60 matches found
kernel: use after free in i2c
An out-of-bounds OOB memory access flaw was found in the i2c driver module in the Linux kernel...
CVE-2023-28469
An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Valhall r29p0 through r42p0 before r43p0, and Arm's GPU Architecture Gen5 r41p0 through r42p0 before r43p0...
CVE-2023-28410
Improper restriction of operations within the bounds of a memory buffer in some IntelR i915 Graphics drivers for linux before kernel version 6.2.10 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2021-33639
REMAP cmd of SVM driver can be used to remap read only memory as read-write, then cause read only memory/file modified...
PT-2022-24755 · Unisoc (Shanghai) Technologies Co. +1 · Sc9863A/Sc9832E/Sc7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000 +1
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue is related to a camera driver, where improper locking can cause memory corruption. This could lead to a local denial of service in the kernel. Recommendations: At the...
Important: kernel
Issue Overview: 2023-06-29: CVE-2023-28772 was added to this advisory. An issue in the HID driver in the Linux kernel may lead to invalid memory access. CVE-2022-20565 A flaw was found in the Linux kernel's implementation of BTRFS free space management, where the kernel does not correctly manage...
CVE-2022-22265
An improper check or handling of exceptional conditions in NPU driver prior to SMR Jan-2022 Release 1 allows arbitrary memory write and code execution...
CVE-2020-1587
An elevation of privilege vulnerability exists when the Windows Ancillary Function Driver for WinSock improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevat...
PT-2020-5392 · Linux +6 · Linux Kernel +6
Name of the Vulnerable Software and Affected Versions: Linux kernel versions through 5.6.13 Description: The issue is related to the VFIO PCI driver in the Linux kernel, which mishandles attempts to access disabled memory space. This can be exploited to cause a denial of service. Recommendations:...
CVE-2019-5612
In FreeBSD 12.0-STABLE before r351264, 12.0-RELEASE before 12.0-RELEASE-p10, 11.3-STABLE before r351265, 11.3-RELEASE before 11.3-RELEASE-p3, and 11.2-RELEASE before 11.2-RELEASE-p14, the kernel driver for /dev/midistat implements a read handler that is not thread-safe. A multi-threaded program c...
VulnCheck KEV: CVE-2018-8406
An elevation of privilege vulnerability exists when the DirectX Graphics Kernel DXGKRNL driver improperly handles objects in memory...
Microsoft Windows MSRPC Information Disclosure Vulnerability
Microsoft Windows Server 2019 and others are a series of operating systems released by Microsoft Corporation in the U.S. Microsoft Windows Server 2019 is a set of operating systems used for servers.Windows 10 is a set of operating systems used for personal computers. An information disclosure...
CVE-2018-8401
An elevation of privilege vulnerability exists when the DirectX Graphics Kernel DXGKRNL driver improperly handles objects in memory, aka "DirectX Graphics Kernel Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. This CVE ID is unique from...
Microsoft Windows GDI+ Information Disclosure (MS16-120: CVE-2016-3263)
An information disclosure vulnerability has been reported in Microsoft Windows. The vulnerability is due to an error in the way the True Type Font TTF driver handles objects in memory. A remote attacker could exploit this vulnerability by enticing a target user to open a specially crafted EMF fil...
Microsoft Windows Server Elevation of Privilege Vulnerability (CNVD-2016-04922)
Microsoft Windows is a series of operating systems released by Microsoft Corporation in the United States. kernel-mode drivers is one of the kernel driver management software. An elevation of privilege vulnerability exists in the Microsoft Windows kernel-mode driver that stems from the program's...
Vulnerability of the Windows operating system, allowing a malicious individual to access confidential information
The vulnerability that allows access to confidential information is related to the incorrect processing by the Windows kernel driver of objects in memory...
CVE-2016-2117
The atl2probe function in drivers/net/ethernet/atheros/atlx/atl2.c in the Linux kernel through 4.5.2 incorrectly enables scatter/gather I/O, which allows remote attackers to obtain sensitive information from kernel memory by reading packet data...
USN-1285-1: Linux kernel vulnerabilities
Andrea Righi discovered a race condition in the KSM memory merging support. If KSM was being used, a local attacker could exploit this to crash the system, leading to a denial of service. CVE-2011-2183 Vasily Averin discovered that the NFS Lock Manager NLM incorrectly handled unlock requests. A...
CVE-2010-4157
Integer overflow in the iocgeneral function in drivers/scsi/gdth.c in the Linux kernel before 2.6.36.1 on 64-bit platforms allows local users to cause a denial of service memory corruption or possibly have unspecified other impact via a large argument in an ioctl call...
Windows drivers privilege escalation
During access to driver memory range for input/output buffers is not checked...