378 matches found
CVE-2023-21200
In onremoveisodatapath of btmisoimpl.h, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
CVE-2023-21200
In onremoveisodatapath of btmisoimpl.h, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
PT-2023-17989 · Google · Android
Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: The issue is related to a possible out of bounds read in the on remove iso data path function of btm iso impl.h due to improper input validation. This could lead to local information disclosure with no...
CVE-2023-2770
A vulnerability classified as critical was found in SourceCodester Online Exam System 1.0. This vulnerability affects unknown code of the file /kelasdosen/data. The manipulation of the argument columns1data leads to sql injection. The attack can be initiated remotely. The exploit has been disclos...
kernel: network backend may cause Linux netfront to use freed SKBs (XSA-405)
An incomplete cleanup flaw was found in the Linux kernel’s Xen networking XDP eXpress Data Path subsystem. This flaw allows a local user to crash the system...
DEBIAN-CVE-2023-26768
Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remote attacker to cause a denial of service via the compileTranslationTable.c and lousetDataPath functions...
AZL-25653 CVE-2023-26768 affecting package liblouis for versions less than 3.26.0-1
Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remote attacker to cause a denial of service via the compileTranslationTable.c and lousetDataPath functions...
UBUNTU-CVE-2023-26768
Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remote attacker to cause a denial of service via the compileTranslationTable.c and lousetDataPath functions...
Liblouis 安全漏洞
Liblouis is an open source Braille translator written in C. A security vulnerability exists in Liblouis version v.3.24.0, which stems from a buffer overflow vulnerability that can be exploited by remote attackers to cause a denial of service via the compileTranslationTable.c and lousetDataPath...
K37283878: Intel I210 network adapter vulnerability CVE-2020-0522
Security Advisory Description Improper initialization in the firmware for the IntelR Ethernet I210 Controller series of network adapters before version 3.30 may allow a privileged user to potentially enable denial of service via local access. CVE-2020-0522 Impact The BIG-IP management network por...
SUSE CVE-2018-1000155
OpenFlow version 1.0 onwards contains a Denial of Service and Improper authorization vulnerability in OpenFlow handshake: The DPID DataPath IDentifier in the featuresreply message are inherently trusted by the controller. that can result in Denial of Service, Unauthorized Access, Network...
SUSE CVE-2019-15752
Docker Desktop Community Edition before 2.1.0.1 allows local users to gain privileges by placing a Trojan horse docker-credential-wincred.exe file in %PROGRAMDATA%\DockerDesktop\version-bin\ as a low-privilege user, and then waiting for an admin or service user to authenticate with Docker, restar...
SUSE CVE-2022-2308
A flaw was found in vDPA with VDUSE backend. There are currently no checks in VDUSE kernel driver to ensure the size of the device config space is in line with the features advertised by the VDUSE userspace application. In case of a mismatch, Virtio drivers config read helpers do not initialize t...
PT-2023-2375 · Liblouis +7 · Liblouis +7
Name of the Vulnerable Software and Affected Versions: Liblouis version 3.24.0 Description: The issue is related to a buffer overflow that can be triggered by a remote attacker, potentially causing a denial of service. This is associated with the compileTranslationTable.c and the lou setDataPath...
kernel: xsk: Fix race at socket teardown
A flaw was found in the Linux kernel's XDP socket support. A race condition in the XSK socket cleanup can cause a NULL pointer dereference and result in a denial of service...
kernel: igb: fix a use-after-free issue in igb_clean_tx_ring
A vulnerability was found in the Linux kernel in the Intel igb driver function igbcleantxring when running in XDP mode. A use-after-free issue can arise from attempting to free skb memory using devkfreeskbany. This issue potentially leads to system instability and memory corruption...
kernel: veth: ensure skb entering GRO are not cloned.
In the Linux kernel, the following vulnerability has been resolved: veth: ensure skb entering GRO are not cloned. After commit d3256efd8e8b "veth: allow enabling NAPI even without XDP", if GRO is enabled on a veth device and TSO is disabled on the peer device, TCP skbs will go through the NAPI...
kernel: veth: ensure skb entering GRO are not cloned.
In the Linux kernel, the following vulnerability has been resolved: veth: ensure skb entering GRO are not cloned. After commit d3256efd8e8b "veth: allow enabling NAPI even without XDP", if GRO is enabled on a veth device and TSO is disabled on the peer device, TCP skbs will go through the NAPI...
kernel: scsi: lpfc: Fix SCSI I/O completion and abort handler deadlock
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix SCSI I/O completion and abort handler deadlock During stress I/O tests with 500+ vports, hard LOCKUP call traces are observed. CPU A: nativequeuedspinlockslowpath+0x192 rawspinlockirqsave+0x32 lpfchandlefcperr+0x4...
kernel: igb: fix a use-after-free issue in igb_clean_tx_ring
A vulnerability was found in the Linux kernel in the Intel igb driver function igbcleantxring when running in XDP mode. A use-after-free issue can arise from attempting to free skb memory using devkfreeskbany. This issue potentially leads to system instability and memory corruption...