EUVD-2024-21863

Malicious code in bioql PyPI...

EUVD-2025-12999

Malicious code in bioql PyPI...

SUSE CVE-2022-50362

In the Linux kernel, the following vulnerability has been resolved: dmaengine: hisilicon: Add multi-thread support for a DMA channel When we get a DMA channel and try to use it in multiple threads it will cause oops and hanging the system. % echo 100 /sys/module/dmatest/parameters/threadsperchan ...

CVE-2022-50362

In the Linux kernel, the following vulnerability has been resolved: dmaengine: hisilicon: Add multi-thread support for a DMA channel When we get a DMA channel and try to use it in multiple threads it will cause oops and hanging the system. % echo 100 /sys/module/dmatest/parameters/threadsperchan ...

UBUNTU-CVE-2025-38103

In the Linux kernel, the following vulnerability has been resolved: HID: usbhid: Eliminate recurrent out-of-bounds bug in usbhidparse Update struct hiddescriptor to better reflect the mandatory and optional parts of the HID Descriptor as per USB HID 1.11 specification. Note: the kernel currently...

CVE-2024-24444

Improper file descriptor handling for closed connections in OpenAirInterface CN5G AMF oai-cn5g-amf up to v2.0.0 allows attackers to cause a Denial of Service DoS by repeatedly establishing SCTP connections with the N2 interface...

PT-2025-18484 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability has been resolved in the Linux kernel. The issue is related to the 9p protocol and file descriptor handling. Specifically, when the file descriptor refers to a pipe, th...

CVE-2024-43066

Memory corruption while handling file descriptor during listener registration/de-registration...

CVE-2024-43066

CVE-2024-43066 describes a memory corruption condition that occurs when processing file descriptors during listener registration or de-registration. Multiple connected sources attribute this to Qualcomm components (including bootloader and kernel or Qualcomm closed-source components) and to Qualc...

PT-2025-15190 · Qualcomm · Qualcomm Snapdragon Auto

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon Auto affected versions not specified Description: The issue is related to memory corruption that occurs while handling file descriptors during listener registration or de-registration. Recommendations: At the moment, there...

The vulnerability of Mozilla Firefox’s inter-process communication mechanism allows a hacker to bypass existing security restrictions and execute arbitrary code.

The vulnerability of Mozilla Firefox’s inter-process communication mechanism is related to incorrect handling of descriptors. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions and execute arbitrary code...

The vulnerability of the Mojo component of the Google Chrome browser for Windows operating systems allows a hacker to bypass existing security restrictions and execute arbitrary code.

The vulnerability of the Mojo component of the Google Chrome browser for Windows operating systems is related to improper handling of descriptors. Exploiting this vulnerability allows a remote attacker to bypass existing security restrictions and execute arbitrary code by sending a specially...

CVE-2024-24444

Improper file descriptor handling for closed connections in OpenAirInterface CN5G AMF oai-cn5g-amf up to v2.0.0 allows attackers to cause a Denial of Service DoS by repeatedly establishing SCTP connections with the N2 interface...

CVE-2024-24444

OpenAirInterface CN5G AMF (oai-cn5g-amf) up to v2.0.0 is affected by CVE-2024-24444 due to improper file descriptor handling for closed connections. An attacker can cause a Denial of Service by repeatedly establishing SCTP connections with the N2 interface. Impact: high availability risk; attack ...

CVE-2022-48801

In the Linux kernel, the following vulnerability has been resolved: iio: buffer: Fix file related error handling in IIOBUFFERGETFDIOCTL If we fail to copy the just created file descriptor to userland, we try to clean up by putting back 'fd' and freeing 'ib'. The code uses putunusedfd for the form...

The vulnerability in the set of VMware Tools relates to improper privilege assignment, allowing a malicious actor to circumvent existing security restrictions.

The vulnerability of the VMware Tools set is related to the vulnerability of handling the file descriptor in the vmware-user-suid-wrapper layer. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions remotely...

USN-6619-1 runc vulnerability

Rory McNamara discovered that runC did not properly manage internal file descriptor while managing containers. An attacker could possibly use this issue to obtain sensitive information or bypass container restrictions...

vmwgfx Driver File Descriptor Handling Privilege Escalation Exploit

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'vmwgfx Driver File Descriptor Handling Priv Esc', 'Description' = %q If the vmwgfx driver fails to copy the 'fencerep' object to userland, it tri...

USN-5704-1 dbus vulnerabilities

It was discovered that DBus incorrectly handled messages with invalid type signatures. A local attacker could possibly use this issue to cause DBus to crash, resulting in a denial of service. CVE-2022-42010 It was discovered that DBus was incorrectly validating the length of arrays of fixed-lengt...

Security Bulletin: Publicly disclosed vulnerability from Kernel affects IBM Netezza Host Management

Summary Kernel is used by IBM Netezza Host Management. This bulletin provides mitigation for the reported CVE. Vulnerability Details CVEID: CVE-2022-22942 DESCRIPTION: Linux Kernel could allow a local authenticated attacker to obtain sensitive information, caused by improper file descriptor...