GSD-2022-1005702 ALSA: seq: Fix data-race at module auto-loading

ALSA: seq: Fix data-race at module auto-loading This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.142 by commit...

GSD-2022-1005386 ALSA: seq: Fix data-race at module auto-loading

ALSA: seq: Fix data-race at module auto-loading This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.66 by commit...

CVE-2022-1652

A use-after-free flaw was found in the Linux kernel’s floppy driver implementation. This flaw allows a local attacker to possibly corrupt memory. Mitigation The floppy module will be auto-loaded when the hardware is present. Its loading can be prevented with the following instructions: echo...

CVE-2020-36322

A denial of service flaw was found in fusedogetattr in fs/fuse/dir.c in the kernel side of the FUSE filesystem in the Linux kernel. A local user could use this flaw to crash the system. Mitigation As the FUSE module will be auto-loaded when required, its use can be disabled by preventing the modu...

CVE-2021-20261

A race condition was found in the Linux kernels implementation of the floppy disk drive controller driver software. The impact of this issue is lessened by the fact that the default permissions on the floppy device /dev/fd0 are restricted to root. If the permissions on the device have changed the...

CVE-2020-15271

In lookatme (Python/pypi) versions prior to 2.3.0, the package automatically loaded the built-in terminal and file_loader extensions. Rendering untrusted Markdown could cause malicious shell commands to run on the user’s system. This is fixed in version 2.3.0. As a workaround, the files lookatme/...

CVE-2019-18198

A flaw was found in the Linux kernel’s IPv6 routing system. A local attacker with the ability to configure routing can create a situation where they can corrupt memory or possibly escalate privileges. Mitigation As the IPV6 module will be auto-loaded when required, its use can be disabled by...

CVE-2019-15218

A flaw was found in the Linux kernel's Siano Mobile Silicon MDTV receiver driver. An attacker, with physical access and a specially crafted USB device, can exploit this vulnerability, creating a NULL pointer dereference and causing the system to crash. The highest threat from this vulnerability i...

CVE-2019-16413

A flaw was found in the implementation of the 9p filesystem in the Linux kernel. The 9p filesystem does not protect isizewrite properly, which causes an isizeread infinite loop. An attacker, able to mount a specially crafted filesystem, could cause a denial of service on SMP systems. Mitigation A...

Volatility Workbench - A GUI For Volatility Memory Forensics

Volatility Workbench is a graphical user interface GUI for the Volatility tool. Volatility is a command line memory analysis and forensics tool for extracting artifacts from memory dumps. Volatility Workbench is free, open source and runs in Windows. It provides a number of advantages over the...

Zend PHP Auto Loading Mechanism Local File Inclusion

This vulnerability is due to unexpected behavior of the Auto-Loading mechanism in the PHP language. Successful exploitation of this vulnerability could allow a remote attacker to include arbitrary files found on the server and could possibly lead to remote code execution...

[SECURITY] Fedora 18 Update: php-symfony2-ClassLoader-2.2.10-1.fc18

The ClassLoader Component loads your project classes automatically if they follow some standard PHP conventions. Whenever you use an undefined class, PHP uses the auto-loading mechanism to delegate the loading of a file defining the class. Symfony2 provides a "universal" auto-loader, which is abl...

Amazon Linux AMI : gdb (ALAS-2013-159)

GDB tried to auto-load certain files such as GDB scripts, Python scripts, and a thread debugging library from the current working directory when debugging programs. This could result in the execution of arbitrary code with the user's privileges when GDB was run in a directory that has untrusted...