438 matches found
CVE-2025-63647
A NULL pointer dereference in the parsemeta function src/httpddaap.c of owntone-server commit 334beb allows attackers to cause a Denial of Service DoS via sending a crafted DAAP request to the server...
MiracleLinux 7 : libtiff-4.0.3-35.0.2.el7.AXS7 (AXSA:2024-8988:07)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8988:07 advisory. CVE-2024-7006: check return value of TIFFCreateAnonField CVEs: CVE-2024-7006 A null pointer dereference flaw was found in Libtiff via tifdirinfo.c. This issu...
MiracleLinux 8 : net-snmp-5.8-27.el8 (AXSA:2023-5698:03)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5698:03 advisory. net-snmp: NULL Pointer Exception when handling ipDefaultTTL CVE-2022-44792 net-snmp: NULL Pointer Exception when handling pv6IpForwarding...
CVE-2025-63648
A NULL pointer dereference in the dacpreplyplayqueueeditmove function src/httpddacp.c of owntone-server commit b7e385f allows attackers to cause a Denial of Service DoS via sending a crafted DACP request to the server...
CVE-2025-71124
In the Linux kernel, the following vulnerability has been resolved: drm/msm/a6xx: move preemptpreparepostamble after error check Move the call to preemptpreparepostamble after verifying that preemptpostambleptr is valid. If preemptpostambleptr is NULL, dereferencing it in preemptpreparepostamble...
ROS-20260114-7310
A vulnerability in the otx2flows.c component of the Linux kernel is related to pointer dereferencing errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: mtk-cci: Fixed the potential error pointer dereferencing in the probe function. The drv-sramreg pointer could potentially be set to ERRPTR-EPROBEDEFER, which would lead to an error pointer dereferencing. Use...
CVE-2025-15504
A security flaw has been discovered in lief-project LIEF up to 0.17.1. Affected by this issue is the function Parser::parsebinary of the file src/ELF/Parser.tcc of the component ELF Binary Parser. The manipulation results in null pointer dereference. The attack must be initiated from a local...
CVE-2026-21502
CVE-2026-21502 affects iccDEV: prior to version 2.3.1.2, the XML tag parser can dereference a NULL pointer. This vulnerability is patched in 2.3.1.2. Red Hat and other sources confirm the issue and remediation is to upgrade to 2.3.1.2 or later. Impact details specify a NULL pointer dereference in...
CVE-2026-21499 NULL Pointer Dereference in iccDEV XML Parser
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.2, iccDEV is vulnerable to NULL pointer dereference via the XML parser. This issue has been patched in version 2.3.1.2...
Linux Distros Unpatched Vulnerability : CVE-2023-54241
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - MIPS: KVM: Fix NULL pointer dereference After commit 45c7e8af4a5e3f0bea4ac209 MIPS: Remove KVMTE support we get a NULL pointer dereference when creating a KVM...
QNAP Systems QTS和QNAP Systems QuTS hero 代码问题漏洞
QNAP Systems QTS and QNAP Systems QuTS hero are both software with data storage and management capabilities from QNAP Systems of Taiwan, China. A code issue vulnerability exists in QNAP Systems QTS and QNAP Systems QuTS hero that stems from a null pointer dereference and could lead to a denial of...
SUSE CVE-2023-54241
In the Linux kernel, the following vulnerability has been resolved: MIPS: KVM: Fix NULL pointer dereference After commit 45c7e8af4a5e3f0bea4ac209 "MIPS: Remove KVMTE support" we get a NULL pointer dereference when creating a KVM guest: 146.243409 Starting KVM with MIPS VZ extensions 149.849151 CP...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992751)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992751 advisory. In the Linux kernel, the following vulnerability has been resolved: cifs: fix DFS traversal oops without CONFIGCIFSDFSUPCALL When compiled with CONFIGCIFSDFSUPCALL...
EUVD-2023-60505
In the Linux kernel, the following vulnerability has been resolved: usb: typec: bus: verify partner exists in typecaltmodeattention Some usb hubs will negotiate DisplayPort Alt mode with the device but will then negotiate a data role swap after entering the alt mode. The data role swap causes the...
EUVD-2023-60445
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix NULL pointer dereference in 'niwriteinode' Syzbot found the following issue: Unable to handle kernel NULL pointer dereference at virtual address 0000000000000016 Mem abort info: ESR = 0x0000000096000006 EC = 0x25:...
UBUNTU-CVE-2023-54298
In the Linux kernel, the following vulnerability has been resolved: thermal: intel: quarkdts: fix error pointer dereference If allocsocdts fails, then we can just return. Trying to free "socdts" will lead to an Oops...
CVE-2022-50885
In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix NULL-ptr-deref in rxeqpdocleanup when socket create failed There is a null-ptr-deref when mount.cifs over rdma: BUG: KASAN: null-ptr-deref in rxeqpdocleanup+0x2f3/0x360 rdmarxe Read of size 8 at addr 000000000000001...
Sante PACS Server 代码问题漏洞
Sante PACS Server is a medical image storage and communication server from Sante, Inc. A code issue vulnerability exists in Sante PACS Server that stems from improper handling of the HTTP Content-Length header, which can lead to null pointer dereferencing and denial of service...
SUSE SLES12 Security Update : colord (SUSE-SU-2025:4483-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:4483-1 advisory. - Rework fix for CVE-2021-42523 to avoid invalid pointer error during certain installations bsc1250750. Tenable has extracted the preceding description...