CVE-2024-30212

If a SCSI READ10 command is initiated via USB using the largest LBA 0xFFFFFFFF with it's default block size of 512 and a count of 1, the first 512 byte of the 0x80000000 memory area is returned to the user. If the block count is increased, the full RAM can be exposed. The same method works to wri...

PT-2025-29032

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the fbdev core and fbcvt functionality that could lead to a kernel oops due to a division by zero error. This occurs in the fb cvt hperiod...

The vulnerability of the patch offset2lib in the Linux operating system’s kernel allows a hacker to gain access to the stack protection mechanism.

The vulnerability of patch offset2lib in Linux operating systems arises from the minimal memory range between the upper boundary of the stack and the PIE binary code segment, which is located in memory starting at 0x80000000. This occurs when the RLIMITSTACK parameter is set to RLIMINFINITY, and ...

The vulnerability of the patch offset2lib in the Linux operating system’s kernel allows a hacker to gain access to the stack protection mechanism.

The vulnerability of patch offset2lib in Linux operating systems arises from the minimal memory range between the upper boundary of the stack and the PIE binary code segment, which is located in memory starting at 0x40000000. This occurs when the RLIMITSTACK parameter is set to RLIMINFINITY, and ...

Linux Kernel 3.2.0-23 (Ubuntu 12.04 x64) - ptracesysret Local Privilege Escalation

Linux Kernel 3.2.0-23 Ubuntu 12.04 x64 - ptracesysret Local Privilege Escalation / CVE-2014-4699 ptrace/sysret PoC by Vitaly Nikolenko [email protected] gcc -O2 pocv0.c This code is kernel specific. On Ubuntu 12.04.0 LTS 3.2.0-23-generic, the following will trigger the GP in sysret and overwrite...