914 matches found
kernel: Slab-out-of-bound read in compare_netdev_and_ip
A vulnerability was found in comparenetdevandip in drivers/infiniband/core/cma.c in RDMA in the Linux kernel. An improper cleanup results in an out-of-boundary read. This flaw allows a local user to crash or escalate privileges on the system...
OESA-2023-1896 qemu security update
QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to allocate and initialize a huge number of page tables to be used...
kernel: RDMA/rxe: Fix BUG: KASAN: null-ptr-deref in rxe_qp_do_cleanup
A flaw was found in the rdmarxe module in the Linux kernel. A NULL pointer dereference can be triggered when an error occurs due to an improper check, resulting in a denial of service...
kernel: RDMA/rxe: Fix error unwind in rxe_create_qp()
In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix error unwind in rxecreateqp In the function rxecreateqp, rxeqpfrominit is called to initialize qp, internally things like the spin locks are not setup until rxeqpinitreq. If an error occures before this point then t...
SUSE CVE-2023-5482
Insufficient data validation in USB in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...
UBUNTU-CVE-2023-25775
Improper access control in the IntelR Ethernet Controller RDMA driver for linux before version 1.9.30 may allow an unauthenticated user to potentially enable escalation of privilege via network access...
OESA-2023-1474 qemu security update
QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to execute HW commands when shared buffers are not yet allocated,...
kernel: RDMA/siw: Fix duplicated reported IW_CM_EVENT_CONNECT_REPLY event
In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix duplicated reported IWCMEVENTCONNECTREPLY event If siwrecvmparr returns -EAGAIN, it means that the MPA reply hasn't been received completely, and should not report IWCMEVENTCONNECTREPLY in this case. This may trigge...
kernel: RDMA/rxe: Fix error unwind in rxe_create_qp()
In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix error unwind in rxecreateqp In the function rxecreateqp, rxeqpfrominit is called to initialize qp, internally things like the spin locks are not setup until rxeqpinitreq. If an error occures before this point then t...
kernel: RDMA/rxe: Fix mr->map double free
A double-free vulnerability was found in the Linux kernel RDMA RXE soft-RoCE driver's memory region handling. A local user with access to RDMA userspace verbs can register a memory region with parameters that cause initialization to fail, triggering error handling code that frees the mr-map...
kernel: RDMA/rxe: Fix BUG: KASAN: null-ptr-deref in rxe_qp_do_cleanup
A flaw was found in the rdmarxe module in the Linux kernel. A NULL pointer dereference can be triggered when an error occurs due to an improper check, resulting in a denial of service...
kernel: RDMA/hfi1: Prevent panic when SDMA is disabled
A possible NULL pointer dereference was observed in the Linux kernel in hfil module. This may lead to kernel panic and then crash...
The vulnerability of the Linux operating system’s kernel InfiniBand driver allows a hacker to trigger a service failure or increase their privileges.
The vulnerability in the Linux operating system’s kernel InfiniBand driver is related to the improper preparation of parameters for the rdmabindaddr function. This leads to reading beyond the allocated memory boundary in the comparenetdevandip function within the drivers/infiniband/core/cma.c...
OESA-2023-1276 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: The specific flaw exists within the DPT I2O Controller driver. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this in conjunction with other vulnerabilities to...
CVE-2023-21503
Potential buffer overflow vulnerability in mmLteInterRatManagement.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackers to cause invalid memory access...
CVE-2023-21504
Potential buffer overflow vulnerability in mmPlmncoordination.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackers to cause invalid memory access...
CVE-2023-21494
Potential buffer overflow vulnerability in auth api in mmAuthentication.c in Shannon baseband prior to SMR May-2023 Release 1 allows remote attackers to cause invalid memory access...
PT-2023-18259 · Unknown · Shannon Baseband
Name of the Vulnerable Software and Affected Versions: Shannon baseband versions prior to SMR May-2023 Release 1 Description: A potential buffer overflow issue in the mm Plmncoordination.c file allows remote attackers to cause invalid memory access. Recommendations: For versions prior to SMR...
PT-2023-18258 · Unknown · Shannon Baseband
Name of the Vulnerable Software and Affected Versions: Shannon baseband versions prior to SMR May-2023 Release 1 Description: The issue is related to a potential buffer overflow vulnerability in the mm LteInterRatManagement.c file. This vulnerability allows remote attackers to cause invalid memor...
SAMSUNG Mobile devices 安全漏洞
SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability in SAMSUNG Mobile devices SMR May-2023 Release 1 version 1 previously existed in the auth api in mmAuthentication.c in the...