CLSA-2026-1777444367 vim: Fix of 9 CVEs

CVE-2021-3903: do not set VALIDBOTLINE in wvalid when the screen is not valid, preventing invalid memory access while scrolling. - CVE-2021-4069: copy the current line before regexec in exopen so the match is not using freed memory when searching for a mark flushes it. - CVE-2022-0351: limit...

CLSA-2026-1777389760 vim: Fix of 9 CVEs

CVE-2021-3903: do not set VALIDBOTLINE in wvalid when the screen is not valid, preventing invalid memory access while scrolling. - CVE-2021-4069: copy the current line before regexec in exopen so the match is not using freed memory when searching for a mark flushes it. - CVE-2022-0351: limit...

iio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer

...

SUSE CVE-2024-57911

In the Linux kernel, the following vulnerability has been resolved: iio: dummy: iiosimplydummybuffer: fix information leak in triggered buffer The 'data' array is allocated via kmalloc and it is used to push data to user space from a triggered buffer, but it does not set values for inactive...

AZL-56243 CVE-2024-57911 affecting package kernel for versions less than 6.6.76.1-1

In the Linux kernel, the following vulnerability has been resolved: iio: dummy: iiosimplydummybuffer: fix information leak in triggered buffer The 'data' array is allocated via kmalloc and it is used to push data to user space from a triggered buffer, but it does not set values for inactive...

DEBIAN-CVE-2024-57911

In the Linux kernel, the following vulnerability has been resolved: iio: dummy: iiosimplydummybuffer: fix information leak in triggered buffer The 'data' array is allocated via kmalloc and it is used to push data to user space from a triggered buffer, but it does not set values for inactive...

UBUNTU-CVE-2024-57911

In the Linux kernel, the following vulnerability has been resolved: iio: dummy: iiosimplydummybuffer: fix information leak in triggered buffer The 'data' array is allocated via kmalloc and it is used to push data to user space from a triggered buffer, but it does not set values for inactive...

Denial Of Service (DoS)

Google Chrome is vulnerable to use after free. The vulnerability exists in dummy buffer which ends up in a window allowing a remote attacker to potentially exploit heap corruption via malicious input...

CLSA-2022-1671126265 vim: Fix of CVE-2022-3591

CVE-2022-3591: disallow navigating to a dummy buffer...

vim: Fix of CVE-2022-3591

CVE-2022-3591: disallow navigating to a dummy buffer...

CLSA-2022-1671124332 vim: Fix of CVE-2022-3591

CVE-2022-3591: disallow navigating to a dummy buffer...

Use After Free

chromium is vulnerable to use after free. The vulnerability exists in dummy buffer which ends up in a window allowing a remote attacker to potentially exploit heap corruption via malicious input...