UBUNTU-CVE-2024-49858

In the Linux kernel, the following vulnerability has been resolved: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption The TPM event log table is a Linux specific construct, where the data produced by the GetEventLog boot service is cached in memory, and passed on to the OS...

CVE-2024-49858 efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption

In the Linux kernel, the following vulnerability has been resolved: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption The TPM event log table is a Linux specific construct, where the data produced by the GetEventLog boot service is cached in memory, and passed on to the OS...

CVE-2024-49858

CVE-2024-49858: Linux kernel TPM event log handling (efistub/tpm) used EFI_LOADER_DATA, leaving the region unreserved in the EFI 64-bit memory map (via E820) and passed to the kernel via kexec, risking memory corruption. The fix substitutes EFI_ACPI_RECLAIM_MEMORY, which EFI/ACPI treats as reserv...

AZL-51213 CVE-2024-47710 affecting package kernel for versions less than 6.6.56.1-5

In the Linux kernel, the following vulnerability has been resolved: sockmap: Add a condresched in sockhashfree Several syzbot soft lockup reports all have in common sockhashfree If a map with a large number of buckets is destroyed, we need to yield the cpu when needed...

DEBIAN-CVE-2024-47710

In the Linux kernel, the following vulnerability has been resolved: sockmap: Add a condresched in sockhashfree Several syzbot soft lockup reports all have in common sockhashfree If a map with a large number of buckets is destroyed, we need to yield the cpu when needed...

CVE-2024-47722

...

CVE-2024-47722

CVE-2024-47722 entry is rejected/not used and does not represent an active vulnerability.

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the sockmap module not properly handling soft locks in the sockhashfree function...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an improper write to a read-only map in the bpf program...

CVE-2024-49606

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DotsquaresLtd Google Map Locations google-map-locations allows Reflected XSS.This issue affects Google Map Locations: from n/a through = 1.0...

CVE-2024-49606

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Dotsquares Google Map Locations allows Reflected XSS.This issue affects Google Map Locations: from n/a through 1.0...

CVE-2024-49606

The CVE-2024-49606 entry documents a Reflected XSS in the WordPress Google Map Locations plugin (vulnerable: versions n/a through 1.0). Root cause: improper neutralization of input during web page generation. Impact per sources: potential cross-site scripting exposure. Remediation not clearly doc...

CVE-2024-49606 WordPress Google Map Locations plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DotsquaresLtd Google Map Locations google-map-locations allows Reflected XSS.This issue affects Google Map Locations: from n/a through = 1.0...

CVE-2024-49606 WordPress Google Map Locations plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Dotsquares Google Map Locations allows Reflected XSS.This issue affects Google Map Locations: from n/a through 1.0...

PT-2024-33561 · Dotsquares · Dotsquares Google Map Locations

Name of the Vulnerable Software and Affected Versions: Dotsquares Google Map Locations versions n/a through 1.0 Description: The issue is related to improper neutralization of input during web page generation, allowing Reflected XSS. This means an attacker can inject malicious scripts into the...

WordPress plugin Google Map Locations 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerability...

WordPress Google Map Locations plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Google Map Locations versions = 1.0...

WordPress Google Map Locations Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Software Google Map Locations Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-49606 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 792a537d84d3 Credits João Pedro S Alcântara Kinorth...

MAL-2024-9487 Malicious code in @vertiv-co/voidray-sdk-addon-map-file (npm)

--- -= Per source details. Do not edit below this line.=-...

PT-2025-2775

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: There is a potential infinite loop issue that can occur when using a combination of tail calls and freplace in the Linux kernel. This issue arises because the tail call cnt in entry...