3188 matches found
USN-5644-1 linux-gcp-5.15 vulnerabilities
It was discovered that the framebuffer driver on the Linux kernel did not verify size limits when changing font or screen size, leading to an out-of- bounds write. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2021-33655 Duoming...
CVE-2022-34326
CVE-2022-34326 affects amb1_sdk (SDK for Ameba1) on Realtek RTL8195AM devices. The issue occurs before 2022-06-20 and before the build 284241d70308ff2519e40afd7b284ba892c730a3, where the timer task and RX task can become locked during frequent, persistent Wi‑Fi connection failures in Soft AP mode...
upgradeRandProvider could be bricked if still waiting for seed
Lines of code Vulnerability details Impact The updgradeRandProvider function exists in case the chainlink randomness provider is phased out in the long term future. It is impossible to upgrade the randomness provider while the contract is still waiting for a seed. This is a reasonable thing to...
Realtek RTL8195AM 安全漏洞
The Realtek RTL8195AM is an IoT microcontroller from China-based Realtek Semiconductor Realtek. A security vulnerability exists in previous versions of the Realtek RTL8195AM 284241d70308ff2519e40afd7b284ba892c730a3, which stems from the ability to lock the timer task when there are frequent and...
Ubuntu 22.04 LTS : Linux kernel (Oracle) vulnerabilities (USN-5640-1)
The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5640-1 advisory. It was discovered that the framebuffer driver on the Linux kernel did not verify size limits when changing font or screen size, leading to an out-of-...
USN-5635-1 linux-gkeop vulnerabilities
It was discovered that the framebuffer driver on the Linux kernel did not verify size limits when changing font or screen size, leading to an out-of- bounds write. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2021-33655 Duoming...
USN-5624-1 linux, linux-aws, linux-aws-5.15, linux-azure, linux-azure-5.15, linux-kvm, linux-lowlatency vulnerabilities
It was discovered that the framebuffer driver on the Linux kernel did not verify size limits when changing font or screen size, leading to an out-of- bounds write. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2021-33655 Duoming...
USN-5624-1: Linux kernel vulnerabilities
It was discovered that the framebuffer driver on the Linux kernel did not verify size limits when changing font or screen size, leading to an out-of- bounds write. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2021-33655 Duoming...
d8s-timer (=0.1.0) potentially affected by unknown CVE via democritus-dates (=2021.2.1101)
democritus-dates PYPI version =2021.2.1101 is affected by a known vulnerability. The following packages have a transitive dependency on democritus-dates and may be impacted: - d8s-timer =0.1.0 Source cves: unknown CVE Source advisory: SNYK:PYTHON-DEMOCRITUSDATES-8400836...
d8s-strings (=0.1.0), d8s-timer (=0.1.0) potentially affected by unknown CVE via democritus-uuids (=2021.1.2101)
democritus-uuids PYPI version =2021.1.2101 is affected by a known vulnerability. The following packages have a transitive dependency on democritus-uuids and may be impacted: - d8s-strings =0.1.0 - d8s-timer =0.1.0 Source cves: unknown CVE Source advisory: SNYK:PYTHON-DEMOCRITUSUUIDS-8400829...
GSD-2022-1006292 ALSA: timer: Use deferred fasync helper
ALSA: timer: Use deferred fasync helper This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.326 by commit...
GSD-2022-1006205 ALSA: timer: Use deferred fasync helper
ALSA: timer: Use deferred fasync helper This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.291 by commit...
GSD-2022-1006093 ALSA: timer: Use deferred fasync helper
ALSA: timer: Use deferred fasync helper This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.256 by commit...
GSD-2022-1005948 ALSA: timer: Use deferred fasync helper
ALSA: timer: Use deferred fasync helper This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.211 by commit...
GSD-2022-1005760 ALSA: timer: Use deferred fasync helper
ALSA: timer: Use deferred fasync helper This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.138 by commit...
PT-2022-33813 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: The issue is related to the cleanup of CPU timers before freeing them during exec. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2022-34206 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.211 Description: The issue is related to the ALSA timer and the use of a deferred fasync helper. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel version...
PT-2022-34018 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.138 Description: The issue is related to the ALSA timer and the use of a deferred fasync helper. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versio...
GSD-2022-1005468 ALSA: timer: Use deferred fasync helper
ALSA: timer: Use deferred fasync helper This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.63 by commit...
GSD-2022-1005377 KVM: x86/xen: Stop Xen timer before changing IRQ
KVM: x86/xen: Stop Xen timer before changing IRQ This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.2 by commit...