84 matches found
CVE-2024-33028
Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released...
FBI Deletes PlugX Malware from Thousands of Computers
According to a DOJ press release, the FBI was able to delete the Chinese-used PlugX malware from "approximately 4,258 U.S.-based computers and networks." Details: To retrieve information from and send commands to the hacked machines, the malware connects to a command-and-control server that is...
PT-2025-36299
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A null pointer dereference issue exists in the AMD display driver's DC module cleanup function dc destruct. When display control context construction fails, a pointer remains NULL. Durin...
DEBIAN-CVE-2024-53124
In the Linux kernel, the following vulnerability has been resolved: net: fix data-races around sk-skforwardalloc Syzkaller reported this warning: ------------ cut here ------------ WARNING: CPU: 0 PID: 16 at net/ipv4/afinet.c:156 inetsockdestruct+0x1c5/0x1e0 Modules linked in: CPU: 0 UID: 0 PID: ...
AZL-54224 CVE-2024-53124 affecting package kernel for versions less than 6.6.76.1-1
In the Linux kernel, the following vulnerability has been resolved: net: fix data-races around sk-skforwardalloc Syzkaller reported this warning: ------------ cut here ------------ WARNING: CPU: 0 PID: 16 at net/ipv4/afinet.c:156 inetsockdestruct+0x1c5/0x1e0 Modules linked in: CPU: 0 UID: 0 PID: ...
The vulnerability of the link_destruct() function in the amdgpu driver of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the linkdestruct function in the drivers/gpu/drm/amd/display/dc/link/linkfactory.c file of the amdgpu kernel in the Linux operating system is related to the re-release of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the...
SUSE CVE-2024-46850
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid race between dcn35setdrr and dcstatedestruct dcstatedestruct nulls the resource context of the DC state. The pipe context passed to dcn35setdrr is a member of this resource context. If dcstatedestruct is...
DEBIAN-CVE-2024-46851
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid race between dcn10setdrr and dcstatedestruct dcstatedestruct nulls the resource context of the DC state. The pipe context passed to dcn10setdrr is a member of this resource context. If dcstatedestruct is...
UBUNTU-CVE-2024-46851
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid race between dcn10setdrr and dcstatedestruct dcstatedestruct nulls the resource context of the DC state. The pipe context passed to dcn10setdrr is a member of this resource context. If dcstatedestruct is...
CVE-2024-46851 drm/amd/display: Avoid race between dcn10_set_drr() and dc_state_destruct()
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid race between dcn10setdrr and dcstatedestruct dcstatedestruct nulls the resource context of the DC state. The pipe context passed to dcn10setdrr is a member of this resource context. If dcstatedestruct is...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a competition between the dcn10setdrr function and the dcstatedestruct function...
CVE-2024-33028
Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released...
CVE-2024-33028 Use After Free in Automotive Telematics
Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released...
CVE-2024-33028 Use After Free in Automotive Telematics
Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released...
CVE-2024-33028
CVE-2024-33028 is described as a memory corruption (use-after-free–like) issue where a fence object may be accessed during timeline destruction after an isync fence is released. Multiple connected sources reference the same description (NVD, Red Hat, Vuln enrichment) and associate it with Qualcom...
Medium: kernel
Issue Overview: In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: disallow timeout for anonymous sets CVE-2023-52620 In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add NULL ptr dereference checking at the end of attrallocatefra...
PT-2024-40733 · Pcpp · Pcpp
Name of the Vulnerable Software and Affected Versions: pcpp affected versions not specified Description: The issue is related to a crash in the pcpp library, specifically in the pcpp::IPv6Layer destructor. The crash occurs due to a segmentation fault on an unknown address. Technical details about...
DEBIAN-CVE-2024-31211
WordPress is an open publishing platform for the Web. Unserialization of instances of the WPHTMLToken class allows for code execution via its destruct magic method. This issue was fixed in WordPress 6.4.2 on December 6th, 2023. Versions prior to 6.4.0 are not affected...
UBUNTU-CVE-2024-31211
WordPress is an open publishing platform for the Web. Unserialization of instances of the WPHTMLToken class allows for code execution via its destruct magic method. This issue was fixed in WordPress 6.4.2 on December 6th, 2023. Versions prior to 6.4.0 are not affected...
WordPress 安全漏洞
WordPress is a suite of blogging platforms developed in the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A security vulnerability exists in WordPress versions prior to 6.4.0 through 6.4.2, which stems from a...