EUVD-2026-28617

In the Linux kernel, the following vulnerability has been resolved: bpf: reject direct access to nullable PTRTOBUF pointers checkmemaccess matches PTRTOBUF via basetype which strips PTRMAYBENULL, allowing direct dereference without a null check. Map iterator ctx-key and ctx-value are PTRTOBUF |...

CVE-2026-43333

In the Linux kernel, the following vulnerability has been resolved: bpf: reject direct access to nullable PTRTOBUF pointers checkmemaccess matches PTRTOBUF via basetype which strips PTRMAYBENULL, allowing direct dereference without a null check. Map iterator ctx-key and ctx-value are PTRTOBUF |...

Astra Linux – Vulnerability in Qemu

A reentrancy issue related to DMA was discovered in the USB EHCI controller emulation of QEMU. EHCI does not verify whether the Buffer Pointer overlaps with its MMIO region when transferring USB packets. Crafted content may be written to the controller’s registers, potentially triggering...

CVE-2026-23133 wifi: ath10k: fix dma_free_coherent() pointer

In the Linux kernel, the following vulnerability has been resolved: wifi: ath10k: fix dmafreecoherent pointer dmaalloccoherent allocates a DMA mapped buffer and stores the addresses in XXXunaligned fields. Those should be reused when freeing the buffer rather than the aligned addresses...

coresight: Fix memory leak in acpi_buffer->pointer

...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989063)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989063 advisory. In the Linux kernel, the following vulnerability has been resolved: usbnet: fix memory leak in error case usbnetwritecmdasync mixed up which buffers need to be freed...

EUVD-2017-18165

Malware in sbrugna...

EUVD-2020-3535

Malware in sbrugna...

EUVD-2022-30461

Malicious code in bioql PyPI...

CVE-2023-53261 coresight: Fix memory leak in acpi_buffer->pointer

In the Linux kernel, the following vulnerability has been resolved: coresight: Fix memory leak in acpibuffer-pointer There are memory leaks reported by kmemleak: ... unreferenced object 0xffff00213c141000 size 1024: comm "systemd-udevd", pid 2123, jiffies 4294909467 age 6062.160s hex dump first 3...

CVE-2023-53261 coresight: Fix memory leak in acpi_buffer->pointer

In the Linux kernel, the following vulnerability has been resolved: coresight: Fix memory leak in acpibuffer-pointer There are memory leaks reported by kmemleak: ... unreferenced object 0xffff00213c141000 size 1024: comm "systemd-udevd", pid 2123, jiffies 4294909467 age 6062.160s hex dump first 3...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not checking the tw68riscbuffer return value and buf-cpu value, which could result in a null pointer...

CVE-2024-45746

An issue was discovered in Trusted Firmware-M through 2.1.0. User provided and controlled mailbox messages contain a pointer to a list of input arguments invec and output arguments outvec. These list pointers are never validated. Each argument list contains a buffer pointer and a buffer length...

CVE-2021-45969

An issue was discovered in AhciBusDxe in Insyde InsydeH2O with kernel 5.1 before 05.16.25, 5.2 before 05.26.25, 5.3 before 05.35.25, 5.4 before 05.43.25, and 5.5 before 05.51.25. A vulnerability exists in the SMM System Management Mode branch that registers a SWSMI handler that does not...

CVE-2020-11181

Out of bound access issue while handling cvp process control command due to improper validation of buffer pointer received from HLOS in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile...

UBUNTU-CVE-2024-47603

GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference vulnerability has been discovered in the gstmatroskademuxupdatetracks function within matroska-demux.c. The vulnerability occurs when the gstcapsisequal function is called with invalid caps...

CVE-2024-45746

An issue was discovered in Trusted Firmware-M through 2.1.0. User provided and controlled mailbox messages contain a pointer to a list of input arguments invec and output arguments outvec. These list pointers are never validated. Each argument list contains a buffer pointer and a buffer length...

The vulnerability of the qemu-kvm hardware emulation package from QEMU allows a attacker to trigger a service failure.

The vulnerability of the qemu-kvm hardware emulation package from QEMU is related to the lack of checks to ensure that the buffer pointer does not overlap with the MMIO region during USB packet transmission. Exploiting this vulnerability can allow an attacker to cause a service failure...

ROS-20240606-01

A vulnerability in QEMU's USB EHCI controller emulation is related to the lack of checks if the buffer pointer overlaps with the MMIO register when transmitting USB packets. the buffer pointer overlaps with the MMIO region when transmitting USB packets. Exploitation of the vulnerability could all...

The vulnerability of Omron Sysmac Studio and CX-One software, which is related to the use of the “Free” function for the pointer not at the beginning of the buffer, allows a hacker to execute arbitrary code.

The vulnerability of Omron Sysmac Studio and CX-One software, which are used for automating and managing manufacturing processes, stems from the use of the “Free” function for the pointer not at the beginning of the buffer. Exploiting this vulnerability allows an attacker to execute arbitrary cod...