16 matches found
SUSE CVE-2022-50735
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: do not run mt76ustatusworker if the device is not running Fix the following NULL pointer dereference avoiding to run mt76ustatusworker thread if the device is not running yet. KASAN: null-ptr-deref in range...
EUVD-2022-55754
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: do not run mt76ustatusworker if the device is not running Fix the following NULL pointer dereference avoiding to run mt76ustatusworker thread if the device is not running yet. KASAN: null-ptr-deref in range...
CVE-2022-50735
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: do not run mt76ustatusworker if the device is not running Fix the following NULL pointer dereference avoiding to run mt76ustatusworker thread if the device is not running yet. KASAN: null-ptr-deref in range...
CVE-2022-50735
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: do not run mt76ustatusworker if the device is not running Fix the following NULL pointer dereference avoiding to run mt76ustatusworker thread if the device is not running yet. KASAN: null-ptr-deref in range...
UBUNTU-CVE-2022-50735
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: do not run mt76ustatusworker if the device is not running Fix the following NULL pointer dereference avoiding to run mt76ustatusworker thread if the device is not running yet. KASAN: null-ptr-deref in range...
CVE-2022-50735 wifi: mt76: do not run mt76u_status_worker if the device is not running
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: do not run mt76ustatusworker if the device is not running Fix the following NULL pointer dereference avoiding to run mt76ustatusworker thread if the device is not running yet. KASAN: null-ptr-deref in range...
CVE-2022-50735 wifi: mt76: do not run mt76u_status_worker if the device is not running
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: do not run mt76ustatusworker if the device is not running Fix the following NULL pointer dereference avoiding to run mt76ustatusworker thread if the device is not running yet. KASAN: null-ptr-deref in range...
CVE-2022-50735
CVE-2022-50735 refers to a Linux kernel wifi issue in the mt76/mt76x02 stack. The vulnerability is a NULL pointer dereference caused by running the mt76u_status_worker when the device is not yet running, traced in the KASAN report during tx status handling (mt76x02_mac_fill_tx_status). The docume...
httpd: Apache Tomcat Connectors (mod_jk) Information Disclosure
A vulnerability was found in Apache Tomcat Connectors modjk. Affected versions of this package are vulnerable to information exposure in the modjk component. This flaw allows an attacker to exploit the implicit mapping functionality, resulting in the unintended exposure of the status worker and...
httpd: Apache Tomcat Connectors (mod_jk) Information Disclosure
A vulnerability was found in Apache Tomcat Connectors modjk. Affected versions of this package are vulnerable to information exposure in the modjk component. This flaw allows an attacker to exploit the implicit mapping functionality, resulting in the unintended exposure of the status worker and...
kernel: wifi: mt76: do not run mt76u_status_worker if the device is not running
A flaw was discovered in the Linux kernel’s mt76 Wi-Fi driver, where the mt76ustatusworker thread could be scheduled even when the underlying device was not yet in a running state. Under certain conditions, this could lead to a NULL pointer dereference in the worker routine, resulting in a kernel...
kernel: wifi: mt76: do not run mt76u_status_worker if the device is not running
A flaw was discovered in the Linux kernel’s mt76 Wi-Fi driver, where the mt76ustatusworker thread could be scheduled even when the underlying device was not yet in a running state. Under certain conditions, this could lead to a NULL pointer dereference in the worker routine, resulting in a kernel...
CVE-2023-41081
A vulnerability was found in Apache Tomcat Connectors modjk. Affected versions of this package are vulnerable to information exposure in the modjk component. This flaw allows an attacker to exploit the implicit mapping functionality, resulting in the unintended exposure of the status worker and...
CVE-2023-41081
Important: Authentication Bypass CVE-2023-41081 The modjk component of Apache Tomcat Connectors in some circumstances, such as when a configuration included "JkOptions +ForwardDirectories" but the configuration did not provide explicit mounts for all possible proxied requests, modjk would use an...
Apache Tomcat Security Vulnerability
Apache Tomcat is the United States Apache Apache Foundation of a lightweight Web application server. The program implements support for Servlets and JavaServer Page JSP. A security vulnerability exists in Apache Tomcat, which stems from the fact that modjk uses an implicit mapping when the...
PT-2023-5210 · Apache +5 · Apache Tomcat Connectors +5
Name of the Vulnerable Software and Affected Versions: Apache Tomcat Connectors versions 1.2.0 through 1.2.48 Description: The mod jk component of Apache Tomcat Connectors is affected by an issue where, in certain circumstances, such as when a configuration includes "JkOptions +ForwardDirectories...