Lucene search
+L

195 matches found

Packet Storm
Packet Storm
added 2025/01/24 12:0 a.m.446 views

DFG JIT Use-After-Free

DFG's doesGC is incorrect about the HasIndexedProperty operation's behavior on StringObjects. This can lead to a use-after-free condition. See also https://bugs.chromium.org/p/project-zero/issues/detail?id=1699 for a similar issue. The DFG JIT compiler attempts to determine whether a DFG IR...

8.8CVSS9.2AI score0.08287EPSS
Exploits2
NVD
NVD
added 2024/12/09 3:15 p.m.13 views

CVE-2024-11991

Motoko's incremental garbage collector is impacted by an uninitialized memory access bug, caused by incorrect use of write barriers in a few locations. This vulnerability could potentially allow unauthorized read or write access to a Canister's memory. However, exploiting this bug requires the...

6.5CVSS0.00238EPSS
Exploits0References2
OSV
OSV
added 2024/12/09 2:38 p.m.5 views

CVE-2024-11991 Uninitialized memory access in Motoko incremental garbage collector

Motoko's incremental garbage collector is impacted by an uninitialized memory access bug, caused by incorrect use of write barriers in a few locations. This vulnerability could potentially allow unauthorized read or write access to a Canister's memory. However, exploiting this bug requires the...

5.6CVSS6AI score0.00238EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/12/09 12:0 a.m.10 views

PT-2024-17386 · Motoko · Motoko

Name of the Vulnerable Software and Affected Versions: Motoko affected versions not specified Description: The incremental garbage collector in Motoko is affected by an uninitialized memory access bug. This issue is caused by the incorrect use of write barriers in a few locations, potentially...

5.6CVSS6.7AI score0.00238EPSS
Exploits0References5
OSV
OSV
added 2024/10/21 8:15 p.m.1 views

DEBIAN-CVE-2024-50030

In the Linux kernel, the following vulnerability has been resolved: drm/xe/ct: prevent UAF in sendrecv Ensure we serialize with completion side to prevent UAF with fence going out of scope on the stack, since we have no clue if it will fire after the timeout before we can erase from the xa. Also ...

7.8CVSS6.3AI score0.00228EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 8:15 p.m.4 views

UBUNTU-CVE-2024-50030

In the Linux kernel, the following vulnerability has been resolved: drm/xe/ct: prevent UAF in sendrecv Ensure we serialize with completion side to prevent UAF with fence going out of scope on the stack, since we have no clue if it will fire after the timeout before we can erase from the xa. Also ...

7.8CVSS6.5AI score0.00228EPSS
Exploits0References19
Cvelist
Cvelist
added 2024/10/21 7:39 p.m.22 views

CVE-2024-50030 drm/xe/ct: prevent UAF in send_recv()

In the Linux kernel, the following vulnerability has been resolved: drm/xe/ct: prevent UAF in sendrecv Ensure we serialize with completion side to prevent UAF with fence going out of scope on the stack, since we have no clue if it will fire after the timeout before we can erase from the xa. Also ...

0.00228EPSS
Exploits0References2
CVE
CVE
added 2024/10/21 7:39 p.m.121 views

CVE-2024-50030

CVE-2024-50030 refers to a Linux kernel vulnerability in drm/xe/ct where a use-after-free (UAF) could occur due to fence/timeout interactions. The fix serializes with the completion side by grabbing ct->lock after the wait to ensure correct ordering of dependent loads/stores and to prevent UAF...

7.8CVSS7.3AI score0.00228EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/10/21 6:15 p.m.25 views

CVE-2024-49993

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

7AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/09/24 2:39 a.m.5 views

kernel: USB: core: Fix hang in usb_kill_urb by adding memory barriers

In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix hang in usbkillurb by adding memory barriers The syzbot fuzzer has identified a bug in which processes hang waiting for usbkillurb to return. It turns out the issue is not unlinking the URB; that works just fine...

7.1CVSS6.9AI score0.00186EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/24 12:40 a.m.3 views

kernel: USB: core: Fix hang in usb_kill_urb by adding memory barriers

In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix hang in usbkillurb by adding memory barriers The syzbot fuzzer has identified a bug in which processes hang waiting for usbkillurb to return. It turns out the issue is not unlinking the URB; that works just fine...

7.1CVSS6.9AI score0.00186EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2024/09/13 12:0 a.m.6 views

The vulnerability in the Firefox web browser relates to improper handling of memory barriers between protected memory regions. This allows attackers to gain access to confidential data, compromise its integrity, and cause service interruptions.

The vulnerability in the Firefox web browser is related to improper handling of overlaps between protected memory regions. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service interruptions...

10CVSS7.7AI score0.00441EPSS
Exploits0References10Affected Software3
OSV
OSV
added 2024/08/02 11:8 a.m.11 views

OESA-2024-1944 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: usb: musb: tusb6010: check return value after calling platformgetresource It will cause null-ptr-deref if platformgetresource returns NULL, we need check the...

7.8CVSS6.5AI score0.00921EPSS
Exploits0References30
OpenVAS
OpenVAS
added 2024/07/12 12:0 a.m.38 views

openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:2362-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.3AI score0.67994EPSS
Exploits7References2
SUSE CVE
SUSE CVE
added 2024/06/22 4:8 a.m.4 views

SUSE CVE-2022-48760

In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix hang in usbkillurb by adding memory barriers The syzbot fuzzer has identified a bug in which processes hang waiting for usbkillurb to return. It turns out the issue is not unlinking the URB; that works just fine...

5.5CVSS6.5AI score0.00186EPSS
Exploits0References15
RedhatCVE
RedhatCVE
added 2024/06/20 2:53 p.m.26 views

CVE-2022-48760

In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix hang in usbkillurb by adding memory barriers The syzbot fuzzer has identified a bug in which processes hang waiting for usbkillurb to return. It turns out the issue is not unlinking the URB; that works just fine...

4.1CVSS8.6AI score0.00186EPSS
Exploits0References4
NVD
NVD
added 2024/06/20 12:15 p.m.30 views

CVE-2022-48760

In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix hang in usbkillurb by adding memory barriers The syzbot fuzzer has identified a bug in which processes hang waiting for usbkillurb to return. It turns out the issue is not unlinking the URB; that works just fine...

7.1CVSS0.00186EPSS
Exploits0References9
OSV
OSV
added 2024/06/20 12:15 p.m.2 views

DEBIAN-CVE-2022-48760

In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix hang in usbkillurb by adding memory barriers The syzbot fuzzer has identified a bug in which processes hang waiting for usbkillurb to return. It turns out the issue is not unlinking the URB; that works just fine...

7.1CVSS5.5AI score0.00186EPSS
Exploits0References1
OSV
OSV
added 2024/06/20 12:15 p.m.4 views

UBUNTU-CVE-2022-48760

In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix hang in usbkillurb by adding memory barriers The syzbot fuzzer has identified a bug in which processes hang waiting for usbkillurb to return. It turns out the issue is not unlinking the URB; that works just fine...

7.1CVSS6.3AI score0.00186EPSS
Exploits0References12
OSV
OSV
added 2024/06/20 11:13 a.m.21 views

CVE-2022-48760 USB: core: Fix hang in usb_kill_urb by adding memory barriers

In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix hang in usbkillurb by adding memory barriers The syzbot fuzzer has identified a bug in which processes hang waiting for usbkillurb to return. It turns out the issue is not unlinking the URB; that works just fine...

7.1CVSS6AI score0.00186EPSS
Exploits0References12
Rows per page
Query Builder