AZL-68915 CVE-2025-40049 affecting package kernel for versions less than 6.6.112.1-2

In the Linux kernel, the following vulnerability has been resolved: Squashfs: fix uninit-value in squashfsgetparent Syzkaller reports a "KMSAN: uninit-value in squashfsgetparent" bug. This is caused by openbyhandleat being called with a file handle containing an invalid parent inode number. In...

DEBIAN-CVE-2022-49104

In the Linux kernel, the following vulnerability has been resolved: staging: vchiqcore: handle NULL result of findservicebyhandle In case of an invalid handle the function findservivebyhandle returns NULL. So take care of this and avoid a NULL pointer dereference...

CVE-2024-42260

CVE-2024-42260 - Linux kernel drm/v3d validation issue : The vulnerability occurred in the DRM/V3D path where userspace could pass unknown or invalid drm_syncobj handles in the performance extension. The description states that if an invalid handle appears anywhere in the handle array, the rest o...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the fact that if an unknown or invalid handle is supplied anywhere in the handles array, the rest of the...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the fact that if an unknown or invalid handle is supplied anywhere in the handles array, the rest of the...

Design/Logic Flaw

The camgetdevicepriv function does not check the type of handle being returned device/session/link. This would lead to invalid type usage if a wrong handle is passed to it...

CVE-2023-28575 Multiple Type Confusion Vulnerability

The camgetdevicepriv function does not check the type of handle being returned device/session/link. This would lead to invalid type usage if a wrong handle is passed to it...

CVE-2017-10734

IrfanView version 4.44 32bit might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to an "Invalid Handle starting at wow64!Wow64NotifyDebugger+0x000000000000001d."...

Micropoint Proactive Denfense Mp110013 <= 1.3.10123.0 Local Privilege

Exploit for windows platform in category local exploits ============================================================================================ Micropoint Proactive Denfense Mp110013.sys = 1.3.10123.0 Local Privilege Escalation Exploit...

Regarding &quot;SMB Invalid Handle Value&quot; - MS06-030. Vulnerability not fixed.

Hi, Just to confirm that Microsoft has not fixed the NtClose/ZwClose DeadLock vulnerability. The bulletin MS06-030 addressed this flaw as "SMB Invalid Handle Value" which is just an euphemism under my point of view. The code added to mrxsmb.sys is just a wrapper in order to avoid the "Invalid...

CVE-2006-2374

The Server Message Block SMB driver MRXSMB.SYS in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 and earlier allows local users to cause a denial of service hang by calling the MrxSmbCscIoctlCloseForCopyChunk with the file handle of the shadow device, which results in a deadlock,...