VIR Vulnerability Intelligence Relay

Search

Found 4,677 results in 580ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2021-47456 high 8.0 FIX rocky slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: can: peak_pci: peak_pci_remove(): fix UAF When remove the module peek_pci, referencing 'chan' again after releasing 'dev' will ca…
CVE-2021-47356 high 8.0 FIX rocky slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: mISDN: fix possible use-after-free in HFC_cleanup() This module's remove path calls del_timer(). However, that function does not …
CVE-2021-47353 high 8.0 FIX rocky slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: udf: Fix NULL pointer dereference in udf_symlink function In function udf_symlink, epos.bh is assigned with the value returned by…
CVE-2024-6387 high 8.1 9.1 EXPFIX rhelarch arch sles openbsdredhatnetapp 2y ago A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote a…
CVE-2024-4467 high 8.0 FIX rhel slesdebian debian 2y ago A flaw was found in the QEMU disk image utility (qemu-img) 'info' command. A specially crafted image file containing a `json:{}` value describing block devices in QMP could cause the qemu-img process…
CVE-2023-52877 high 8.0 FIX rocky slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: Fix NULL pointer dereference in tcpm_pd_svdm() It is possible that typec_register_partner() returns ERR_PTR on …
CVE-2023-52835 high 8.0 FIX rocky slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: perf/core: Bail out early if the request AUX area is out of bound When perf-record with a large AUX area, e.g 4GB, it fails with:…
CVE-2023-52781 high 8.0 FIX rocky slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: usb: config: fix iteration issue in 'usb_get_bos_descriptor()' The BOS descriptor defines a root descriptor and is the base descr…
CVE-2023-52700 high 8.0 FIX rocky slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: tipc: fix kernel warning when sending SYN message When sending a SYN message, this kernel stack trace is observed: ... [ 13.39…
CVE-2023-52675 high 8.0 FIX rocky slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: powerpc/imc-pmu: Add a null pointer check in update_events_in_group() kasprintf() returns a pointer to dynamically allocated memo…
CVE-2023-52669 high 8.0 FIX rocky slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: crypto: s390/aes - Fix buffer overread in CTR mode When processing the last block, the s390 ctr code will always read a whole blo…
CVE-2021-47311 high 8.0 FIX rocky slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: net: qcom/emac: fix UAF in emac_remove adpt is netdev private data and it cannot be used after free_netdev() call. Using adpt aft…
CVE-2021-47310 high 8.0 FIX rocky slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: net: ti: fix UAF in tlan_remove_one priv is netdev private data and it cannot be used after free_netdev() call. Using priv after …
CVE-2021-47236 high 8.0 FIX rocky slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: net: cdc_eem: fix tx fixup skb leak when usbnet transmit a skb, eem fixup it in eem_tx_fixup(), if skb_copy_expand() failed, it r…
CVE-2021-47073 high 8.0 FIX rocky slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios init_dell_smbios_wmi() only registers the dell_smbios_wmi_driver on …
CVE-2021-47069 high 8.0 FIX rocky slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: ipc/mqueue, msg, sem: avoid relying on a stack reference past its expiry do_mq_timedreceive calls wq_sleep with a stack local add…
CVE-2021-46972 high 8.0 FIX rocky slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: ovl: fix leaked dentry Since commit 6815f479ca90 ("ovl: use only uppermetacopy state in ovl_lookup()"), overlayfs doesn't put tem…
CVE-2021-46909 high 8.0 FIX rocky slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: ARM: footbridge: fix PCI interrupt mapping Since commit 30fdfb929e82 ("PCI: Add a call to pci_assign_irq() in pci_device_probe()"…
CVE-2023-4727 high 8.0 rhel rockydebian debian 2y ago RHSA-2024:4367: pki-core security update (Important)
CVE-2024-32465 high 8.0 FIX rhel rockydebian debian 2y ago RHSA-2024:4084: git security update (Important)
CVE-2024-32021 high 8.0 FIX rhel rockydebian debian 2y ago RHSA-2024:4084: git security update (Important)
CVE-2024-32020 high 8.0 FIX rhel rockydebian debian 2y ago RHSA-2024:4084: git security update (Important)
CVE-2024-32004 high 8.0 FIX rhel rockydebian debian 2y ago RHSA-2024:4084: git security update (Important)
CVE-2024-32002 high 8.0 FIX rhel rockydebian debian 2y ago RHSA-2024:4084: git security update (Important)
CVE-2023-6597 high 8.0 FIX rhel rocky sles 2y ago An issue was found in the CPython `tempfile.TemporaryDirectory` class affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.18, and 3.8.18 and prior. The tempfile.TemporaryDirectory class would dereferenc…
CVE-2024-33871 high 8.0 FIX rhel rockydebian debian 2y ago RHSA-2024:4000: ghostscript security update (Important)
