13 matches found
EUVD-2019-6790
Malware in sbrugna...
CVE-2019-15879
In FreeBSD 12.1-STABLE before r356908, 12.1-RELEASE before p5, 11.3-STABLE before r356908, and 11.3-RELEASE before p9, a race condition in the cryptodev module permitted a data structure in the kernel to be used after it was freed, allowing an unprivileged process can overwrite arbitrary kernel...
CVE-2019-15880
In FreeBSD 12.1-STABLE before r356911, and 12.1-RELEASE before p5, insufficient checking in the cryptodev module allocated the size of a kernel buffer based on a user-supplied length allowing an unprivileged process to trigger a kernel panic...
DEBIAN-CVE-2024-26877
In the Linux kernel, the following vulnerability has been resolved: crypto: xilinx - call finalize with bh disabled When calling cryptofinalizerequest, BH should be disabled to avoid triggering the following calltrace: ------------ cut here ------------ WARNING: CPU: 2 PID: 74 at...
CVE-2024-26877 crypto: xilinx - call finalize with bh disabled
In the Linux kernel, the following vulnerability has been resolved: crypto: xilinx - call finalize with bh disabled When calling cryptofinalizerequest, BH should be disabled to avoid triggering the following calltrace: ------------ cut here ------------ WARNING: CPU: 2 PID: 74 at...
FreeBSD Competitive Conditions Issue Loophole
FreeBSD is a set of Unix-like operating systems from the FreeBSD Foundation. FreeBSD contains a Competitive Condition Problem vulnerability, which stems from a cryptodev module that allows data structures in the kernel to be re-exploited after they have been freed, and can be exploited by an...
FreeBSD Buffer Overflow Vulnerability (CNVD-2020-32360)
FreeBSD is a set of Unix-like operating systems from the FreeBSD Foundation. A buffer overflow vulnerability exists in the cryptodev module in FreeBSD versions prior to 12.1-STABLE r356911 and prior to 12.1-RELEASE p5, which stems from a program that fails to adequately validate the length of a...
CVE-2019-15879
In FreeBSD 12.1-STABLE before r356908, 12.1-RELEASE before p5, 11.3-STABLE before r356908, and 11.3-RELEASE before p9, a race condition in the cryptodev module permitted a data structure in the kernel to be used after it was freed, allowing an unprivileged process can overwrite arbitrary kernel...
Buffer overflow
In FreeBSD 12.1-STABLE before r356911, and 12.1-RELEASE before p5, insufficient checking in the cryptodev module allocated the size of a kernel buffer based on a user-supplied length allowing an unprivileged process to trigger a kernel panic...
CVE-2019-15880
The CVE-2019-15880 issue affects the FreeBSD cryptodev module in 12.1-STABLE before r356911 and 12.1-RELEASE before p5. The bug arises from insufficient validation of the user-supplied MAC key length, causing the module to allocate a kernel buffer based on that length. This can allow an unprivile...
FreeBSD : FreeBSD -- Use after free in cryptodev module (9f15c2da-947e-11ea-92ab-00163e433440)
A race condition permitted a data structure in the kernel to be used after it was freed by the cryptodev module. Impact : An unprivileged process can overwrite arbitrary kernel memory. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the...
FreeBSD -- Insufficient cryptodev MAC key length check
Problem Description: Requests to create cryptography sessions using a MAC did not validate the user-supplied MAC key length. The cryptodev module allocates a buffer whose size is this user-suppled length. Impact: An unprivileged process can trigger a kernel panic...
FreeBSD -- Use after free in cryptodev module
Problem Description: A race condition permitted a data structure in the kernel to be used after it was freed by the cryptodev module. Impact: An unprivileged process can overwrite arbitrary kernel memory...