Lucene search
K

81 matches found

OSV
OSV
added 2024/08/17 10:15 a.m.4 views

UBUNTU-CVE-2024-43833

In the Linux kernel, the following vulnerability has been resolved: media: v4l: async: Fix NULL pointer dereference in adding ancillary links In v4l2asynccreateancillarylinks, ancillary links are created for lens and flash sub-devices. These are sub-device to sub-device links and if the async...

5.5CVSS6.5AI score0.00225EPSS
Exploits0References12
Microsoft CVE
Microsoft CVE
added 2024/08/10 7:0 a.m.4 views

media: v4l: async: Properly re-initialise notifier entry in unregister

...

5.5CVSS6.3AI score0.00211EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/07/06 2:58 a.m.3 views

SUSE CVE-2024-39485

In the Linux kernel, the following vulnerability has been resolved: media: v4l: async: Properly re-initialise notifier entry in unregister The notifierentry of a notifier is not re-initialised after unregistering the notifier. This leads to dangling pointers being left there so use listdelinit to...

5.3CVSS7.6AI score0.00211EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/06/26 11:17 p.m.2 views

SUSE CVE-2024-39464

In the Linux kernel, the following vulnerability has been resolved: media: v4l: async: Fix notifier list entry init struct v4l2asyncnotifier has several listhead members, but only waitinglist and donelist are initialized. notifierentry was kept 'zeroed' leading to an uninitialized listhead. This...

5.5CVSS7.7AI score0.00211EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/06/13 12:0 a.m.5 views

Google Pixel Security Breach

Google Pixel is a smartphone from Google, an American company. A security vulnerability exists in Google Pixel, which stems from a lack of bounds checking in the v4l2smfcqbuf module of smfc-v4l2-ioctls.c, where out-of-bounds writes may exist...

7.8CVSS6.8AI score0.00081EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/05/21 2:0 a.m.2 views

SUSE CVE-2024-35830

In the Linux kernel, the following vulnerability has been resolved: media: tc358743: register v4l2 async device only after successful setup Ensure the device has been setup correctly before registering the v4l2 async device, thus allowing userspace to access...

5.5CVSS6.5AI score0.00232EPSS
Exploits0References19
SUSE CVE
SUSE CVE
added 2024/05/03 2:9 a.m.3 views

SUSE CVE-2024-27076

In the Linux kernel, the following vulnerability has been resolved: media: imx: csc/scaler: fix v4l2ctrlhandler memory leak Free the memory allocated in v4l2ctrlhandlerinit on release...

5.5CVSS6.3AI score0.00289EPSS
Exploits0References10
OSV
OSV
added 2024/05/01 1:15 p.m.5 views

UBUNTU-CVE-2024-27078

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-tpg: fix some memleaks in tpgalloc In tpgalloc, resources should be deallocated in each and every error-handling paths, since they are allocated in for statements. Otherwise there would be memleaks because tpgfree is...

5.5CVSS6.2AI score0.00291EPSS
Exploits0References41
CNNVD
CNNVD
added 2024/05/01 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a v4l2ctrlhandler memory leak...

5.5CVSS6.9AI score0.00289EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2024/03/07 12:0 a.m.5 views

PT-2024-28505 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the Linux kernel, where the struct v4l2 async notifier has several list head members, but only waiting list and done list are initialized. The notifier entry is...

9.8CVSS6.5AI score0.02701EPSS
Exploits3References725
OSV
OSV
added 2024/02/27 7:4 p.m.4 views

DEBIAN-CVE-2021-46943

In the Linux kernel, the following vulnerability has been resolved: media: staging/intel-ipu3: Fix setfmt error handling If there in an error during a setfmt, do not overwrite the previous sizes with the invalid config. Without this patch, v4l2-compliance ends up allocating 4GiB of RAM and causin...

7.8CVSS6.1AI score0.00234EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/02/27 7:4 p.m.9 views

CVE-2021-46943

In the Linux kernel, the following vulnerability has been resolved: media: staging/intel-ipu3: Fix setfmt error handling If there in an error during a setfmt, do not overwrite the previous sizes with the invalid config. Without this patch, v4l2-compliance ends up allocating 4GiB of RAM and causin...

7.8CVSS6.5AI score0.00234EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2024/02/23 3:15 p.m.1 views

UBUNTU-CVE-2023-52459

In the Linux kernel, the following vulnerability has been resolved: media: v4l: async: Fix duplicated list deletion The list deletion call dropped here is already called from the helper function in the line before. Having a second listdel call results in either a warning with CONFIGDEBUGLIST=y:...

5.5CVSS5.7AI score0.00224EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/02/21 12:33 a.m.6 views

kernel: media: em28xx: initialize refcount before kref_get

A use-after-free flaw was found in the Linux kernel’s video4linux driver in how a user triggers the em28xxusbprobe for the Empia 28xx-based TV cards. This flaw allows a local user to crash or potentially escalate their privileges on the system...

7.8CVSS6.6AI score0.00243EPSS
Exploits0References5
OSV
OSV
added 2023/09/08 9:36 p.m.3 views

USN-6340-2 linux-azure-5.4, linux-gcp-5.4, linux-gkeop, linux-raspi, linux-raspi-5.4, linux-xilinx-zynqmp vulnerabilities

Ruihan Li discovered that the bluetooth subsystem in the Linux kernel did not properly perform permissions checks when handling HCI sockets. A physically proximate attacker could use this to cause a denial of service bluetooth communication. CVE-2023-2002 Zi Fan Tan discovered that the binder IPC...

10CVSS7.1AI score0.03546EPSS
Exploits2References10
OSV
OSV
added 2023/04/11 10:25 p.m.11 views

USN-6007-1 linux-gcp vulnerabilities

It was discovered that the Upper Level Protocol ULP subsystem in the Linux kernel did not properly handle sockets entering the LISTEN state in certain protocols, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execut...

8.8CVSS7AI score0.04947EPSS
Exploits4References21
OSV
OSV
added 2023/03/27 9:46 p.m.8 views

USN-5975-1 linux-azure vulnerabilities

Updated on 2023-04-11: Please note that when USN 5975-1 was originally published, it incorrectly included the linux-gcp kernel for Ubuntu 16.04 ESM. References to that kernel have been removed from this USN and the correct information for it has been published in USN 6007-1. Original advisory...

8.8CVSS7AI score0.04947EPSS
Exploits9References32
OSV
OSV
added 2023/03/10 11:5 a.m.1 views

OESA-2023-1157 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: There is a logic error in iouring's implementation which can be used to trigger a use-after-free vulnerability leading to privilege escalation. In the ioprepasyncwork function the assumption that the last iograbidentity call cann...

7.8CVSS7.6AI score0.02399EPSS
Exploits3References5
OSV
OSV
added 2023/03/06 9:40 p.m.11 views

USN-5924-1 linux-azure, linux-azure, linux-azure vulnerabilities

It was discovered that the Upper Level Protocol ULP subsystem in the Linux kernel did not properly handle sockets entering the LISTEN state in certain protocols, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execut...

8.8CVSS7.2AI score0.04947EPSS
Exploits8References30
OSV
OSV
added 2023/02/22 6:33 p.m.8 views

USN-5883-1 linux-hwe vulnerabilities

Kyle Zeng discovered that the sysctl implementation in the Linux kernel contained a stack-based buffer overflow. A local attacker could use this to cause a denial of service system crash or execute arbitrary code. CVE-2022-4378 It was discovered that an out-of-bounds write vulnerability existed i...

8.8CVSS7.5AI score0.04947EPSS
Exploits3References20
Rows per page
Query Builder