Lucene search
K

263 matches found

Cvelist
Cvelist
added 2025/02/26 1:55 a.m.18 views

CVE-2022-49207 bpf, sockmap: Fix memleak in sk_psock_queue_msg

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix memleak in skpsockqueuemsg If tcpbpfsendmsg is running during a tear down operation we may enqueue data on the ingress msg queue while tear down is trying to free it. sk1 redirect sk2 sk2 -------------------...

0.00252EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/02/26 1:55 a.m.25 views

CVE-2022-49191 mxser: fix xmit_buf leak in activate when LSR == 0xff

In the Linux kernel, the following vulnerability has been resolved: mxser: fix xmitbuf leak in activate when LSR == 0xff When LSR is 0xff in -activate rather unlike, we return an error. Provided -shutdown is not called when -activate fails, nothing actually frees the buffer in this case. Fix this...

0.00259EPSS
Exploits0References9
OSV
OSV
added 2025/02/24 9:1 a.m.9 views

CVE-2023-52926 io_uring/rw: split io_read() into a helper

In the Linux kernel, the following vulnerability has been resolved: IORINGOPREAD did not correctly consume the provided buffer list when read i/o returned 0 except for -EAGAIN and -EIOCBQUEUED return. This can lead to a potential use-after-free when the completion via iorwdone runs at separate...

7.8CVSS6.1AI score0.00228EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2024/12/28 3:50 a.m.4 views

SUSE CVE-2024-53213

In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: Fix double free issue with interrupt buffer allocation In lan78xxprobe, the buffer buf was being freed twice: once implicitly through usbfreeurbdev-urbintr with the URBFREEBUFFER flag and again explicitly by...

6.1CVSS7.9AI score0.00226EPSS
Exploits0References17
Cvelist
Cvelist
added 2024/12/27 2:23 p.m.26 views

CVE-2024-56572 media: platform: allegro-dvt: Fix possible memory leak in allocate_buffers_internal()

In the Linux kernel, the following vulnerability has been resolved: media: platform: allegro-dvt: Fix possible memory leak in allocatebuffersinternal The buffer in the loop should be released under the exception path, otherwise there may be a memory leak here. To mitigate this, free the buffer wh...

0.00231EPSS
Exploits0References7
CVE
CVE
added 2024/12/27 1:49 p.m.170 views

CVE-2024-53213

CVE-2024-53213 – Linux kernel (LAN78xx USB Ethernet driver) Connected sources confirm a concrete issue in lan78xx where a buffer allocated in lan78xx_probe() was freed twice: once via usb_free_urb(dev->urb_intr) with URB_FREE_BUFFER and again by kfree(buf). The root cause is the double free st...

7.8CVSS7.3AI score0.00226EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2024/12/25 9:36 a.m.15 views

CLSA-2024-1735119353 openssl: Fix of CVE-2024-4741

CVE-2024-4741: Only free the read buffers if we're not using them...

7.5CVSS6.8AI score0.02945EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2024/11/21 7:27 p.m.13 views

CVE-2024-53059

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: Fix response handling in iwlmvmsendrecoverycmd 1. The size of the response packet is not validated. 2. The response buffer is not freed. Resolve these issues by switching to iwlmvmsendcmdstatus, which handles...

5.5CVSS6.9AI score0.00282EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/11/20 3:49 a.m.4 views

SUSE CVE-2024-53059

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: Fix response handling in iwlmvmsendrecoverycmd 1. The size of the response packet is not validated. 2. The response buffer is not freed. Resolve these issues by switching to iwlmvmsendcmdstatus, which handles...

5.5CVSS8AI score0.00282EPSS
Exploits0References17
OSV
OSV
added 2024/10/07 10:15 p.m.1 views

UBUNTU-CVE-2024-47814

Vim is an open source, command line text editor. A use-after-free was found in Vim 9.1.0764. When closing a buffer visible in a window a BufWinLeave auto command can cause an use-after-free if this auto command happens to re-open the same buffer in a new split window. Impact is low since the user...

