Lucene search
+L

101 matches found

RedHat Linux
RedHat Linux
added 2023/11/21 11:50 a.m.5 views

kernel: use-after-free due to race condition occurring in dvb_register_device()

A race condition flaw leading to a use-after-free issue was found in the Linux kernel media subsystem in the DVB core device driver. It could occur in the dvbregisterdevice function due to the fileoperations structure fops being dynamically allocated and later kfreed. A local user could use this...

7CVSS6.6AI score0.00309EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/11/14 3:24 p.m.9 views

kernel: memory leak in ttusb_dec_exit_dvb() in media/usb/ttusb-dec/ttusb_dec.c

A memory leak issue was found in the Linux kernel media subsystem in the TTUSB DEC driver. It could occur in the ttusbdecexitdvb function because of the lack of a dvbfrontenddetach call. A local user could trigger this flaw by repeatedly plugging and unplugging the device, potentially causing a...

4.7CVSS6.6AI score0.00289EPSS
Exploits0References6
OSV
OSV
added 2023/09/26 8:15 a.m.9 views

CLSA-2023-1695715460 kernel: Fix of 24 CVEs

xen/xenbus: don't let xenbusgrantring remove grants in error case CVE-2022-23040 - xen/xenbus: Fix granting of vmalloc'd memory - xen/blkfront: don't use gnttabqueryforeignaccess for mapped status CVE-2022-23036 - xen/grant-table: add gnttabtryendforeignaccess CVE-2022-23036 - xen/blkfront: don't...

7.8CVSS7AI score0.05496EPSS
Exploits13References1
OSV
OSV
added 2023/07/25 2:7 p.m.12 views

CLSA-2023-1690294029 kernel: Fix of 29 CVEs

ALSA: pcm: Fix races among concurrent prealloc proc writes CVE-2022-1048 - ALSA: pcm: Fix races among concurrent prepare and hwparams/hwfree calls CVE-2022-1048 - ALSA: pcm: Fix races among concurrent read/write and buffer changes CVE-2022-1048 - ALSA: pcm: Fix races among concurrent hwparams and...

8.8CVSS7.3AI score0.12966EPSS
Exploits19References1
OSV
OSV
added 2023/04/28 7:55 p.m.8 views

CLSA-2023-1682711481 kernel: Fix of 7 CVEs

mISDN: fix use-after-free bugs in l1oip timer handlers CVE-2022-3565 - media: rc: Fix use-after-free bugs caused by enetxirqsim CVE-2023-1118 - Bluetooth: btsdio: fix use after free bug in btsdioremove due to unfinished work CVE-2023-1989 - proc: procskipspaces shouldn't think it is working on C...

7.8CVSS6.8AI score0.00537EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:7 a.m.2 views

SUSE CVE-2016-1654

The media subsystem in Google Chrome before 50.0.2661.75 does not initialize an unspecified data structure, which allows remote attackers to cause a denial of service invalid read operation via unknown vectors...

6.5CVSS8.8AI score0.01201EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2022/12/08 6:4 p.m.34 views

CVE-2022-45919

A race condition flaw leading to a use-after-free issue was found in the Linux kernel media subsystem in the DVB CA EN50221 interface of the DVB core device driver. It could occur in the dvbcaen50221release function if there is a disconnect after an open, because of the lack of a waitevent. A loc...

7CVSS7.4AI score0.00252EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/11/25 6:2 p.m.33 views

CVE-2022-45885

A race condition flaw leading to a use-after-free issue was found in the Linux kernel media subsystem in the DVB core device driver. It could occur in the dvbfrontend function when closing the device node of dvbfrontend if the device is disconnected. A local user could use this flaw to crash the...

7CVSS6.9AI score0.00314EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2022/11/25 6:2 p.m.34 views

CVE-2022-45884

A race condition flaw leading to a use-after-free issue was found in the Linux kernel media subsystem in the DVB core device driver. It could occur in the dvbregisterdevice function due to the fileoperations structure fops being dynamically allocated and later kfreed. A local user could use this...

