kernel: Linux kernel: Information disclosure and denial of service in ntb_hw_switchtec module

A flaw was found in the Linux kernel. A local user could exploit a shift-out-of-bounds vulnerability within the ntbhwswitchtec module. This vulnerability arises when the ntbmwcleartrans application programming interface API processes zero values for address and size, leading to an invalid memory...

kernel: Linux kernel: Information disclosure and denial of service in ntb_hw_switchtec module

A flaw was found in the Linux kernel. A local user could exploit a shift-out-of-bounds vulnerability within the ntbhwswitchtec module. This vulnerability arises when the ntbmwcleartrans application programming interface API processes zero values for address and size, leading to an invalid memory...

kernel: Linux kernel: Information disclosure and denial of service in ntb_hw_switchtec module

A flaw was found in the Linux kernel. A local user could exploit a shift-out-of-bounds vulnerability within the ntbhwswitchtec module. This vulnerability arises when the ntbmwcleartrans application programming interface API processes zero values for address and size, leading to an invalid memory...

kernel: Linux kernel: Information disclosure and denial of service in ntb_hw_switchtec module

A flaw was found in the Linux kernel. A local user could exploit a shift-out-of-bounds vulnerability within the ntbhwswitchtec module. This vulnerability arises when the ntbmwcleartrans application programming interface API processes zero values for address and size, leading to an invalid memory...

CVE-2023-54143 media: mediatek: vcodec: fix resource leaks in vdec_msg_queue_init()

In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: fix resource leaks in vdecmsgqueueinit If we encounter any error in the vdecmsgqueueinit then we need to set "msgqueue-wdmaaddr.size = 0;". Normally, this is done inside the vdecmsgqueuedeinit function...

EUVD-2020-3617

Malware in sbrugna...

CVE-2025-60663

Tenda AC18 V15.03.05.19 was discovered to contain a stack overflow via the wanMTU parameter in the fromAdvSetMacMtuWan function...

SUSE CVE-2023-53034

In the Linux kernel, the following vulnerability has been resolved: ntbhwswitchtec: Fix shift-out-of-bounds in switchtecntbmwsettrans There is a kernel API ntbmwcleartrans would pass 0 to both addr and size. This would make xlatepos negative. 23.734156 switchtec switchtec0: MW 0: part 0 addr...

kernel: drm/amdgpu: use-after-free vulnerability

A failure flaw was found in the Linux kernel’s AMDGPU driver in how a user sends ioctl with an invalid address and size when using the AMD GPU. This flaw allows a local user to crash the system...

SUSE CVE-2024-43840

In the Linux kernel, the following vulnerability has been resolved: bpf, arm64: Fix trampoline for BPFTRAMPFCALLORIG When BPFTRAMPFCALLORIG is set, the trampoline calls bpftrampenter and bpftrampexit functions, passing them the struct bpftrampimage im pointer as an argument in R0. The trampoline...

UBUNTU-CVE-2024-43840

In the Linux kernel, the following vulnerability has been resolved: bpf, arm64: Fix trampoline for BPFTRAMPFCALLORIG When BPFTRAMPFCALLORIG is set, the trampoline calls bpftrampenter and bpftrampexit functions, passing them the struct bpftrampimage im pointer as an argument in R0. The trampoline...

Denial Of Service (DoS)

artemis-server is vulnerable to denial of service DoS through memory leaks. Writing a large paged message is not properly handled which causes a wrong way of subtraction of paging store size and global size, resulting in a disclosure of address size...

Input validation

The Ping tools web interface in Dlink Di-604 router allows remote authenticated users to cause a denial of service via a large "ip textfield" size...