CVE-2020-3647

CVE-2020-3647 describes a potential buffer overflow in Qualcomm Snapdragon platforms (Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music) when accessing the npu debugfs node “off”/“log” with a large buffer size. The underlying issue is a buffer overflow in ...

CVE-2020-3647

u'Potential buffer overflow when accessing npu debugfs node "off"/"log" with large buffer size' in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9607, QCS405, SC8180X, SDX55, SM6150, SM7150, SM8150...

Unbreakable Enterprise kernel security update

4.1.12-124.42.3 - can: peakusb: pcanusbfd: Fix info-leaks to USB devices Tomas Bortoli Orabug: 31351221 CVE-2019-19535 - media: hdpvr: Fix an error handling path in hdpvrprobe Arvind Yadav Orabug: 31352053 CVE-2017-16644 - fs/binfmtmisc.c: do not allow offset overflow Thadeu Lima de Souza Cascard...

CVE-2019-14100

Register write via debugfs is disabled by default to prevent register writing via debugfs. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9206, MDM9207C, MDM9607, Nicobar, QCS405, SA6155P, SC8180X, SDX5...

Design/Logic Flaw

Register write via debugfs is disabled by default to prevent register writing via debugfs. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9206, MDM9207C, MDM9607, Nicobar, QCS405, SA6155P, SC8180X, SDX5...

CVE-2019-14100

Register write via debugfs is disabled by default to prevent register writing via debugfs. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9206, MDM9207C, MDM9607, Nicobar, QCS405, SA6155P, SC8180X, SDX5...

CVE-2019-14100

CVE-2019-14100 concerns register write via debugfs on Qualcomm Snapdragon platforms (Snapdragon Auto/Compute/Consumer IOT/Industrial IOT/Mobile/Voice & Music across MDM9206/9207C/9607/Nicobar/QCS405/SA6155P/SC8180X/SDX55/SM8150). Root cause: writing to registers through debugfs is restricted by d...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-1698)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-4698-1 : linux - security update

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. - CVE-2019-2182 Hanjun Guo and Lei Li reported a race condition in the arm64 virtual memory management code, which could lead to an information...

[SECURITY] [DLA 2242-1] linux-4.9 security update

Package : linux-4.9 Version : 4.9.210-1+deb9u1deb8u1 CVE ID : CVE-2019-2182 CVE-2019-5108 CVE-2019-19319 CVE-2019-19462 CVE-2019-19768 CVE-2019-20806 CVE-2019-20811 CVE-2020-0543 CVE-2020-2732 CVE-2020-8428 CVE-2020-8647 CVE-2020-8648 CVE-2020-8649 CVE-2020-9383 CVE-2020-10711 CVE-2020-10732...

Privilege Escalation

kernel is vulnerable to privilege escalation. /sys/kernel/debug/acpi/custommethod had world-writable permissions, which could allow a local, unprivileged user to escalate their privileges. Note: The debugfs file system must be mounted locally to exploit this issue. It is not mounted by default...

Denial Of Service (DoS)

The kernel is vulnerable to Denial Of Service DoS. The attack is possible because a NULL pointer dereference flaw in ftraceregexlseek in the Linux kernel's ftrace implementation could allow a local, unprivileged user to cause a denial of service. Note: The debugfs file system must be mounted...

CVE-2018-20510

The printbindertransactionilocked function in drivers/android/binder.c in the Linux kernel 4.14.90 allows local users to obtain sensitive address information by reading "from code flags" lines in a debugfs file...

CVE-2018-20509

The printbinderrefolocked function in drivers/android/binder.c in the Linux kernel 4.14.90 allows local users to obtain sensitive address information by reading " ref desc node" lines in a debugfs file...

CVE-2018-7754

A flaw was found in the Linux kernel in that the aoediskdebugfsshow function in drivers/block/aoe/aoeblk.c allows local users to obtain some kernel address information by reading a debugfs file. This address is not useful to commit a further attack...

CVE-2019-20625

An issue was discovered on Samsung mobile devices with N7.1 and O8.x Exynos chipsets software. The ion debugfs driver allows information disclosure. The Samsung ID is SVE-2018-13427 February 2019...

CVE-2019-20625

An issue was discovered on Samsung mobile devices with N7.1 and O8.x Exynos chipsets software. The ion debugfs driver allows information disclosure. The Samsung ID is SVE-2018-13427 February 2019...

CVE-2019-20625

Summary: CVE-2019-20625 affects Samsung mobile devices with N(7.1) and O(8.x) (Exynos chipsets). The issue is due to the ion debugfs driver, which can disclose information. The Samsung internal identifier is SVE-2018-13427 (Feb 2019). What’s affected / root cause: An information disclosure flaw i...

CVE-2019-20625

An issue was discovered on Samsung mobile devices with N7.1 and O8.x Exynos chipsets software. The ion debugfs driver allows information disclosure. The Samsung ID is SVE-2018-13427 February 2019...

The vulnerability of the debugfs_remove function in Linux kernel, related to the use of memory after it is freed, allows an attacker to gain access to confidential data and also trigger a service failure.

The vulnerability of the debugfsremove function in Linux operating systems relates to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to gain access to confidential data and also trigger a service failure...