Lucene search
K

172 matches found

OSV
OSV
added 2022/04/12 5:15 p.m.1 views

UBUNTU-CVE-2021-0707

In dmabufrelease of dma-buf.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

7.8CVSS6.9AI score0.00153EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2022/02/18 8:0 a.m.4 views

drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev->buf release.

...

7.8CVSS7.3AI score0.00413EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2022/02/11 6:15 a.m.6 views

CVE-2022-24958

drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev-buf release...

7.8CVSS5.8AI score0.00413EPSS
Exploits0References10
OSV
OSV
added 2022/02/11 6:15 a.m.2 views

DEBIAN-CVE-2022-24958

drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev-buf release...

7.8CVSS6.6AI score0.00413EPSS
Exploits0References1
OSV
OSV
added 2022/02/11 6:15 a.m.1 views

UBUNTU-CVE-2022-24958

drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev-buf release...

7.8CVSS6.7AI score0.00413EPSS
Exploits0References11
BDU FSTEC
BDU FSTEC
added 2017/09/01 12:0 a.m.5 views

The vulnerability of the Android operating system from the CAF repository exists due to the lack of memory cleanup for buffers, allowing attackers to trigger resource exhaustion.

The vulnerability of the Android operating system from the CAF repository is related to the absence of a memory release mechanism after use. Exploiting this vulnerability allows a remote attacker to cause resource exhaustion...

10CVSS7.8AI score0.00836EPSS
Exploits0References3
OSV
OSV
added 2017/02/06 6:59 a.m.2 views

DEBIAN-CVE-2017-5550

Off-by-one error in the pipeadvance function in lib/ioviter.c in the Linux kernel before 4.9.5 allows local users to obtain sensitive information from uninitialized heap-memory locations in opportunistic circumstances by reading from a pipe after an incorrect buffer-release decision...

5.5CVSS6.4AI score0.00413EPSS
Exploits0References1
CVE
CVE
added 2017/02/06 6:4 a.m.75 views

CVE-2017-5550

CVE-2017-5550 describes an off-by-one/error in the Linux kernel pipe_advance function (lib/iov_iter.c) that could allow local attackers to read from uninitialized kernel heap memory via a pipe, before the fixed 4.9.5 release. Connected advisories (EulerOS, Unity Linux) reference kernel versions b...

5.5CVSS5.5AI score0.00413EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2017/02/06 6:4 a.m.25 views

CVE-2017-5550

Off-by-one error in the pipeadvance function in lib/ioviter.c in the Linux kernel before 4.9.5 allows local users to obtain sensitive information from uninitialized heap-memory locations in opportunistic circumstances by reading from a pipe after an incorrect buffer-release decision...

6.1AI score0.00413EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2017/02/06 12:0 a.m.27 views

CVE-2017-5550

Off-by-one error in the pipeadvance function in lib/ioviter.c in the Linux kernel before 4.9.5 allows local users to obtain sensitive information from uninitialized heap-memory locations in opportunistic circumstances by reading from a pipe after an incorrect buffer-release decision...

5.5CVSS6.8AI score0.00413EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2017/01/24 4:17 p.m.22 views

CVE-2017-5550

Off-by-one error in the pipeadvance function in lib/ioviter.c in the Linux kernel before 4.9.5 allows local users to obtain sensitive information from uninitialized heap-memory locations in opportunistic circumstances by reading from a pipe after an incorrect buffer-release decision...

5.5CVSS5.1AI score0.00413EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2014/06/10 12:23 p.m.4 views

openssl: SSL_MODE_RELEASE_BUFFERS NULL pointer dereference in do_ssl3_write()

The dossl3write function in s3pkt.c in OpenSSL 1.x through 1.0.1g, when SSLMODERELEASEBUFFERS is enabled, does not properly manage a buffer pointer during certain recursive calls, which allows remote attackers to cause a denial of service NULL pointer dereference and application crash via vectors...

4.3CVSS6.9AI score0.43828EPSS
Exploits0References5
Rows per page
Query Builder