6.4CVSS7.3AI score0.00309EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/01/10 12:0 a.m.6 views

Kentico 跨站脚本漏洞

A cross-site scripting vulnerability exists in Kentico Xperience, an ASP.NET-based content management system CMS from Kentico U.S. The vulnerability stems from the fact that the product's media subsystem does not validate input data. An attacker could cause client-side code execution via XML...

6.1CVSS5.8AI score0.008EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2021/02/19 12:0 a.m.6 views

The vulnerability of the media subsystem in Google Chrome web browser allows a hacker to execute arbitrary code.

The vulnerability of the media subsystem in Google Chrome browser is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

7.3CVSS8.3AI score0.01273EPSS
Exploits1References12Affected Software6
BDU FSTEC
BDU FSTEC
added 2020/06/19 12:0 a.m.8 views

The vulnerability of the Google Chrome browser’s media subsystem, which allows a hacker to circumvent content security policies

The vulnerability of the Google Chrome browser’s media subsystem exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to bypass content security policies by using a specially crafted HTML page...

10CVSS7.3AI score0.01294EPSS
Exploits0References10Affected Software5
BDU FSTEC
BDU FSTEC
added 2016/05/05 12:0 a.m.7 views

The vulnerability of Google Chrome browser allows a perpetrator to trigger a service failure.

The vulnerability of the Google Chrome browser’s media subsystem is related to errors during the initialization of undefined data structures. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

4.3CVSS7.1AI score0.01201EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2016/04/18 10:59 a.m.1 views

CVE-2016-1654

The media subsystem in Google Chrome before 50.0.2661.75 does not initialize an unspecified data structure, which allows remote attackers to cause a denial of service invalid read operation via unknown vectors...

6.5CVSS7AI score0.01201EPSS
Exploits0References10
Prion
Prion
added 2016/04/18 10:59 a.m.19 views

Code injection

The media subsystem in Google Chrome before 50.0.2661.75 does not initialize an unspecified data structure, which allows remote attackers to cause a denial of service invalid read operation via unknown vectors...

4.3CVSS6.5AI score0.01201EPSS
Exploits0References10Affected Software5
CVE
CVE
added 2016/04/18 10:0 a.m.84 views

CVE-2016-1654

CVE-2016-1654 relates to the Chromium/Chrome media subsystem where an uninitialized memory read occurs in the media component, leading to a potential denial of service via invalid read operations. The issue was fixed in Chrome/Chromium builds around version 50.0.2661.75. Debian security advisorie...

6.5CVSS7.1AI score0.01201EPSS
Exploits0References10Affected Software3
Debian CVE
Debian CVE
added 2016/04/18 10:0 a.m.38 views

CVE-2016-1654

Removed by vendor...

6.5CVSS8.1AI score0.01201EPSS
Exploits0
Cvelist
Cvelist
added 2016/04/18 10:0 a.m.28 views

CVE-2016-1654

The media subsystem in Google Chrome before 50.0.2661.75 does not initialize an unspecified data structure, which allows remote attackers to cause a denial of service invalid read operation via unknown vectors...

7.3AI score0.01201EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2016/04/18 7:25 a.m.11 views

chromium-browser: uninitialized memory read in media

The media subsystem in Google Chrome before 50.0.2661.75 does not initialize an unspecified data structure, which allows remote attackers to cause a denial of service invalid read operation via unknown vectors...

6.5CVSS7.4AI score0.01201EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2016/04/18 12:0 a.m.26 views

CVE-2016-1654

The media subsystem in Google Chrome before 50.0.2661.75 does not initialize an unspecified data structure, which allows remote attackers to cause a denial of service invalid read operation via unknown vectors...

6.5CVSS6.9AI score0.01201EPSS
Exploits0References3
Rows per page
Query Builder