CLSA-2026-1777444367 vim: Fix of 9 CVEs

CVE-2021-3903: do not set VALIDBOTLINE in wvalid when the screen is not valid, preventing invalid memory access while scrolling. - CVE-2021-4069: copy the current line before regexec in exopen so the match is not using freed memory when searching for a mark flushes it. - CVE-2022-0351: limit...

CLSA-2026-1777389760 vim: Fix of 9 CVEs

CVE-2021-3903: do not set VALIDBOTLINE in wvalid when the screen is not valid, preventing invalid memory access while scrolling. - CVE-2021-4069: copy the current line before regexec in exopen so the match is not using freed memory when searching for a mark flushes it. - CVE-2022-0351: limit...

The vulnerability of the iio_simple_dummy_trigger_h() function in the drivers/iio/dummy/iio_simple_dummy_buffer.c file allows a hacker to gain unauthorized access to protected information within the Linux operating system’s I/O driver support.

The vulnerability of the iiosimpledummytriggerh function in the drivers/iio/dummy/iiosimpledummybuffer.c file, which is part of the Linux operating system’s I/O driver support, stems from the use of an uninitialized resource. Exploiting this vulnerability could allow an attacker to gain...

iio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer

...

SUSE CVE-2024-57911

In the Linux kernel, the following vulnerability has been resolved: iio: dummy: iiosimplydummybuffer: fix information leak in triggered buffer The 'data' array is allocated via kmalloc and it is used to push data to user space from a triggered buffer, but it does not set values for inactive...

AZL-56243 CVE-2024-57911 affecting package kernel for versions less than 6.6.76.1-1

In the Linux kernel, the following vulnerability has been resolved: iio: dummy: iiosimplydummybuffer: fix information leak in triggered buffer The 'data' array is allocated via kmalloc and it is used to push data to user space from a triggered buffer, but it does not set values for inactive...

DEBIAN-CVE-2024-57911

In the Linux kernel, the following vulnerability has been resolved: iio: dummy: iiosimplydummybuffer: fix information leak in triggered buffer The 'data' array is allocated via kmalloc and it is used to push data to user space from a triggered buffer, but it does not set values for inactive...

UBUNTU-CVE-2024-57911

In the Linux kernel, the following vulnerability has been resolved: iio: dummy: iiosimplydummybuffer: fix information leak in triggered buffer The 'data' array is allocated via kmalloc and it is used to push data to user space from a triggered buffer, but it does not set values for inactive...

Denial Of Service (DoS)

Google Chrome is vulnerable to use after free. The vulnerability exists in dummy buffer which ends up in a window allowing a remote attacker to potentially exploit heap corruption via malicious input...

CLSA-2022-1671126265 vim: Fix of CVE-2022-3591

CVE-2022-3591: disallow navigating to a dummy buffer...

vim: Fix of CVE-2022-3591

CVE-2022-3591: disallow navigating to a dummy buffer...

CLSA-2022-1671124649 Fix CVE(s): CVE-2022-3591

SECURITY UPDATE: Dummy buffer ends up in a window - debian/patches/CVE-2022-3591.patch: Disallow navigating to a dummy buffer - CVE-2022-3591...

CLSA-2022-1671124332 vim: Fix of CVE-2022-3591

CVE-2022-3591: disallow navigating to a dummy buffer...

Use After Free

chromium is vulnerable to use after free. The vulnerability exists in dummy buffer which ends up in a window allowing a remote attacker to potentially exploit heap corruption via malicious input...