UBUNTU-CVE-2024-52560

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Mark inode as bad as soon as error detected in mienumattr Extended the mienumattr function interface with an additional parameter, struct ntfsinode ni, to allow marking the inode as bad as soon as an error is detected...

CVE-2024-52560

CVE-2024-52560 — Linux kernel ntfs3 handling improved . The vulnerability, resolved in the Linux kernel, involved the NTFS-3G ntfs3 driver marking an inode as bad only after detecting an error in mi_enum_attr(). The fix extends mi_enum_attr()’s interface by adding a new parameter (struct ntfs_ino...

CVE-2024-52560 fs/ntfs3: Mark inode as bad as soon as error detected in mi_enum_attr()

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Mark inode as bad as soon as error detected in mienumattr Extended the mienumattr function interface with an additional parameter, struct ntfsinode ni, to allow marking the inode as bad as soon as an error is detected...

CVE-2024-52560

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Mark inode as bad as soon as error detected in mienumattr Extended the mienumattr function interface with an additional parameter, struct ntfsinode ni, to allow marking the inode as bad as soon as an error is detected...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the mienumattr function not marking an inode as bad in time when it detects an error...

PT-2025-8818

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved. The issue is related to the mi enum attr function in the fs/ntfs3 component. The function interface has been extended with an...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from phy: qcom-qmp not releasing a pipe clock reference when detecting an error...

EDAC/igen6: Avoid segmentation fault on module unload

...

SUSE CVE-2024-56708

In the Linux kernel, the following vulnerability has been resolved: EDAC/igen6: Avoid segmentation fault on module unload The segmentation fault happens because: During modprobe: 1. In igen6probe, igen6pvt will be allocated with kzalloc 2. In igen6registermci, mci-pvtinfo will point to...

DEBIAN-CVE-2024-56708

In the Linux kernel, the following vulnerability has been resolved: EDAC/igen6: Avoid segmentation fault on module unload The segmentation fault happens because: During modprobe: 1. In igen6probe, igen6pvt will be allocated with kzalloc 2. In igen6registermci, mci-pvtinfo will point to...

UBUNTU-CVE-2024-53161

In the Linux kernel, the following vulnerability has been resolved: EDAC/bluefield: Fix potential integer overflow The 64-bit argument for the "get DIMM info" SMC call consists of memctrlidx left-shifted 16 bits and OR-ed with DIMM index. With memctrlidx defined as 32-bits wide the left-shift...

About the security content of tvOS 18

About the security content of tvOS 18 This document describes the security content of tvOS 18. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent...

The vulnerability of the Roundup error detection system, which stems from the lack of measures taken to protect the website structure, allows attackers to perform cross-site scripting attacks.

The vulnerability of the Roundup error detection system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks by downloading specially created malicious PDF, XML, and SVG files...

CLSA-2024-1713791454 Fix of 12 CVEs

CVE-url: https://ubuntu.com/security/CVE-2021-46925 - net/smc: get rid of txpend waits in socket closing - net/smc: fix kernel panic caused by race of smcsock CVE-url: https://ubuntu.com/security/CVE-2024-23307 - md/raid5: fix atomicity violation in raid5cachecount CVE-url:...

The vulnerability of the thunderx_ocx_com_threaded_isr() function in the drivers/edac/thunderx_edac.c driver of the EDAC (Error Detection and Correction) kernel of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the thunderxocxcomthreadedisr function in the drivers/edac/thunderxedac.c driver of the EDAC Error Detection and Correction kernel of the Linux operating system is related to memory writing beyond the allocated buffer. Exploiting this vulnerability could allow an attacker to...

kernel: EDAC/i10nm: fix refcount leak in pci_get_dev_wrapper()

In the Linux kernel, the following vulnerability has been resolved: EDAC/i10nm: fix refcount leak in pcigetdevwrapper As the comment of pcigetdomainbusandslot says, it returns a PCI device with refcount incremented, so it doesn't need to call an extra pcidevget in pcigetdevwrapper, and the PCI...

Afuzz - Automated Web Path Fuzzing Tool For The Bug Bounty Projects

Afuzz is an automated web path fuzzing tool for the Bug Bounty projects. Afuzz is being actively developed by @rapiddns Features Afuzz automatically detects the development language used by the website, and generates extensions according to the language Uses blacklist to filter invalid pages Uses...

Integer overflow

An issue was discovered in the NPU kernel driver in Samsung Exynos Mobile Processor 9820, 980, 2100, 2200, 1280, and 1380. An integer overflow can bypass detection of error cases via a crafted application...

CVE-2023-40218

CVE-2023-40218 affects Samsung Exynos Mobile Processor NPU kernel driver. The issue is an integer overflow in the kernel driver that can bypass detection of error cases when a crafted application is used. Affected devices include Exynos 9820, 980, 2100, 2200, 1280, and 1380. The impact is describ...

SAMSUNG Exynos Input Validation Error Vulnerability

SAMSUNG Exynos is a SoC, Arm architecture-based processor developed and manufactured by Samsung Mobile, a South Korean company. A security vulnerability exists in SAMSUNG Exynos, which is caused by an integer overflow in the kernel driver that can be exploited by a crafted application to bypass...