78 matches found
SUSE CVE-2021-47440
In the Linux kernel, the following vulnerability has been resolved: net: encx24j600: check error in devmregmapinitencx24j600 devmregmapinit may return error which caused by like out of memory, this will results in null pointer dereference later when reading or writing register: general protection...
AZL-54584 CVE-2024-26983 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: bootconfig: use memblockfreelate to free xbc memory to buddy On the time to free xbc memory in xbcexit, memblock may has handed over memory to buddy allocator. So it doesn't make sense to free memory back to memblock. memblockfre...
kernel: media: dvb-usb: fix memory leak in dvb_usb_adapter_init()
In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb: fix memory leak in dvbusbadapterinit Syzbot reports a memory leak in "dvbusbadapterinit". The leak is due to not accounting for and freeing current iteration's adapter-priv in case of an error. Currently if an err...
kernel: drm/vkms: Fix memory leak in vkms_init()
In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Fix memory leak in vkmsinit A memory leak was reported after the vkms module install failed. unreferenced object 0xffff88810bc28520 size 16: comm "modprobe", pid 9662, jiffies 4298009455 age 42.590s hex dump first 16...
kernel: media: dvb-usb: fix memory leak in dvb_usb_adapter_init()
In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb: fix memory leak in dvbusbadapterinit Syzbot reports a memory leak in "dvbusbadapterinit". The leak is due to not accounting for and freeing current iteration's adapter-priv in case of an error. Currently if an err...
Malicious code in yelp-js-error-reporting-init-error-reporting (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b0ef31127203cf701c7aa890cdebf10454c53c989cb98015927e9b62881c7bf6 The OpenSSF Package Analysis project identified 'yelp-js-error-reporting-init-error-reporting' @ 19.20.20 npm as malicious. It is considered...
SUSE CVE-2018-11207
A division by zero was discovered in H5Dchunkinit in H5Dchunk.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack...
GSD-2023-1002235 efi: fix NULL-deref in init error path
efi: fix NULL-deref in init error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.229 by commit...
GSD-2023-1002184 efi: fix NULL-deref in init error path
efi: fix NULL-deref in init error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.164 by commit...
GSD-2023-1001829 efi: fix NULL-deref in init error path
efi: fix NULL-deref in init error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.270 by commit...
GSD-2023-1001788 efi: fix NULL-deref in init error path
efi: fix NULL-deref in init error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.164 by commit...
GSD-2023-1001754 efi: fix NULL-deref in init error path
efi: fix NULL-deref in init error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.89 by commit...
GSD-2023-1001692 efi: fix NULL-deref in init error path
efi: fix NULL-deref in init error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.7 by commit adc96d30f6503d30dc68670c013716f1d9fcc747...
PT-2023-34768 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.7 Description: A NULL-deref issue was discovered in the init error path of the EFI module. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prio...
SUSE: Security Advisory (SUSE-SU-2021:2474-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for qemu (important)
openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2021:2442-1 Rating: important References: 1187499 1187529 1187538 1187539 Cross-References: CVE-2021-3582 CVE-2021-3607 CVE-2021-3608 CVE-2021-3611 CVSS scores: CVE-2021-3582 SUSE: 3.2...
Fedora 30 : librabbitmq (2019-dd7c8f5435)
Added: - amqpsslsocketgetcontext can be used to get the current OpenSSL CTX associated with a connection. Changed: - openssl: missing OpenSSL config is ignored as an OpenSSL init error 523 - AMQPDEFAULTMAXCHANNELS is now set to 2047 to follow current default channel limit in the RabbitMQ broker...
USN-3057-1 linux-snapdragon vulnerabilities
Ben Hawkes discovered an integer overflow in the Linux netfilter implementation. On systems running 32 bit kernels, a local unprivileged attacker could use this to cause a denial of service system crash or possibly execute arbitrary code with administrative privileges. CVE-2016-3135 It was...