Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:USN-6950-1
HistoryAug 08, 2024 - 10:09 p.m.

linux, linux-aws, linux-gcp, linux-gcp-5.15, linux-gke, linux-gkeop, linux-intel-iotg, linux-intel-iotg-5.15, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia vulnerabilities

2024-08-0822:09:14
Google
osv.dev
10
linux kernel
arm32 architecture
arm64 architecture
block layer
bluetooth drivers
clock framework
firewire subsystem
gpu drivers
infiniband drivers
network drivers
pin controllers
remote processor
s/390 drivers
scsi drivers
9p distributed file system
network file system
smb network file system
socket messages
bluetooth subsystem
networking core
ipv4 networking
ipv6 networking
multipath tcp
nsh protocol
phonet protocol
tipc protocol
wireless networking
key management
alsa framework
hd-audio driver
cve-2024-36883
cve-2024-36940
cve-2024-36902
cve-2024-36975
cve-2024-36964
cve-2024-36938
cve-2024-36931
cve-2024-35848
cve-2024-26900
cve-2024-36967
cve-2024-36904
cve-2024-27398
cve-2024-36031
cve-2023-52585
cve-2024-36886
cve-2024-36937
cve-2024-36954
cve-2024-36916
cve-2024-36905
cve-2024-36959
cve-2024-26980
cve-2024-26936
cve-2024-36928
cve-2024-36889
cve-2024-36929
cve-2024-36933
cve-2024-27399
cve-2024-36946
cve-2024-36906
cve-2024-36965
cve-2024-36957
cve-2024-36941
cve-2024-36897
cve-2024-36952
cve-2024-36947
cve-2024-36950
cve-2024-36880
cve-2024-36017
cve-2023-52882
cve-2024-36969
cve-2024-38600
cve-2024-36955
cve-2024-36960
cve-2024-27401
cve-2024-36919
cve-2024-36934
cve-2024-35947
cve-2024-36953
cve-2024-36944
cve-2024-36939

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.4

Confidence

Low

EPSS

0.001

Percentile

16.8%

JSON

Several security issues were discovered in the Linux kernel.
An attacker could possibly use these to compromise the system.
This update corrects flaws in the following subsystems:

  • ARM32 architecture;
  • ARM64 architecture;
  • Block layer subsystem;
  • Bluetooth drivers;
  • Clock framework and drivers;
  • FireWire subsystem;
  • GPU drivers;
  • InfiniBand drivers;
  • Multiple devices driver;
  • EEPROM drivers;
  • Network drivers;
  • Pin controllers subsystem;
  • Remote Processor subsystem;
  • S/390 drivers;
  • SCSI drivers;
  • 9P distributed file system;
  • Network file system client;
  • SMB network file system;
  • Socket messages infrastructure;
  • Dynamic debug library;
  • Bluetooth subsystem;
  • Networking core;
  • IPv4 networking;
  • IPv6 networking;
  • Multipath TCP;
  • NSH protocol;
  • Phonet protocol;
  • TIPC protocol;
  • Wireless networking;
  • Key management;
  • ALSA framework;
  • HD-audio driver;
    (CVE-2024-36883, CVE-2024-36940, CVE-2024-36902, CVE-2024-36975,
    CVE-2024-36964, CVE-2024-36938, CVE-2024-36931, CVE-2024-35848,
    CVE-2024-26900, CVE-2024-36967, CVE-2024-36904, CVE-2024-27398,
    CVE-2024-36031, CVE-2023-52585, CVE-2024-36886, CVE-2024-36937,
    CVE-2024-36954, CVE-2024-36916, CVE-2024-36905, CVE-2024-36959,
    CVE-2024-26980, CVE-2024-26936, CVE-2024-36928, CVE-2024-36889,
    CVE-2024-36929, CVE-2024-36933, CVE-2024-27399, CVE-2024-36946,
    CVE-2024-36906, CVE-2024-36965, CVE-2024-36957, CVE-2024-36941,
    CVE-2024-36897, CVE-2024-36952, CVE-2024-36947, CVE-2024-36950,
    CVE-2024-36880, CVE-2024-36017, CVE-2023-52882, CVE-2024-36969,
    CVE-2024-38600, CVE-2024-36955, CVE-2024-36960, CVE-2024-27401,
    CVE-2024-36919, CVE-2024-36934, CVE-2024-35947, CVE-2024-36953,
    CVE-2024-36944, CVE-2024-36939)

