61 matches found
CVE-2024-49851
In the Linux kernel, the following vulnerability has been resolved: tpm: Clean up TPM space after command failure tpmdevtransmit prepares the TPM space before attempting command transmission. However if the command fails no rollback of this preparation is done. This can result in transient handle...
DEBIAN-CVE-2024-49851
In the Linux kernel, the following vulnerability has been resolved: tpm: Clean up TPM space after command failure tpmdevtransmit prepares the TPM space before attempting command transmission. However if the command fails no rollback of this preparation is done. This can result in transient handle...
UBUNTU-CVE-2024-49851
In the Linux kernel, the following vulnerability has been resolved: tpm: Clean up TPM space after command failure tpmdevtransmit prepares the TPM space before attempting command transmission. However if the command fails no rollback of this preparation is done. This can result in transient handle...
CVE-2024-49851 tpm: Clean up TPM space after command failure
In the Linux kernel, the following vulnerability has been resolved: tpm: Clean up TPM space after command failure tpmdevtransmit prepares the TPM space before attempting command transmission. However if the command fails no rollback of this preparation is done. This can result in transient handle...
CVE-2024-49851
The CVE CVE-2024-49851 affects the Linux kernel TPM subsystem. The vulnerability originated from tpm_dev_transmit preparing TPM space before transmission and not rolling back this preparation if a command fails, potentially leaking transient TPM handles when the device is closed afterwards. The p...
CVE-2024-49851 tpm: Clean up TPM space after command failure
In the Linux kernel, the following vulnerability has been resolved: tpm: Clean up TPM space after command failure tpmdevtransmit prepares the TPM space before attempting command transmission. However if the command fails no rollback of this preparation is done. This can result in transient handle...
CVE-2024-49851 tpm: Clean up TPM space after command failure
In the Linux kernel, the following vulnerability has been resolved: tpm: Clean up TPM space after command failure tpmdevtransmit prepares the TPM space before attempting command transmission. However if the command fails no rollback of this preparation is done. This can result in transient handle...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the failure of the tpm driver to clean up TPM space after a command failure...
AZL-48807 CVE-2024-45006 affecting package kernel for versions less than 5.15.167.1-1
In the Linux kernel, the following vulnerability has been resolved: xhci: Fix Panther point NULL pointer deref at full-speed re-enumeration re-enumerating full-speed devices after a failed address device command can trigger a NULL pointer dereference. Full-speed devices may need to reconfigure th...
CVE-2022-48884 net/mlx5: Fix command stats access after free
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix command stats access after free Command may fail while driver is reloading and can't accept FW commands till command interface is reinitialized. Such command failure is being logged to command stats. This results in...
SUSE CVE-2021-47443
In the Linux kernel, the following vulnerability has been resolved: NFC: digital: fix possible memory leak in digitaltglistenmdaa 'params' is allocated in digitaltglistenmdaa, but not free when digitalsendcmd failed, which will cause memory leak. Fix it by freeing 'params' if digitalsendcmd retur...
DEBIAN-CVE-2021-47442
In the Linux kernel, the following vulnerability has been resolved: NFC: digital: fix possible memory leak in digitalinsendsddreq 'skb' is allocated in digitalinsendsddreq, but not free when digitalinsendcmd failed, which will cause memory leak. Fix it by freeing 'skb' if digitalinsendcmd return...
SUSE CVE-2010-1083
The processcomplcompat function in drivers/usb/core/devio.c in Linux kernel 2.6.x through 2.6.32, and possibly other versions, does not clear the transfer buffer before returning to userspace when a USB command fails, which might make it easier for physically proximate attackers to obtain sensiti...
Sentry Hardware Sentry KM Information Disclosure Vulnerability
Hardware Sentry KM is a hardware device view from Sentry France. It takes hardware monitoring in TrueSight to a new level by providing a dedicated view in TrueSight Presentation Server. An information disclosure vulnerability exists in Hardware Sentry KM versions prior to 10.0.01, which stems fro...
CVE-2021-31791
In Hardware Sentry KM before 10.0.01 for BMC PATROL, a cleartext password may be discovered after a failure or timeout of a command...
DEBIAN-CVE-2019-15522
An issue was discovered in LINBIT csync2 through 2.0. csyncdaemonsession in daemon.c neglects to force a failure of a hello command when the configuration requires use of SSL...
Unable to unlock iOS or iPadOS devices via Administration Console after upgrading to 13.1
Unable to unlock iPhone/iPad from Citrix Endpoint Management administration console after upgrading to iOS/iPadOS 13.1+. Note:No error message is displayed when command fails. The device ignores the command...
Windows 10 v1903 and v1909 – Citrix Known Issues
Microsoft releases software updates for Windows 10 twice a year through the Semi-Annual Channel. Microsoft released its Semi-Annual Channel called 'May 2019 Update' v1903 in May 2019 and released its nextSemi-Annual Channel called 'November 2019 Update' v1909 in November 2019. This article is...
Propagation Fails with error "Failed to get the end status of the server configuration update."
"Failed to get the end status of the server configuration update." "Failure to notify of configuration update." "An erorr occurred running the command : 'Add-DSFeatureInstances'...
kernel: information leak via userspace USB interface
The processcomplcompat function in drivers/usb/core/devio.c in Linux kernel 2.6.x through 2.6.32, and possibly other versions, does not clear the transfer buffer before returning to userspace when a USB command fails, which might make it easier for physically proximate attackers to obtain sensiti...