USN-6895-1: Linux kernel vulnerabilities

It was discovered that the ATA over Ethernet AoE driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2023-6270 It was discovered that the HugeTLB file syst...

Largest Patch Tuesday in 3 months includes 5 critical vulnerabilities

Microsoft released its monthly security update on Tuesday, disclosing 142 vulnerabilities across its suite of products and software. Of those, there are five critical vulnerabilities, and every other security issue disclosed this month is considered "important." This is the largest Patch Tuesday...

CVE-2024-38056

Microsoft Windows Codecs Library Information Disclosure Vulnerability...

CVE-2024-38056

Microsoft Windows Codecs Library Information Disclosure Vulnerability...

CVE-2024-38055

Microsoft Windows Codecs Library Information Disclosure Vulnerability...

CVE-2024-38055

Microsoft Windows Codecs Library Information Disclosure Vulnerability...

CVE-2024-38056 Microsoft Windows Codecs Library Information Disclosure Vulnerability

...

CVE-2024-38055 Microsoft Windows Codecs Library Information Disclosure Vulnerability

...

CVE-2024-38056

Technical details about CVE-2024-38056 are not publicly provided in the connected documents. The entry is listed, but no affected products, root cause, impact, or fixes are described here.

CVE-2024-38055

Technical details for CVE-2024-38055 (affected component, root cause, impact or fix) are not provided in the connected documents. Monitor for updates from Microsoft and coordinating sources for public details.

CVE-2024-38055 Microsoft Windows Codecs Library Information Disclosure Vulnerability

...

Microsoft Windows Codecs Library Information Disclosure Vulnerability

...

Microsoft Windows Codecs Library Information Disclosure Vulnerability

...

Microsoft Windows Codecs Library Security Vulnerability

The Microsoft Windows Codecs Library is a library of features for the Microsoft Windows system from Microsoft Corporation. A security vulnerability exists in the Microsoft Windows Codecs Library. An attacker could exploit this vulnerability to obtain sensitive information. The following products...

Microsoft Windows Codecs Library Security Vulnerability

The Microsoft Windows Codecs Library is a library of features for the Microsoft Windows system from Microsoft Corporation. A security vulnerability exists in the Microsoft Windows Codecs Library. An attacker could exploit this vulnerability to obtain sensitive information. The following products...

CVE-2022-48716

In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd938x: fix incorrect used of portid Mixer controls have the channel id in mixer-reg, which is not same as port id. port id should be derived from chaninfo array. So fix this. Without this, its possible that we cou...

CVE-2022-48716 ASoC: codecs: wcd938x: fix incorrect used of portid

In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd938x: fix incorrect used of portid Mixer controls have the channel id in mixer-reg, which is not same as port id. port id should be derived from chaninfo array. So fix this. Without this, its possible that we cou...

CVE-2022-48716 ASoC: codecs: wcd938x: fix incorrect used of portid

In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd938x: fix incorrect used of portid Mixer controls have the channel id in mixer-reg, which is not same as port id. port id should be derived from chaninfo array. So fix this. Without this, its possible that we cou...

CVE-2022-48716

In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd938x: fix incorrect used of portid Mixer controls have the channel id in mixer-reg, which is not same as port id. port id should be derived from chaninfo array. So fix this. Without this, its possible that we cou...

Ubuntu 22.04 LTS : Linux kernel (Intel IoTG) vulnerabilities (USN-6795-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6795-1 advisory. Zheng Wang discovered that the Broadcom FullMAC WLAN driver in the Linux kernel contained a race condition during device removal, leading to a use-...