2567 matches found
PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal
...
keycloak: potential bypass of brute force protection
A vulnerability was found in Keycloak. This flaw allows attackers to bypass brute force protection by exploiting the timing of login attempts. By initiating multiple login requests simultaneously, attackers can exceed the configured limits for failed attempts before the system locks them out. Thi...
The vulnerability of the signal handler in the sshd(8) program of the FreeBSD operating system allows a hacker to execute arbitrary code in the root context.
The vulnerability of the signal handler in the sshd8 program of the FreeBSD operating system is related to the reutilization of previously freed memory due to concurrent access to resources. Exploiting this vulnerability allows a remote attacker to execute arbitrary code in the root context...
CVE-2024-43102
Concurrent removals of certain anonymous shared memory mappings by using the UMTXSHMDESTROY sub-request of UMTXOPSHM can lead to decreasing the reference count of the object representing the mapping too many times, causing it to be freed too early. A malicious code exercizing the UMTXSHMDESTROY...
CVE-2024-43102 umtx Kernel panic or Use-After-Free
Concurrent removals of certain anonymous shared memory mappings by using the UMTXSHMDESTROY sub-request of UMTXOPSHM can lead to decreasing the reference count of the object representing the mapping too many times, causing it to be freed too early. A malicious code exercizing the UMTXSHMDESTROY...
CVE-2024-43102
CVE-2024-43102 describes a kernel-level issue in FreeBSD involving concurrent removals of anonymous shared memory mappings via the UMTX_SHM_DESTROY sub-request of UMTX_OP_SHM. The root cause is that the reference count for the mapping object can be decremented too many times, causing premature fr...
CVE-2024-44991
In the Linux kernel, the following vulnerability has been resolved: tcp: prevent concurrent execution of tcpskexitbatch Its possible that two threads call tcpskexitbatch concurrently, once from the cleanupnet workqueue, once from a task that failed to clone a new netns. In the latter case, error...
CVE-2024-44991 tcp: prevent concurrent execution of tcp_sk_exit_batch
In the Linux kernel, the following vulnerability has been resolved: tcp: prevent concurrent execution of tcpskexitbatch Its possible that two threads call tcpskexitbatch concurrently, once from the cleanupnet workqueue, once from a task that failed to clone a new netns. In the latter case, error...
CVE-2024-44991 tcp: prevent concurrent execution of tcp_sk_exit_batch
In the Linux kernel, the following vulnerability has been resolved: tcp: prevent concurrent execution of tcpskexitbatch Its possible that two threads call tcpskexitbatch concurrently, once from the cleanupnet workqueue, once from a task that failed to clone a new netns. In the latter case, error...
CVE-2024-44991 tcp: prevent concurrent execution of tcp_sk_exit_batch
In the Linux kernel, the following vulnerability has been resolved: tcp: prevent concurrent execution of tcpskexitbatch Its possible that two threads call tcpskexitbatch concurrently, once from the cleanupnet workqueue, once from a task that failed to clone a new netns. In the latter case, error...
CVE-2024-44991
CVE-2024-44991 affects the Linux kernel TCP stack: concurrent calls to tcp_sk_exit_batch() can race with inet_twsk_purge() across dying netns, risking timewait sockets of the exiting netns. The root cause: after the net/core/net_namespace change (commit that batches inet_twsk_purge), tcp_twsk_pur...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a possible concurrent execution of the tcpskexitbatch function of the tcp component...
CVE-2024-33060
Memory corruption when two threads try to map and unmap a single node simultaneously...
CVE-2024-38401
Memory corruption while processing concurrent IOCTL calls...
CVE-2024-38401 Use After Free in Qualcomm IPC
Memory corruption while processing concurrent IOCTL calls...
CVE-2024-38401
CVE-2024-38401 describes a memory corruption issue due to a use-after-free in the Qualcomm IPC component when processing concurrent IOCTL calls on Qualcomm chipsets. Affected software: Qualcomm IPC on Qualcomm chipsets (per CVE listing). Root cause: improper handling of concurrent IOCTL processin...
PT-2024-27982 · Qualcomm · Snapdragon +41
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: Memory corruption can occur when processing multiple IOCTL calls concurrently. This issue is related to the processing of concurrent IOCTL calls, which...
PT-2024-25100 · Qualcomm · Qualcomm Snapdragon Auto
Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon Auto affected versions not specified Description: The issue is related to memory corruption that occurs when two threads attempt to map and unmap a single node at the same time. This can lead to unpredictable behavior and...
CVE-2024-44946
CVE-2024-44946 affects the Linux kernel kcm subsystem (kcm_sendmsg). The issue was a use-after-free/race: while MSG_MORE skb construction was in progress, another thread could touch it, leading to a double-free in kcm_release() when the skb remained in the write queue. The fix serialises kcm_send...
PT-2024-33715
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.58 Description: A dentry leak may occur in the Linux kernel when a lookup cookie and a cull are concurrent. This happens because the reference count obtained by lookup one positive unlocked in cachefiles loo...