2 matches found
CVE-2024-30212
If a SCSI READ10 command is initiated via USB using the largest LBA 0xFFFFFFFF with it's default block size of 512 and a count of 1, the first 512 byte of the 0x80000000 memory area is returned to the user. If the block count is increased, the full RAM can be exposed. The same method works to wri...
The vulnerability of the patch offset2lib in the Linux operating system’s kernel allows a hacker to gain access to the stack protection mechanism.
The vulnerability of patch offset2lib in Linux operating systems arises from the minimal memory range between the upper boundary of the stack and the PIE binary code segment, which is located in memory starting at 0x40000000. This occurs when the RLIMITSTACK parameter is set to RLIMINFINITY, and ...