148 matches found
CVE-2021-38785
There is a NULL pointer deference in the Allwinner R818 SoC Android Q SDK V1.0 camera driver /dev/cedardev that could use the ioctl cmd IOCTLGETIOMMUADDR to cause a system crash...
CVE-2021-33715
A vulnerability has been identified in JT Utilities All versions V13.0.2.0. When parsing specially crafted JT files, a race condition could cause an object to be released before being operated on, leading to NULL pointer deference condition and causing the application to crash. An attacker could...
CVE-2022-49797
In the Linux kernel, the following vulnerability has been resolved: tracing: kprobe: Fix potential null-ptr-deref on traceeventfile in kprobeeventgentestexit When tracegeteventfile failed, genkretprobetest will be assigned as the error code. If module kprobeeventgentest is removed now, the null...
CVE-2025-37748
In the Linux kernel, the following vulnerability has been resolved: iommu/mediatek: Fix NULL pointer deference in mtkiommudevicegroup Currently, mtkiommu calls during probe iommudeviceregister before the hwlist from driver data is initialized. Since iommu probing issue fix, it leads to NULL point...
CVE-2025-32910
CVE-2025-32910 affects libsoup (libsoup3) with a NULL pointer dereference in soup_auth_digest_authenticate() when the server omits the realm parameter in a Digest auth flow. This can cause the libsoup client to crash. Affected versions include libsoup3 prior to 3.0.4-7 (per CBLMariner), and relat...
Hitachi Energy's RTU500 series NULL Pointer Deference (CVE-2024-10037)
A vulnerability exists in the RTU500 web server com- ponent that can cause a denial of service to the RTU500 CMU application if a specially crafted mes- sage sequence is executed on a WebSocket connec- tion. An attacker must be properly authenticated and the test mode function of RTU500 must be...
Hitachi Energy's RTU500 series NULL Pointer Deference (CVE-2024-11499)
A vulnerability exists in RTU500 IEC 60870-4-104 con- trolled station functionality, that allows an authenti- cated and authorized attacker to perform a CMU re- start. The vulnerability can be triggered if certificates are updated while in use on active connections. The affected CMU will...
Azure Linux 3.0 Security Update: kernel (CVE-2024-48881)
"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-48881 advisory. - In the Linux kernel, the following vulnerability has been resolved: bcache: revert replacing ISERRORNULL wi...
CBL Mariner 2.0 Security Update: kernel (CVE-2024-48881)
"The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-48881 advisory. - In the Linux kernel, the following vulnerability has been resolved: bcache: revert replacing ISERRORNULL wi...
Linux Distros Unpatched Vulnerability : CVE-2024-58012
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ASoC: SOF: Intel: hda-dai: Ensure DAI widget is valid during params Each cpu DAI should associate with a widget. However, the topology might not create the righ...
CVE-2024-58012
In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Intel: hda-dai: Ensure DAI widget is valid during params Each cpu DAI should associate with a widget. However, the topology might not create the right number of DAI widgets for aggregated amps. And it will cause NULL...
CVE-2024-58012
In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Intel: hda-dai: Ensure DAI widget is valid during params Each cpu DAI should associate with a widget. However, the topology might not create the right number of DAI widgets for aggregated amps. And it will cause NULL...
CVE-2020-6095
An exploitable denial of service vulnerability exists in the GstRTSPAuth functionality of GStreamer/gst-rtsp-server 1.14.5. A specially crafted RTSP setup request can cause a null pointer deference resulting in denial-of-service. An attacker can send a malicious packet to trigger this vulnerabili...
CVE-2024-48881
In the Linux kernel, the following vulnerability has been resolved: bcache: revert replacing ISERRORNULL with ISERR again Commit 028ddcac477b "bcache: Remove unnecessary NULL point check in node allocations" leads a NULL pointer deference in cachesetflush. 1721 if !ISERRORNULLc-root 1722...
CVE-2024-48881 bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again
In the Linux kernel, the following vulnerability has been resolved: bcache: revert replacing ISERRORNULL with ISERR again Commit 028ddcac477b "bcache: Remove unnecessary NULL point check in node allocations" leads a NULL pointer deference in cachesetflush. 1721 if !ISERRORNULLc-root 1722...
CVE-2024-48881 bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again
In the Linux kernel, the following vulnerability has been resolved: bcache: revert replacing ISERRORNULL with ISERR again Commit 028ddcac477b "bcache: Remove unnecessary NULL point check in node allocations" leads a NULL pointer deference in cachesetflush. 1721 if !ISERRORNULLc-root 1722...
CVE-2024-48881
CVE-2024-48881 concerns the Linux kernel’s bcache implementation. The issue was a NULL pointer dereference risk in cache_set_flush() caused by a changed check: the code could access c->root when previous registration failed before c->root was allocated. The patch reverts the IS_ERR check to...
CVE-2024-49850
In the Linux kernel, the following vulnerability has been resolved: bpf: correctly handle malformed BPFCORETYPEIDLOCAL relos In case of malformed relocation record of kind BPFCORETYPEIDLOCAL referencing a non-existing BTF type, function bpfcorecalcreloinsn would cause a null pointer deference. Fi...
CVE-2024-49850 bpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos
In the Linux kernel, the following vulnerability has been resolved: bpf: correctly handle malformed BPFCORETYPEIDLOCAL relos In case of malformed relocation record of kind BPFCORETYPEIDLOCAL referencing a non-existing BTF type, function bpfcorecalcreloinsn would cause a null pointer deference. Fi...
CVE-2024-49850
The CVE affects the Linux kernel: a malformed BPF_CORE_TYPE_ID_LOCAL relocation referencing a non-existing BTF type can trigger a NULL pointer dereference in bpf_core_calc_relo_insn. The issue is fixed by adding an upper-call-stack check to reject malformed relocations passed from user space. Rep...