102 matches found
DEBIAN-CVE-2021-47372
In the Linux kernel, the following vulnerability has been resolved: net: macb: fix use after free on rmmod platdev-dev-platformdata is released by platformdeviceunregister, use of pclk and hclk is a use-after-free. Since device unregister won't need a clk device we adjust the function call sequen...
UBUNTU-CVE-2021-47372
In the Linux kernel, the following vulnerability has been resolved: net: macb: fix use after free on rmmod platdev-dev-platformdata is released by platformdeviceunregister, use of pclk and hclk is a use-after-free. Since device unregister won't need a clk device we adjust the function call sequen...
CVE-2021-47372 net: macb: fix use after free on rmmod
In the Linux kernel, the following vulnerability has been resolved: net: macb: fix use after free on rmmod platdev-dev-platformdata is released by platformdeviceunregister, use of pclk and hclk is a use-after-free. Since device unregister won't need a clk device we adjust the function call sequen...
SUSE CVE-2024-26653
In the Linux kernel, the following vulnerability has been resolved: usb: misc: ljca: Fix double free in error handling path When auxiliarydeviceadd returns error and then calls auxiliarydeviceuninit, callback function ljcaauxdevrelease calls kfreeauxdev-dev.platformdata to free the parameter data...
DEBIAN-CVE-2024-26653
In the Linux kernel, the following vulnerability has been resolved: usb: misc: ljca: Fix double free in error handling path When auxiliarydeviceadd returns error and then calls auxiliarydeviceuninit, callback function ljcaauxdevrelease calls kfreeauxdev-dev.platformdata to free the parameter data...
UBUNTU-CVE-2024-26653
In the Linux kernel, the following vulnerability has been resolved: usb: misc: ljca: Fix double free in error handling path When auxiliarydeviceadd returns error and then calls auxiliarydeviceuninit, callback function ljcaauxdevrelease calls kfreeauxdev-dev.platformdata to free the parameter data...
CVE-2024-26653 usb: misc: ljca: Fix double free in error handling path
In the Linux kernel, the following vulnerability has been resolved: usb: misc: ljca: Fix double free in error handling path When auxiliarydeviceadd returns error and then calls auxiliarydeviceuninit, callback function ljcaauxdevrelease calls kfreeauxdev-dev.platformdata to free the parameter data...
PT-2024-3469 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a double free error in the Linux kernel's USB driver, specifically in the ljca module. When auxiliary device add returns an error and calls auxiliary device...
DEBIAN-CVE-2020-36786
In the Linux kernel, the following vulnerability has been resolved: media: next staging: media: atomisp: fix memory leak of object flash In the case where the call to lm3554platformdatafunc returns an error there is a memory leak on the error return path of object flash. Fix this by adding an err...
kernel: ASoC: mediatek: mt8173: Enable IRQ when pdata is ready
In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8173: Enable IRQ when pdata is ready If the device does not come straight from reset, we might receive an IRQ before we are ready to handle it. 2.334737 Unable to handle kernel read from unreadable memory at...
SUSE CVE-2019-19075
A memory leak in the ca8210probe function in drivers/net/ieee802154/ca8210.c in the Linux kernel before 5.3.8 allows attackers to cause a denial of service memory consumption by triggering ca8210getplatformdata failures, aka CID-6402939ec86e...
Malicious Package
Overview certifiee is a malicious package. It attempts typosquatting popular packages. The malicious script is base64 obfuscated located in init.py file and tries to steal the current username, platform and IP information and send them to a remote host. Malicious behavior python import getpass...
Malicious Package
Overview requists is a malicious package. This malicious package attempts typosquatting the popular requests package. The malicious script is base64 obfuscated and tries to steal the current username and platform information and send them to a remote host. Malicious behavior python import getpass...
Oracle Commerce 安全漏洞
Oracle Commerce is the United States Oracle Oracle company's set of e-business solutions. Commerce Platform is one of them to provide a multi-functional e-business platform components. Oracle Commerce has a security vulnerability that can be exploited by an attacker to cause unauthorized access t...
PT-2024-10834 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak issue has been resolved in the Linux kernel. The problem occurs when the lm3554 platform data func call returns an error, resulting in a memory leak on the error return...
The vulnerability of the ca8210_probe() function in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the ca8210probe function drivers/net/ieee802154/ca8210.c in the Linux kernel involves an uncontrolled consumption of resources. Exploiting this vulnerability could allow a malicious actor to cause service failures by triggering an error in the ca8210getplatformdata function...
DEBIAN-CVE-2019-19075
A memory leak in the ca8210probe function in drivers/net/ieee802154/ca8210.c in the Linux kernel before 5.3.8 allows attackers to cause a denial of service memory consumption by triggering ca8210getplatformdata failures, aka CID-6402939ec86e...
CVE-2019-19075
A memory leak in the ca8210probe function in drivers/net/ieee802154/ca8210.c in the Linux kernel before 5.3.8 allows attackers to cause a denial of service memory consumption by triggering ca8210getplatformdata failures, aka CID-6402939ec86e...
UBUNTU-CVE-2019-19075
A memory leak in the ca8210probe function in drivers/net/ieee802154/ca8210.c in the Linux kernel before 5.3.8 allows attackers to cause a denial of service memory consumption by triggering ca8210getplatformdata failures, aka CID-6402939ec86e...
ownCloud 10.3.0 stable - Cross-Site Request Forgery Vulnerability
Exploit for linux platform in category web applications Exploit Title: ownCloud 10.3.0 stable - Cross-Site Request Forgery Exploit Author: Ozer Goker Vendor Homepage: https://owncloud.org Software Link: https://owncloud.org/download/ Version: 10.3 CVE: N/A Introduction Your personal cloud...