CVE-2021-30837

A memory consumption issue was addressed with improved memory handling. This issue is fixed in iOS 15 and iPadOS 15, watchOS 8, tvOS 15. An application may be able to execute arbitrary code with kernel privileges...

Linux kernel 安全漏洞

Linux kernel is the kernel used by the Linux Foundation's open source operating system, Linux. Linux kernel 5.14-rc3 is vulnerable due to a type obfuscation flaw in eBPF program processing. By executing a carefully crafted eBPF program, an authenticated attacker could exploit this vulnerability t...

The vulnerability of the hci_sock_bound_ioctl() function in the HCI subsystem of the Linux operating system allows a attacker to execute arbitrary code in the kernel context.

The vulnerability of the hcisockboundioctl function in the HCI subsystem of the Linux operating system arises from the simultaneous execution using a shared resource with incorrect synchronization of the “race condition”. Exploiting this vulnerability allows an attacker to execute arbitrary code ...

The vulnerability of the eBPF subsystem in the Linux operating system, related to reading beyond the buffer in memory, allows a hacker to execute arbitrary code in the kernel context.

The vulnerability of the eBPF subsystem in the Linux operating system is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code in the kernel context...

The vulnerability of the bpf_ringbuf_reserve() function in the Linux operating system, related to writing beyond the buffer boundaries in memory, allows a attacker to execute arbitrary code in the kernel context.

The vulnerability of the bpfringbufreserve function in the Linux operating system is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code in the kernel context...

DEBIAN-CVE-2021-38300

arch/mips/net/bpfjit.c in the Linux kernel before 5.4.10 can generate undesirable machine code when transforming unprivileged cBPF programs, allowing execution of arbitrary code within the kernel context. This occurs because conditional branches can exceed the 128 KB limit of the MIPS architectur...

Apple iPadOS 缓冲区错误漏洞

Apple iPadOS is a suite of operating systems from Apple Inc. for the iPad tablet computer. Apple iPadOS suffers from a buffer error vulnerability that originates from a boundary error in the Attachment Manager. An attacker can exploit the vulnerability to trigger excessive memory consumption and...

PlayStation: size_t-to-int vulnerability in exFAT leads to memory corruption via malformed USB flash drives

Summary A heap-based buffer overflow can be triggered by a malformed exFAT USB flash drive. Vulnerability The vulnerability is in Sony's exFAT implementation where there is an integer truncation from 64bit to 32bit on a size variable that is used to allocate the up-case table: c int...

CVE-2021-30793

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. An application may be able to execute arbitrary code with kernel privileges...

CVE-2021-30770

A logic issue was addressed with improved validation. This issue is fixed in iOS 14.7, tvOS 14.7, watchOS 7.6. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations...

CVE-2021-30766

An out-of-bounds write was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. An application may be able to execute arbitrary code with kernel privileges...

CVE-2021-30770

A logic issue was addressed with improved validation. This issue is fixed in iOS 14.7, tvOS 14.7, watchOS 7.6. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations...

CVE-2021-30805

A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. An application may be able to execute arbitrary code with kernel privileges...

Code injection

A logic issue was addressed with improved validation. This issue is fixed in iOS 14.7, tvOS 14.7, watchOS 7.6. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations...

CVE-2021-30770

A logic issue was addressed with improved validation. This issue is fixed in iOS 14.7, tvOS 14.7, watchOS 7.6. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations...

CVE-2021-30935

A logic issue was addressed with improved validation. This issue is fixed in Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. An application may be able to execute arbitrary code with kernel privileges...

CVE-2021-30933

A race condition was addressed with improved state handling. This issue is fixed in macOS Monterey 12.0.1, macOS Big Sur 11.6. A malicious application may be able to execute arbitrary code with kernel privileges...

CVE-2021-30914

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 15.1 and iPadOS 15.1. An application may be able to execute arbitrary code with kernel privileges...

CVE-2021-30894

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 15.1 and iPadOS 15.1, tvOS 15.1. An application may be able to execute arbitrary code with kernel privileges...

CVE-2021-30869

A type confusion issue was addressed with improved state handling. This issue is fixed in iOS 12.5.5, iOS 14.4 and iPadOS 14.4, macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, Security Update 2021-006 Catalina. A malicious application may be able to execute...