Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7.6 Advanced Update Support, Red Hat Enterprise Linux 7.6 Telco Extended Update Support, and Red Hat Enterprise Linux 7.6 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impac...

The vulnerability of the serial interface converter NPort IAW5250A-6I/O, related to information disclosure, allows a hacker to gain access to information about the web server.

The vulnerability of the NPort IAW5250A-6I/O serial interface converter is related to information disclosure. Exploiting this vulnerability can allow a remote attacker to disclose information about the web server...

The vulnerability of the NPort IAW5250A-6I/O serial interface converter lies in its information disclosure capabilities, which allow attackers to gain access to confidential information or modify the device’s firmware.

The vulnerability of the NPort IAW5250A-6I/O serial interface converter is related to the disclosure of information. Exploiting this vulnerability can allow a malicious actor to gain access to confidential information or modify the device’s firmware...

kernel: out-of-bounds write due to a heap buffer overflow in __hidinput_change_resolution_multipliers() of hid-input.c

A flaw out of bounds memory write in the Linux kernel HID subsystem was found in the way user attach USB or other HID device that generates incorrect data inside HID report field. A local user could use this flaw to crash the system or possibly escalate their privileges on the system...

CVE-2021-33118

Improper access control in the software installer for the IntelR Serial IO driver for IntelR NUC 11 Gen before version 30.100.2104.1 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2021-33093

Insecure inherited permissions in the installer for the IntelR NUC M15 Laptop Kit Serial IO driver pack before version 30.100.2104.1 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2021-33118

The CVE-2021-33118 issue affects the Intel Serial IO driver for Intel NUC 11 Gen, prior to version 30.100.2104.1. The root cause is improper access control in the installer, potentially enabling privilege escalation for an authenticated local user. Public documentation from Intel’s advisory Intel...

CVE-2021-33118

Improper access control in the software installer for the IntelR Serial IO driver for IntelR NUC 11 Gen before version 30.100.2104.1 may allow an authenticated user to potentially enable escalation of privilege via local access...

Linux kernel 安全漏洞

Linux kernel is a computer operating system kernel written in C and assembly language, POSIX-compliant, and distributed under the GNU General Public License. Linux kernel 5.15.2 and earlier versions contain a security vulnerability that can be exploited by attackers to cause a denial of service...

CVE-2020-12961

A potential vulnerability exists in AMD Platform Security Processor PSP that may allow an attacker to zero any privileged register on the System Management Network which may lead to bypassing SPI ROM protections...

Intel NUC 访问控制错误漏洞

The Intel NUC is a small minicomputer from Intel USA. An Access Control Error vulnerability exists in the Intel NUC 11 Gen Intel Serial IO driver, which stems from a default privilege management error in the product's installer. An attacker could use this vulnerability to cause a denial of servic...

Intel NUC 访问控制错误漏洞

The Intel NUC is a small mini computer from Intel USA. An Access Control Error vulnerability exists in the Intel NUC M15 Laptop Kit Serial IO driver pack, which stems from a default privilege management error in the product's installer. An attacker could use this vulnerability to cause a denial o...

The vulnerability of the Mount Manager for Windows operating systems allows a perpetrator to escalate their privileges and execute arbitrary code.

The vulnerability of the Mount Manager for Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges and execute arbitrary code by connecting a malicious USB device...

kernel: out-of-bounds write due to a heap buffer overflow in __hidinput_change_resolution_multipliers() of hid-input.c

A flaw out of bounds memory write in the Linux kernel HID subsystem was found in the way user attach USB or other HID device that generates incorrect data inside HID report field. A local user could use this flaw to crash the system or possibly escalate their privileges on the system...

kernel: out-of-bounds write due to a heap buffer overflow in __hidinput_change_resolution_multipliers() of hid-input.c

A flaw out of bounds memory write in the Linux kernel HID subsystem was found in the way user attach USB or other HID device that generates incorrect data inside HID report field. A local user could use this flaw to crash the system or possibly escalate their privileges on the system...

Realtek RtsUpx Usb Utility Driver 资源管理错误漏洞

Realtek RtsUpx Usb Utility Driver is a Usb utility driver from Realtek Semiconductor China.A resource management error vulnerability exists in the Realtek RtsUpx USB Utility Driver for Camera Hub Audio, which stems from the product's handling of IO control packets without proper memory boundary...

Realtek RtsUpx Usb Utility Driver 访问控制错误漏洞

Realtek RtsUpx Usb Utility Driver is a Usb utility driver from Realtek Semiconductor China.An access control error vulnerability exists in the Realtek RtsUpx USB Utility Driver for Camera Hub Audio, which stems from the product's failure to device's IO control packet for permission detection. An...

The vulnerability of the USB EHCI emulation driver in the hardware emulation software QEMU, which stems from improper resource management by external emulators, allows a malicious actor to trigger a service failure.

The vulnerability of the QEMU USB EHCI emulation software is related to an error in processing USB requests. Exploiting this vulnerability can allow a hacker to cause a system failure...

Google Android 缓冲区错误漏洞

Android is a Linux-based open source operating system developed by Google Inc. and the Open Handheld Alliance OHA for short. an elevation of privilege vulnerability exists in the Google Android Kernel component USB. No detailed vulnerability details are available...

PT-2021-7218 · Owl · Owl Labs Meeting Owl

Name of the Vulnerable Software and Affected Versions: Owl Labs Meeting Owl version 5.2.0.15 Description: The issue is related to the implementation of Bluetooth Low Energy BLE technology in the microprogram of the Meeting Owl Pro camera for video conferencing. It involves the use of a hardcoded...