134 matches found
PT-2023-34016 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.87 Description: The issue is related to the s5p-mfc media component in the Linux Kernel, where a clear workbit is not handled properly in an error condition. The actual impact and potential for attack have...
UBUNTU-CVE-2022-26353
A flaw was found in the virtio-net device of QEMU. This flaw was inadvertently introduced with the fix for CVE-2021-3748, which forgot to unmap the cached virtqueue elements on error, leading to memory leakage and other unexpected results. Affected QEMU version: 6.2.0...
CVE-2022-22160
CVE-2022-22160 affects Juniper Junos OS MX Series where the subscriber management daemon (smgd) is vulnerable to an unchecked error condition. An unauthenticated adjacent attacker can trigger a crash of smgd (in environments with dual-stack session groups and a pp0 interface), causing the daemon ...
Juniper Junos OS Vulnerability (JSA11268)
The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA11268 advisory. - An Unchecked Error Condition vulnerability in the subscriber management daemon smgd of Juniper Networks Junos OS allows an unauthenticated adjacent attacker to cause a cra...
Qualcomm Multiple Chipsets Detection of Error Condition Without Action Vulnerability
Multiple Qualcomm chipsets contain a detection of error condition without action vulnerability when improper handling of address deregistration on failure can lead to new GPU address allocation failure...
CVE-2021-21565
Dell PowerScale OneFS versions 9.1.0.3 and earlier contain a denial of service vulnerability. SmartConnect had an error condition that may be triggered to loop, using CPU and potentially preventing other SmartConnect DNS responses...
Xen xenstored watch DoS (XSA-324)
According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by a denial of service vulnerability due to an issue with max payload length in xenstored. A malicious guest can exploit this, by registering a 'watch' with using a very large tag, to cause ...
Schneider Electric EcoStruxure Control Expert APX project file processing code execution vulnerability
Summary A local code execution vulnerability exists in the APX project file processing functionality of Schneider Electric EcoStruxure Control Expert 14.1. The opening of a STA project archive containing a specially crafted APX project file can lead to code execution. An attacker can provide a...
Undefined behavior in Tensorflow
Impact If a user passes an invalid argument to dlpack.todlpack the expected validations will cause variables to bind to nullptr while setting a status variable to the error condition. However, this status argument is not properly checked:...
CVE-2019-19067
A flaw was found in the Linux kernel. The acphwinit function fails to cleanup resources properly. A local attacker can induce an error condition to crash the system. The highest threat from this vulnerability is to system availability. Mitigation Mitigation for this issue is either not available ...
CVE-2018-18690
In the Linux kernel before 4.17, a local attacker able to set attributes on an xfs filesystem could make this filesystem non-operational until the next mount by triggering an unchecked error condition during an xfs attribute change, because xfsattrshortformaddname in fs/xfs/libxfs/xfsattr.c...
CVE-2019-10051
An issue was discovered in Suricata 4.1.3. If the function filetrackernewchunk encounters an unsafe "Somesfcm = ft.newchunk " item, then the program enters an smb/files.rs error condition and crashes...
CVE-2019-10051
An issue was discovered in Suricata 4.1.3. If the function filetrackernewchunk encounters an unsafe "Somesfcm = ft.newchunk " item, then the program enters an smb/files.rs error condition and crashes...
Input validation
Firefly III 4.7.17.5 is vulnerable to stored XSS due to the lack of filtration of user-supplied data in the liability name field. The JavaScript code is executed upon an error condition during a visit to the account show page...
EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1511)
According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A null pointer dereference in dccpwritexmit function in net/dccp/output.c in the Linux kernel allows a local user to cause a deni...
CVE-2018-18690
In the Linux kernel before 4.17, a local attacker able to set attributes on an xfs filesystem could make this filesystem non-operational until the next mount by triggering an unchecked error condition during an xfs attribute change, because xfsattrshortformaddname in fs/xfs/libxfs/xfsattr.c...
CVE-2018-18690
In the Linux kernel before 4.17, a local attacker able to set attributes on an xfs filesystem could make this filesystem non-operational until the next mount by triggering an unchecked error condition during an xfs attribute change, because xfsattrshortformaddname in fs/xfs/libxfs/xfsattr.c...
CVE-2018-18690
In the Linux kernel before 4.17, a local attacker able to set attributes on an xfs filesystem could make this filesystem non-operational until the next mount by triggering an unchecked error condition during an xfs attribute change, because xfsattrshortformaddname in fs/xfs/libxfs/xfsattr.c...
CVE-2017-3226 Das U-Boot's AES-CBC encryption feature improperly handles an error condition and may allow attacks against the underlying cryptographic implementation and allow an attacker to decrypt the data
Das U-Boot is a device bootloader that can read its configuration from an AES encrypted file. Devices that make use of Das U-Boot's AES-CBC encryption feature using environment encryption i.e., setting the configuration parameter CONFIGENVAES=y read environment variables from disk as the encrypte...
CVE-2015-9120
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear IPQ4019, MDM9206, MDM9607, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 600, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800,...