Netapp

Solidfire Baseboard Management Controller Firmware

70 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7

CVE-2021-32399

Exploit
  • EPSS 0.08%
  • Veröffentlicht 10.05.2021 22:15:06
  • Zuletzt bearbeitet 21.11.2024 06:06:59

net/bluetooth/hci_request.c in the Linux kernel through 5.12.2 has a race condition for removal of the HCI controller.

7.8

CVE-2020-35519

  • EPSS 0.17%
  • Veröffentlicht 06.05.2021 15:15:07
  • Zuletzt bearbeitet 21.11.2024 05:27:29

An out-of-bounds (OOB) memory access flaw was found in x25_bind in net/x25/af_x25.c in the Linux kernel version v5.12-rc5. A bounds check failure allows a local attacker with a user account on the system to gain access to out-of-bounds memory, leadin...

7.1

CVE-2021-3501

  • EPSS 0.04%
  • Veröffentlicht 06.05.2021 13:15:12
  • Zuletzt bearbeitet 21.11.2024 06:21:41

A flaw was found in the Linux kernel in versions before 5.12. The value of internal.ndata, in the KVM API, is mapped to an array index, which can be updated by a user process at anytime which could lead to an out-of-bounds write. The highest threat f...

7

CVE-2021-23133

Exploit
  • EPSS 0.02%
  • Veröffentlicht 22.04.2021 18:15:08
  • Zuletzt bearbeitet 21.11.2024 05:51:16

A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. If sctp_destroy_sock is called without sock_net(sk)->sctp.addr...

7.1

CVE-2021-3506

  • EPSS 0.38%
  • Veröffentlicht 19.04.2021 22:15:13
  • Zuletzt bearbeitet 21.11.2024 06:21:42

An out-of-bounds (OOB) memory access flaw was found in fs/f2fs/node.c in the f2fs module in the Linux kernel in versions before 5.12.0-rc4. A bounds check failure allows a local attacker to gain access to out-of-bounds memory leading to a system cras...

7.2

CVE-2021-28972

  • EPSS 0.06%
  • Veröffentlicht 22.03.2021 17:15:15
  • Zuletzt bearbeitet 21.11.2024 06:00:28

In drivers/pci/hotplug/rpadlpar_sysfs.c in the Linux kernel through 5.11.8, the RPA PCI Hotplug driver has a user-tolerable buffer overflow when writing a new device name to the driver from userspace, allowing userspace to write data to the kernel st...

5.5

CVE-2021-28971

  • EPSS 0.04%
  • Veröffentlicht 22.03.2021 17:15:15
  • Zuletzt bearbeitet 21.11.2024 06:00:28

In intel_pmu_drain_pebs_nhm in arch/x86/events/intel/ds.c in the Linux kernel through 5.11.8 on some Haswell CPUs, userspace applications (such as perf-fuzzer) can cause a system crash because the PEBS status in a PEBS record is mishandled, aka CID-d...

4.7

CVE-2021-28964

  • EPSS 0.09%
  • Veröffentlicht 22.03.2021 09:15:13
  • Zuletzt bearbeitet 21.11.2024 06:00:27

A race condition was discovered in get_old_root in fs/btrfs/ctree.c in the Linux kernel through 5.11.8. It allows attackers to cause a denial of service (BUG) because of a lack of locking on an extent buffer before a cloning operation, aka CID-dbcc7d...

7.8

CVE-2021-28952

  • EPSS 0.24%
  • Veröffentlicht 20.03.2021 21:15:11
  • Zuletzt bearbeitet 21.11.2024 06:00:25

An issue was discovered in the Linux kernel through 5.11.8. The sound/soc/qcom/sdm845.c soundwire device driver has a buffer overflow when an unexpected port ID number is encountered, aka CID-1c668e1c0a0f. (This has been fixed in 5.12-rc4.)

5.5

CVE-2021-28951

  • EPSS 0.06%
  • Veröffentlicht 20.03.2021 20:15:13
  • Zuletzt bearbeitet 21.11.2024 06:00:25

An issue was discovered in fs/io_uring.c in the Linux kernel through 5.11.8. It allows attackers to cause a denial of service (deadlock) because exit may be waiting to park a SQPOLL thread, but concurrently that SQPOLL thread is waiting for a signal ...