FreeBSD : librewolf -- Undefined behavior in selection node cache (b73d1f2a-96de-11ef-9e71-00d8612f03c8)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the b73d1f2a-96de-11ef-9e71-00d8612f03c8 advisory. [email protected] reports: When manipulating the selection node cache, an attacker may have been abl...

SUSE CVE-2024-49933

In the Linux kernel, the following vulnerability has been resolved: blkiocost: fix more out of bound shifts Recently running UBSAN caught few out of bound shifts in the iocforgivedebts function: UBSAN: shift-out-of-bounds in block/blk-iocost.c:2142:38 shift exponent 80 is too large for 64-bit typ...

CVE-2024-49987

In the Linux kernel, the following vulnerability has been resolved: bpftool: Fix undefined behavior in qsortNULL, 0, ... When netfilter has no entry to display, qsort is called with qsortNULL, 0, .... This results in undefined behavior, as UBSan reports: net.c:827:2: runtime error: null pointer...

AZL-51768 CVE-2024-49987 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: bpftool: Fix undefined behavior in qsortNULL, 0, ... When netfilter has no entry to display, qsort is called with qsortNULL, 0, .... This results in undefined behavior, as UBSan reports: net.c:827:2: runtime error: null pointer...

CVE-2024-49987

In the Linux kernel, the following vulnerability has been resolved: bpftool: Fix undefined behavior in qsortNULL, 0, ... When netfilter has no entry to display, qsort is called with qsortNULL, 0, .... This results in undefined behavior, as UBSan reports: net.c:827:2: runtime error: null pointer...

DEBIAN-CVE-2024-49933

In the Linux kernel, the following vulnerability has been resolved: blkiocost: fix more out of bound shifts Recently running UBSAN caught few out of bound shifts in the iocforgivedebts function: UBSAN: shift-out-of-bounds in block/blk-iocost.c:2142:38 shift exponent 80 is too large for 64-bit typ...

UBUNTU-CVE-2024-49987

In the Linux kernel, the following vulnerability has been resolved: bpftool: Fix undefined behavior in qsortNULL, 0, ... When netfilter has no entry to display, qsort is called with qsortNULL, 0, .... This results in undefined behavior, as UBSan reports: net.c:827:2: runtime error: null pointer...

CVE-2024-49987 bpftool: Fix undefined behavior in qsort(NULL, 0, ...)

In the Linux kernel, the following vulnerability has been resolved: bpftool: Fix undefined behavior in qsortNULL, 0, ... When netfilter has no entry to display, qsort is called with qsortNULL, 0, .... This results in undefined behavior, as UBSan reports: net.c:827:2: runtime error: null pointer...

CVE-2024-49987 bpftool: Fix undefined behavior in qsort(NULL, 0, ...)

In the Linux kernel, the following vulnerability has been resolved: bpftool: Fix undefined behavior in qsortNULL, 0, ... When netfilter has no entry to display, qsort is called with qsortNULL, 0, .... This results in undefined behavior, as UBSan reports: net.c:827:2: runtime error: null pointer...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from possible undefined behavior of bpftool in the use of qsort...

GHSA-Q8HX-MM92-4WVG wasmtime has a runtime crash when combining tail calls with trapping imports

Impact Wasmtime's implementation of WebAssembly tail calls combined with stack traces can result in a runtime crash in certain WebAssembly modules. The runtime crash may be undefined behavior if Wasmtime was compiled with Rust 1.80 or prior. The runtime crash is a deterministic process abort when...

DEBIAN-CVE-2024-47763

Wasmtime is an open source runtime for WebAssembly. Wasmtime's implementation of WebAssembly tail calls combined with stack traces can result in a runtime crash in certain WebAssembly modules. The runtime crash may be undefined behavior if Wasmtime was compiled with Rust 1.80 or prior. The runtim...

CVE-2024-47763

Wasmtime is an open source runtime for WebAssembly. Wasmtime's implementation of WebAssembly tail calls combined with stack traces can result in a runtime crash in certain WebAssembly modules. The runtime crash may be undefined behavior if Wasmtime was compiled with Rust 1.80 or prior. The runtim...

SUSE-SU-2024:3541-1 Security update for podofo

This update for podofo fixes the following issues: - CVE-2015-8981: Fixed heap overflow in the function ReadXRefSubsection bsc1023190 - CVE-2017-6840: Fixed invalid memory read in ColorChanger::GetColorFromStack colorchanger.cpp bsc1027787 - CVE-2017-6841: Fixed NULL pointer dereference in...

CLSA-2024-1728297353 kernel: Fix of 5 CVEs

drm/amd/pm: fix the Out-of-bounds read warning CVE-2024-46731 - hwmon: w83627ehf Fix underflows seen when writing limit attributes CVE-2024-46756 - hwmon: lm95234 Fix underflows seen when writing limit attributes CVE-2024-46758 - hwmon: nct6775-core Fix underflows seen when writing limit...

UBUNTU-CVE-2024-46847

In the Linux kernel, the following vulnerability has been resolved: mm: vmalloc: ensure vmapblock is initialised before adding to queue Commit 8c61291fd850 "mm: fix incorrect vbq reference in purgefragmentedblock" extended the 'vmapblock' structure to contain a 'cpu' field which is set at...

kernel: nvmem: Fix shift-out-of-bound (UBSAN) with byte size cells

In the Linux kernel, the following vulnerability has been resolved: nvmem: Fix shift-out-of-bound UBSAN with byte size cells If a cell has 'nbits' equal to a multiple of BITSPERBYTE the logic p &= GENMASKcell-nbits%BITSPERBYTE - 1, 0; will become undefined behavior because nbits modulo BITSPERBYT...

kernel: drm/radeon: fix UBSAN warning in kv_dpm.c

A vulnerability was found in the Linux kernel's DRM/Radeon driver, specifically in the sumovidmappingentry within the kvdpm.c file. Insufficient bounds checking can lead to memory corruption...

UBUNTU-CVE-2024-44993

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Fix out-of-bounds read in v3dcsdjobrun When enabling UBSAN on Raspberry Pi 5, we get the following warning: 387.894977 UBSAN: array-index-out-of-bounds in drivers/gpu/drm/v3d/v3dsched.c:320:3 387.903868 index 7 is out of...

Division By Zero Error

TensorFlow is vulnerable to a Division By Zero Error. The vulnerability is due to the EmbeddingLookup TFLite operator not checking if the first dimension of the value input is zero before performing a division operation. It allows an attacker to craft a model that triggers the error, potentially...