3774 matches found
CVE-2019-9471
In setoutboundiatu of abc-pcie.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID:...
CVE-2019-9469
In kmcomputesharedhmac of km4.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel...
CVE-2019-9475
In /proc/net of the kernel filesystem, there is a possible information leak due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID:...
Android SPF Memory Issues
SPF in AOSP version 5.10 and 5.15 kernels can create dangling TLB entries by misdirecting TLB flushes on race with mremap. The AOSP 5.10/5.15 kernels contain a non-upstream memory management optimization called "Speculative Page Fault" SPF. There have been a series of issues in this before, see...
Linux Distros Unpatched Vulnerability : CVE-2022-20566
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In l2capchanput of l2capcore, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional...
Linux Distros Unpatched Vulnerability : CVE-2022-20369
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In v4l2m2mquerybuf of v4l2-mem2mem.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege...
Linux Distros Unpatched Vulnerability : CVE-2022-20154
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In locksocknested of sock.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution...
Linux Distros Unpatched Vulnerability : CVE-2021-39801
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In ionioctl of ion-ioctl.c, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional...
Linux Distros Unpatched Vulnerability : CVE-2022-20423
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In rndissetresponse of rndis.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege if a...
Linux Distros Unpatched Vulnerability : CVE-2021-39686
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In several functions of binder.c, there is a possible way to represent the wrong domain to SELinux due to a race condition. This could lead to local escalation ...
Linux Distros Unpatched Vulnerability : CVE-2022-20421
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In binderincreffornode of binder.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no...
Vulnerabilities fixed in Google Android and Samsung Mobile
Google has fixed several vulnerabilities in Android and Samsung Mobile, including two zero-day vulnerabilities that were actively exploited in targeted attacks. The vulnerabilities are in the Android kernel and the ExternalStorageProvider.java, which can lead to local privilege escalation and...
Linux Distros Unpatched Vulnerability : CVE-2017-0630
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An information disclosure vulnerability in the kernel trace subsystem could enable a local malicious application to access data outside of its permission levels...
Linux Distros Unpatched Vulnerability : CVE-2018-9415
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In driveroverridestore and driveroverrideshow of bus.c, there is a possible double free due to improper locking. This could lead to local escalation of privileg...
Linux Distros Unpatched Vulnerability : CVE-2020-0444
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In auditfreelsmfield of auditfilter.c, there is a possible bad kfree due to a logic error in auditdatatoentry. This could lead to local escalation of privilege...
Linux Distros Unpatched Vulnerability : CVE-2017-13166
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An elevation of privilege vulnerability in the kernel v4l2 video driver. Product: Android. Versions: Android kernel. Android ID A-34624167. CVE-2017-13166 Note...
Linux Distros Unpatched Vulnerability : CVE-2021-0512
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In hidinputchangeresolutionmultipliers of hid-input.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalatio...
Linux Distros Unpatched Vulnerability : CVE-2020-27067
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the l2tp subsystem, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution...
Linux Distros Unpatched Vulnerability : CVE-2018-9568
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In skclonelock of sock.c, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with no additional...
Linux Distros Unpatched Vulnerability : CVE-2018-9385
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In driveroverridestore of bus.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with...