2566 matches found
UBUNTU-CVE-2024-38545
In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix UAF for cq async event The refcount of CQ is not protected by locks. When CQ asynchronous events and CQ destruction are concurrent, CQ may have been released, which will cause UAF. Use the xalock to protect the CQ...
CVE-2024-38545 RDMA/hns: Fix UAF for cq async event
In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix UAF for cq async event The refcount of CQ is not protected by locks. When CQ asynchronous events and CQ destruction are concurrent, CQ may have been released, which will cause UAF. Use the xalock to protect the CQ...
The vulnerability of the queue_oob() function in socket implementations for kernels AF_UNIX in Linux operating systems allows a hacker to cause a service failure.
The vulnerability of the queueoob function in the net/unix/afunix.c module, which is part of the AFUNIX socket implementation in Linux operating systems, relates to the reutilization of previously freed memory due to concurrent access to resources. Exploiting this vulnerability can allow an...
The vulnerability of the tcp_twsk_unique() function in the Linux operating system’s IPv4 kernel implementation allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the tcptwskunique function in the net/ipv4/tcpipv4.c module, which is part of the Linux kernel’s implementation of the IPv4 protocol, relates to the reutilization of previously freed memory due to concurrent access to resources. Exploiting this vulnerability could allow an...
The vulnerability of the msft_do_close() function in the Linux operating system’s Bluetooth kernel implementation allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the msftdoclose function in the net/bluetooth/msft.c module of the Linux operating system’s Bluetooth protocol implementation is related to the reallocation of previously freed memory due to concurrent access to resources. Exploiting this vulnerability could allow an attacker...
SUSE CVE-2024-36972
In the Linux kernel, the following vulnerability has been resolved: afunix: Update unixsksk-oobskb under skreceivequeue lock. Billy Jheng Bing-Jhong reported a race between unixgc and queueoob. unixgc tries to garbage-collect closed inflight sockets, and then if the socket has MSGOOB in...
PYSEC-2024-105
A race condition vulnerability exists in zenml-io/zenml versions up to and including 0.55.3, which allows for the creation of multiple users with the same username when requests are sent in parallel. This issue was fixed in version 0.55.5. The vulnerability arises due to insufficient handling of...
PYSEC-2024-105
A race condition vulnerability exists in zenml-io/zenml versions up to and including 0.55.3, which allows for the creation of multiple users with the same username when requests are sent in parallel. This issue was fixed in version 0.55.5. The vulnerability arises due to insufficient handling of...
PT-2024-18648 · Zenml Io · Zenml
Name of the Vulnerable Software and Affected Versions: zenml-io/zenml versions up to and including 0.55.3 Description: A race condition issue exists, allowing for the creation of multiple users with the same username when requests are sent in parallel. This is due to insufficient handling of...
SUSE CVE-2021-32778
Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures. In affected versions envoy's procedure for resetting a HTTP/2 stream has ON^2 complexity, leading to high CPU utilization when a large number of streams are reset. Deployments are...
PT-2024-28424
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to a potential kernel crash when multiple napi instances redirect to the same AF XDP socket. This can happen when the linked list of sockets to flush gets corrupted ...
RHEL 9 : pki-servlet-engine (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - tomcat: Leaking of unrelated request bodies in default error page CVE-2024-21733 Note that Nessus has not tested fo...
UBUNTU-CVE-2024-36932
In the Linux kernel, the following vulnerability has been resolved: thermal/debugfs: Prevent use-after-free from occurring after cdev removal Since thermaldebugcdevremove does not run under cdev-lock, it can run in parallel with thermaldebugcdevstateupdate and it may free the struct thermaldebugf...
The vulnerability of the ax25_dev_device_down() function in the implementation of the Amateur Radio X.25 PLP (Rose) protocol in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the ax25devdevicedown function in the net/ax25/ax25dev.c module, which is part of the Amateur Radio X.25 PLP Rose protocol implementation in the Linux operating system, relates to the reutilization of previously freed memory due to concurrent access to resources. Exploiting...
The vulnerability of the pep_ioctl() function in the PhoNet protocol implementation in Linux kernel allows a hacker to cause a service failure.
The vulnerability of the pepioctl function in the net/phonet/pep.c module of the PhoNet protocol implementation in the Linux operating system is related to the reutilization of previously freed memory due to concurrent access to resources. Exploiting this vulnerability can allow a attacker to cau...
SUSE CVE-2023-52774
In the Linux kernel, the following vulnerability has been resolved: s390/dasd: protect device queue against concurrent access In dasdprofilestart the amount of requests on the device queue are counted. The access to the device queue is unprotected against concurrent access. With a lot of parallel...
SUSE CVE-2024-3933
In Eclipse OpenJ9 release versions prior to 0.44.0 and after 0.13.0, when running with JVM option -Xgc:concurrentScavenge, the sequence generated for System.arrayCopy on the IBM Z platform with hardware and software support for guarded storage 1, could allow access to a buffer with an incorrect...
CVE-2024-3933
In Eclipse OpenJ9 release versions prior to 0.44.0 and after 0.13.0, when running with JVM option -Xgc:concurrentScavenge, the sequence generated for System.arrayCopy on the IBM Z platform with hardware and software support for guarded storage 1, could allow access to a buffer with an incorrect...
CVE-2024-3933 Eclipse Open J9 With -Xgc:concurrentScavenge on IBM Z, could write/read outside of a buffer
In Eclipse OpenJ9 release versions prior to 0.44.0 and after 0.13.0, when running with JVM option -Xgc:concurrentScavenge, the sequence generated for System.arrayCopy on the IBM Z platform with hardware and software support for guarded storage 1, could allow access to a buffer with an incorrect...
Eclipse OpenJ9 安全漏洞
Eclipse OpenJ9 is a Java application engine from the Eclipse Foundation. The product is primarily used to run Java applications. A security vulnerability exists in Eclipse OpenJ9 that stems from an out-of-bounds read and out-of-bounds write vulnerability when running with the JVM option...