99 matches found
USN-7179-4: Linux kernel (Xilinx ZynqMP) vulnerabilities
Andy Nguyen discovered that the Bluetooth L2CAP implementation in the Linux kernel contained a type-confusion error. A physically proximate remote attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2020-12351 Andy Nguyen discovered that the...
CVE-2024-55410
CVE-2024-55410 has been withdrawn by its CNA. Connections show a vulnerability involving the Asus GPU Tweak II Program Driver (v1.0.0.0) in the 690b33e1-0462-4e84-9bea-c7552b45432a.sys component, where crafted IOCTL requests enable arbitrary read/write actions. Public technical details are limite...
USN-7186-1: Linux kernel (Intel IoTG) vulnerabilities
Andy Nguyen discovered that the Bluetooth L2CAP implementation in the Linux kernel contained a type-confusion error. A physically proximate remote attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2020-12351 Andy Nguyen discovered that the...
CVE-2024-56747
In the Linux kernel, the following vulnerability has been resolved: scsi: qedi: Fix a possible memory leak in qediallocandinitsb Hook "qediops-common-sbinit = qedsbinit" does not release the DMA memory sbvirt when it fails. Add dmafreecoherent to free it. This is the same way as qedrallocmemsb an...
GHSA-JXW2-JVXF-5VRP Databricks JDBC Driver Command Injection vulnerability
Databricks JDBC Driver 2.x before 2.6.40 could potentially allow remote code execution RCE by triggering a JNDI injection via a JDBC URL parameter. The vulnerability is rooted in the improper handling of the krbJAASFile parameter. An attacker could potentially exploit this vulnerability to achiev...
CBL Mariner 2.0 Security Update: kernel (CVE-2024-47747)
"The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47747 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: seeq: Fix use after free...
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
...
CVE-2024-50302 HID: core: zero-initialize the report buffer
In the Linux kernel, the following vulnerability has been resolved: HID: core: zero-initialize the report buffer Since the report buffer is used by all kinds of drivers in various ways, let's zero-initialize it during allocation to make sure that it can't be ever used to leak kernel memory via...
Imagination GPU Driver 安全漏洞
Imagination GPU Driver is a graphics driver from Imagination. A security vulnerability exists in Imagination GPU Driver DDK24.2 RTM1 and earlier versions, which originates from software installed and run as an unprivileged user, and may make improper GPU system calls to access the graphics buffer...
Rancher Remote Code Execution via Cluster/Node Drivers
Impact A vulnerability has been identified within Rancher where a cluster or node driver can be used to escape the chroot jail and gain root access to the Rancher container itself. In production environments, further privilege escalation is possible based on living off the land within the Rancher...
ROS-20240725-12
A vulnerability in the NVIDIA GPU Display Driver software driver for Linux is related to privilege management errors. Exploitation of the vulnerability could allow an attacker to disclose protected information and cause a denial of service A vulnerability in the NVIDIA GPU Display Driver for Linu...
Intel Thunderbolt Driver May 2024 Security Update
Intel has informed HP of a potential security vulnerability in some Intel® Thunderbolt driver software, which might allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability. HP h...
CVE-2022-46897
An issue was discovered in Insyde InsydeH2O with kernel 5.0 through 5.5. The CapsuleIFWUSmm driver does not check the return value from a method or function. This can prevent it from detecting unexpected states and conditions...
Microsoft Windows Common Log File System Driver Security Vulnerability
The Microsoft Windows Common Log File System Driver is Microsoft's Common Log File System CLFS API that provides a high-performance, general-purpose log file subsystem that can be used by specialized client applications and shared by multiple clients to optimize logging and access. access. A...
PT-2023-8651 · Google · Chrome Os
Name of the Vulnerable Software and Affected Versions: ChromeOS affected versions not specified Description: The issue is related to a driver for the PowerVR graphics processor in ChromeOS, involving the use of memory after it has been freed. This could allow an attacker to execute arbitrary code...
Microsoft PostScript Printer Driver 安全漏洞
Microsoft PostScript Printer Driver is a Microsoft standard printer driver for PostScript printers from Microsoft Corporation USA. A security vulnerability exists in the Microsoft PostScript Printer Driver. The following products and versions are affected: Windows 11 Version 22H2 for ARM64-based...
CVE-2021-33639
REMAP cmd of SVM driver can be used to remap read only memory as read-write, then cause read only memory/file modified...
GSD-2022-1005559 video: fbdev: arkfb: Check the size of screen before memset_io()
video: fbdev: arkfb: Check the size of screen before memsetio This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...
Dell BIOS 授权问题漏洞
Dell BIOS is embedded software on a small memory chip on the motherboard of a computer from Dell, USA. The Dell BIOS suffers from an authorization issue vulnerability, which arises from the possibility that an unauthenticated attacker with physical access to the system may be able to exploit the...
Information disclosure
In memory management driver, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05381235...