Lucene search
K

84 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 2:35 a.m.10 views

CVE-2024-33028

Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released...

8.4CVSS7.2AI score0.00111EPSS
Exploits0References1
Schneier on Security
Schneier on Security
added 2025/01/16 12:3 p.m.10 views

FBI Deletes PlugX Malware from Thousands of Computers

According to a DOJ press release, the FBI was able to delete the Chinese-used PlugX malware from "approximately 4,258 U.S.-based computers and networks." Details: To retrieve information from and send commands to the hacked machines, the malware connects to a command-and-control server that is...

7.3AI score
Exploits0
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.3 views

PT-2025-36299

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A null pointer dereference issue exists in the AMD display driver's DC module cleanup function dc destruct. When display control context construction fails, a pointer remains NULL. Durin...

5.5CVSS6.1AI score0.00134EPSS
Exploits0
OSV
OSV
added 2024/12/02 2:15 p.m.3 views

DEBIAN-CVE-2024-53124

In the Linux kernel, the following vulnerability has been resolved: net: fix data-races around sk-skforwardalloc Syzkaller reported this warning: ------------ cut here ------------ WARNING: CPU: 0 PID: 16 at net/ipv4/afinet.c:156 inetsockdestruct+0x1c5/0x1e0 Modules linked in: CPU: 0 UID: 0 PID: ...

4.7CVSS5.4AI score0.00197EPSS
Exploits0References1
OSV
OSV
added 2024/12/02 2:15 p.m.16 views

AZL-54224 CVE-2024-53124 affecting package kernel for versions less than 6.6.76.1-1

In the Linux kernel, the following vulnerability has been resolved: net: fix data-races around sk-skforwardalloc Syzkaller reported this warning: ------------ cut here ------------ WARNING: CPU: 0 PID: 16 at net/ipv4/afinet.c:156 inetsockdestruct+0x1c5/0x1e0 Modules linked in: CPU: 0 UID: 0 PID: ...

4.7CVSS6.7AI score0.00197EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/11/06 12:0 a.m.6 views

The vulnerability of the link_destruct() function in the amdgpu driver of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the linkdestruct function in the drivers/gpu/drm/amd/display/dc/link/linkfactory.c file of the amdgpu kernel in the Linux operating system is related to the re-release of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the...

7.8CVSS7.2AI score0.00247EPSS
Exploits0References18Affected Software4
SUSE CVE
SUSE CVE
added 2024/09/28 2:51 a.m.4 views

SUSE CVE-2024-46850

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid race between dcn35setdrr and dcstatedestruct dcstatedestruct nulls the resource context of the DC state. The pipe context passed to dcn35setdrr is a member of this resource context. If dcstatedestruct is...

5.5CVSS7.4AI score0.00168EPSS
Exploits0References3
OSV
OSV
added 2024/09/27 1:15 p.m.3 views

DEBIAN-CVE-2024-46851

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid race between dcn10setdrr and dcstatedestruct dcstatedestruct nulls the resource context of the DC state. The pipe context passed to dcn10setdrr is a member of this resource context. If dcstatedestruct is...

4.7CVSS5.3AI score0.00171EPSS
Exploits0References1
OSV
OSV
added 2024/09/27 1:15 p.m.1 views

UBUNTU-CVE-2024-46851

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid race between dcn10setdrr and dcstatedestruct dcstatedestruct nulls the resource context of the DC state. The pipe context passed to dcn10setdrr is a member of this resource context. If dcstatedestruct is...

4.7CVSS6.5AI score0.00171EPSS
Exploits0References10
Cvelist
Cvelist
added 2024/09/27 12:42 p.m.25 views

CVE-2024-46851 drm/amd/display: Avoid race between dcn10_set_drr() and dc_state_destruct()

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid race between dcn10setdrr and dcstatedestruct dcstatedestruct nulls the resource context of the DC state. The pipe context passed to dcn10setdrr is a member of this resource context. If dcstatedestruct is...

0.00171EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/09/27 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a competition between the dcn10setdrr function and the dcstatedestruct function...

4.7CVSS6.4AI score0.00171EPSS
Exploits0References5
NVD
NVD
added 2024/08/05 3:15 p.m.29 views

CVE-2024-33028

Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released...

8.4CVSS0.00111EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/05 2:21 p.m.35 views

CVE-2024-33028 Use After Free in Automotive Telematics

Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released...

8.4CVSS0.00111EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/05 2:21 p.m.17 views

CVE-2024-33028 Use After Free in Automotive Telematics

Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released...

8.4CVSS7.1AI score0.00111EPSS
Exploits0References1
CVE
CVE
added 2024/08/05 2:21 p.m.96 views

CVE-2024-33028

CVE-2024-33028 is described as a memory corruption (use-after-free–like) issue where a fence object may be accessed during timeline destruction after an isync fence is released. Multiple connected sources reference the same description (NVD, Red Hat, Vuln enrichment) and associate it with Qualcom...

8.4CVSS8.6AI score0.00111EPSS
Exploits0References1Affected Software1
Amazon
Amazon
added 2024/05/03 12:0 a.m.6 views

Medium: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: disallow timeout for anonymous sets CVE-2023-52620 In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add NULL ptr dereference checking at the end of attrallocatefra...

7.8CVSS7.1AI score0.00983EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/04/30 12:0 a.m.4 views

PT-2024-40733 · Pcpp · Pcpp

Name of the Vulnerable Software and Affected Versions: pcpp affected versions not specified Description: The issue is related to a crash in the pcpp library, specifically in the pcpp::IPv6Layer destructor. The crash occurs due to a segmentation fault on an unknown address. Technical details about...

6.8AI score
Exploits0References2
OSV
OSV
added 2024/04/04 11:15 p.m.4 views

DEBIAN-CVE-2024-31211

WordPress is an open publishing platform for the Web. Unserialization of instances of the WPHTMLToken class allows for code execution via its destruct magic method. This issue was fixed in WordPress 6.4.2 on December 6th, 2023. Versions prior to 6.4.0 are not affected...

9.8CVSS6.2AI score0.0274EPSS
Exploits1References1
OSV
OSV
added 2024/04/04 11:15 p.m.2 views

UBUNTU-CVE-2024-31211

WordPress is an open publishing platform for the Web. Unserialization of instances of the WPHTMLToken class allows for code execution via its destruct magic method. This issue was fixed in WordPress 6.4.2 on December 6th, 2023. Versions prior to 6.4.0 are not affected...

9.8CVSS6.2AI score0.0274EPSS
Exploits1References5
CNNVD
CNNVD
added 2024/04/04 12:0 a.m.9 views

WordPress 安全漏洞

WordPress is a suite of blogging platforms developed in the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A security vulnerability exists in WordPress versions prior to 6.4.0 through 6.4.2, which stems from a...

5.5CVSS6.1AI score0.0274EPSS
Exploits1References3
Rows per page
Query Builder