219 matches found
The vulnerability of the LoadPartitionTable function in the gpt.cc component of the GPT disk partitioning tool allows attackers to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the LoadPartitionTable function in the gpt.cc component of the GPT disk partitioning tool, fdisk, is related to buffer overflow attacks. Exploiting this vulnerability can allow attackers to access confidential data, compromise its integrity, and even cause service failures...
The vulnerability of the ReadLogicalParts function in the basicmbr.cc component of the GPT disk partitioning tool allows a attacker to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the ReadLogicalParts function in the basicmbr.cc component of the GPT disk partitioning tool fdisk is related to writing beyond buffer boundaries. Exploiting this vulnerability could allow an attacker to access confidential data, compromise its integrity, and even cause servi...
SUSE CVE-2011-1010
Buffer overflow in the macpartition function in fs/partitions/mac.c in the Linux kernel before 2.6.37.2 allows local users to cause a denial of service panic or possibly have unspecified other impact via a malformed Mac OS partition table...
SUSE CVE-2011-1017
Heap-based buffer overflow in the ldmfragadd function in fs/partitions/ldm.c in the Linux kernel 2.6.37.2 and earlier might allow local users to gain privileges or obtain sensitive information via a crafted LDM partition table...
SUSE CVE-2011-1163
The osfpartition function in fs/partitions/osf.c in the Linux kernel before 2.6.38 does not properly handle an invalid number of partitions, which might allow local users to obtain potentially sensitive information from kernel heap memory via vectors related to partition-table parsing...
SUSE CVE-2011-1776
The isgptvalid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensible Firmware Interface EFI GUID Partition Table GPT entry, which allows physically proximate attackers to cause a denial of service heap-based buffer overflow and OOPS or obtain...
SUSE CVE-2015-8946
ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors...
SUSE CVE-2016-5011
The parsedosextended function in partitions/dos.c in the libblkid library in util-linux allows physically proximate attackers to cause a denial of service memory consumption via a crafted MSDOS partition table with an extended partition boot record at zero offset...
SUSE CVE-2019-11690
genranduuid in lib/uuid.c in Das U-Boot v2014.04 through v2019.04 lacks an srand call, which allows attackers to determine UUID values in scenarios where CONFIGRANDOMUUID is enabled, and Das U-Boot is relied upon for UUID values of a GUID Partition Table of a boot device...
SUSE CVE-2020-0256
In LoadPartitionTable of gpt.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege when inserting a malicious USB device, with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
gdisk: possible out-of-bounds-write in LoadPartitionTable of gpt.cc
An out-of-bounds write flaw was found in gdisks' LoadPartitionTable function of 'gpt.cc'. The exploitation of this flaw requires the use of a malicious storage device for example, a USB Stick that can cause a crash when physically inserted into the system and possible local privilege escalation...
Ubuntu 16.04 ESM : util-linux vulnerability (USN-5478-1)
The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5478-1 advisory. Christian Moch and Michael Gruhn discovered that the libblkid library of util-linux did not properly manage memory under certain circumstances. A local attacker...
USN-5478-1 util-linux vulnerability
Christian Moch and Michael Gruhn discovered that the libblkid library of util-linux did not properly manage memory under certain circumstances. A local attacker could possibly use this issue to cause denial of service by consuming all memory through a specially crafted MSDOS partition table...
USN-5478-1: util-linux vulnerability
Christian Moch and Michael Gruhn discovered that the libblkid library of util-linux did not properly manage memory under certain circumstances. A local attacker could possibly use this issue to cause denial of service by consuming all memory through a specially crafted MSDOS partition table...
CVE-2021-30282
Possible out of bound write in RAM partition table due to improper validation on number of partitions provided in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Network...
Design/Logic Flaw
Possible out of bound write in RAM partition table due to improper validation on number of partitions provided in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Network...
CVE-2021-30282
Possible out of bound write in RAM partition table due to improper validation on number of partitions provided in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Network...
CVE-2021-30282
CVE-2021-30282 affects Qualcomm Snapdragon hardware/software components, with a flaw described as an input validation error that fails to validate the number of RAM partitions. This can lead to an out-of-bounds write in the RAM partition table. The vulnerability is associated with multiple Snapdr...
Qualcomm 芯片输入验证错误漏洞
A Qualcomm chip is a chip from Qualcomm Incorporated USA. a way to miniaturize circuits primarily semiconductor devices, but also passive components, etc. and are manufactured from time to time on the surface of semiconductor wafers. An input validation error vulnerability exists in multiple...
ALPINE-CVE-2020-0256
In LoadPartitionTable of gpt.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege when inserting a malicious USB device, with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...