EUVD-2019-7676

Malware in sbrugna...

CVE-2022-50394 i2c: ismt: Fix an out-of-bounds bug in ismt_access()

In the Linux kernel, the following vulnerability has been resolved: i2c: ismt: Fix an out-of-bounds bug in ismtaccess When the driver does not check the data from the user, the variable 'data-block0' may be very large to cause an out-of-bounds bug. The following log can reveal it: 33.995542 i2c...

CVE-2019-17260

MPC-HC through 1.7.13 allows a Read Access Violation on a Block Data Move starting at mpchc!memcpy+0x000000000000004e...

CVE-2018-15816

FastStone Image Viewer 6.5 has a Read Access Violation on Block Data Move starting at image00400000+0x0000000000002d7d via a crafted image file...

DEBIAN-CVE-2022-48806

In the Linux kernel, the following vulnerability has been resolved: eeprom: ee1004: limit i2c reads to I2CSMBUSBLOCKMAX Commit effa453168a7 "i2c: i801: Don't silently correct invalid transfer size" revealed that ee1004eepromread did not properly limit how many bytes to read at once. In particular...

Google Golang Security Vulnerability

Google Golang is a static, strongly typed, compiled language from Google.The syntax of Go is close to C, but with differences in variable declarations.Go supports garbage collection.Go's parallel model is based on Tony Hall's Communicating Sequential Processes CSP, and other languages with a...

kernel: an out-of-bounds vulnerability in i2c-ismt driver

An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user triggers the I2CSMBUSBLOCKDATA with the ioctl I2CSMBUS with malicious input data. This flaw allows a local user to crash the system...

kernel: an out-of-bounds vulnerability in i2c-ismt driver

An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user triggers the I2CSMBUSBLOCKDATA with the ioctl I2CSMBUS with malicious input data. This flaw allows a local user to crash the system...

kernel: an out-of-bounds vulnerability in i2c-ismt driver

An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user triggers the I2CSMBUSBLOCKDATA with the ioctl I2CSMBUS with malicious input data. This flaw allows a local user to crash the system...

OESA-2023-1035 kernel security update

Security Fixes: An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user triggers the I2CSMBUSBLOCKDATA with the ioctl I2CSMBUS with malicious input data. This flaw allows a local user to crash the system.CVE-2022-2873 An...

OESA-2023-1036 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user triggers the I2CSMBUSBLOCKDATA with the ioctl I2CSMBUS with malicious input data. This flaw allows a...

The vulnerability of the ismt_access() function in the i2c-ismt driver of Linux operating systems allows a hacker to cause a service failure.

The vulnerability of the ismtaccess function in the i2c-ismt driver of Linux operating systems is related to incorrect calculations of buffer size during the processing of I2CSMBUSBLOCKDATA data block writes. Exploiting this vulnerability can allow attackers to cause system failures through the u...

An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user triggers the I2C_SMBUS_BLOCK_DATA (with the ioctl I2C_SMBUS) with malicious input data. This flaw allows a local user to crash the system.

...

CVE-2022-2873

An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user triggers the I2CSMBUSBLOCKDATA with the ioctl I2CSMBUS with malicious input data. This flaw allows a local user to crash the system...

UBUNTU-CVE-2022-2873

An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user triggers the I2CSMBUSBLOCKDATA with the ioctl I2CSMBUS with malicious input data. This flaw allows a local user to crash the system...

PT-2022-4884 · Linux +10 · Linux Kernel +10

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: An out-of-bounds memory access flaw was found in the Linux kernel's Intel iSMT SMBus host controller driver. This issue arises when a user triggers the I2C SMBUS BLOCK DATA with...

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

CVE-2021-40827

CVE-2021-40827 affects Clementine Music Player up to version 1.3.1 when a GLib 2.0.0 DLL is used. The issue is a Read Access Violation in the MP3 parsing path (Block Data Move) at memcpy+0x265, triggered by opening a crafted MP3 or mishandled remote stream. Exploitation could crash the Clementine...

CVE-2021-39234 Raw block data can be read bypassing ACL/authorization

In Apache Ozone versions prior to 1.2.0, Authenticated users knowing the ID of an existing block can craft specific request allowing access those blocks, bypassing other security checks like ACL...

CVE-2019-17260

MPC-HC through 1.7.13 allows a Read Access Violation on a Block Data Move starting at mpchc!memcpy+0x000000000000004e...