113 matches found
DEBIAN-CVE-2024-53211
In the Linux kernel, the following vulnerability has been resolved: net/l2tp: fix warning in l2tpexitnet found by syzbot In l2tp's net exit handler, we check that an IDR is empty before destroying it: WARNONONCE!idrisempty&pn-l2tptunnelidr; idrdestroy&pn-l2tptunnelidr; By forcing memory allocatio...
UBUNTU-CVE-2024-53211
In the Linux kernel, the following vulnerability has been resolved: net/l2tp: fix warning in l2tpexitnet found by syzbot In l2tp's net exit handler, we check that an IDR is empty before destroying it: WARNONONCE!idrisempty&pn-l2tptunnelidr; idrdestroy&pn-l2tptunnelidr; By forcing memory allocatio...
UBUNTU-CVE-2024-53237
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: fix use-after-free in deviceforeachchild Syzbot has reported the following KASAN splat: BUG: KASAN: slab-use-after-free in deviceforeachchild+0x18f/0x1a0 Read of size 8 at addr ffff88801f605308 by task kbnepd bnep0/498...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from post-release reuse in the Bluetooth:deviceforeachchild function...
GHSA-46R6-92JG-22JG pywasm3 contains a Use-After-Free in ForEachModule
wasm3 139076a contains a Use-After-Free in ForEachModule...
pywasm3 contains a Use-After-Free in ForEachModule
wasm3 139076a contains a Use-After-Free in ForEachModule...
PYSEC-2024-306
wasm3 139076a contains a Use-After-Free in ForEachModule...
PYSEC-2024-306
wasm3 139076a contains a Use-After-Free in ForEachModule...
UBUNTU-CVE-2024-50197
In the Linux kernel, the following vulnerability has been resolved: pinctrl: intel: platform: fix error path in deviceforeachchildnode The deviceforeachchildnode loop requires calls to fwnodehandleput upon early returns to decrement the refcount of the child node and avoid leaking memory if that...
Wasm3 安全漏洞
Wasm3 is a fast WebAssembly interpreter and the most versatile WASM runtime from the Wasm3 open source. A security vulnerability exists in Wasm3 version 139076a, which stems from the inclusion of post-release reuse in the ForEachModule...
UBUNTU-CVE-2022-49000
In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix PCI device refcount leak in hasexternalpci foreachpcidev is implemented by pcigetdevice. The comment of pcigetdevice says that it will increase the reference count for the returned pcidev and also decrease the...
UBUNTU-CVE-2022-48973
In the Linux kernel, the following vulnerability has been resolved: gpio: amd8111: Fix PCI device reference count leak foreachpcidev is implemented by pcigetdevice. The comment of pcigetdevice says that it will increase the reference count for the returned pcidev and also decrease the reference...
UBUNTU-CVE-2024-49976
In the Linux kernel, the following vulnerability has been resolved: tracing/timerlat: Drop interfacelock in stopkthread stopkthread is the offline callback for "trace/osnoise:online", since commit 5bfbcd1ee57b "tracing/timerlat: Add interfacelock around clearing of kthread in stopkthread", the...
PT-2024-33744
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A null pointer issue in the Linux kernel has been resolved by adding a list empty check. This check is intended to prevent null pointer issues in certain corner cases, specifically whe...
CVE-2024-5376 Kashipara College Management System view_each_faculty.php cross site scripting
A vulnerability was found in Kashipara College Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file vieweachfaculty.php. The manipulation of the argument id leads to cross site scripting. The attack may be launched remotely. The...
College Management System 跨站脚本漏洞
College Management System is a simple project organized by Code Projects. It is used to keep track of students, teachers, subjects, schedules and all things related to college. A cross-site scripting vulnerability exists in Kashipara College Management System version 1.0, which stems from a...
College Management System SQL注入漏洞
College Management System is a simple project organized by Code Projects. It is used to keep track of students, faculty, subjects, schedules and all things related to the university. College Management System version 1.0 has a SQL injection vulnerability that stems from a SQL injection...
UBUNTU-CVE-2021-47062
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Use onlinevcpus, not createdvcpus, to iterate over vCPUs Use the kvmforeachvcpu helper to iterate over vCPUs when encrypting VMSAs for SEV, which effectively switches to use onlinevcpus instead of createdvcpus. This fix...
CVE-2024-25223
Simple Admin Panel App v1.0 was discovered to contain a SQL injection vulnerability via the orderID parameter at /adminView/viewEachOrder.php...
kernel: bpf: Fix reference state management for synchronous callbacks
A flaw was found in the Linux kernel's BPF verifier. The verifier incorrectly handles reference state management for synchronous callbacks that execute multiple times foreach style helpers. This can lead to reference leaks when callbacks acquire references, or double-free conditions when callback...