2032 matches found
PT-2024-11135 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns resource leaks in the error path of the venus probe function. If an error occurs after a successful of icc get call, it must be undone to prevent leaks. Using devm o...
PT-2024-10834 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak issue has been resolved in the Linux kernel. The problem occurs when the lm3554 platform data func call returns an error, resulting in a memory leak on the error return...
PT-2024-11147 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak issue has been resolved in the Linux kernel, specifically in the crypto: sun8i-ss module. The issue occurs when the dma iv mapping fails, causing the return error path to...
PT-2021-8004 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a memory leak in the sun8i-ss crypto driver of the Linux kernel. This memory leak occurs on an error path and can be exploited by a remote attacker to cause a...
kernel: af_packet: TPACKET_V3: invalid timer timeout on error
A flaw was found in the way the afpacket functionality in the Linux kernel handled the retirement timer setting for TPACKETv3 when getting settings from the underlying network device errors out. This flaw allows a local user who can open the afpacket domain socket and who can hit the error path, ...
Multiple unspecified vulnerabilities in ClamAV before 0.94 have unknown impact and attack vectors related to file descriptor leaks on the "error path" in (1) libclamav/others.c and (2) libclamav/sis.c.
...
Fedora 31 : xen (2020-295ed0b1e0)
multiple xenoprof issues XSA-313, CVE-2020-11740, CVE-2020-11741 1823912, 1823914 Missing memory barriers in read-write unlock paths XSA-314, CVE-2020-11739 1823784 Bad error path in GNTTABOPmapgrant XSA-316, CVE-2020-11743 1823926 Bad continuation handling in GNTTABOPcopy XSA-318, CVE-2020-11742...
Xen Bad error path in GNTTABOP_map_grant DoS (XSA-316)
According to its self-reported version number, the Xen hypervisor installed on the remote host is affected by a denial of service vulnerability. Grant table operations are expected to return 0 for success, and a negative number for errors. Some misplaced brackets cause one error path to return 1...
DEBIAN-CVE-2020-11743
An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a denial of service because of a bad error path in GNTTABOPmapgrant. Grant table operations are expected to return 0 for success, and a negative number for errors. Some misplaced brackets cause one error path to retur...
UBUNTU-CVE-2020-11743
An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a denial of service because of a bad error path in GNTTABOPmapgrant. Grant table operations are expected to return 0 for success, and a negative number for errors. Some misplaced brackets cause one error path to retur...
Bad error path in GNTTABOP_map_grant
ISSUE DESCRIPTION Grant table operations are expected to return 0 for success, and a negative number for errors. Some misplaced brackets cause one error path to return 1 instead of a negative value. The grant table code in Linux treats this condition as success, and proceeds with incorrectly...
Ubuntu 19.10 - ubuntu-aufs-modified mmap_region() Breaks Refcounting in overlayfsshiftfs Error Path
Ubuntu 19.10 - ubuntu-aufs-modified mmapregion Breaks Refcounting in overlayfsshiftfs Error Path Tested on 19.10. Ubuntu's aufs kernel patch includes the following change which I interestingly can't see in the AUFS code at https://github.com/sfjro/aufs5-linux/blob/master/mm/mmap.c:...
Ubuntu ubuntu-aufs-modified mmap_region() Refcounting Issue
Ubuntu: ubuntu-aufs-modified mmapregion breaks refcounting in overlayfs/shiftfs error path Tested on 19.10. Ubuntu's aufs kernel patch includes the following change which I interestingly can't see in the AUFS code at https://github.com/sfjro/aufs5-linux/blob/master/mm/mmap.c:...
UBUNTU-CVE-2019-15794
Overlayfs in the Linux kernel and shiftfs, a non-upstream patch to the Linux kernel included in the Ubuntu 5.0 and 5.3 kernel series, both replace vma-vmfile in their mmap handlers. On error the original value is not restored, and the reference is put for the file to which vmfile points. On...
CVE-2017-12133
Use-after-free vulnerability in the clntudpcall function in sunrpc/clntudp.c in the GNU C Library aka glibc or libc6 before 2.26 allows remote attackers to have unspecified impact via vectors related to error path...
Design/Logic Flaw
Use-after-free vulnerability in the clntudpcall function in sunrpc/clntudp.c in the GNU C Library aka glibc or libc6 before 2.26 allows remote attackers to have unspecified impact via vectors related to error path...
CVE-2017-12133
Use-after-free vulnerability in the clntudpcall function in sunrpc/clntudp.c in the GNU C Library aka glibc or libc6 before 2.26 allows remote attackers to have unspecified impact via vectors related to error path...
CVE-2017-12133
Use-after-free vulnerability in the clntudpcall function in sunrpc/clntudp.c in the GNU C Library aka glibc or libc6 before 2.26 allows remote attackers to have unspecified impact via vectors related to error path...
CVE-2017-12133
CVE-2017-12133 affects the GNU C Library (glibc) prior to 2.26. It is a use-after-free in clntudp_call() in sunrpc/clnt_udp.c that allows remote attackers to potentially impact the target via error-path vectors. Affected products are glibc/libc6 environments prior to 2.26; remediation is to upgra...
CVE-2017-12133
Use-after-free vulnerability in the clntudpcall function in sunrpc/clntudp.c in the GNU C Library aka glibc or libc6 before 2.26 allows remote attackers to have unspecified impact via vectors related to error path...