Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel. This vulnerability arises when the lan966xfdmareload function fails to allocate a new RX buffer, causing the...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the premature release of the CPPI descriptor in the RX path within the icssg-prueth driver. This...

EUVD-2002-0567

Malware in sbrugna...

EUVD-2013-7187

Malware in sbrugna...

kernel: dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list

A vulnerability was found in the Linux kernel's DMA engine component in the irqprocessworklist function. A possible use-after-free condition can occur during list iteration, which is because a descriptor may be freed while another thread is reusing it, potentially leading to access to freed memor...

kernel: dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list

A vulnerability was found in the Linux kernel's DMA engine component in the irqprocessworklist function. A possible use-after-free condition can occur during list iteration, which is because a descriptor may be freed while another thread is reusing it, potentially leading to access to freed memor...

kernel: dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list

A vulnerability was found in the Linux kernel's DMA engine component in the irqprocessworklist function. A possible use-after-free condition can occur during list iteration, which is because a descriptor may be freed while another thread is reusing it, potentially leading to access to freed memor...

SUSE CVE-2021-47267

In the Linux kernel, the following vulnerability has been resolved: usb: fix various gadget panics on 10gbps cabling usbassigndescriptors is called with 5 parameters, the last 4 of which are the usbdescriptorheader for: full-speed USB1.1 - 12Mbps including USB1.0 low-speed @ 1.5Mbps, high-speed...

SUSE CVE-2013-7423

The senddg function in resolv/ressend.c in GNU C Library aka glibc or libc6 before 2.20 does not properly reuse file descriptors, which allows remote attackers to send DNS queries to unintended locations via a large number of requests that trigger a call to the getaddrinfo function...

ROS-20221222-22

A vulnerability in the cURL command-line utility is related to a bounds error in parsing the .netrc file. Exploitation vulnerability could allow an attacker acting remotely to transfer a specially crafted file, cause a stack-based buffer overflow, and perform a denial of service DoS attack The cU...

SUSE: Security Advisory (SUSE-SU-2015:0439-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

glibc security, bug fix, and enhancement update

2.17-105.0.1 - Remove strstr and strcasestr implementations using sse4.2 instructions. - Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and 1818483b15d22016b0eae41d37ee91cc87b37510 backported. 2.17-105 - Fix up test case for initial-exec fix 1248208. 2.17-104 - Mark all TLS variables i...

glibc security and bug fix update

2.12-1.149.7 - Fix invalid file descriptor reuse while sending DNS query 1207995, CVE-2013-7423. - Fix buffer overflow in gethostbynamer with misaligned buffer 1209375, CVE-2015-1781. 2.12-1.149.6 - Enhance nscd to detect any configuration file changes 1194149...

SuSE 11.3 Security Update : glibc (SAT Patch Number 10357)

glibc has ben updated to fix three security issues : - wordexp failed to honour WRDENOCMD bsc906371. CVE-2014-7817 - Fixed invalid file descriptor reuse while sending DNS query bsc915526. CVE-2013-7423 - Fixed buffer overflow in wscanf bsc916222 These non-security issues have been fixed:...

GNU C Library Code Injection Vulnerability

The GNU C Library also known as glibc, libc6 is an open-source, free C language compiler released under the LGPL license. A security vulnerability exists in the 'senddg' function in the resolv/ressend.c file in GNU C Library 2.20 and earlier versions, which stems from the program failing to...

openSUSE Security Update : glibc (openSUSE-2015-173)

Glibc was updated to fix several security issues. - Avoid infinite loop in nssdns getnetbyname CVE-2014-9402, bsc910599, BZ 17630 - wordexp fails to honour WRDENOCMD CVE-2014-7817, bsc906371, BZ 17625 - Fix invalid file descriptor reuse while sending DNS query CVE-2013-7423, bsc915526, BZ 15946 -...

DEBIAN-CVE-2013-7423

The senddg function in resolv/ressend.c in GNU C Library aka glibc or libc6 before 2.20 does not properly reuse file descriptors, which allows remote attackers to send DNS queries to unintended locations via a large number of requests that trigger a call to the getaddrinfo function...

CVE-2013-7423

The senddg function in resolv/ressend.c in GNU C Library aka glibc or libc6 before 2.20 does not properly reuse file descriptors, which allows remote attackers to send DNS queries to unintended locations via a large number of requests that trigger a call to the getaddrinfo function...

CVE-2002-0820

FreeBSD kernel 4.6 and earlier closes the file descriptors 0, 1, and 2 after they have already been assigned to /dev/null when the descriptors reference procfs or linprocfs, which could allow local users to reuse the file descriptors in a setuid or setgid program to modify critical data and gain...