4.7CVSS7.3AI score0.00291EPSS
Exploits0References4
OSV
OSV
added 2024/08/16 2:15 a.m.3 views

DEBIAN-CVE-2024-43374

The UNIX editor Vim prior to version 9.1.0678 has a use-after-free error in argument list handling. When adding a new file to the argument list, this triggers Buf autocommands. If in such an autocommand the buffer that was just opened is closed including the window where it is shown, this causes...

4.7CVSS5.4AI score0.00349EPSS
Exploits0References1
OSV
OSV
added 2024/08/08 8:49 a.m.6 views

CVE-2024-42254 io_uring: fix error pbuf checking

In the Linux kernel, the following vulnerability has been resolved: iouring: fix error pbuf checking Syz reports a problem, which boils down to NULL vs ISERR inconsistent error handling in ioallocpbufring. KASAN: null-ptr-deref in range 0x0000000000000000-0x0000000000000007 RIP:...

5.5CVSS6.5AI score0.0021EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/08/08 4:44 a.m.8 views

kernel: tipc: fix a possible memleak in tipc_buf_append

In the Linux kernel, the following vulnerability has been resolved: tipc: fix a possible memleak in tipcbufappend skblinearize doesn't free the skb when it fails, so move 'buf = NULL' after skblinearize, so that the skb can be freed on the err path...

5.5CVSS6.8AI score0.00249EPSS
Exploits0References5
CVE
CVE
added 2024/08/01 9:44 p.m.95 views

CVE-2024-41965

Vulnerability: CVE-2024-41965 in Vim due to a double-free in dialog_changed() when renaming an unnamed buffer during abandonment, which could lead to a heap-use-after-free and a crash. Affected: Vim versions prior to 9.1.0648; fix: Vim patch v9.1.0648 and later. Exploitation details are not provi...

4.2CVSS4.7AI score0.00289EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2024/07/15 4:8 p.m.6 views

kernel: TIPC message reassembly use-after-free remote code execution vulnerability

A use-after-free UAF flaw exists in the Linux Kernel within the reassembly of fragmented TIPC messages, specifically in the tipcbufappend function. The issue results due to a lack of checks in the error handling cleanup and can trigger a UAF on "struct skbuff", which may lead to remote code...

8.1CVSS7.7AI score0.01305EPSS
Exploits1References6
Veracode
Veracode
added 2024/07/09 6:15 a.m.12 views

Denial Of Service (DOS)

OPCFoundation.NetStandard.Opc.Ua.Core is vulnerable to Denial Of Service. The vulnerability is due to improper buffer management when the system receives an excessive number of messages from a remote source, which could allow remote attackers to exhaust memory resources and potentially lead to a...

7.5CVSS7.1AI score0.00557EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/07/06 12:31 a.m.8 views

GHSA-4Q2P-HWMR-QCXC OPCFoundation.NetStandard.Opc.Ua.Core buffer-management vulnerability

A buffer-management vulnerability in OPC Foundation OPCFoundation.NetStandard.Opc.Ua.Core before 1.5.374.54 could allow remote attackers to exhaust memory resources. It is triggered when the system receives an excessive number of messages from a remote source. This could potentially lead to a...

8.7CVSS7.4AI score0.00557EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2024/07/06 12:31 a.m.15 views

OPCFoundation.NetStandard.Opc.Ua.Core buffer-management vulnerability

A buffer-management vulnerability in OPC Foundation OPCFoundation.NetStandard.Opc.Ua.Core before 1.5.374.54 could allow remote attackers to exhaust memory resources. It is triggered when the system receives an excessive number of messages from a remote source. This could potentially lead to a...

7.5CVSS6.9AI score0.00557EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2024/07/05 11:15 p.m.19 views

CVE-2024-33862

A buffer-management vulnerability in OPC Foundation OPCFoundation.NetStandard.Opc.Ua.Core before 1.05.374.54 could allow remote attackers to exhaust memory resources. It is triggered when the system receives an excessive number of messages from a remote source. This could potentially lead to a...

7.5CVSS0.00557EPSS
Exploits0References1
Snyk
Snyk
added 2024/07/05 10:42 p.m.3 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling due to improper buffer management when handling an excessive number of messages from a remote source. An attacker can exhaust system memory resources, potentially leading to system...

8.7CVSS7.2AI score0.00557EPSS
Exploits0References2
Rows per page
Query Builder