1745 matches found
New Flaws in Qualcomm Chips Expose Millions of Android Devices to Hacking
A series of critical vulnerabilities have been discovered in Qualcomm chipsets that could allow hackers to compromise Android devices remotely just by sending malicious packets over-the-air with no user interaction. Discovered by security researchers from Tencent's Blade team, the vulnerabilities...
CVE-2019-2343
Out of bound read and information disclosure in firmware due to insufficient checking of an embedded structure that can be sent from a kernel driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon...
Design/Logic Flaw
Out of bound read and information disclosure in firmware due to insufficient checking of an embedded structure that can be sent from a kernel driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon...
CVE-2019-2343
Out of bound read and information disclosure in firmware due to insufficient checking of an embedded structure that can be sent from a kernel driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon...
The vulnerability in the implementation of the hwarc_probe handler in the operating system kernel of Astra Linux allows a hacker to trigger a service failure.
The vulnerability in the implementation of the hwarcprobe function in the kernel of the Astra Linux operating system’s driver module drivers/uwb/hwa-rc.ko is related to a memory release error. In the hwarcprobe function, memory is allocated to hwarc, but this memory is not released correctly when...
DEBIAN-CVE-2019-11085
Insufficient input validation in Kernel Mode Driver in IntelR i915 Graphics for Linux before version 5.0 may allow an authenticated user to potentially enable escalation of privilege via local access...
UBUNTU-CVE-2019-11085
Insufficient input validation in Kernel Mode Driver in IntelR i915 Graphics for Linux before version 5.0 may allow an authenticated user to potentially enable escalation of privilege via local access...
Privilege Escalation
Linux kernel is vulnerable to privilege escalation vulnerability. The vulnerability exists in the function sndrawmidiinputparams of the file rawmidi.c of the component MIDI Kernel Driver. An attacker could manipulate this with an unknown input which lead to a privilege escalation impacting...
Microsoft Windows 10 1809 - LUAFV Delayed Virtualization Cross Process Handle Duplication Exploit
Exploit for windows platform in category local exploits Windows: LUAFV Delayed Virtualization Cross Process Handle Duplication EoP Platform: Windows 10 1809 not tested earlier Class: Elevation of Privilege Security Boundary per Windows Security Service Criteria: User boundary Summary: The LUAFV...
Input validation
NVIDIA Jetson TX2 contains a vulnerability in the kernel driver where input/output control IOCTL handling for user mode requests could create a non-trusted pointer dereference, which may lead to information disclosure, denial of service, escalation of privileges, or code execution. The updates...
CVE-2018-6269
NVIDIA Jetson TX2 contains a vulnerability in the kernel driver where input/output control IOCTL handling for user mode requests could create a non-trusted pointer dereference, which may lead to information disclosure, denial of service, escalation of privileges, or code execution. The updates...
CVE-2018-6269
CVE-2018-6269 affects NVIDIA Jetson TX1/TX2 via the Tegra Linux Driver Package (L4T) kernel driver. The IOCTL handling for user-mode requests could dereference non-trusted pointers, potentially leading to information disclosure, denial of service, privilege escalation, or code execution. NVIDIA’s...
CVE-2018-6269
NVIDIA Jetson TX2 contains a vulnerability in the kernel driver where input/output control IOCTL handling for user mode requests could create a non-trusted pointer dereference, which may lead to information disclosure, denial of service, escalation of privileges, or code execution. The updates...
The vulnerability of the Kernel Mode Driver component of the Intel Graphics Driver allows a hacker to trigger a service failure.
The vulnerability of the Kernel Mode Driver component in Intel Graphics Drivers is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause a service failure...
CVE-2019-5673
NVIDIA Jetson TX2 contains a vulnerability in the kernel driver on all versions prior to R28.3 where the ARM System Memory Management Unit SMMU improperly checks for a fault condition, causing transactions to be discarded, which may lead to denial of service...
CVE-2019-5673
NVIDIA Jetson TX2 contains a vulnerability in the kernel driver on all versions prior to R28.3 where the ARM System Memory Management Unit SMMU improperly checks for a fault condition, causing transactions to be discarded, which may lead to denial of service...
Design/Logic Flaw
NVIDIA Jetson TX2 contains a vulnerability in the kernel driver on all versions prior to R28.3 where the ARM System Memory Management Unit SMMU improperly checks for a fault condition, causing transactions to be discarded, which may lead to denial of service...
CVE-2019-5673
CVE-2019-5673 affects NVIDIA Jetson TX1/TX2 running Linux for Tegra (pre-R28.3). The kernel driver’s ARM SMMU fault-condition check can discard transactions, potentially enabling local denial of service. NVIDIA’s NVIDIA Jetson TX1/TX2 Security Bulletin (April 2019) and the linked NVIDIA updates t...
CVE-2019-5673
NVIDIA Jetson TX2 contains a vulnerability in the kernel driver on all versions prior to R28.3 where the ARM System Memory Management Unit SMMU improperly checks for a fault condition, causing transactions to be discarded, which may lead to denial of service...
kernel: stack-based out-of-bounds write in ntfs_attr_find in the ntfs.ko
A flaw was found in ntfsattrfind in the ntfs.ko filesystem driver in the Linux kernel. This allows attackers to trigger a stack-based out-of-bounds write and cause a denial of service or possibly have unspecified other impact via a crafted ntfs filesystem image. Due to the nature of the flaw,...