kernel: scsi: sd: Fix potential NULL pointer dereference

A flaw was found in the Linux kernel's SCSI subsystem. A NULL pointer dereference can be triggered when an error occurs before the sdkp-device object is fully initialized, causing a system crash and a denial of service...

Qt 数字错误漏洞

Qt is a cross-platform C++ application development framework from the Norwegian company Qt. It is widely used to develop GUI programs, in which case it is also known as the widget toolkit. It can also be used to develop non-GUI programs, such as console tools and servers. A security vulnerability...

CVE-2023-26084

The armv8decaesgcmfull API of Arm AArch64cryptolib before 86065c6 fails to the verify the authentication tag of AES-GCM protected data, leading to a man-in-the-middle attack. This occurs because of an improperly initialized variable...

Intel Processors 安全漏洞

Intel Processors are U.S.-based companies of Intel Corporation that provide for the interpretation of computer instructions and the processing of data in computer software. A security vulnerability exists in Intel Processors that originates from an incorrect initialization in the IntelR TXT SINIT...

Intel Processors 安全漏洞

Intel Processors are U.S.-based Intel Corporation's offerings for interpreting computer instructions and processing data in computer software. A security vulnerability exists in the IntelR Processors BIOS firmware that originates from an incorrect initialization in the firmware and could allow a...

SUSE CVE-2007-5471

libgssapi before 0.6-13.7, as used by the ISC BIND named daemon in SUSE Linux Enterprise Server 10 SP 1, terminates upon an initialization error, which allows remote attackers to cause a denial of service daemon exit via a GSS-TSIG request. NOTE: this issue probably affects other daemons that...

SUSE CVE-2009-4835

The 1 htkreadheader, 2 alawinit, 3 ulawinit, 4 pcminit, 5 float32init, and 6 sdsreadheader functions in libsndfile 1.0.20 allow context-dependent attackers to cause a denial of service divide-by-zero error and application crash via a crafted audio file...

SUSE CVE-2018-20123

pvrdmarealize in hw/rdma/vmw/pvrdmamain.c in QEMU has a Memory leak after an initialisation error...

The vulnerability of the Fortinet FortiClient for Windows installer allows a hacker to increase their privileges.

The vulnerability of the Fortinet FortiClient for Windows installer is related to initialization errors. Exploiting this vulnerability can allow an attacker to gain increased privileges...

CVE-2022-30771

Initialization function in PnpSmm could lead to SMRAM corruption when using subsequent PNP SMI functions Initialization function in PnpSmm could lead to SMRAM corruption when using subsequent PNP SMI functions. This issue was discovered by Insyde engineering during a security review. Fixed in:...

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim 2022 R1. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsi...

Intel PROSet/Wireless WiFi Software 安全漏洞

Intel PROSet/Wireless WiFi Software is a wireless network card driver from Intel Corporation USA. A security vulnerability exists in Intel PROSet/Wireless WiFi Software versions prior to 22.120 and KillerTM WiFi versions prior to 3.1122.1105, which stems from incorrect initialization and could...

Apple macOS Big Sur 安全漏洞

Apple macOS Big Sur is the 17th major version of Apple's macOS Big Sur, the operating system used by Apple for the MAC operating system macOS. Apple macOS Big Sur suffers from a security vulnerability that originates from a CVMS initialization error. An attacker can exploit the vulnerability to...

FIS GT.M 代码问题漏洞

FIS GT.M is a database platform. A denial of service vulnerability exists in FIS GT.M versions prior to V7.0-000, which stems from the fincr function in srport/fincr.c incorrectly initializing the type and the presence of a NULL pointer dereference, which can be exploited by an attacker to cause ...

Interactive Graphical SCADA System Data Server 安全漏洞

Schneider Electric Interactive Graphical SCADA System IGSS is a SCADA Data Acquisition and Supervisory System system for monitoring and controlling industrial processes from Schneider Electric, France. An initialization error vulnerability exists in the Schneider Electric Interactive Graphical...

Juniper Networks Junos OS 安全漏洞

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Networks Junos OS that arises from an incorrect initialization,...

Intel Graphics Drivers 安全漏洞

Intel Graphics Drivers is an integrated graphics driver from Intel Corporation USA. A security vulnerability exists in Intel Graphics Driver for Windows, which is due to an initialization error. A local user can run a specially designed application to execute arbitrary code on the system using...

USN-4948-1: Linux kernel (OEM) vulnerabilities

Ryota Shiga discovered that the eBPF implementation in the Linux kernel did not properly verify that a BPF program only reserved as much memory for a ring buffer as was allocated. A local attacker could use this to cause a denial of service system crash or execute arbitrary code. CVE-2021-3489...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2021-9215)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9215 advisory. - btrfs: fix race when cloning extent buffer during rewind of an old root Filipe Manana Orabug: 32669454 CVE-2021-28964 - xen-blkback: don't leak...

".NET Framework Initialization Error" on Receiver

This article is intended for Citrix administrators and technical teams only. Non-admin users must contact their company’s Help Desk/IT support team and can refer to CTX297149 for more information. If a computer has .NET Framework version 4 installed and there are no older versions of the .NET...