211 matches found
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: drm/msm/a6xx: Avoid a nullptr dereference when the speedbin setting fails Calling a6xxdestroy before adrenogpuinit leads to a null pointer dereference on msmgpucleanup: platformsetdrvdatagpu-pdev, NULL; This occurs because...
The vulnerability of the phylib component in the Linux operating system’s kernel allows a hacker to gain elevated privileges within the system.
The vulnerability of the phylib component in the Linux operating system’s kernel is related to memory-related errors after deallocation. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...
The vulnerability of the ethtool component in the Linux operating system’s kernel allows a hacker to gain elevated privileges within the system.
The vulnerability of the ethtool component in the Linux operating system’s kernel is related to memory-related errors after deallocation. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...
kernel: media: edia: dvbdev: fix a use-after-free
In the Linux kernel, the following vulnerability has been resolved: media: edia: dvbdev: fix a use-after-free In dvbregisterdevice, pdvbdev is set equal to dvbdev, which is freed in several error-handling paths. However, pdvbdev is not set to NULL after dvbdev's deallocation, causing...
The vulnerability of the hisi component in the Linux operating system allows a hacker to gain elevated privileges within the system.
The vulnerability of the hisi component in the Linux operating system’s kernel is related to memory management errors after deallocation. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...
The vulnerability of the rtl8xxxu component in the Linux operating system allows a hacker to increase their privileges within the system.
The vulnerability of the rtl8xxxu component in the Linux operating system’s kernel is related to memory usage errors after deallocation in the rtl8xxxustop function. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...
SUSE CVE-2024-49972
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Deallocate DML memory if allocation fails Why When DC state create DML memory allocation fails, memory is not deallocated subsequently, resulting in uninitialized structure that is not NULL. How Deallocate memory...
AZL-52135 CVE-2024-49972 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Deallocate DML memory if allocation fails Why When DC state create DML memory allocation fails, memory is not deallocated subsequently, resulting in uninitialized structure that is not NULL. How Deallocate memory...
AZL-52041 CVE-2024-49972 affecting package kernel 6.6.126.1-1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Deallocate DML memory if allocation fails Why When DC state create DML memory allocation fails, memory is not deallocated subsequently, resulting in uninitialized structure that is not NULL. How Deallocate memory...
DEBIAN-CVE-2024-49972
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Deallocate DML memory if allocation fails Why When DC state create DML memory allocation fails, memory is not deallocated subsequently, resulting in uninitialized structure that is not NULL. How Deallocate memory...
UBUNTU-CVE-2024-49972
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Deallocate DML memory if allocation fails Why When DC state create DML memory allocation fails, memory is not deallocated subsequently, resulting in uninitialized structure that is not NULL. How Deallocate memory...
The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine allows attackers to disclose protected information.
The vulnerability of JavaScript script handlers in Microsoft Edge and Google Chrome browsers relates to the use of memory after deallocation. Exploiting this vulnerability can allow a remote attacker to expose sensitive information through a specially created HTML page...
The vulnerability of the tagstack_clear_entry() function in the src/alloc.c file of the Vim text editor allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the tagstackclearentry function in the src/alloc.c file of the Vim text editor exists due to a mistake in pointer handling after memory deallocation. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...
SUSE CVE-2024-42138
In the Linux kernel, the following vulnerability has been resolved: mlxsw: corelinecards: Fix double memory deallocation in case of invalid INI file In case of invalid INI file mlxswlinecardtypesinit deallocates memory but doesn't reset pointer to NULL and returns 0. In case of any error occurred...
CVE-2024-42138
A double memory deallocation flaw was found in mlxswlinecardtypesinitin the Linux kernel. This issue occurs because pointer is not set to NULL, which may lead to compromised availability...
DEBIAN-CVE-2024-42138
In the Linux kernel, the following vulnerability has been resolved: mlxsw: corelinecards: Fix double memory deallocation in case of invalid INI file In case of invalid INI file mlxswlinecardtypesinit deallocates memory but doesn't reset pointer to NULL and returns 0. In case of any error occurred...
CVE-2024-42138
In the Linux kernel, the following vulnerability has been resolved: mlxsw: corelinecards: Fix double memory deallocation in case of invalid INI file In case of invalid INI file mlxswlinecardtypesinit deallocates memory but doesn't reset pointer to NULL and returns 0. In case of any error occurred...
CVE-2024-42138
In the Linux kernel, the following vulnerability has been resolved: mlxsw: corelinecards: Fix double memory deallocation in case of invalid INI file In case of invalid INI file mlxswlinecardtypesinit deallocates memory but doesn't reset pointer to NULL and returns 0. In case of any error occurred...
CVE-2024-42138 mlxsw: core_linecards: Fix double memory deallocation in case of invalid INI file
In the Linux kernel, the following vulnerability has been resolved: mlxsw: corelinecards: Fix double memory deallocation in case of invalid INI file In case of invalid INI file mlxswlinecardtypesinit deallocates memory but doesn't reset pointer to NULL and returns 0. In case of any error occurred...
CVE-2024-42138
CVE-2024-42138 affects the Linux kernel mlxsw mlxsw_linecard_types_init() and mlxsw_linecards_init() in mlxsw core_linecards. When an invalid INI file triggers deallocation, mlxsw_linecard_types_init() frees memory but does not set the pointer to NULL; if an error occurs after the init() call, ml...