Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Improved page fault error reporting If the IOMMU domain for the device group is not properly set up, we may encounter an IOMMU page fault. The current page fault handler assumes that the domain is always set up; howeve...

EUVD-2023-60117

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Improve page fault error reporting If IOMMU domain for device group is not setup properly then we may hit IOMMU page fault. Current page fault handler assumes that domain is always setup and it will hit NULL pointer...

CVE-2023-53789

In CVE-2023-53789, the Linux kernel vulnerability stems from IOMMU page fault handling when an IOMMU domain for a device group is not properly set up, risking a NULL pointer dereference. The available connected sources (EUVD-2023-60117, NVD, Debian/Ubuntu OSV entries, OSV, and other trackers) des...

CVE-2023-53789

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Improve page fault error reporting If IOMMU domain for device group is not setup properly then we may hit IOMMU page fault. Current page fault handler assumes that domain is always setup and it will hit NULL pointer...

CVE-2023-53789 iommu/amd: Improve page fault error reporting

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Improve page fault error reporting If IOMMU domain for device group is not setup properly then we may hit IOMMU page fault. Current page fault handler assumes that domain is always setup and it will hit NULL pointer...

CVE-2023-53789 iommu/amd: Improve page fault error reporting

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Improve page fault error reporting If IOMMU domain for device group is not setup properly then we may hit IOMMU page fault. Current page fault handler assumes that domain is always setup and it will hit NULL pointer...

"Cannot complete request" when connecting to SAML enabled store externally in Multi-Domain environment

"Cannot complete request" error with SAML enabled store in Multi-Domain environment Two-way Trust is added for the two domains where Infrastructure servers StoreFront, Federated Authentication Server, etc. are in Domain A and Users are in Domain B that is two different domains. Azure AD is the...

CVE-2019-14837

A flaw was found in keycloack before version 8.0.0. The owner of 'placeholder.org' domain can setup mail server on this domain and knowing only name of a client can reset password and then log in. For example, for client name 'test' the email address will be '[email protected]'...

Desktop Studio Error: "Can't Get License Info"

The license server can be registered with XenDesktop either when XenDesktop is configured, or through the Change license server action on the Licensing node in Desktop Studio. When the administrator specifies the address of the license server, Desktop Studio attempts to discover the License...

Floating Domains – Taking Over 20K DigitalOcean Domains via a Lax Domain Import System

The above image is taken from here and was taken by Steve Jurvetson. EDIT: DigitalOcean seems to be getting a lot of flak from this post so I’d just like to point out that I feel DigitalOcean’s reaction in this case was entirely justified they saw an anomaly and they put a stop to it. The only...