Intel Unison Security Vulnerability

Intel Unison is an application from Intel Corporation USA used to synchronize various data before PCs and smartphones. A security vulnerability exists in Intel Unison software. An attacker exploiting this vulnerability could cause elevation of privilege, information disclosure, or denial of servi...

PT-2023-6950 · Microsoft · Windows Kernel +1

Name of the Vulnerable Software and Affected Versions: Windows Kernel affected versions not specified Description: The issue is related to synchronization errors when using a shared resource in the Windows operating system kernel. This can allow an attacker to elevate their privileges. The...

Intel Unison Security Vulnerability

Intel Unison is an application from Intel Corporation USA used to synchronize various data before PCs and smartphones. A security vulnerability exists in Intel Unison software. An attacker exploiting this vulnerability could cause elevation of privilege, information disclosure, or denial of servi...

Linux kernel resource management error vulnerability

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the fact that the function nfttransgccatchall does not remove the catchall collection element from the...

The Transfer event is emitted successfully in MinterContract#mintAndAuction() even when the transaction has failed, leading to inaccurate accounting in off-chain systems.

Lines of code Vulnerability details Impact The airDropTokens function in the NextGenCore contract is responsible for minting and transferring an NFT to a user, exclusively called by the MinterContract. However, the execution of airDropTokens within MinterContractmintAndAuction prior to critical...

The vulnerabilities of the `setsockopt` and `getsockopt` functions in the Linux operating system’s kernel allow attackers to influence the confidentiality, integrity, or accessibility of information.

The vulnerability of the setsockopt and getsockopt functions in the Linux operating system’s kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow a remote attacker to compromise the confidentiality, integrity, or accessibility of...

kernel: drm/amdkfd: Add sync after creating vram bo

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Add sync after creating vram bo There will be data corruption on vram allocated by svm if the initialization is not complete and application is writting on the memory. Adding sync to wait for the initialization...

kernel: Linux kernel KVM: Denial of Service due to incorrect kvm_arm_init failure handling in finalize_pkvm

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM for arm64 architectures. This vulnerability arises from a lack of synchronization between the finalizepkvm and kvmarminit initialization calls. A local attacker with low privileges could exploit this by triggering a scenario...

kernel: nfc: pn533: Fix use-after-free bugs caused by pn532_cmd_timeout

In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: Fix use-after-free bugs caused by pn532cmdtimeout When the pn532 uart device is detaching, the pn532uartremove is called. But there are no functions in pn532uartremove that could delete the cmdtimeout timer, which wil...

Rocky Linux 9 : 389-ds-base (RLSA-2022:8162)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:8162 advisory. - A vulnerability was discovered in the 389 Directory Server that allows an unauthenticated attacker with network access to the LDAP port to cause a...

The vulnerability of the Linux operating system’s kernel, caused by synchronization errors when using shared resources, allows a hacker to execute arbitrary code.

The vulnerability of the Linux operating system’s kernel arises from synchronization errors when using shared resources. Exploiting this vulnerability allows an attacker to execute arbitrary code...

The vulnerability of the Android operating system’s kernel allows attackers to enhance their privileges.

The vulnerability of Android operating system kernels is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow attackers to increase their privileges...

The vulnerability of VMware Fusion’s hypervisor is related to synchronization errors when using shared resources, allowing attackers to increase their privileges.

The vulnerability of VMware Fusion relates to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to increase their privileges...

A Use Case for Transactions: Outbox Pattern Strategies in Spring Cloud Stream Kafka Binder

Other parts in this blog series Part 1: Introduction to Transactions in Spring Cloud Stream Kafka Applications Part 2: Producer Initiated Transactions in Spring Cloud Stream Kafka Applications Part 3: Synchronizing with External Transaction Managers in Spring Cloud Stream Kafka Applications Part ...

The vulnerability of the Junos Kernel Debugging Streaming Daemon (jkdsd) in Juniper Networks’ Junos operating systems allows a hacker to cause a service failure.

The vulnerability of the Junos Kernel Debugging Streaming Daemon jkdsd in Juniper Networks’ Junos operating systems is related to synchronization errors when using shared resources for processing telemetry data. Exploiting this vulnerability can allow a malicious actor to trigger service failures...

The vulnerability of the Windows Graphics component of the Windows operating system, which allows a hacker to exploit their privileges

The vulnerability of the Windows Graphics component of the Windows operating system is related to synchronization errors when using shared resources “Race Conditions”. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of the Win32k.sys component of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Win32k.sys component of the Windows operating system is related to synchronization errors when using common resources. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Windows Runtime component of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Windows Runtime component of the Windows operating system is related to synchronization errors when using a shared resource “Race Condition”. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Windows Error Reporting error reporting service on Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the Windows Error Reporting registration service on Windows operating systems arises due to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Graphics component in Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the Graphics component in Windows operating systems is related to synchronization errors when using shared resources „Race Conditions“. Exploiting this vulnerability can allow an attacker to increase their privileges...