The vulnerability of the bttvremove() function in the drivers/media/pci/bt8xx/bttv-driver.c module of the Linux kernel’s bttv component allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the bttvremove function in the drivers/media/pci/bt8xx/bttv-driver.c module of the Linux kernel’s bttv component is related to errors that occur after freeing resources. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

The vulnerability of the hisi component in the Linux operating system allows a hacker to gain elevated privileges within the system.

The vulnerability of the hisi component in the Linux operating system’s kernel is related to memory management errors after deallocation. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...

OESA-2024-2468 postgresql security update

PostgreSQL is an advanced Object-Relational database management system DBMS. The base postgresql package contains the client programs that you'll need to access a PostgreSQL DBMS server, as well as HTML documentation for the whole system. These client programs can be located on the same machine a...

The vulnerability of the Native Client component of the Microsoft SQL Server database management system allows a hacker to execute arbitrary code.

The vulnerability of Native Client components in the Microsoft SQL Server database management system is related to numerical truncation errors. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

The vulnerability of the CLI command-line interface of the Fortinet FortiManager device management software, as well as the FortiAnalyzer and FortiAnalyzer-BigData security event monitoring and analysis tools, allows a malicious actor to delete arbitrary files from the file system.

The vulnerability of the CLI command-line interface of the Fortinet FortiManager device management software, as well as the FortiAnalyzer and FortiAnalyzer-BigData event monitoring and analysis tools, is related to errors in processing the relative path to the directory. Exploiting this...

DEBIAN-CVE-2024-53093

In the Linux kernel, the following vulnerability has been resolved: nvme-multipath: defer partition scanning We need to suppress the partition scan from occuring within the controller's scanwork context. If a path error occurs here, the IO will wait until a path becomes available or all paths are...

CVE-2024-50189

In the Linux kernel, the following vulnerability has been resolved: HID: amdsfh: Switch to device-managed dmamalloccoherent Using the device-managed version allows to simplify clean-up in probe error path. Additionally, this device-managed ensures proper cleanup, which helps to resolve memory...

CVE-2024-53093 nvme-multipath: defer partition scanning

In the Linux kernel, the following vulnerability has been resolved: nvme-multipath: defer partition scanning We need to suppress the partition scan from occuring within the controller's scanwork context. If a path error occurs here, the IO will wait until a path becomes available or all paths are...

CVE-2024-50202

In the Linux kernel, the following vulnerability has been resolved: nilfs2: propagate directory read errors from nilfsfindentry Syzbot reported that a task hang occurs in vcsopen during a fuzzing test for nilfs2. The root cause of this problem is that in nilfsfindentry, which searches for directo...

The vulnerability of the “mana component” of the Linux operating system’s kernel, which allows a hacker to cause a service failure

The vulnerability of the “mana component” in the Linux operating system’s kernel is related to errors in resource management in the “managetrxbufcfg” function. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the lib/Kconfig.debug components of the Linux operating system’s kernel allows attackers to gain elevated privileges within the system.

The vulnerability of the lib/Kconfig.debug components in the Linux operating system kernel is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...

The vulnerability of the mm/slab_common component in the Linux operating system allows a hacker to gain elevated privileges within the system.

The vulnerability of the mm/slabcommon component in the Linux kernel is related to memory management errors after deallocation. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...

The vulnerability of the lis3lv02d_i2c component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the lis3lv02di2c component in the Linux operating system is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the wilc1000 component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the wilc1000 component in the Linux operating system is related to memory release errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the enetc component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the enetc component in the Linux operating system’s kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

Vulnerability of components of Linux operating system’s kernel’s net/sched module, allowing a hacker to cause a service failure

The vulnerability of the net/sched components in Linux operating systems stems from synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the mm/secretmem components in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the mm/secretmem components in the Linux operating system’s kernel is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause service failures...

Vulnerability of components related to DRM/client rights management in Linux operating systems, which allows attackers to increase their privileges within the system

The vulnerability of Linux operating system’s DRM/client components is related to memory errors that occur after the release of data in the drmclientmodesetprobe function. Exploiting this vulnerability can allow an attacker to increase their privileges within the system...

DRUPAL-CORE-2024-006

Drupal core contains a potential PHP Object Injection vulnerability that if combined with another exploit could lead to Artbitrary File Deletion. It is not directly exploitable. This issue is mitigated by the fact that in order to be exploitable, a separate vulnerability must be present that allo...

Fedora 40 : llvm-test-suite (2024-300397332b)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-300397332b advisory. Remove ClamAV subdirectory because of viruses in input files: These were the findings: MultiSource/Applications/ClamAV/inputs/rtf-test/rtf1.rtf:...