1981
|
- |
|
-
|
-
|
A flaw was found in the RPC library APIs of libvirt. The RPC server deserialization code allocates memory for arrays before the non-negative length check is performed by the C API entry points. Passi…
|
CWE-789
Memory Allocation with Excessive Size Value
|
CVE-2024-2494
|
2024-09-14 09:15 |
2024-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1982
|
- |
|
-
|
-
|
A NULL pointer dereference flaw was found in the udevConnectListAllInterfaces() function in libvirt. This issue can occur when detaching a host interface while at the same time collecting the list of…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-2496
|
2024-09-14 09:15 |
2024-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1983
|
- |
|
-
|
-
|
A flaw was found in the Open Virtual Network (OVN). In OVN clusters where BFD is used between hypervisors for high availability, an attacker can inject specially crafted BFD packets from inside unpri…
|
-
|
CVE-2024-2182
|
2024-09-14 09:15 |
2024-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1984
|
- |
|
-
|
-
|
An off-by-one error flaw was found in the udevListInterfacesByStatus() function in libvirt when the number of interfaces exceeds the size of the `names` array. This issue can be reproduced by sending…
|
-
|
CVE-2024-1441
|
2024-09-14 09:15 |
2024-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1985
|
7.5 |
HIGH
Network
linux redhat debian
|
linux_kernel enterprise_linux enterprise_linux_server_aus enterprise_linux_server_tus enterprise_linux_eus codeready_linux_builder_eus enterprise_linux_for_power_little_endian_eus
|
A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to …
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-6536
|
2024-09-14 09:15 |
2024-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1986
|
6.5 |
MEDIUM
Network
|
linux redhat
|
linux_kernel enterprise_linux
|
A Marvin vulnerability side-channel leakage was found in the RSA decryption operation in the Linux Kernel. This issue may allow a network attacker to decrypt ciphertexts or forge signatures, limiting…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2023-6240
|
2024-09-14 09:15 |
2024-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1987
|
7.8 |
HIGH
Local
|
linux redhat
|
linux_kernel enterprise_linux
|
A null pointer dereference flaw was found in the hugetlbfs_fill_super function in the Linux kernel hugetlbfs (HugeTLB pages) functionality. This issue may allow a local user to crash the system or po…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-0841
|
2024-09-14 09:15 |
2024-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1988
|
7.8 |
HIGH
Local
|
linux redhat
|
linux_kernel enterprise_linux
|
An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with a ktls socket as the destination. This flaw allows…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-0646
|
2024-09-14 09:15 |
2024-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1989
|
7.4 |
HIGH
Adjacent
|
linux netapp
|
linux_kernel ontap_tools
|
An out-of-bounds memory read flaw was found in receive_encrypted_standard in fs/smb/client/smb2ops.c in the SMB Client sub-component in the Linux Kernel. This issue occurs due to integer underflow on…
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2024-0565
|
2024-09-14 09:15 |
2024-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1990
|
7.5 |
HIGH
Network
linux redhat
|
linux_kernel enterprise_linux enterprise_linux_server_aus enterprise_linux_server_tus enterprise_linux_eus codeready_linux_builder_eus enterprise_linux_for_power_little_endian_eus
|
A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to …
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-6535
|
2024-09-14 09:15 |
2024-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|