107 matches found
CVE-2023-53059
In the Linux kernel, the following vulnerability has been resolved: platform/chrome: crosecchardev: fix kernel data leak from ioctl It is possible to peep kernel page's data by providing larger insize in struct croseccommand1 when invoking EC host commands. Fix it by using zeroed memory. 1:...
PT-2025-20335
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version Description A NULL pointer dereference issue has been identified in the Linux kernel, specifically in the fs/ntfs3 module. This issue occurs when a user executes an ioctl command to clear the...
CVE-2024-23377
Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver...
CVE-2024-23377
CVE-2024-23377 describes memory corruption when a user-space IOCTL is invoked on Qualcomm EVA driver and the user tampers with the original packet size after system properties have been sent. Connected documents corroborate that the issue affects Qualcomm Snapdragon Compute EVA driver and is expo...
CVE-2024-23377 Use of Out-of-range Pointer Offset in ComputerVision
Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver...
CVE-2024-23377 Use of Out-of-range Pointer Offset in ComputerVision
Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver...
AlmaLinux 9 : kernel-rt (ALSA-2023:2148)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:2148 advisory. - Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage. CVE-2021-26341 - When sending...
SUSE SLES15 Security Update : kernel (Live Patch 1 for SLE 15 SP4) (SUSE-SU-2022:4035-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4035-1 advisory. - When sending malicous data to kernel by ioctl cmd FBIOPUTVSCREENINFO,kernel will write memory out of bounds. CVE-2021-33655 - A...
Ubuntu 18.04 LTS : Linux kernel (AWS) vulnerability (USN-5591-4)
The remote Ubuntu 18.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-5591-4 advisory. It was discovered that the virtual terminal driver in the Linux kernel did not properly handle VGA console font changes, leading to an out-of-bounds write. A loca...
OESA-2022-1802 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: No description is available for this CVE.CVE-2022-1508 When sending malicous data to kernel by ioctl cmd FBIOPUTVSCREENINFO,kernel will write memory out of bounds.CVE-2021-33655...
CVE-2021-33656
When setting font with malicous data by ioctl cmd PIOFONT,kernel will write memory out of bounds...
CVE-2021-33655
When sending malicous data to kernel by ioctl cmd FBIOPUTVSCREENINFO,kernel will write memory out of bounds...
CVE-2021-33655
When sending malicous data to kernel by ioctl cmd FBIOPUTVSCREENINFO,kernel will write memory out of bounds...
CVE-2021-33656
When setting font with malicous data by ioctl cmd PIOFONT,kernel will write memory out of bounds...
CVE-2021-33655
When sending malicous data to kernel by ioctl cmd FBIOPUTVSCREENINFO,kernel will write memory out of bounds...
CVE-2021-33655
When sending malicous data to kernel by ioctl cmd FBIOPUTVSCREENINFO,kernel will write memory out of bounds...
Design/Logic Flaw
An issue was discovered in certain Verbatim drives through 2022-03-31. Due to an insecure design, they can be unlocked by an attacker who can then gain unauthorized access to the stored data. The attacker can simply use an undocumented IOCTL command that retrieves the correct password. This affec...
CVE-2020-11240
Memory corruption due to ioctl command size was incorrectly set to the size of a pointer and not enough storage is allocated for the copy of the user argument in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,...
Memory corruption
Memory corruption due to ioctl command size was incorrectly set to the size of a pointer and not enough storage is allocated for the copy of the user argument in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,...
CVE-2020-11240
Memory corruption due to ioctl command size was incorrectly set to the size of a pointer and not enough storage is allocated for the copy of the user argument in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,...