104 matches found
kernel: Null Pointer Dereference vulnerability in ida_free in lib/idr.c
A Null pointer dereference problem was found in idafree in lib/idr.c in the Linux Kernel. This issue may allow an attacker using this library to cause a denial of service problem due to a missing check at a function return...
UBUNTU-CVE-2021-47486
In the Linux kernel, the following vulnerability has been resolved: riscv, bpf: Fix potential NULL dereference The bpfjitbinaryfree function requires a non-NULL argument. When the RISC-V BPF JIT fails to converge in NRJITITERATIONS steps, jitdata-header will be NULL, which triggers a NULL...
AZL-58728 CVE-2024-26680 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: net: atlantic: Fix DMA mapping for PTP hwts ring Function aqringhwtsrxalloc maps extra AQCFGRXDSDEF bytes for PTP HWTS ring but then generic aqringfree does not take this into account. Create and use a specific function to free...
DEBIAN-CVE-2024-26680
In the Linux kernel, the following vulnerability has been resolved: net: atlantic: Fix DMA mapping for PTP hwts ring Function aqringhwtsrxalloc maps extra AQCFGRXDSDEF bytes for PTP HWTS ring but then generic aqringfree does not take this into account. Create and use a specific function to free...
UBUNTU-CVE-2024-26680
In the Linux kernel, the following vulnerability has been resolved: net: atlantic: Fix DMA mapping for PTP hwts ring Function aqringhwtsrxalloc maps extra AQCFGRXDSDEF bytes for PTP HWTS ring but then generic aqringfree does not take this into account. Create and use a specific function to free...
BIT-PYTHON-2023-33595
CPython v3.12.0 alpha 7 was discovered to contain a heap use-after-free via the function asciidecode at /Objects/unicodeobject.c...
PT-2024-21358 · Swftools · Swftools
Name of the Vulnerable Software and Affected Versions: swftools version 0.9.2 Description: The issue is related to a segmentation violation in the state free function located at swftools/src/swfc-history.c. Recommendations: For swftools version 0.9.2, consider disabling the state free function as...
Kernel: null pointer dereference vulnerability in ida_free in lib/idr.c
...
CVE-2023-4883
Invalid pointer release vulnerability. Exploitation of this vulnerability could allow an attacker to interrupt the correct operation of the service by sending a specially crafted json string to the VNF Virtual Network Function, and triggering the ogssbimessagefree function, which could cause a...
Open5GS 安全漏洞
Open5GS is an open source implementation in C of 5G Core and Epc, the core network of the Lte/Nr network. A denial of service vulnerability exists in Open5GS version 2.4.10 and earlier due to an invalid pointer release flaw in the ogssbimessagefree function, which can be exploited by an attacker ...
PT-2023-36032 · Git +1 · Libredwg
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-double-free crash. The crash occurs in the dwg free object and dwg free functions, as indicated by the crash state. This...
PT-2023-12934 · Radare2 · Radare2
Name of the Vulnerable Software and Affected Versions: radare2 versions 5.4.0 through 5.4.2 Description: The issue is related to a use after free in the r reg get name idx function. Recommendations: For versions 5.4.0 and 5.4.2, update to a version that fixes the use after free issue in the r reg...
CVE-2023-39129
GNU gdb GDB 13.0.50.20220805-git was discovered to contain a heap use after free via the function addpeexportedsym at /gdb/coff-pe-read.c...
CVE-2023-31974
yasm v1.3.0 was discovered to contain a use after free via the function error at /nasm/nasm-pp.c. Note: Multiple third parties dispute this as a bug and not a vulnerability according to the YASM security policy...
SUSE CVE-2014-9940
The regulatorenagpiofree function in drivers/regulator/core.c in the Linux kernel before 3.19 allows local users to gain privileges or cause a denial of service use-after-free via a crafted application...
SUSE CVE-2018-19876
cairo 1.16.0, in cairoftapplyvariations in cairo-ft-font.c, would free memory using a free function incompatible with WebKit's fastMalloc, leading to an application crash with a "free: invalid pointer" error...
kernel: drm/virtio: Ensure that objs is not NULL in virtio_gpu_array_put_free()
A flaw was found in the virtio-gpu module in the Linux kernel. If the initialization fails, for example, due to a fault injection, a missing check in the virtiogpuarrayputfree function can cause a NULL pointer dereference, resulting in a denial of service...
PT-2022-36751 · Git +1 · Quickjs
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read error. Technical details about the crash include the crash type being a heap-buffer-overflow read 4,...
CVE-2022-40009
SWFTools commit 772e55a was discovered to contain a heap-use-after-free via the function growunicode at /lib/ttf.c...
CVE-2022-40009
SWFTools commit 772e55a was discovered to contain a heap-use-after-free via the function growunicode at /lib/ttf.c...