109 matches found
EUVD-2015-5317
Malware in sbrugna...
EUVD-2017-6728
Malware in sbrugna...
DEBIAN-CVE-2022-50116
In the Linux kernel, the following vulnerability has been resolved: tty: ngsm: fix deadlock and link starvation in outgoing data path The current implementation queues up new control and user packets as needed and processes this queue down to the ldisc in the same code path. That means that the...
DEBIAN-CVE-2022-49909
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: fix use-after-free in l2capconndel When l2caprecvframe is invoked to receive data, and the cid is L2CAPCIDA2MP, if the channel does not exist, it will create a channel. However, after a channel is created, the...
OpenVPN Data Channel Offload 代码问题漏洞
OpenVPN Data Channel Offload OpenVPN DCO is a cutting-edge Linux kernel module from OpenVPN designed to revolutionize the performance of VPN servers and clients. A code issue vulnerability exists in OpenVPN Data Channel Offload version 1.1.1. Exploitation of this vulnerability by an unprivileged...
SUSE CVE-2024-57805
In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Intel: hda-dai: Do not release the link DMA on STOP The linkDMA should not be released on stop trigger since a stream re-start might happen without closing of the stream. This leaves a short time for other streams to...
CVE-2024-51428
An issue in Espressif Esp idf v5.3.0 allows attackers to cause a Denial of Service DoS via a crafted data channel packet...
CVE-2024-51428
An issue in Espressif Esp idf v5.3.0 allows attackers to cause a Denial of Service DoS via a crafted data channel packet...
Espressif ESP-IDF 安全漏洞
Espressif ESP-IDF is an Internet of Things IoT development framework from China Loxin Espressif. A security vulnerability exists in Espressif ESP-IDF version 5.3.0, which originates from allowing an attacker to cause a denial of service via specially crafted data channel packets...
CVE-2024-51428
CVE-2024-51428 affects Espressif ESP-IDF, specifically version 5.3.0 , where a vulnerability in the data channel handling can allow an unauthenticated attacker to cause a Denial of Service (DoS) by sending a crafted data channel packet. The available documents consistently describe DoS impact but...
PT-2024-34631 · Espressif · Espressif Esp-Idf
Name of the Vulnerable Software and Affected Versions: Espressif Esp idf version 5.3.0 Description: The issue allows attackers to cause a Denial of Service DoS via a crafted data channel packet. This can be exploited by sending a specially crafted packet to the affected system. Recommendations: F...
CVE-2024-51428
An issue in Espressif Esp idf v5.3.0 allows attackers to cause a Denial of Service DoS via a crafted data channel packet...
The vulnerability of Acronis Cyber Protect 16’s data protection software lies in its use of an unprotected communication channel for data transmission, allowing attackers to gain unauthorized access to confidential information.
The vulnerability of Acronis Cyber Protect 16 data protection software lies in the use of an unprotected communication channel for data transmission. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to confidential information...
drm/amd/display: Add array index check for hdcp ddc access
...
MiroTalk 安全漏洞
MiroTalk is a simple, secure, and fast real-time video conferencing software from the individual developer Miroslav Pejic. A security vulnerability exists in Mirotalk that stems from incorrect access control in the handleDataChannelChatdataMessage function...
PT-2023-13272 · Qualcomm · Snapdragon +48
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to memory corruption due to use after free in Core when multiple DCI clients register and deregister. No information is provided...
SUSE CVE-2015-7210
Use-after-free vulnerability in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allows remote attackers to execute arbitrary code by triggering attempted use of a data channel that has been closed by a WebRTC function...
SUSE CVE-2016-1962
Use-after-free vulnerability in the mozilla::DataChannelConnection::Close function in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to execute arbitrary code by leveraging mishandling of WebRTC data-channel connections...
SUSE CVE-2017-15268
Qemu through 2.10.0 allows remote attackers to cause a memory leak by triggering slow data-channel read operations, related to io/channel-websock.c...
SUSE CVE-2020-11810
An issue was discovered in OpenVPN 2.4.x before 2.4.9. An attacker can inject a data channel v2 PDATAV2 packet using a victim's peer-id. Normally such packets are dropped, but if this packet arrives before the data channel crypto parameters have been initialized, the victim's connection will be...