Lucene search
K

22 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013788)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013788 advisory. In the Linux kernel, the following vulnerability has been resolved: mcb: mcb-parse: fix error handing in chameleonparsegdd If mcbdeviceregister returns error in...

3.3CVSS5.1AI score0.00149EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011037)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011037 advisory. In the Linux kernel, the following vulnerability has been resolved: mcb: mcb-parse: fix error handing in chameleonparsegdd If mcbdeviceregister returns error in...

3.3CVSS5.9AI score0.00149EPSS
Exploits0References4
Redos
Redos
added 2026/02/02 12:0 a.m.5 views

ROS-20260202-73-0029

A vulnerability in the chameleonparsegdd function of the Linux operating system kernel is related to memory re-release. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

7.8CVSS5.5AI score0.00172EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.6 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-37817)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-37817 advisory. - In the Linux kernel, the following vulnerability has been resolved: mcb: fix a double free bug in...

7.8CVSS6.7AI score0.00172EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.5 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993064)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993064 advisory. In the Linux kernel, the following vulnerability has been resolved: mcb: fix a double free bug in chameleonparsegdd In chameleonparsegdd, if mcbdeviceregister fails,...

7.8CVSS6.6AI score0.00172EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/30 12:0 a.m.7 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992625)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992625 advisory. In the Linux kernel, the following vulnerability has been resolved: mcb: fix a double free bug in chameleonparsegdd In chameleonparsegdd, if mcbdeviceregister fails,...

7.8CVSS6.6AI score0.00172EPSS
Exploits0References4
OSV
OSV
added 2025/10/07 4:15 p.m.2 views

UBUNTU-CVE-2022-50522

In the Linux kernel, the following vulnerability has been resolved: mcb: mcb-parse: fix error handing in chameleonparsegdd If mcbdeviceregister returns error in chameleonparsegdd, the refcount of bus and device name are leaked. Fix this by calling putdevice to give up the reference, so they can b...

3.3CVSS5.8AI score0.00149EPSS
Exploits0References12
Debian CVE
Debian CVE
added 2025/10/07 3:19 p.m.6 views

CVE-2022-50522

In the Linux kernel, the following vulnerability has been resolved: mcb: mcb-parse: fix error handing in chameleonparsegdd If mcbdeviceregister returns error in chameleonparsegdd, the refcount of bus and device name are leaked. Fix this by calling putdevice to give up the reference, so they can b...

3.3CVSS5AI score0.00149EPSS
Exploits0
CVE
CVE
added 2025/10/07 3:19 p.m.22 views

CVE-2022-50522

The CVE-2022-50522 entry corresponds to a Linux kernel issue in mcb-parse (chameleon_parse_gdd). When mcb_device_register() returns an error, the refcount for the bus and device name is leaked. The fix adds a put_device() to relinquish the reference so resources can be released during mcb_release...

3.3CVSS6.1AI score0.00149EPSS
Exploits0References9Affected Software1
EUVD
EUVD
added 2025/10/07 3:19 p.m.3 views

EUVD-2025-32844

In the Linux kernel, the following vulnerability has been resolved: mcb: mcb-parse: fix error handing in chameleonparsegdd If mcbdeviceregister returns error in chameleonparsegdd, the refcount of bus and device name are leaked. Fix this by calling putdevice to give up the reference, so they can b...

6AI score0.00149EPSS
Exploits0References10
Microsoft CVE
Microsoft CVE
added 2025/07/11 7:0 a.m.11 views

mcb: fix a double free bug in chameleon_parse_gdd()

...

7.8CVSS7.6AI score0.00172EPSS
Exploits0
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.4 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: mcb: fixed a double-free bug in chameleonparsegdd. In chameleonparsegdd, if mcbdeviceregister fails, ‘mdev’ will be released through putdevice in mcbdeviceregister. As a result, the statement “goto ‘err’ label” and the subsequent...

7.8CVSS6.1AI score0.00172EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/05/08 11:40 a.m.8 views

SUSE CVE-2025-37817

In the Linux kernel, the following vulnerability has been resolved: mcb: fix a double free bug in chameleonparsegdd In chameleonparsegdd, if mcbdeviceregister fails, 'mdev' would be released in mcbdeviceregister via putdevice. Thus, goto 'err' label and free 'mdev' again causes a double free. Jus...

7.8CVSS7.8AI score0.00172EPSS
Exploits0References3
OSV
OSV
added 2025/05/08 7:15 a.m.9 views

DEBIAN-CVE-2025-37817

In the Linux kernel, the following vulnerability has been resolved: mcb: fix a double free bug in chameleonparsegdd In chameleonparsegdd, if mcbdeviceregister fails, 'mdev' would be released in mcbdeviceregister via putdevice. Thus, goto 'err' label and free 'mdev' again causes a double free. Jus...

7.8CVSS6.2AI score0.00172EPSS
Exploits0References1
OSV
OSV
added 2025/05/08 6:26 a.m.12 views

CVE-2025-37817 mcb: fix a double free bug in chameleon_parse_gdd()

In the Linux kernel, the following vulnerability has been resolved: mcb: fix a double free bug in chameleonparsegdd In chameleonparsegdd, if mcbdeviceregister fails, 'mdev' would be released in mcbdeviceregister via putdevice. Thus, goto 'err' label and free 'mdev' again causes a double free. Jus...

7.8CVSS7AI score0.00172EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2025/04/15 12:0 a.m.9 views

PT-2025-20346

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A double free bug has been identified in the chameleon parse gdd function. When mcb device register fails, the mdev device is released via put device. However, if the function then...

7.8CVSS7AI score0.00172EPSS
Exploits0
OSV
OSV
added 2023/01/17 5:55 p.m.10 views

GSD-2023-1000656 mcb: mcb-parse: fix error handing in chameleon_parse_gdd()

mcb: mcb-parse: fix error handing in chameleonparsegdd This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.16 by commit...

7.2AI score
Exploits0
securityvulns
securityvulns
added 2013/09/09 12:0 a.m.33 views

CS and XSS vulnerabilities in GDD FLVPlayer

Hello 3APA3A! These are Content Spoofing and Cross-Site Scripting vulnerabilities in GDD FLVPlayer. ------------------------- Affected products: ------------------------- Vulnerable are GDD FLVPlayer v3.635 and previous versions. ------------------------- Affected vendors: -----------------------...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2013/09/09 12:0 a.m.61 views

Vulnerabilities in multiple web applications with GDD FLVPlayer

Hello 3APA3A! These are Content Spoofing and Cross-Site Scripting vulnerabilities in multiple web applications with GDD FLVPlayer. Earlier I've wrote about vulnerabilities in GDD FLVPlayer http://seclists.org/fulldisclosure/2013/Aug/247. This is video and audio player, which is used at thousands...

1.4AI score
Exploits0
securityvulns
securityvulns
added 2013/09/09 12:0 a.m.68 views

Vulnerabilities in multiple plugins for WordPress with GDD FLVPlayer

Hello 3APA3A! These are Content Spoofing and Cross-Site Scripting vulnerabilities in multiple web applications with GDD FLVPlayer. Earlier I wrote about vulnerabilities in GDD FLVPlayer http://seclists.org/fulldisclosure/2013/Aug/247. This is video and audio player, which is used at thousands web...

0.3AI score
Exploits0
Rows per page
Query Builder