101 matches found
DEBIAN-CVE-2024-49852
In the Linux kernel, the following vulnerability has been resolved: scsi: elx: libefc: Fix potential use after free in efcnportvportdel The krefput function will call nport-release if the refcount drops to zero. The nport-release release function is efcnportfree which frees "nport". But then we...
block: fix deadlock between sd_remove & sd_release
...
CVE-2021-47089
In the Linux kernel, the following vulnerability has been resolved: kfence: fix memory leak when cat kfence objects Hulk robot reported a kmemleak problem: unreferenced object 0xffff93d1d8cc02e8 size 248: comm "cat", pid 23327, jiffies 4624670141 age 495992.217s hex dump first 32 bytes: 00 40 85 ...
CVE-2021-47089
In the Linux kernel, the following vulnerability has been resolved: kfence: fix memory leak when cat kfence objects Hulk robot reported a kmemleak problem: unreferenced object 0xffff93d1d8cc02e8 size 248: comm "cat", pid 23327, jiffies 4624670141 age 495992.217s hex dump first 32 bytes: 00 40 85 ...
Design/Logic Flaw
In the Linux kernel, the following vulnerability has been resolved: kfence: fix memory leak when cat kfence objects Hulk robot reported a kmemleak problem: unreferenced object 0xffff93d1d8cc02e8 size 248: comm "cat", pid 23327, jiffies 4624670141 age 495992.217s hex dump first 32 bytes: 00 40 85 ...
CVE-2021-47089
In the Linux kernel, the following vulnerability has been resolved: kfence: fix memory leak when cat kfence objects Hulk robot reported a kmemleak problem: unreferenced object 0xffff93d1d8cc02e8 size 248: comm "cat", pid 23327, jiffies 4624670141 age 495992.217s hex dump first 32 bytes: 00 40 85 ...
CVE-2021-47089 kfence: fix memory leak when cat kfence objects
In the Linux kernel, the following vulnerability has been resolved: kfence: fix memory leak when cat kfence objects Hulk robot reported a kmemleak problem: unreferenced object 0xffff93d1d8cc02e8 size 248: comm "cat", pid 23327, jiffies 4624670141 age 495992.217s hex dump first 32 bytes: 00 40 85 ...
CVE-2021-47089
In the Linux kernel, the following vulnerability has been resolved: kfence: fix memory leak when cat kfence objects Hulk robot reported a kmemleak problem: unreferenced object 0xffff93d1d8cc02e8 size 248: comm "cat", pid 23327, jiffies 4624670141 age 495992.217s hex dump first 32 bytes: 00 40 85 ...
PT-2024-7711 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The vulnerability is related to a memory leak in the nft flow offload component of the Linux kernel. Specifically, the issue arises when the direct xmit path is used, and the dst relea...
kernel: use-after-free due to race condition occurring in dvb_ca_en50221.c
A race condition flaw leading to a use-after-free issue was found in the Linux kernel media subsystem in the DVB CA EN50221 interface of the DVB core device driver. It could occur in the dvbcaen50221release function if there is a disconnect after an open, because of the lack of a waitevent. A loc...
kernel: use-after-free due to race condition occurring in dvb_ca_en50221.c
A race condition flaw leading to a use-after-free issue was found in the Linux kernel media subsystem in the DVB CA EN50221 interface of the DVB core device driver. It could occur in the dvbcaen50221release function if there is a disconnect after an open, because of the lack of a waitevent. A loc...
The vulnerability of the l2cap_sock_release function (net/bluetooth/l2cap_sock.c) in the Linux operating system’s kernel allows a attacker to cause a service failure or exert other adverse effects.
The vulnerability of the l2capsockrelease function net/bluetooth/l2capsock.c in Linux operating system kernels is related to the use of memory after it is released. Exploiting this vulnerability can allow an attacker to cause service failures or have other adverse effects...
The vulnerability in the implementation of the NET/ROM network protocol of the Linux operating system allows a perpetrator to compromise the confidentiality, integrity, and accessibility of data.
The vulnerability in the implementation of the NET/ROM network protocol of the Linux operating system is related to the repeated use of the network descriptor socket when a connection has already been established in the nrrelease function within the net/netrom/afnetrom.c module. Exploiting this...
PT-2025-25948 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A potential use-after-free bug has been identified in the Linux kernel. The issue arises from the function raid5 release stripesh dropping the reference to sh, which may cause sh to be...
SUSE CVE-2012-0957
The overriderelease function in kernel/sys.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from kernel stack memory via a uname system call in conjunction with a UNAME26 personality...
PT-2022-36535 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.300 Description: The issue allows the tcp cdg release function to be called multiple times. This is an automated ID intended to aid in discovery of potential security vulnerabilities, and the actual impact...
dlt-daemon 资源管理错误漏洞
The dlt-daemon is the DLT communication interface for GENIVI's ECU. It collects and buffers log messages from one or more DLT users running on the ECU and makes them available to DLT clients upon request. A security vulnerability exists in dlt-daemon version v2.18.8, which stems from the fact tha...
PT-2024-11336 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.13.0-rc7 Description: A vulnerability in the Linux kernel has been resolved, which involved a bad pointer dereference when the ehandler kthread is invalid. The issue occurred when the error handler thread fail...
The vulnerability of the Firefox browser, which allows a remote attacker to trigger a service failure
The vulnerability of Firefox’s browser in the webrtc::VPMContentAnalysis::Release function of the WebRTC component lies in the use of incompatible methods for releasing memory allocated for storing simple-type arrays. Exploiting this vulnerability allows a malicious actor to trigger a service...
Linux Kernel 3.4 < 3.13.2 (Ubuntu 13.10) - 'CONFIG_X86_X32' Arbitrary Write (2)
/ Local root exploit for CVE-2014-0038. https://raw.github.com/saelo/cve-2014-0038/master/timeoutpwn.c Bug: The X86X32 recvmmsg syscall does not properly sanitize the timeout pointer passed from userspace. Exploit primitive: Pass a pointer to a kernel address as timeout for recvmmsg, if the...