Lucene search
K
LinuxLinux Kernel5.15.0

6 matches found

CVE
CVE
•added 2024/02/22 4:21 p.m.•1563 views

CVE-2024-26592

CVE-2024-26592 is a Linux kernel vulnerability in ksmbd where a race between handling a new TCP connection and its disconnection can cause a use-after-free on ksmbd_tcp_new_connection()’s tcp_transport. The issue is fixed in the kernel code path that manages new connections for ksmbd, eliminating...

7.8CVSS7.4AI score0.00828EPSS
CVE
CVE
•added 2024/02/27 9:43 a.m.•665 views

CVE-2021-46927

CVE-2021-46927 concerns Linux kernel Nitro Enclaves memory mapping. After commit 5b78ed24e8ec, a call to get_user_pages() can trigger an mmap assertion when setting enclave memory regions. The fix switches to get_user_pages_unlocked() for enclave memory region setup, mirroring patterns like mmap_...

5.5CVSS5.9AI score0.00149EPSS
CVE
CVE
•added 2024/02/21 7:21 a.m.•622 views

CVE-2023-52441

CVE-2023-52441 affects the Linux kernel ksmbd path and is resolved by a patch that fixes an out-of-bounds condition in init_smb2_rsp_hdr(). When a client sends an SMB2 negotiate request followed by an SMB1 negotiate request, init_smb2_rsp_hdr is invoked for the SMB1 path because need_neg is false...

7.8CVSS8.4AI score0.00378EPSS
CVE
CVE
•added 2024/02/27 9:44 a.m.•526 views

CVE-2021-46937

The connected Nessus entry confirms CVE-2021-46937 affects the Linux kernel DAMON debugfs interface: repeated writes to the target_ids file increase pid reference counts without corresponding decreases, causing a memory leak of struct pid. The issue is fixed by a kernel patch that decrements PID ...

5.5CVSS6.1AI score0.00222EPSS
CVE
CVE
•added 2023/01/05 12:0 a.m.•498 views

CVE-2022-4378

CVE-2022-4378 is a Linux kernel stack overflow flaw in the SYSCTL subsystem triggered by how a user changes certain kernel parameters, allowing a local user to crash the system or potentially escalate privileges. Public advisories (ALSA and CloudLinux entries) confirm the issue affects stack over...

7.8CVSS7.6AI score0.00428EPSS
CVE
CVE
•added 2023/05/25 1:22 p.m.•488 views

CVE-2023-0459

CVE-2023-0459: Linux kernel on 64-bit systems is affected by a local elevation of information disclosure due to Copy_from_user bypassing __uaccess_begin_nospec, bypassing access_ok and allowing a user to pass a kernel pointer to copy_from_user. Root cause is the __uaccess_begin_nospec handling. I...

6.5CVSS6.4AI score0.00635EPSS