CVE-2024-5702 high 8.0 FIX rhel rockydebian debian 2y ago RHSA-2024:4036: thunderbird security update (Important)
CVE-2024-5700 high 8.0 FIX rhel rockydebian debian 2y ago Memory safety bugs present in Firefox 126, Firefox ESR 115.11, and Thunderbird 115.11. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these cou…
CVE-2024-5696 high 8.0 FIX rhel rockydebian debian 2y ago By manipulating the text in an `&lt;input&gt;` tag, an attacker could have caused corrupt memory leading to a potentially exploitable crash. This vulnerability affects Firefox < 127, Firefox ESR < 11…
CVE-2024-5693 high 8.0 FIX rhel rockydebian debian 2y ago Offscreen Canvas did not properly track cross-origin tainting, which could be used to access image data from another site in violation of same-origin policy. This vulnerability affects Firefox < 127,…
CVE-2024-5691 high 8.0 FIX rhel rockydebian debian 2y ago By tricking the browser with a `X-Frame-Options` header, a sandboxed iframe could have presented a button that, if clicked by a user, would bypass restrictions to open a new window. This vulnerabilit…
CVE-2024-5690 high 8.0 FIX rhel rockydebian debian 2y ago By monitoring the time certain operations take, an attacker could have guessed which external protocol handlers were functional on a user's system. This vulnerability affects Firefox < 127, Firefox E…
CVE-2024-5688 high 8.0 FIX rhel rockydebian debian 2y ago If a garbage collection was triggered at the right time, a use-after-free could have occurred during object transplant. This vulnerability affects Firefox < 127, Firefox ESR < 115.12, and Thunderbird…
CVE-2024-32462 high 8.0 FIX rhel rockydebian debian 2y ago RHSA-2024:3961: flatpak security update (Important)
CVE-2024-3657 high 8.0 FIX debian debian rhel rocky 2y ago RHSA-2024:4235: 389-ds security update (Important)
CVE-2024-2199 high 8.0 FIX debian debian rhel rocky 2y ago RHSA-2024:4235: 389-ds security update (Important)
CVE-2024-3183 high 8.0 FIX rhel rockydebian debian 2y ago RHSA-2024:3755: idm:DL1 security update (Important)
CVE-2024-2698 high 8.0 FIX rhel rockydebian debian 2y ago RHSA-2024:3755: idm:DL1 security update (Important)
CVE-2024-3049 high 8.0 FIX rheldebian debian rocky 2y ago RHSA-2024:3659: booth security update (Important)
CVE-2024-32487 high 8.0 FIX rhel rocky sles 2y ago RHSA-2024:4256: less security update (Important)
CVE-2024-33602 high 7.4 7.4 FIX rhel rockydebian debian gnunetapp 2y ago RHSA-2024:3344: glibc security update (Important)
CVE-2024-33601 high 7.3 7.3 FIX rhel rockydebian debian gnu 2y ago RHSA-2024:3344: glibc security update (Important)
CVE-2024-33599 high 8.1 8.1 FIX rhel rockydebian debian gnu 2y ago RHSA-2024:3344: glibc security update (Important)
CVE-2024-2961 high 7.3 8.3 EXPFIX rhel rockydebian debian gnunetapp 2y ago RHSA-2024:3269: glibc security update (Important)
CVE-2024-24549 high 8.0 FIX rhel sles rocky 2y ago Denial of Service due to improper input validation vulnerability for HTTP/2 requests in Apache Tomcat. When processing an HTTP/2 request, if the request exceeded any of the configured limits for head…
CVE-2024-23672 high 8.0 FIX rhel sles rocky 2y ago Denial of Service via incomplete cleanup vulnerability in Apache Tomcat. It was possible for WebSocket clients to keep WebSocket connections open leading to increased resource consumption.This issue …
CVE-2023-20592 high 8.0 FIX debian debian rocky sles 2y ago RHSA-2024:3178: linux-firmware security update (Important)
CVE-2022-50346 high 8.0 FIX slesdebian debian rhel 2y ago RHSA-2024:2394: kernel security, bug fix, and enhancement update (Important)
CVE-2024-4367 high 8.8 9.8 EXPFIX rhel rockydebian debian mozillaopen-xchange 2y ago A type check was missing when handling fonts in PDF.js, which would allow arbitrary JavaScript execution in the PDF.js context. This vulnerability affects Firefox < 126, Firefox ESR < 115.11, and Thu…
CVE-2024-30046 high 8.0 FIX rhel rockyalmalinux almalinux 2y ago RHSA-2024:3345: .NET 8.0 security update (Important)
CVE-2024-30045 high 8.0 FIX rhel rockyalmalinux almalinux 2y ago RHSA-2024:3345: .NET 8.0 security update (Important)
CVE-2024-27983 high 8.0 FIX rhelarch arch rocky 2y ago RHSA-2024:2780: nodejs:18 security update (Important)
CVE-2024-27982 high 8.0 FIX rhelarch arch rocky 2y ago RHSA-2024:2780: nodejs:18 security update (Important)
CVE-2024-22025 high 8.0 FIX rhel rockydebian debian 2y ago RHSA-2024:2780: nodejs:18 security update (Important)
CVE-2024-31083 high 8.0 FIX rhelalmalinux almalinux rocky 2y ago Important: tigervnc security update
CVE-2024-31081 high 8.0 FIX rhel rocky sles 2y ago Important: tigervnc security update
CVE-2024-31080 high 8.0 FIX rhel rocky sles 2y ago Important: tigervnc security update
CVE-2024-3019 high 8.0 FIX rhel rocky sles 2y ago RHSA-2024:3264: pcp security update (Important)
CVE-2024-28757 high 8.0 FIX rheldebian debian sles 2y ago RHSA-2025:21776: expat security update (Important)
