6501 matches found
UBUNTU-CVE-2022-48873
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Don't remove map on createrprocess and devicerelease Do not remove the map from the list on error path in fastrpcinitcreateprocess, instead call fastrpcmapput, to avoid use-after-free. Do not remove it on...
CVE-2022-48872
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix use-after-free race condition for maps It is possible that in between calling fastrpcmapget until map-fl-lock is taken in fastrpcfreemap, another thread can call fastrpcmaplookup and get a reference to a map th...
CVE-2024-43877
In the Linux kernel, the following vulnerability has been resolved: media: pci: ivtv: Add check for DMA map result In case DMA fails, 'dma-SGlength' is 0. This value is later used to access 'dma-SGarraydma-SGlength - 1', which will cause out of bounds access. Add check to return early on invalid...
UBUNTU-CVE-2024-43877
In the Linux kernel, the following vulnerability has been resolved: media: pci: ivtv: Add check for DMA map result In case DMA fails, 'dma-SGlength' is 0. This value is later used to access 'dma-SGarraydma-SGlength - 1', which will cause out of bounds access. Add check to return early on invalid...
CVE-2024-43877
In the Linux kernel, the following vulnerability has been resolved: media: pci: ivtv: Add check for DMA map result In case DMA fails, 'dma-SGlength' is 0. This value is later used to access 'dma-SGarraydma-SGlength - 1', which will cause out of bounds access. Add check to return early on invalid...
kernel: bpf, sockmap: Don't let sock_map_{close,destroy,unhash} call itself
In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Don't let sockmapclose,destroy,unhash call itself sockmap proto callbacks should never call themselves by design. Protect against bugs like 1 and break out of the recursive loop to avoid a stack overflow in favor of...
kernel: mm/hugetlb: fix missing hugetlb_lock for resv uncharge
CVE-2024-36000 addresses a synchronization issue in the Linux kernel's management of huge pages. The problem arises when multiple threads modify the reservation map concurrently without proper locking, leading to potential inconsistencies and system instability...
kernel: bpf, sockmap: Don't let sock_map_{close,destroy,unhash} call itself
In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Don't let sockmapclose,destroy,unhash call itself sockmap proto callbacks should never call themselves by design. Protect against bugs like 1 and break out of the recursive loop to avoid a stack overflow in favor of...
CVE-2024-43877 media: pci: ivtv: Add check for DMA map result
In the Linux kernel, the following vulnerability has been resolved: media: pci: ivtv: Add check for DMA map result In case DMA fails, 'dma-SGlength' is 0. This value is later used to access 'dma-SGarraydma-SGlength - 1', which will cause out of bounds access. Add check to return early on invalid...
CVE-2024-43877
In the Linux kernel, the following vulnerability has been resolved: media: pci: ivtv: Add check for DMA map result In case DMA fails, 'dma-SGlength' is 0. This value is later used to access 'dma-SGarraydma-SGlength - 1', which will cause out of bounds access. Add check to return early on invalid...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a file map counting problem in the arm64/mm component when handling invalid pmd...
itsourcecode Project Expense Monitoring System SQL注入漏洞
itsourcecode Project Expense Monitoring System is a project expense monitoring system from itsourcecode. A SQL injection vulnerability exists in itsourcecode Project Expense Monitoring System version 1.0, which stems from some unknown functionality in the file print.php, where manipulation of the...
PT-2024-38700 · Unknown · Itsourcecode Project Expense Monitoring System
Name of the Vulnerable Software and Affected Versions: itsourcecode Project Expense Monitoring System version 1.0 Description: A critical issue affects some unknown functionality of the file print.php. The manipulation of the map id argument leads to SQL injection. This issue can be exploited...
SUSE CVE-2024-42314
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix extent map use-after-free when adding pages to compressed bio At addrabiopages we are accessing the extent map to calculate 'addsize' after we dropped our reference on the extent map, resulting in a use-after-free. Fix...
DEBIAN-CVE-2024-43819
In the Linux kernel, the following vulnerability has been resolved: kvm: s390: Reject memory region operations for ucontrol VMs This change rejects the KVMSETUSERMEMORYREGION and KVMSETUSERMEMORYREGION2 ioctls when called on a ucontrol VM. This is necessary since ucontrol VMs have kvm-arch.gmap s...
UBUNTU-CVE-2024-43819
In the Linux kernel, the following vulnerability has been resolved: kvm: s390: Reject memory region operations for ucontrol VMs This change rejects the KVMSETUSERMEMORYREGION and KVMSETUSERMEMORYREGION2 ioctls when called on a ucontrol VM. This is necessary since ucontrol VMs have kvm-arch.gmap s...
DEBIAN-CVE-2024-42314
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix extent map use-after-free when adding pages to compressed bio At addrabiopages we are accessing the extent map to calculate 'addsize' after we dropped our reference on the extent map, resulting in a use-after-free. Fix...
AZL-48018 CVE-2024-42314 affecting package kernel for versions less than 6.6.47.1-1
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix extent map use-after-free when adding pages to compressed bio At addrabiopages we are accessing the extent map to calculate 'addsize' after we dropped our reference on the extent map, resulting in a use-after-free. Fix...
DEBIAN-CVE-2024-42275
In the Linux kernel, the following vulnerability has been resolved: drm/client: Fix error code in drmclientbuffervmaplocal This function accidentally returns zero/success on the failure path. It leads to locking issues and an uninitialized mapcopy in the caller...
UBUNTU-CVE-2024-42275
In the Linux kernel, the following vulnerability has been resolved: drm/client: Fix error code in drmclientbuffervmaplocal This function accidentally returns zero/success on the failure path. It leads to locking issues and an uninitialized mapcopy in the caller...