20 matches found
Astra Linux - уязвимость в linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: RISCV: Fixed sleeping in an invalid context in die. Die can be called within an exception handler, and therefore cannot sleep. However, die uses spinlockt, which can sleep when PREEMPTRT is enabled. This causes the following...
EUVD-2024-53842
Malicious code in bioql PyPI...
riscv: Fix sleeping in invalid context in die()
...
CVE-2024-57939
In the Linux kernel, the following vulnerability has been resolved: riscv: Fix sleeping in invalid context in die die can be called in exception handler, and therefore cannot sleep. However, die takes spinlockt which can sleep with PREEMPTRT enabled. That causes the following warning: BUG: sleepi...
AZL-57596 CVE-2024-57939 affecting package kernel for versions less than 5.15.180.1-1
In the Linux kernel, the following vulnerability has been resolved: riscv: Fix sleeping in invalid context in die die can be called in exception handler, and therefore cannot sleep. However, die takes spinlockt which can sleep with PREEMPTRT enabled. That causes the following warning: BUG: sleepi...
DEBIAN-CVE-2024-57939
In the Linux kernel, the following vulnerability has been resolved: riscv: Fix sleeping in invalid context in die die can be called in exception handler, and therefore cannot sleep. However, die takes spinlockt which can sleep with PREEMPTRT enabled. That causes the following warning: BUG: sleepi...
CVE-2024-57939 riscv: Fix sleeping in invalid context in die()
In the Linux kernel, the following vulnerability has been resolved: riscv: Fix sleeping in invalid context in die die can be called in exception handler, and therefore cannot sleep. However, die takes spinlockt which can sleep with PREEMPTRT enabled. That causes the following warning: BUG: sleepi...
CVE-2024-57939 riscv: Fix sleeping in invalid context in die()
In the Linux kernel, the following vulnerability has been resolved: riscv: Fix sleeping in invalid context in die die can be called in exception handler, and therefore cannot sleep. However, die takes spinlockt which can sleep with PREEMPTRT enabled. That causes the following warning: BUG: sleepi...
CVE-2024-57939 riscv: Fix sleeping in invalid context in die()
In the Linux kernel, the following vulnerability has been resolved: riscv: Fix sleeping in invalid context in die die can be called in exception handler, and therefore cannot sleep. However, die takes spinlockt which can sleep with PREEMPTRT enabled. That causes the following warning: BUG: sleepi...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from the die function in the riscv module attempting to sleep during an exception handler. This could lead t...
radare2 安全漏洞
radare2 is the radare open source set of libraries and tools for working with binaries. A security vulnerability exists in radare2 version v.5.8.8. An attacker can exploit this vulnerability to execute arbitrary code via the parsedie function...
PT-2024-22947 · Radare2 · Radare2
Name of the Vulnerable Software and Affected Versions: radare2 version 5.8.8 Description: The issue allows an attacker to execute arbitrary code via the parse die function. This is a buffer overflow vulnerability that can be exploited to gain unauthorized access and execute malicious code...
PT-2021-4505 · WordPress · Wordpress
Name of the Vulnerable Software and Affected Versions: WordPress versions prior to 5.8.1 Description: The issue is related to the wp die function in WordPress, which can leak output data under certain conditions, including sensitive information like nonces. This leaked data can be used to perform...
UBUNTU-CVE-2018-7568
The parsedie function in dwarf1.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service integer overflow and application crash via an ELF file with corrupt dwarf1 debug information, as demonstrated by nm...
RSS News AutoPilot Script 1.0.1/3.1.0 - Admin Panel Authentication Bypass
Exploit Title: RSS News AutoPilot Script - Admin Panel Authentication Bypass Date: 14 October 2016 Exploit Author: Arbin Godar Website : ArbinGodar.com Software Link: https://codecanyon.net/item/rss-news-autopilot-script/11812898 Version: 1.0.1 to 3.1.0...
RSS News AutoPilot Script 1.0.13.1.0 - Admin Panel Authentication Bypass
RSS News AutoPilot Script 1.0.13.1.0 - Admin Panel Authentication Bypass Exploit Title: RSS News AutoPilot Script - Admin Panel Authentication Bypass Date: 14 October 2016 Exploit Author: Arbin Godar Website : ArbinGodar.com Software Link:...
Wordpress auto-thickbox-plus plugin XSS Vulnerability
Exploit for php platform in category web applications Exploit Title: Wordpress plugin auto-thickbox-plus XSS Vulnerability Vendor or Software Link: https://wordpress.org/plugins/auto-thickbox-plus/ Google dork: inurl:/wp-content/plugins/auto-thickbox-plus The code in...
cpCommerce 1.2.x File Inclusion
!/usr/bin/perl cpCommerce 1.2.x GLOBALSprefix Arbitrary File Inclusion Exploit by staker mail: stakerathotmaildotit url: http://cpcommerce.cpradio.org it works with registerglobals=on if you wanna carry out a LFI - mq=off short explanation: cpCommerce contains one flaw that allows an attacker to...
cpCommerce 1.2.x GLOBALS[prefix] Arbitrary File Inclusion Exploit
Exploit for unknown platform in category web applications ================================================================= cpCommerce 1.2.x GLOBALSprefix Arbitrary File Inclusion Exploit ================================================================= !/usr/bin/perl cpCommerce 1.2.x GLOBALSpref...
GLSA-200404-18 : Multiple Vulnerabilities in ssmtp
The remote host is affected by the vulnerability described in GLSA-200404-18 Multiple Vulnerabilities in ssmtp There are two format string vulnerabilities inside the logevent and die functions of ssmtp. Strings from outside ssmtp are passed to various printf-like functions from within logevent an...