CVE-2024-26671 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-26633 high 8.0 FIX rhel slesdebian debian 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-26609 high 8.0 FIX rhel rockyalmalinux almalinux 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-26602 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-26593 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-26586 high 8.0 FIX rhel sles rocky 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-26585 high 8.0 FIX rhel sles rocky 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-26584 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-26583 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-26582 high 8.0 FIX rhel slesdebian debian 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-25744 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-24785 high 8.0 FIX rocky rheldebian debian 2y ago RHSA-2026:3428: container-tools:rhel8 security update (Important)
CVE-2024-23271 high 8.0 FIX rhel rocky sles 2y ago A logic issue was addressed with improved checks. This issue is fixed in Safari 17.3, iOS 17.3 and iPadOS 17.3, macOS Sonoma 14.3, tvOS 17.3, watchOS 10.3. A malicious website may cause unexpected cr…
CVE-2024-1313 high 8.0 FIX rhel rocky sles 2y ago RHSA-2024:3265: grafana security update (Important)
CVE-2024-1086 high 9.5 KEVFIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-1085 high 8.0 FIX rhel slesdebian debian 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-0841 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2024-0565 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2023-6932 high 7.0 7.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2023-6931 high 7.0 7.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2023-6915 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2023-6622 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2023-6546 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2023-6531 high 8.0 FIX rhel slesdebian debian 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2023-6176 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2023-6040 high 8.0 FIX rhel rocky sles 2y ago Important: kernel security, bug fix, and enhancement update
CVE-2023-5574 high 8.0 FIX rhel slesdebian debian 2y ago A use-after-free flaw was found in xorg-x11-server-Xvfb. This issue occurs in Xvfb with a very specific and legacy configuration (a multi-screen setup with multiple protocol screens, also known as Za…
CVE-2023-54326 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: misc: pci_endpoint_test: Free IRQs before removing the device In pci_endpoint_test_remove(), freeing the IRQs after removing the …
CVE-2023-54316 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: refscale: Fix uninitalized use of wait_queue_head_t Running the refscale test occasionally crashes the kernel with the following …
CVE-2023-54312 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: samples/bpf: Fix buffer overflow in tcp_basertt Using sizeof(nv) or strlen(nv)+1 is correct.
CVE-2023-54303 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: bpf: Disable preemption in bpf_perf_event_output The nesting protection in bpf_perf_event_output relies on disabled preemption, w…
CVE-2023-54302 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix data race on CQP completion stats CQP completion statistics is read lockesly in irdma_wait_event and irdma_check_…
CVE-2023-54296 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Get source vCPUs from source VM for SEV-ES intrahost migration Fix a goof where KVM tries to grab source vCPUs from the…
CVE-2023-54292 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix data race on CQP request done KCSAN detects a data race on cqp_request->request_done memory location which is acc…
CVE-2023-54283 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: bpf: Address KCSAN report on bpf_lru_list KCSAN reported a data-race when accessing node->ref. Although node->ref does not have t…
CVE-2023-54263 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: drm/nouveau/kms/nv50-: init hpd_irq_lock for PIOR DP Fixes OOPS on boards with ANX9805 DP encoders.
CVE-2023-54261 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Add missing gfx11 MQD manager callbacks mqd_stride function was introduced in commit 2f77b9a242a2 ("drm/amdkfd: Updat…
CVE-2023-54260 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: cifs: Fix lost destroy smbd connection when MR allocate failed If the MR allocate failed, the smb direct connection info is NULL,…
CVE-2023-54254 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Don't leak a resource on eviction error On eviction errors other than -EMULTIHOP we were leaking a resource. Fix. v2: -…
CVE-2023-54251 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: Limit TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME to INT_MAX. syzkaller found zero division error [0] in div_s64_rem() ca…
CVE-2023-54242 high 8.0 FIX rhel slesdebian debian 2y ago In the Linux kernel, the following vulnerability has been resolved: block, bfq: Fix division by zero error on zero wsum When the weighted sum is zero the calculation of limit causes a division by z…