3188 matches found
CVE-2021-36144
The polling timer handler in ACRN before 2.5 has a use-after-free for a freed virtio device, related to devicemodel/hw/pci/virtio/.c...
CVE-2021-36144
CVE-2021-36144 affects the ACRN hypervisor prior to 2.5. The issue is described as a use-after-free involving a freed virtio device in the polling timer handler, within devicemodel/hw/pci/virtio/*.c. The connected sources confirm this root cause and timeline, but do not provide exploitation detai...
ACRN 资源管理错误漏洞
ACRN is an open source project released by the Linux Foundation, which is a hypervisor designed for IoT and embedded devices. A post-release reuse vulnerability exists in the polling timer handler in ACRN related to devicemodel/hw/pci/virtio/.c. The vulnerability is not known. No detailed...
Profile Builder < 3.4.8 - Authenticated Stored XSS
The plugin does not sanitise or escape its 'Modify default Redirect Delay timer' setting, allowing high privilege users to use JavaScript code in it, even when the unfilteredhtml capability is disallowed, leading to an authenticated Stored Cross-Site Scripting issue As admin, put the following...
Profile Builder < 3.4.8 - Authenticated Stored XSS
The plugin does not sanitise or escape its 'Modify default Redirect Delay timer' setting, allowing high privilege users to use JavaScript code in it, even when the unfilteredhtml capability is disallowed, leading to an authenticated Stored Cross-Site Scripting issue PoC As admin, put the followin...
PT-2024-11320 · Linux +6 · Linux Kernel +6
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a possible use-after-free in the Linux kernel's watchdog driver. The driver's remove path calls del timer, which does not wait until the timer handler finishes,...
PT-2024-11322 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a possible use-after-free in the wdt turnoff function of the sc520 wdt module. The problem occurs because the del timer function does not wait for the timer...
PT-2024-11323 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a possible use-after-free in the wdt startup function. The problem occurs because the del timer function does not wait until the timer handler finishes, which c...
PT-2024-11285 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a race condition in the snd seq timer open function, where the timer instance per queue is exclusive, but concurrent accesses are not properly managed. This can...
PT-2024-11282 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A possible use-after-free issue has been identified in the Linux kernel, specifically in the mhi pci remove function of the bus: mhi: pci generic driver. The driver's remove path calls...
SUSE: Security Advisory (SUSE-SU-2019:13962-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
UVI-2021-1000287 m68k: mvme147,mvme16x: Don't wipe PCC timer config bits
m68k: mvme147,mvme16x: Don't wipe PCC timer config bits This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.4 by commit...
UVI-2021-1000384 m68k: mvme147,mvme16x: Don't wipe PCC timer config bits
m68k: mvme147,mvme16x: Don't wipe PCC timer config bits This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.37 by commit...
UVI-2021-1000433 m68k: mvme147,mvme16x: Don't wipe PCC timer config bits
m68k: mvme147,mvme16x: Don't wipe PCC timer config bits This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.119 by commit...
GSD-2021-1000433 m68k: mvme147,mvme16x: Don't wipe PCC timer config bits
m68k: mvme147,mvme16x: Don't wipe PCC timer config bits This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.119 by commit...
GSD-2021-1000384 m68k: mvme147,mvme16x: Don't wipe PCC timer config bits
m68k: mvme147,mvme16x: Don't wipe PCC timer config bits This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.37 by commit...
PT-2024-11352 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a possible use-after-free in the nicstar cleanup function. The problem arises because the del timer function does not wait for the timer handler to finish, whic...
PT-2024-11353 · Linux +6 · Linux Kernel +6
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a possible use-after-free in the HFC cleanup function of the mISDN module. This occurs because the module's remove path calls del timer, which does not wait unt...
PT-2024-11354 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a possible use-after-free in the ia module exit function of the atm: iphase module. This occurs because the module's remove path calls del timer, which does not...
The vulnerability in the function in drivers/char/random.c and kernel/time/timer.c of the Linux operating system allows a hacker to obtain confidential information.
The vulnerability in the functions in drivers/char/random.c and kernel/time/timer.c of the Linux operating system is related to the lack of protection for sensitive data. Exploiting this vulnerability can allow a remote attacker to obtain confidential information...