References

Related

nessus 25
ubuntu 12
openvas 16
osv 26
debian 1
amazon 1
fedora 2
redos 1
vulnrichment 16
cbl_mariner 5
nvd 19
debiancve 14
ubuntucve 14
cvelist 17
cve 13
redhatcve 16
prion 1
nessus
nessus
Ubuntu 22.04 LTS : Linux kernel (Oracle) vulnerabilities (USN-6950-3)
2024-08-13 00:00:00
Ubuntu 20.04 LTS : Linux kernel (HWE) vulnerabilities (USN-6950-4)
2024-08-21 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-6950-1)
2024-08-08 00:00:00
ubuntu
ubuntu
Linux kernel (Oracle) vulnerabilities
2024-08-13 00:00:00
Linux kernel vulnerabilities
2024-08-13 00:00:00
Linux kernel (HWE) vulnerabilities
2024-08-21 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6950-1)
2024-08-09 00:00:00
Ubuntu: Security Advisory (USN-6950-4)
2024-08-22 00:00:00
Ubuntu: Security Advisory (USN-6950-3)
2024-08-14 00:00:00
osv
osv
linux-hwe-5.15 vulnerabilities
2024-08-21 17:06:20
linux-oracle vulnerabilities
2024-08-13 14:11:15
linux-aws-5.15, linux-gkeop-5.15, linux-ibm, linux-ibm-5.15, linux-raspi vulnerabilities
2024-08-13 00:30:09
debian
debian
[SECURITY] [DSA 5703-1] linux security update
2024-06-02 17:04:56
amazon
amazon
Important: kernel
2024-06-19 19:15:00
fedora
fedora
[SECURITY] Fedora 40 Update: kernel-6.8.10-300.fc40
2024-05-22 01:28:10
[SECURITY] Fedora 39 Update: kernel-6.8.10-200.fc39
2024-05-22 01:22:53
redos
redos
ROS-20240905-04
2024-09-05 00:00:00
vulnrichment
vulnrichment
CVE-2024-35848 eeprom: at24: fix memory corruption race condition
2024-05-17 14:47:26
CVE-2024-36928 s390/qeth: Fix kernel panic after setting hsuid
2024-05-30 15:29:20
CVE-2024-36931 s390/cio: Ensure the copied buf is NUL terminated
2024-05-30 15:29:22
cbl_mariner
cbl_mariner
CVE-2024-36897 affecting package kernel for versions less than 6.6.35.1-4
2024-08-14 20:43:58
CVE-2024-36897 affecting package kernel for versions less than 5.15.158.2-1
2024-06-12 22:23:00
CVE-2024-36967 affecting package kernel for versions less than 6.6.35.1-5
2024-07-22 15:42:40
nvd
nvd
CVE-2024-36931
2024-05-30 16:15:16
CVE-2023-52585
2024-03-06 07:15:07
CVE-2024-36975
2024-06-18 20:15:13
debiancve
debiancve
CVE-2024-36931
2024-05-30 16:15:16
CVE-2024-36916
2024-05-30 16:15:14
CVE-2024-26936
2024-05-01 06:15:08
ubuntucve
ubuntucve
CVE-2024-36967
2024-06-08 00:00:00
CVE-2024-36975
2024-06-18 00:00:00
CVE-2024-36931
2024-05-30 00:00:00
cvelist
cvelist
CVE-2024-36931 s390/cio: Ensure the copied buf is NUL terminated
2024-05-30 15:29:22
CVE-2024-36957 octeontx2-af: avoid off-by-one read from userspace
2024-05-30 15:35:50
CVE-2024-36928 s390/qeth: Fix kernel panic after setting hsuid
2024-05-30 15:29:20
cve
cve
CVE-2024-36897
2024-05-30 16:15:13
CVE-2024-36931
2024-05-30 16:15:16
CVE-2024-26980
2024-05-01 06:15:15
redhatcve
redhatcve
CVE-2024-36931
2024-06-03 12:34:05
CVE-2024-36897
2024-06-03 13:32:57
CVE-2024-36880
2024-06-02 16:02:52
prion
prion
Spoofing
2024-03-06 07:15:00

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.4

Confidence

Low

EPSS

0.001

Percentile

16.8%

JSON
Related for OSV:USN-6950-1
nessus25ubuntu12openvas16osv26debian1amazon1fedora2redos1vulnrichment16cbl_mariner5nvd19debiancve14ubuntucve14cvelist17cve13redhatcve16prion1