Lucene search
K
LinuxLinux Kernel5.15.162

8 matches found

CVE
CVE
•added 2025/02/12 1:27 p.m.•182 views

CVE-2025-21694

CVE-2025-21694 : Linux kernel vulnerability in fs/proc/__read_vmcore (kdump path). Root cause: second loop in __read_vmcore could still hit softlockups; fix adds cond_resched() to yield in that loop. Impact: softlockups may interfere with RCU memory freeing and cause crashdump stalls in memory-co...

5.5CVSS6.6AI score0.00216EPSS
CVE
CVE
•added 2024/10/21 6:2 p.m.•166 views

CVE-2024-49977

The CVE-2024-49977 entry concerns a Linux kernel vulnerability in the net: stmmac pathway where port_transmit_rate_kbps could be set to 0, passed to div_s64 when tc-cbs is disabled, causing a zero-division error. The connected Astra Linux and CIRCL sources reproduce the same description and fix d...

5.5CVSS5.2AI score0.00247EPSS
CVE
CVE
•added 2024/11/08 5:38 a.m.•163 views

CVE-2024-50186

CVE-2024-50186 : Linux kernel vulnerability in net: explicitly clear the sk pointer when pf->create fails. Root cause: some pf->create implementations do not NULL the freed sk object in error paths, leaving a dangling pointer and enabling Use-After-Free. Fix: explicitly NULL the sk pointer ...

7.8CVSS6.4AI score0.00231EPSS
CVE
CVE
•added 2025/04/01 3:40 p.m.•148 views

CVE-2025-21916

CVE-2025-21916 is part of Unity Linux/Fedora kernel advisories describing a fix for a flaw in USB ATM CXACRU endpoint checking. The root cause was insufficient verification of USB endpoint addresses in cxacru_bind(), leading to incorrect URB handling (e.g., bogus urb xfers). The mitigation is to ...

5.5CVSS7.1AI score0.002EPSS
CVE
CVE
•added 2024/08/17 8:54 a.m.•135 views

CVE-2024-42272

The connected IBM Security Bulletin confirms CVE-2024-42272 as a Linux kernel issue fixed in sched: act_ct. The root cause was the padding in zones_ht_key after a patch widened the rhashtable key from 2 to 16 bytes; rhashtable_lookup() could read uninitialized padding bytes. The fix ensures paddi...

5.5CVSS6.5AI score0.00233EPSS
CVE
CVE
•added 2025/01/15 1:10 p.m.•126 views

CVE-2024-57841

CVE-2024-57841 concerns a Linux kernel memory leak in tcp_conn_request() where dst memory allocated in af_ops->route_req is not freed if inet_csk_reqsk_queue_hash_add() fails, as shown by the kmemleak stack. The vulnerability is in the path that leads to tcp_conn_request() and may leak memory ...

5.5CVSS6.5AI score0.00217EPSS
CVE
CVE
•added 2024/07/30 7:45 a.m.•103 views

CVE-2024-42103

CVE-2024-42103 applies to the Linux kernel BTRFS subsystem. The issue arises in the reclaim path for block groups: during btrfs_reclaim_bgs_work, a block group removed from the reclaim list can be added in parallel to the unused list, which may then be moved to the reclaim list again and corrupt ...

5.5CVSS6.8AI score0.00242EPSS
CVE
CVE
•added 2025/07/03 8:35 a.m.•82 views

CVE-2025-38154

CVE-2025-38154 affects the Linux kernel sockmap path (bpf/sockmap) where sk->sk_socket can be used after free due to a race with backlog/thread close paths. The description in the connected documents explains that sk_socket is not locked/referenced in the backlog, enabling a race with the rele...

7.8CVSS7.2AI score0.00154EPSS