90 matches found
CVE-2024-26703
A NULL pointer dereference flaw was found in the Linux kernel’s trace functionality. This flaw allows a local privileged user to crash the system...
CVE-2023-52631
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix an NULL dereference bug The issue here is when this is called from ntfsloadattrlist. The "size" comes from le32tocpuattr-res.datasize so it can't overflow on a 64bit systems but on 32bit systems the "+ 1023" can...
Linux kernel security vulnerabilities
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a merge of MMIOs that causes deleted list entries to be dereferenced...
AZL-39884 CVE-2024-26596 affecting package kernel for versions less than 6.6.57.1-1
In the Linux kernel, the following vulnerability has been resolved: net: dsa: fix netdevpriv dereference before check on non-DSA netdevice events After the blamed commit, we started doing this dereference for every NETDEVCHANGEUPPER and NETDEVPRECHANGEUPPER event in the system. static inline stru...
squid: NULL pointer dereference in the gopher protocol code
Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway. The gopher protocol is always available and enabled in Squid. This issue may lead to a remote denial ...
PT-2023-8712 · Elfutils +3 · Elfutils +3
Name of the Vulnerable Software and Affected Versions: elfutils version 0.189 Description: The issue is related to a NULL pointer dereference via the handle verdef function at readelf.c in the elfutils utility. This could allow an attacker to cause a denial of service. Recommendations: For elfuti...
kernel: drm: Fix potential null-ptr-deref in drm_vblank_destroy_worker()
A flaw was found in the DRM subsystem in the Linux kernel. A NULL pointer dereference can be triggered due to a missing check, causing a system crash and resulting in a denial of service...
The vulnerability of the ReadSVGImage() function in the ImageMagick component coders/svg.c, which allows a hacker to cause a service failure.
The vulnerability of the ReadSVGImage function in the ImageMagick console graphics editor’s coders/svg.c component is related to pointer dereferencing errors. Exploiting this vulnerability allows an attacker to cause a service failure...
PT-2023-34856 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.165 Description: The issue concerns the xhci component of the Linux Kernel, where an endpoint is not properly validated before being dereferenced. This could potentially lead to security vulnerabilities,...
PT-2022-35090 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.3 Description: A null pointer dereference bug was identified. The actual impact and attack plausibility have not yet been proven. This issue was introduced in version v5.17 and fixed in Linux Kernel version...
AZL-10820 CVE-2022-1263 affecting package kernel for versions less than 5.15.67.1-4
A NULL pointer dereference issue was found in KVM when releasing a vCPU with dirty ring support enabled. This flaw allows an unprivileged local attacker on the host to issue specific ioctl calls, causing a kernel oops condition that results in a denial of service...
DEBIAN-CVE-2021-4043
NULL Pointer Dereference in GitHub repository gpac/gpac prior to 1.1.0...
Moddable SDK 代码问题漏洞
Moddable SDK is a software development kit SDK for IoT embedded software development from Moddable, Inc. A denial of service vulnerability exists in Moddable SDK v11.5.0, which stems from the presence of a NULL pointer dereference. An attacker could exploit this vulnerability to cause a denial of...
heif 代码问题漏洞
HEIF refers to High Efficiency Image File Format, a file format for single images or image sequences. nalutil.cpp in HEIF 3.6.2 and earlier versions of nalutil.cpp contains a null pointer dereference vulnerability in the convertByteStreamToRBSP function. An attacker could exploit this vulnerabili...
GPAC 代码问题漏洞
GPAC is a multimedia framework for rich media and is distributed under the LGPL license. gfmediaexportfilters function in GPAC version 1.0.1 is vulnerable to a null pointer dereference. An attacker could exploit this vulnerability to cause a denial of service via a specially crafted file in the...
ACRN 代码问题漏洞
ACRN is an open source project released by the Linux Foundation, which is a hypervisor designed for IoT and embedded devices. A null pointer dereference vulnerability exists in devicemodel/hw/pci/xhci.c in versions prior to ACRN 2.5. No details of the vulnerability are provided at this time...
UBUNTU-CVE-2020-25741
fdctrlwritedata in hw/block/fdc.c in QEMU 5.0.0 has a NULL pointer dereference via a NULL block pointer for the current drive...
PT-2020-8503 · Adns +2 · Adns +2
Name of the Vulnerable Software and Affected Versions: adns versions prior to 1.5.2 Description: An issue was discovered in adns that corrupts a pointer when a nameserver speaks first because of a wrong number of pointer dereferences. This bug may well be exploitable as a remote code execution...
CVE-2019-14876
The CVE-2019-14876 issue affects the newlib libc library, specifically the __lshift function in the mprec.c area. All versions prior to 3.3.0 are affected because Balloc is used to allocate a big integer without verifying allocation success; if the allocation fails, access to b1 can trigger a nul...
DEBIAN-CVE-2019-19036
btrfsrootnode in fs/btrfs/ctree.c in the Linux kernel through 5.3.12 allows a NULL pointer dereference because rcudereferenceroot-node can be zero...