13 matches found
kernel security update
2.6.32-754.35.1.0.6.OL6 :digitoepollctl: clean the failure exits up a bit Marc Zyngier CVE-2020-0466 Orabug: 34086960 - epoll: Keep a reference on files added to the check list Al Viro CVE-2020-0466 Orabug: 34086960 - fix regression in 'epoll: Keep a reference on files added to the check list Al...
Unbreakable Enterprise kernel security update
4.1.12-124.59.1.2 - fix regression in 'epoll: Keep a reference on files added to the check list' Al Viro Orabug: 33679854 CVE-2021-1048 - fget: check that the fd still exists after getting a ref to it Linus Torvalds Orabug: 33679806 CVE-2021-0920 - fs: add fgetmany and fputmany Jens Axboe Orabug:...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2021-2818)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2021-1048
In eploopcheckproc of eventpoll.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID...
UBUNTU-CVE-2021-1048
In eploopcheckproc of eventpoll.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID...
CVE-2021-1048
In eploopcheckproc of eventpoll.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID...
CVE-2021-1048
CVE-2021-1048 is a use-after-free in Android's upstream Linux kernel ep_loop_check_proc (eventpoll.c) that can cause memory corruption and local privilege escalation without user interaction. The issue existed in the Android kernel but upstream Linux patched it; Android device patch timing varied...
CVE-2021-1048
In eploopcheckproc of eventpoll.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID...
VulnCheck KEV: CVE-2021-1048
Android kernel contains a use-after-free vulnerability that allows for privilege escalation...
CVE-2021-1048
creationtimestamp| type| source ---|---|--- 2021-11-03 06:32:12+00:00| exploited| https://t.me/thehackernews/1629 2021-11-03 06:47:11+00:00| exploited| https://t.me/BlackHutEgy/287 2021-11-03 13:19:19+00:00| seen| https://t.me/truesecator/2282 2021-11-03 20:58:12+00:00| seen|...
Google Warns of New Android 0-Day Vulnerability Under Active Targeted Attacks
Google has rolled out its monthly security patches for Android with fixes for 39 flaws, including a zero-day vulnerability that it said is being actively exploited in the wild in limited, targeted attacks. Tracked as CVE-2021-1048, the zero-day bug is described as a use-after-free vulnerability i...
Android Patches Actively Exploited Zero-Day Kernel Bug
Among Google’s November Android security updates is a patch for a zero-day weakness that “may be under limited, targeted exploitation,” the company said. Out of this month’s batch of 39 patches, 18 of them plug flaws in the framework and system components and another 18 address vulnerabilities in...
Google patches zero-day vulnerability, and others, in Android
Google has issued security patches for the Android Operating System. In total, the patches address 39 vulnerabilities. There are indications that one of the patched vulnerabilities may be under limited, targeted exploitation. The most severe of these issues is a critical security vulnerability in...