11192 matches found
The vulnerability of the `load_elf_binary()` function in the Linux operating system’s kernel allows a hacker to bypass the ASLR protection and expose the protected information.
The vulnerability of the loadelfbinary function in the Linux operating system’s kernel arises due to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker to bypass the ASLR protection mechanism and disclose the protected information...
The vulnerability of the copyRawDataTo method in the Matrix3D class of the Adobe Flash Player allows a hacker to execute arbitrary code.
The vulnerability of the copyRawDataTo method in the Matrix3D class of the Adobe Flash Player lies in numerical processing errors. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
The vulnerability of the ImageCast X ballot marking device’s software, related to access control errors, allows a violator to execute arbitrary code.
The vulnerability of the ImageCast X ballot marking device’s software is related to access control errors. Exploiting this vulnerability could allow a perpetrator to execute arbitrary code using a specially created binary file with the setuid flag...
The vulnerability of the Wiser Smart programmable logic controllers from Schneider Electric, Wiser Controller EER21000 and Wiser Controller EER21001, related to authentication process errors, allows unauthorized access by attackers to protected information.
The vulnerability of the Wiser Smart programmable logic controllers from Schneider Electric, Wiser Controller EER21000 and Wiser Controller EER21001, relates to authentication process errors. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected informatio...
GSD-2022-1004057 RDMA/hfi1: Fix potential integer multiplication overflow errors
RDMA/hfi1: Fix potential integer multiplication overflow errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.318 by commit...
GSD-2022-1003983 phy: qcom-qmp: fix struct clk leak on probe errors
phy: qcom-qmp: fix struct clk leak on probe errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.283 by commit...
GSD-2022-1003980 phy: qcom-qmp: fix reset-controller leak on probe errors
phy: qcom-qmp: fix reset-controller leak on probe errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.283 by commit...
GSD-2022-1003882 phy: qcom-qmp: fix reset-controller leak on probe errors
phy: qcom-qmp: fix reset-controller leak on probe errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.247 by commit...
GSD-2022-1003864 phy: qcom-qmp: fix struct clk leak on probe errors
phy: qcom-qmp: fix struct clk leak on probe errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.247 by commit...
GSD-2022-1003732 phy: qcom-qmp: fix struct clk leak on probe errors
phy: qcom-qmp: fix struct clk leak on probe errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.198 by commit...
GSD-2022-1003722 phy: qcom-qmp: fix reset-controller leak on probe errors
phy: qcom-qmp: fix reset-controller leak on probe errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.198 by commit...
GSD-2022-1003544 phy: qcom-qmp: fix reset-controller leak on probe errors
phy: qcom-qmp: fix reset-controller leak on probe errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.121 by commit...
GSD-2022-1003297 phy: qcom-qmp: fix reset-controller leak on probe errors
phy: qcom-qmp: fix reset-controller leak on probe errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.46 by commit...
GSD-2022-1003003 phy: qcom-qmp: fix struct clk leak on probe errors
phy: qcom-qmp: fix struct clk leak on probe errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.14 by commit...
GSD-2022-1003001 phy: qcom-qmp: fix reset-controller leak on probe errors
phy: qcom-qmp: fix reset-controller leak on probe errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.14 by commit...
GSD-2022-1002656 phy: qcom-qmp: fix struct clk leak on probe errors
phy: qcom-qmp: fix struct clk leak on probe errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.3 by commit...
GSD-2022-1002655 phy: qcom-qmp: fix reset-controller leak on probe errors
phy: qcom-qmp: fix reset-controller leak on probe errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.3 by commit...
DEBIAN-CVE-2021-41687
DCMTK through 3.6.6 does not handle memory free properly. The program malloc a heap memory for parsing data, but does not free it when error in parsing. Sending specific requests to the dcmqrdb program incur the memory leak. An attacker can use it to launch a DoS attack...
UBUNTU-CVE-2021-41687
DCMTK through 3.6.6 does not handle memory free properly. The program malloc a heap memory for parsing data, but does not free it when error in parsing. Sending specific requests to the dcmqrdb program incur the memory leak. An attacker can use it to launch a DoS attack...
Out-of-bound read in function msg_outtrans_special
Description Out-of-bound read in function msgouttransspecial at message.c:1716 Version commit c101abff4c6756db4f5e740fde289decb9452efa HEAD - master, tag: v8.2.5164 Proof of Concept guest@elk:/trung$ valgrind ./vimlatest/src/vim -u NONE -i NONE -n -m -X -Z -e -s -S ./poc/poc4min2 -c :qa! ==23509=...