149 matches found
EUVD-2020-29186
Malware in sbrugna...
EUVD-2019-15756
Malware in sbrugna...
CVE-2023-53611 ipmi_si: fix a memleak in try_smi_init()
In the Linux kernel, the following vulnerability has been resolved: ipmisi: fix a memleak in trysmiinit Kmemleak reported the following leak info in trysmiinit: unreferenced object 0xffff00018ecf9400 size 1024: comm "modprobe", pid 2707763, jiffies 4300851415 age 773.308s backtrace:...
EUVD-2024-53851
Malicious code in bioql PyPI...
CVE-2023-53431
In the Linux kernel, the following vulnerability has been resolved: scsi: ses: Handle enclosure with just a primary component gracefully This reverts commit 3fe97ff3d949 "scsi: ses: Don't attach if enclosure has no components" and introduces proper handling of case where there are no detected...
CVE-2025-32320
In System UI, there is a possible way to view other users' images due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
scsi: ufs: qcom: Only free platform MSIs when ESI is enabled
...
firmware: arm_scmi: Fix double free in SMC transport cleanup path
...
USN-7449-2 linux-hwe-6.8 vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S390 architecture; - Supe...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the presence of NULL pointer accesses in UCSI...
The vulnerability of the SCSI component in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the SCSI component in the Linux operating system is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the SCSI component in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the SCSI component in the Linux operating system is related to incorrect validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the SAP GUI graphical user interface for Windows involves unauthorized access to system data within the controlled area. This allows attackers to gain unauthorized access to protected information.
The vulnerability of the SAP GUI graphical user interface for Windows relates to the disclosure of system data by unauthorized parties in the controlled area. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information...
cap-dir-ext (>=0.3.0 <=0.6.0), cap-fs-ext (>=0.7.0 <=0.26.1) +7 more potentially affected by CVE-2024-51756 via cap-async-std (>=0.10.0 <=0.9.0)
cap-async-std CARGO version =0.10.0, =0.3.0, =0.7.0, =0.1.0, =0.1.0, =0.2.0, =0.0.0, =0.5.3, =0.23.0 Source cves: CVE-2024-51756 Source advisory: OSV:GHSA-HXF5-99XG-86HW...
CVE-2024-46843
...
Extract has insufficient checks allowing attacker to create symlinks outside the extraction directory.
Impact A maliciously crafted archive may allow an attacker to create a symlink outside the extraction target directory. Patches Please use version 4.0.0 or later github.com/codeclysm/extract/v4. Any previous version is affected by the bug. Workarounds No knows workarounds. Backward compatibility...
Astra Linux – Vulnerability in Linux 6.1
A flaw was discovered in the filelockinit function in the fs/locks.c file within the Linux kernel. This issue can lead to host memory exhaustion, as memcg does not limit the number of POSIX file locks that can be created...
kernel: ipmi_si: fix a memleak in try_smi_init()
A memory leak flaw was found in the Linux kernel's IPMI System Interface driver in the initialization error path. A local user can trigger this issue by loading the ipmisi module when initialization fails after allocating the sism structure but before registering the shutdown handler. This causes...
CVE-2024-4297
The system configuration interface of HGiga iSherlock including MailSherlock, SpamSherlock, AuditSherlock fails to filter special characters in certain function parameters, allowing remote attackers with administrative privileges to exploit this vulnerability to download arbitrary system files...
CVE-2024-4297 HGiga iSherlock - Arbitrary File Download
The system configuration interface of HGiga iSherlock including MailSherlock, SpamSherlock, AuditSherlock fails to filter special characters in certain function parameters, allowing remote attackers with administrative privileges to exploit this vulnerability to download arbitrary system files...