13 matches found
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: arm64: probes: Fixed the uprobes for big-endian kernels The arm64 uprobes code is broken for big-endian kernels because it does not convert the in-memory instruction encoding which is always little-endian into the kernel’s...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an unvalidated ninsns size that could lead to a memory allocation failure...
DEBIAN-CVE-2024-50194
In the Linux kernel, the following vulnerability has been resolved: arm64: probes: Fix uprobes for big-endian kernels The arm64 uprobes code is broken for big-endian kernels as it doesn't convert the in-memory instruction encoding which is always little-endian into the kernel's native endianness...
AZL-53435 CVE-2024-50194 affecting package kernel for versions less than 6.6.64.2-1
In the Linux kernel, the following vulnerability has been resolved: arm64: probes: Fix uprobes for big-endian kernels The arm64 uprobes code is broken for big-endian kernels as it doesn't convert the in-memory instruction encoding which is always little-endian into the kernel's native endianness...
AZL-53654 CVE-2024-50194 affecting package kernel for versions less than 5.15.173.1-1
In the Linux kernel, the following vulnerability has been resolved: arm64: probes: Fix uprobes for big-endian kernels The arm64 uprobes code is broken for big-endian kernels as it doesn't convert the in-memory instruction encoding which is always little-endian into the kernel's native endianness...
UBUNTU-CVE-2024-50194
In the Linux kernel, the following vulnerability has been resolved: arm64: probes: Fix uprobes for big-endian kernels The arm64 uprobes code is broken for big-endian kernels as it doesn't convert the in-memory instruction encoding which is always little-endian into the kernel's native endianness...
CVE-2024-50194 arm64: probes: Fix uprobes for big-endian kernels
In the Linux kernel, the following vulnerability has been resolved: arm64: probes: Fix uprobes for big-endian kernels The arm64 uprobes code is broken for big-endian kernels as it doesn't convert the in-memory instruction encoding which is always little-endian into the kernel's native endianness...
The vulnerability of the disasinsn function in the target/i386/translate.c component of the QEMU hardware emulation emulator is related to a lack of mechanism for controlling code generation. This vulnerability allows an attacker to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the disasinsn function in the target/i386/translate.c component of the QEMU hardware emulation software is related to the lack of restrictions on instruction size. Exploiting this vulnerability allows an attacker to access confidential data, compromise its integrity, and caus...
UBUNTU-CVE-2017-8284
The disasinsn function in target/i386/translate.c in QEMU before 2.9.0, when TCG mode without hardware acceleration is used, does not limit the instruction size, which allows local users to gain privileges by creating a modified basic block that injects code into a setuid program, as demonstrated...
DEBIAN-CVE-2017-8284
The disasinsn function in target/i386/translate.c in QEMU before 2.9.0, when TCG mode without hardware acceleration is used, does not limit the instruction size, which allows local users to gain privileges by creating a modified basic block that injects code into a setuid program, as demonstrated...
CVE-2017-8284
The disasinsn function in target/i386/translate.c in QEMU before 2.9.0, when TCG mode without hardware acceleration is used, does not limit the instruction size, which allows local users to gain privileges by creating a modified basic block that injects code into a setuid program, as demonstrated...
CVE-2017-8284
CVE-2017-8284 affects QEMU prior to 2.9.0. The vulnerable component is the disas_insn function in target/i386/translate.c, which in TCG mode without hardware acceleration does not limit instruction size. This can enable a local user to gain privileges by creating a modified basic block that injec...
CVE-2017-8284
The disasinsn function in target/i386/translate.c in QEMU before 2.9.0, when TCG mode without hardware acceleration is used, does not limit the instruction size, which allows local users to gain privileges by creating a modified basic block that injects code into a setuid program, as demonstrated...