7654 matches found
CVE-2024-41015 ocfs2: add bounds checking to ocfs2_check_dir_entry()
In the Linux kernel, the following vulnerability has been resolved: ocfs2: add bounds checking to ocfs2checkdirentry This adds sanity checks for ocfs2direntry to make sure all members of ocfs2direntry don't stray beyond valid memory region...
CVE-2024-41015 ocfs2: add bounds checking to ocfs2_check_dir_entry()
In the Linux kernel, the following vulnerability has been resolved: ocfs2: add bounds checking to ocfs2checkdirentry This adds sanity checks for ocfs2direntry to make sure all members of ocfs2direntry don't stray beyond valid memory region...
CVE-2024-41015
CVE-2024-41015: Linux kernel ocfs2 vulnerability fixed by adding bounds checking in ocfs2_check_dir_entry() to validate ocfs2_dir_entry members and prevent memory overrun. The patch ensures sanity checks keep directory entry fields within valid memory bounds, addressing potential out-of-bounds/NU...
CVE-2024-41014 xfs: add bounds checking to xlog_recover_process_data
In the Linux kernel, the following vulnerability has been resolved: xfs: add bounds checking to xlogrecoverprocessdata There is a lack of verification of the space occupied by fixed members of xlogopheader in the xlogrecoverprocessdata. We can create a crafted image to trigger an out of bounds re...
CVE-2024-41014 xfs: add bounds checking to xlog_recover_process_data
In the Linux kernel, the following vulnerability has been resolved: xfs: add bounds checking to xlogrecoverprocessdata There is a lack of verification of the space occupied by fixed members of xlogopheader in the xlogrecoverprocessdata. We can create a crafted image to trigger an out of bounds re...
CVE-2024-41014
The CVE CVE-2024-41014 affects the Linux kernel (xfs) and is caused by insufficient bounds checking in xlog_recover_process_data, specifically verifying the space for fixed members of xlog_op_header. A crafted XFS image can trigger an out-of-bounds read by altering the xlog_op_header and xlog_rec...
CVE-2024-41014 xfs: add bounds checking to xlog_recover_process_data
In the Linux kernel, the following vulnerability has been resolved: xfs: add bounds checking to xlogrecoverprocessdata There is a lack of verification of the space occupied by fixed members of xlogopheader in the xlogrecoverprocessdata. We can create a crafted image to trigger an out of bounds re...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from a vulnerability due to incomplete USB endpoint checking that could result in the wrong endpoint type being use...
CVE-2024-41014
In the Linux kernel, the following vulnerability has been resolved: xfs: add bounds checking to xlogrecoverprocessdata There is a lack of verification of the space occupied by fixed members of xlogopheader in the xlogrecoverprocessdata. We can create a crafted image to trigger an out of bounds re...
ROS-20240729-17
Vulnerability in modrewrite module of Apache HTTP Server is related to insufficient checking of incoming requests. of incoming requests. Exploitation of the vulnerability could allow a remote attacker, gain unauthorized access to the device by forging requests on behalf of the server...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to perform bounds checking on all members of ocfs2direntry in the ocfs2checkdirentry function, whi...
CVE-2024-41018
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add a check for attrnames and oatbl Added out-of-bound checking for ane ATTRNAMEENTRY...
Denial Of Service (DoS)
github.com/snapcore/snapd is vulnerable to Denial of Service DoS. The vulnerability is due to improper file type checking when extracting snaps, allowing malicious snaps containing non-regular files to cause snapd to block indefinitely and result in a Denial of Service...
Google Chrome Buffer Overflow Vulnerability (CNVD-2024-33610)
Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a buffer overflow vulnerability that stems from incorrect boundary checking in Layout. An attacker can exploit this vulnerability to execute arbitrary code on the system or cause the application to crash...
kernel: smb: client: fix potential OOBs in smb2_parse_contexts()
A flaw was found in the smb client in the Linux kernel. A potential out-of-bounds error was seen in the smb2parsecontexts function. Validate offsets and lengths before dereferencing create contexts in smb2parsecontexts...
NI I/O Trace Tool 安全漏洞
NI I/O Trace Tool National Instruments I/O Trace Tool is a utility program from National Instruments NI. It can be used to view ongoing VISA driver calls, parameters passed to the VISA driver calls, and results. A security vulnerability exists in NI I/O Trace Tool version 24.3 and earlier, which...
NI LabVIEW 安全漏洞
NI LabVIEW National Instruments LabVIEW is a graphical program compilation platform from National Instruments NI. A security vulnerability exists in NI LabVIEW 2024 Q1 and earlier versions, which stems from a lack of boundary checking and could lead to out-of-bounds reads, disclosure of...
FAQ for XenMobile 10 Migration Tool
This article provides information on frequently asked questions and answers for XenMobile 10 MDM migration tool. Contents Q: What XenMobile editions are supported with the migration tool? Q: What versions of XenMobile are supported with the migration tool? Q: Where is the XenMobile 10 migration...
CBL Mariner 2.0 Security Update: libgit2 / rust (CVE-2023-22742)
The version of libgit2 / rust installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-22742 advisory. - libgit2 is a cross-platform, linkable library implementation of Git. When using an SSH remote with t...
CVE-2024-41000
In the Linux kernel, the following vulnerability has been resolved: block/ioctl: prefer different overflow check Running syzkaller with the newly reintroduced signed integer overflow sanitizer shows this report: 62.982337 ------------ cut here ------------ 62.985692 cgroup: Invalid name 62.986211...