0.00098EPSS
CVE
CVE
added 2013/04/22 11:41 a.m.62 views

CVE-2013-3227

The caif_seqpkt_recvmsg function in net/caif/caif_socket.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call.

4.9CVSS5.2AI score0.00073EPSS
CVE
CVE
added 2013/09/25 10:31 a.m.62 views

CVE-2013-4300

The scm_check_creds function in net/core/scm.c in the Linux kernel before 3.11 performs a capability check in an incorrect namespace, which allows local users to gain privileges via PID spoofing.

7.2CVSS5.9AI score0.00042EPSS
Total number of security vulnerabilities10926