6047 matches found
UBUNTU-CVE-2024-56603
In the Linux kernel, the following vulnerability has been resolved: net: afcan: do not leave a dangling sk pointer in cancreate On error cancreate frees the allocated sk object, but sockinitdata has already attached it to the provided sock object. This will leave a dangling sk pointer in the sock...
CVE-2024-56560
In the Linux kernel, the following vulnerability has been resolved: slab: Fix too strict alignment check in createcache On m68k, where the minimum alignment of unsigned long is 2 bytes: Kernel panic - not syncing: kmemcachecreateargs: Failed to create slab 'iokiocb'. Error -22 CPU: 0 UID: 0 PID: ...
DEBIAN-CVE-2024-56537
In the Linux kernel, the following vulnerability has been resolved: drm: xlnx: zynqmpdisp: layer may be null while releasing layer-info can be null if we have an error on the first layer in zynqmpdispcreatelayers...
DEBIAN-CVE-2024-53175
In the Linux kernel, the following vulnerability has been resolved: ipc: fix memleak if msginitns failed in createipcns Percpu memory allocation may failed during createipcns however this fail is not handled properly since ipc sysctls and mq sysctls is not released properly. Fix this by release...
OESA-2024-2589 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: iouring/io-wq: Use setbit and testbit at worker-flags Utilize setbit and testbit on worker-flags within iouring/io-wq to address potential data races. The...
Dcat Admin 安全漏洞
Dcat Admin is a second development based on laravel-admin to build the backend system tools . A cross-site scripting vulnerability exists in Dcat Admin v2.2.0-beta, which stems from the lack of effective filtering and escaping of user-supplied data in /admin/articles/create, and can be exploited ...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a failure to clear a pointer to the sk object allocated on failure of the ieee802154create function in the...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from inetcreate in the net:inet module not clearing the dangling sk pointer, which could lead to reuse after...
The vulnerability of the `__bch2_ioctl_subvolume_create()` function in the `fs/bcachefs/fs-ioctl.c` module of the bcachefs component in the Linux operating system’s kernel allows a hacker to cause a service failure.
The vulnerability of the bch2ioctlsubvolumecreate function in the fs/bcachefs/fs-ioctl.c module of the bcachefs component of the Linux operating system is related to a crash due to repeated resource blocking. Exploiting this vulnerability could allow an attacker to cause service failures...
Amazon Linux 2 : postgresql (ALASPOSTGRESQL14-2024-014)
The version of postgresql installed on the remote host is prior to 14.14-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2POSTGRESQL14-2024-014 advisory. Incomplete tracking in PostgreSQL of tables with row security allows a reused query to view or change...
hornetq-core-client: Arbitrarily overwrite files or access sensitive information
A flaw was found in the createTempFile method of hornetq. Affected version of hornetq allows attackers to arbitrarily overwrite files or access sensitive information...
hornetq-core-client: Arbitrarily overwrite files or access sensitive information
A flaw was found in the createTempFile method of hornetq. Affected version of hornetq allows attackers to arbitrarily overwrite files or access sensitive information...
hornetq-core-client: Arbitrarily overwrite files or access sensitive information
A flaw was found in the createTempFile method of hornetq. Affected version of hornetq allows attackers to arbitrarily overwrite files or access sensitive information...
Tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method
...
net: explicitly clear the sk pointer, when pf->create fails
...
@agent_z/egg (>=1.0.0 <=1.0.2), @ccci/micro-server (>=1.0.57 <=1.0.132) +16 more potentially affected by CVE-2024-21548 via bun (>=0.0.2 <=1.1.3)
bun NPM version =0.0.2, =1.0.0, =1.0.57, =1.0.0, =0.0.0, =0.0.2, =0.0.3, =0.0.2, =0.0.3, =0.2.0, =0.0.55, =0.1.0, =0.1.1 and more Source cves: CVE-2024-21548 Source advisory: SNYK:JS-BUN-8499549...
kernel: bpf: Add BPF_PROG_TYPE_CGROUP_SKB attach type enforcement in BPF_LINK_CREATE
In the Linux kernel, the following vulnerability has been resolved: bpf: Add BPFPROGTYPECGROUPSKB attach type enforcement in BPFLINKCREATE bpfprogattach uses attachtypetoprogtype to enforce proper attach type for BPFPROGTYPECGROUPSKB. linkcreate uses bpfprogget and relies on...
The vulnerability of the instance_create() method in the program for monitoring and adaptive configuration of system devices allows attackers to perform spoofing attacks.
The vulnerability of the instancecreate method in the program for monitoring and adaptive configuration of system devices related to insufficient validation of input data when processing the instancename parameter. Exploiting this vulnerability allows attackers to perform spoofing attacks...
Malicious code in create-semi-d2c-plugin (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-11264 Malicious code in @douinfe/create-semi-d2c-plugin (npm)
--- -= Per source details. Do not edit below this line.=-...