346 matches found
CVE-2022-1419
The root cause of this vulnerability is that the ioctl$DRMIOCTLMODEDESTROYDUMB can decrease refcount of drmvgemgemobject created in vgemgemdumbcreate concurrently, and vgemgemdumbcreate will access the freed drmvgemgemobject...
CVE-2022-1419
The root cause of this vulnerability is that the ioctl$DRMIOCTLMODEDESTROYDUMB can decrease refcount of drmvgemgemobject created in vgemgemdumbcreate concurrently, and vgemgemdumbcreate will access the freed drmvgemgemobject...
Microsoft Windows Push Notifications Elevation of Privilege Vulnerability
Microsoft Windows Push Notifications is a push notification service from Microsoft Corporation USA. It provides a reliable way to deliver new updates.Microsoft Windows Push Notifications suffers from an elevation of privilege vulnerability. The vulnerability stems from improper handling of...
Microsoft Windows Digital Media Receiver Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists in Microsoft Windows Digital Media Receiver, a desktop operating system from Microsoft Corporation. The vulnerability stems from improper handling of concurrent access when concurrent code needs mutually exclusive access to shared resources during th...
Microsoft Windows Storage Spaces Controller Elevation of Privilege Vulnerability (CNVD-2022-70064)
An elevation-of-privilege vulnerability exists in Microsoft Windows Storage Spaces Controller, a driver necessary to provide storage space functionality for Microsoft Corporation. The vulnerability stems from improper handling of concurrent access when concurrent code needs to mutually exclusive...
Microsoft Windows Storage Spaces Controller 竞争条件问题漏洞
An elevation-of-privilege vulnerability exists in Microsoft Windows Storage Spaces Controller, a driver necessary to provide storage space functionality for Microsoft Corporation. The vulnerability stems from improper handling of concurrent access when concurrent code needs to mutually exclusive...
Microsoft Windows 竞争条件问题漏洞
An elevation of privilege vulnerability exists in Microsoft Windows Digital Media Receiver, a desktop operating system from Microsoft Corporation. The vulnerability stems from improper handling of concurrent access when concurrent code needs mutually exclusive access to shared resources during th...
Microsoft Windows Push Notifications 竞争条件问题漏洞
Microsoft Windows Push Notifications is a push notification service from Microsoft Corporation USA. It provides a reliable way to deliver new updates.Microsoft Windows Push Notifications suffers from an elevation of privilege vulnerability. The vulnerability stems from improper handling of...
CVE-2022-1419
The root cause of this vulnerability is that the ioctl$DRMIOCTLMODEDESTROYDUMB can decrease refcount of drmvgemgemobject created in vgemgemdumbcreate concurrently, and vgemgemdumbcreate will access the freed drmvgemgemobject...
PT-2021-4740 · Apple · Webkit +1
Name of the Vulnerable Software and Affected Versions: Mac OS affected versions not specified Description: The issue is related to a module for displaying web pages in WebKit, which is part of the Mac OS operating system family. It involves the possibility of concurrent execution using a shared...
Huawei HarmonyOS 竞争条件问题漏洞
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A competitive condition issue vulnerability exists in Huawei HarmonyOS, which arises from improper handling of concurrent accesses when a component of the...
GHSA-JWPH-QP5H-F9WJ Data races in bunch
An issue was discovered in the bunch crate through 2020-11-12 for Rust. Affected versions of this crate unconditionally implements Send/Sync for Bunch. This allows users to insert T: !Sync to Bunch. It is possible to create a data race to a T: !Sync by invoking the Bunch::get API which returns &T...
Data races in async-coap
An issue was discovered in the async-coap crate through 2020-12-08 for Rust. Affected versions of this crate implement Send/Sync for ArcGuard with no trait bounds on RC. This allows users to send RC: !Send to other threads and also allows users to concurrently access Rc: !Sync from multiple...
Data races in parc
In the affected versions of this crate, LockWeak unconditionally implemented Send with no trait bounds on T. LockWeak doesn't own T and only provides &T. This allows concurrent access to a non-Sync T, which can cause undefined behavior like data races...
PJSIP 竞争条件问题漏洞
PJSIP is a free and open source multimedia communications library written in C that implements standards-based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE.A contention problem vulnerability exists in PJSIP, which stems from improper handling of concurrent access when concurrent code need...
PT-2021-7946 · Linux +4 · Linux Kernel +4
Name of the Vulnerable Software and Affected Versions: Linux Kernel affected versions not specified Description: A flaw was found in the pfn swap entry to page function in the memory management subsystem of the Linux Kernel. This issue is related to a race condition and can be exploited by an...
CVE-2021-29777
IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 9.7, 10.1, 10.5, 11.1, and 11.5, under specific circumstance of a table being dropped while being accessed in another session, could allow an authenticated user to cause a denial of srevice IBM X-Force ID: 203031...
IBM DB2 安全漏洞
IBM DB2 is a set of relational database management system from IBM in the United States. The system executes on UNIX, Linux, IBMi, z/OS, and Windows server versions. A security vulnerability exists in IBM Db2 for Linux, UNIX, and Windows including Db2 Connect Server that stems from a specific...
PT-2024-11285 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a race condition in the snd seq timer open function, where the timer instance per queue is exclusive, but concurrent accesses are not properly managed. This can...
Google Android Competitive Conditions Issue Vulnerability
Google Android is a Linux-based open source operating system from the USGoogleOpen Handheld Alliance Google. Google Android OS suffers from a competitive conditions issue vulnerability that arises from improper handling of concurrent access when concurrent code requires mutually exclusive access ...