57 matches found
The vulnerability of theEncodeAlphaInternal() function in the libwebp library allows for manipulation of image encoding and decoding processes in the WebP format by browsers such as Mozilla Firefox, Firefox ESR, and the email client Thunderbird. This vulnerability enables a malicious actor to cause service interruptions.
The vulnerability of theEncodeAlphaInternal function in the libwebp library, which is used for encoding and decoding images in the WebP format for browsers such as Mozilla Firefox, Firefox ESR, and the Thunderbird email client, is related to a repeated memory release mechanism. Exploiting this...
Linux kernel 资源管理错误漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A resource management error vulnerability exists in versions of Linux kernel prior to 6.1.11, which stems from a confusion in the instructions responsible for freeing memory in...
Qualcomm 芯片安全漏洞
A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuitry mainly semiconductor devices, but also passive components, etc. and is manufactured from time to time on the surface of semiconductor wafers. A security vulnerability exists in some Qualcomm products that ste...
The vulnerability of the tun_free_netdev() function in Linux kernel-based TUN/TAP virtual network drivers allows a attacker to cause service failure or gain increased privileges.
The vulnerability of the tunfreenetdev function in Linux’s TUN/TAP virtual network drivers is related to the repeated release of previously released memory. Exploiting this vulnerability can allow an attacker to cause service failures or increase their privileges...
The vulnerability of the __sys_socket_file() function in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the syssocketfile function in the Linux operating system’s kernel is related to the repeated release of memory. Exploiting this vulnerability could allow an attacker to cause a service failure...
SUSE CVE-2021-3544
Several memory leaks were found in the virtio vhost-user GPU device vhost-user-gpu of QEMU in versions up to and including 6.0. They exist in contrib/vhost-user-gpu/vhost-user-gpu.c and contrib/vhost-user-gpu/virgl.c due to improper release of memory i.e., free after effective lifetime...
PT-2023-9422 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to errors in memory release in the io uring component of the Linux kernel. Exploitation of this issue may allow an attacker to cause a denial of service. The probl...
CVE-2021-46867
The HWKEYMASTER module has a problem in releasing memory.Successful exploitation of this vulnerability may result in out-of-bounds memory access...
CVE-2022-22204
An Improper Release of Memory Before Removing Last Reference vulnerability in the Session Initiation Protocol SIP Application Layer Gateway ALG of Juniper Networks Junos OS allows unauthenticated network-based attacker to cause a partial Denial of Service DoS. On all MX and SRX platforms, if the...
CVE-2022-22168
An Improper Validation of Specified Type of Input vulnerability in the kernel of Juniper Networks Junos OS allows an unauthenticated adjacent attacker to trigger a Missing Release of Memory after Effective Lifetime vulnerability. Continued exploitation of this vulnerability will eventually lead t...
UBUNTU-CVE-2021-3544
Several memory leaks were found in the virtio vhost-user GPU device vhost-user-gpu of QEMU in versions up to and including 6.0. They exist in contrib/vhost-user-gpu/vhost-user-gpu.c and contrib/vhost-user-gpu/virgl.c due to improper release of memory i.e., free after effective lifetime...
PT-2021-3092
Name of the Vulnerable Software and Affected Versions Microsoft HTTP Protocol Stack versions prior to the fixed version Description The issue is related to a memory usage problem after memory release in the HTTP Protocol Stack of Microsoft Windows operating systems. This can be exploited by a...
The vulnerability of the usm_free_usmStateReference function in the software for deploying and using the SNMP protocol Net-SNMP allows a attacker to trigger a service failure.
The vulnerability of the usmfreeusmStateReference function in the software for deploying and using the SNMP protocol Net-SNMP is due to repeated memory release. Exploiting this vulnerability can allow a malicious actor to cause service failures through specially crafted GetBulk requests...
The vulnerability of the Junos operating system’s kernel allows a attacker to trigger an emergency shutdown of the application.
The vulnerability of the Junos operating system’s kernel is related to the improper release of memory before deleting the last reference. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause an unexpected termination of the application...
The vulnerability of the `gdImageWebPtr` function in the GD Graphics Library allows attackers to exert undefined effects.
The vulnerability of the gdImageWebPtr function in the GD Graphics Library is related to the repeated release of memory. Exploiting this vulnerability can allow an attacker, operating remotely, to cause unpredictable effects by using large values for width and height...
The vulnerability of the Cisco Wireless LAN Controller 2100 software allows a malicious individual to cause service failure.
Vulnerability exists in Cisco Wireless LAN Controller WLC devices due to improper memory release. This allows malicious actors operating remotely to trigger a service failure by sending frequent WebAuth authorization requests...
The vulnerability of the Cisco Wireless LAN Controller 4400 software allows a malicious individual to cause service failure.
Vulnerability exists in Cisco Wireless LAN Controller WLC devices due to improper memory release. This allows malicious actors operating remotely to trigger a service failure by sending frequent WebAuth authorization requests...