21 matches found
EUVD-2024-53842
Malicious code in bioql PyPI...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: RISCV: Fixed sleeping in an invalid context in die. Die can be called in an exception handler, and therefore cannot sleep. However, die takes spinlockt, which can sleep when PREEMPTRT is enabled. This causes the following warning...
riscv: Fix sleeping in invalid context in die()
...
The vulnerability of the die() function in the arch/riscv/kernel/traps.c module of the Linux operating system’s kernel on the riscv platform allows a hacker to trigger a service failure.
The vulnerability of the die function in the arch/riscv/kernel/traps.c module of the Linux operating system’s kernel on the riscv platform is related to improper locking of resources. Exploiting this vulnerability could allow an attacker to trigger a service failure...
CVE-2024-57939
In the Linux kernel, the following vulnerability has been resolved: riscv: Fix sleeping in invalid context in die die can be called in exception handler, and therefore cannot sleep. However, die takes spinlockt which can sleep with PREEMPTRT enabled. That causes the following warning: BUG: sleepi...
AZL-57596 CVE-2024-57939 affecting package kernel for versions less than 5.15.180.1-1
In the Linux kernel, the following vulnerability has been resolved: riscv: Fix sleeping in invalid context in die die can be called in exception handler, and therefore cannot sleep. However, die takes spinlockt which can sleep with PREEMPTRT enabled. That causes the following warning: BUG: sleepi...
DEBIAN-CVE-2024-57939
In the Linux kernel, the following vulnerability has been resolved: riscv: Fix sleeping in invalid context in die die can be called in exception handler, and therefore cannot sleep. However, die takes spinlockt which can sleep with PREEMPTRT enabled. That causes the following warning: BUG: sleepi...
CVE-2024-57939 riscv: Fix sleeping in invalid context in die()
In the Linux kernel, the following vulnerability has been resolved: riscv: Fix sleeping in invalid context in die die can be called in exception handler, and therefore cannot sleep. However, die takes spinlockt which can sleep with PREEMPTRT enabled. That causes the following warning: BUG: sleepi...
CVE-2024-57939 riscv: Fix sleeping in invalid context in die()
In the Linux kernel, the following vulnerability has been resolved: riscv: Fix sleeping in invalid context in die die can be called in exception handler, and therefore cannot sleep. However, die takes spinlockt which can sleep with PREEMPTRT enabled. That causes the following warning: BUG: sleepi...
CVE-2024-57939 riscv: Fix sleeping in invalid context in die()
In the Linux kernel, the following vulnerability has been resolved: riscv: Fix sleeping in invalid context in die die can be called in exception handler, and therefore cannot sleep. However, die takes spinlockt which can sleep with PREEMPTRT enabled. That causes the following warning: BUG: sleepi...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from the die function in the riscv module attempting to sleep during an exception handler. This could lead t...
radare2 安全漏洞
radare2 is the radare open source set of libraries and tools for working with binaries. A security vulnerability exists in radare2 version v.5.8.8. An attacker can exploit this vulnerability to execute arbitrary code via the parsedie function...
PT-2024-22947 · Radare2 · Radare2
Name of the Vulnerable Software and Affected Versions: radare2 version 5.8.8 Description: The issue allows an attacker to execute arbitrary code via the parse die function. This is a buffer overflow vulnerability that can be exploited to gain unauthorized access and execute malicious code...
PT-2021-4505 · WordPress · Wordpress
Name of the Vulnerable Software and Affected Versions: WordPress versions prior to 5.8.1 Description: The issue is related to the wp die function in WordPress, which can leak output data under certain conditions, including sensitive information like nonces. This leaked data can be used to perform...
UBUNTU-CVE-2018-7568
The parsedie function in dwarf1.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service integer overflow and application crash via an ELF file with corrupt dwarf1 debug information, as demonstrated by nm...
RSS News AutoPilot Script 1.0.13.1.0 - Admin Panel Authentication Bypass
RSS News AutoPilot Script 1.0.13.1.0 - Admin Panel Authentication Bypass Exploit Title: RSS News AutoPilot Script - Admin Panel Authentication Bypass Date: 14 October 2016 Exploit Author: Arbin Godar Website : ArbinGodar.com Software Link:...
RSS News AutoPilot Script 1.0.1/3.1.0 - Admin Panel Authentication Bypass
Exploit Title: RSS News AutoPilot Script - Admin Panel Authentication Bypass Date: 14 October 2016 Exploit Author: Arbin Godar Website : ArbinGodar.com Software Link: https://codecanyon.net/item/rss-news-autopilot-script/11812898 Version: 1.0.1 to 3.1.0...
Wordpress auto-thickbox-plus plugin XSS Vulnerability
Exploit for php platform in category web applications Exploit Title: Wordpress plugin auto-thickbox-plus XSS Vulnerability Vendor or Software Link: https://wordpress.org/plugins/auto-thickbox-plus/ Google dork: inurl:/wp-content/plugins/auto-thickbox-plus The code in...
cpCommerce 1.2.x File Inclusion
!/usr/bin/perl cpCommerce 1.2.x GLOBALSprefix Arbitrary File Inclusion Exploit by staker mail: stakerathotmaildotit url: http://cpcommerce.cpradio.org it works with registerglobals=on if you wanna carry out a LFI - mq=off short explanation: cpCommerce contains one flaw that allows an attacker to...
cpCommerce 1.2.x GLOBALS[prefix] Arbitrary File Inclusion Exploit
Exploit for unknown platform in category web applications ================================================================= cpCommerce 1.2.x GLOBALSprefix Arbitrary File Inclusion Exploit ================================================================= !/usr/bin/perl cpCommerce 1.2.x GLOBALSpref...