547 matches found
CVE-2019-19072
A flaw was found in the way the predicateparse function in the tracing subsystem of the Linux kernel handled resource cleanup on error. This flaw allows an attacker with the ability to produce the error to crash the system. Mitigation Mitigation for this issue is either not available or the...
Important: kernel
Issue Overview: A flaw was found in the Linux kernel. The cryptoreport function mishandles resource cleanup on error. A local attacker able to induce the error conditions could use this flaw to crash the system. The highest threat from this vulnerability is to system availability. CVE-2019-19062 ...
CVE-2019-19077
A memory leak flaw was found in the Broadcom NetXtreme HCA driver in the Linux kernel, in the way it handled resource cleanup on the copy to userspace error. This flaw allows a local attacker to trigger this error and crash the system. Mitigation In order to mitigate this issue it is possible to...
CVE-2019-19065
A flaw was found in the Linux kernel. The Intel OPA Gen1 driver mishandles resource cleanup. An attacker able to induce low memory condition on the system could use this flaw to crash the system. The highest threat from this vulnerability is to system availability. Mitigation In order to mitigate...
CVE-2019-19062
A flaw was found in the Linux kernel. The cryptoreport function mishandles resource cleanup on error. A local attacker able to induce the error conditions could use this flaw to crash the system. The highest threat from this vulnerability is to system availability. Mitigation In order to mitigate...
CVE-2019-19058
A flaw was found in the Linux kernel. The Intel Wireless WiFi MVM Firmware driver mishandles resource cleanup during device coredump. An attacker able to trigger the device coredump and system-wide out of memory conditions at the same time could use this flaw to crash the system. The highest thre...
CVE-2019-18806
A flaw was found in the way the QLogic QLA3xxx NIC HBA Driver in the Linux kernel handled resource cleanup on a DMA mapping error. This flaw allows an attacker able to trigger the DMA mapping error to crash the system. Mitigation In order to mitigate this issue it is possible to prevent the...
CVE-2019-19055
A flaw was found in the Linux kernel. The Wireless configuration API functionality mishandles resource cleanup in nl80211getftmresponderstats function. An attacker able to trigger the resource cleanup code path could use this flaw to crash the system. The highest threat from this vulnerability is...
CVE-2019-19063
A flaw was found in the Linux kernel. The rtlusbprobe function mishandles resource cleanup on error. An attacker able to induce the error conditions could use this flaw to crash the system. The highest threat from this vulnerability is to system availability. Mitigation In order to mitigate this...
CVE-2019-19059
A flaw was found in the way the Intel Wireless driver in the Linux kernel handled resource cleanup during Gen 3 device initialization. This flaw allows an attacker with the ability to restrict access to DMA coherent memory on device initialization, to crash the system. Mitigation In order to...
CVE-2019-19047
A flaw was found in the way the Mellanox 5th generation network adapters ConnectX series core driver in the Linux kernel handled resource cleanup in the mlx5fwfatalreporterdump function. This flaw allows an attacker with the ability to trigger errors in the mlx5crdumpcollect function to crash the...
CVE-2019-19066
A flaw was found in the Linux kernel. The bfadimgetstats function mishandles resource cleanup on error. A local attacker, able to induce the error conditions, could use this flaw to crash the system. The highest threat from this vulnerability is to system availability. Mitigation Mitigation for...
CVE-2019-19045
A flaw was found in the Linux kernel. The Mellanox Technologies Innova driver mishandles resource cleanup on error. An attacker, able to trigger error could use this flaw to crash the system. The highest threat from this vulnerability is to system availability. Mitigation In order to mitigate thi...
CVE-2019-19043
A flaw was found in the Linux kernel. The i40esetupmacvlans function mishandles resource cleanup. A local attacker, able to induce the error conditions, could use this flaw to crash the system. The highest threat from this vulnerability is to system availability. Mitigation In order to mitigate...
kernel: Memory leak in sit_init_net() in net/ipv6/sit.c
A flaw was found in the way the sitinitnet function in the Linux kernel handled resource cleanup on errors. This flaw allows an attacker to use the error conditions to crash the system...
CVE-2019-16994
A flaw was found in the way the sitinitnet function in the Linux kernel handled resource cleanup on errors. This flaw allows an attacker to use the error conditions to crash the system. Mitigation Mitigation for this issue is either not available or the currently available options dont meet the R...
CVE-2017-18595
A flaw was found in the allocatetracebuffer in kernel/trace/trace.c in the debug subsystem, when failure to allocate a dynamic percpu area, a resource cleanup is called. The pointer buf-buffer still holds the address and is not set to NULL, which can cause a use-after-free problem, leading to a...
The vulnerability in the implementation of the mpi_alloc function in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the mpialloc function in the loaded module of the digsig/digsigverif.ko kernel of the Linux operating system is related to the assignment of the null pointer. Exploiting this vulnerability could allow an attacker to cause a system failure when there is a memory shortage in th...
SUSE SLES11 Security Update : clamav (SUSE-SU-2018:3441-1)
This update for clamav fixes the following issues : Clamav was updated to version 0.100.2 : CVE-2018-15378: Vulnerability in ClamAV's MEW unpacking feature that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. bsc1110723...
The vulnerability of the getOffsetForHorizontal function in the Framework component of the Android operating system allows a hacker to trigger a service failure.
The vulnerability of the getOffsetForHorizontal function in the Layout.java component of the Android operating system’s framework is related to improper cleaning or release of resources. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...