6634 matches found
Information disclosure
Windows Kernel Memory Information Disclosure Vulnerability...
Important: kernel-livepatch-5.10.167-147.601
Issue Overview: A use-after-free vulnerability was found in nfs42sscopen in fs/nfs/nfs4file.c in the Linux kernel. This flaw allows an attacker to conduct a remote denial of service. CVE-2022-4379 In the Linux kernel through 6.3.1, a use-after-free in Netfilter nftables when processing batch...
kernel: netfilter: use-after-free in nf_tables when processing batch requests can lead to privilege escalation
A use-after-free vulnerability was found in the Netfilter subsystem of the Linux kernel when processing batch requests to update nftables configuration. This vulnerability can be abused to perform arbitrary reads and writes in kernel memory. A local user with CAPNETADMIN capability could use this...
Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6124-1)
The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6124-1 advisory. Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests,...
Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6122-1)
The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6122-1 advisory. Patryk Sondej and Piotr Krysiuk discovered that a race condition existed in the netfilter subsystem of the Linux kernel when processing batch requests,...
USN-6093-1: Linux kernel (BlueField) vulnerabilities
It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel did not properly perform filter deactivation in some situations. A local attacker could possibly use this to gain elevated privileges. Please note that with the fix for this CVE, kernel support for the...
Apple macOS Ventura 缓冲区错误漏洞
Apple macOS Ventura is a desktop operating system by Apple Inc. Apple macOS Ventura version 13.4 suffers from a buffer error vulnerability that originates in an application that could cause the system to unexpectedly terminate or read kernel memory...
PT-2023-23767 · Apple · Macos Ventura +5
Name of the Vulnerable Software and Affected Versions: iOS versions prior to 16.5 iPadOS versions prior to 16.5 watchOS versions prior to 9.5 tvOS versions prior to 16.5 macOS Ventura versions prior to 13.4 Description: The issue allows an app to potentially disclose kernel memory due to inadequa...
Apple tvOS 安全漏洞
Apple tvOS is a smart TV operating system from Apple. A security vulnerability exists in Apple tvOS version 16.5, which stems from an application that may leak kernel memory...
Apple iOS 和 iPadOS 缓冲区错误漏洞
Apple iOS and Apple iPadOS are both products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for the iPad tablet computer. A buffer error vulnerability exists in Apple iOS version 16.5 and iPadOS version 16.5, which arises from ...
USN-6084-1 linux-gcp-4.15, linux-oracle vulnerabilities
Jordy Zomer and Alexandra Sandulescu discovered that the Linux kernel did not properly implement speculative execution barriers in usercopy functions in certain situations. A local attacker could use this to expose sensitive information kernel memory. CVE-2023-0459 Xingyuan Mo discovered that the...
kernel: memory leak in l2cap_recv_acldata of the file net/bluetooth/l2cap_core.c
A memory leak flaw was found in the Linux kernel’s L2CAP bluetooth functionality. This issue occurs when a user generates malicious packets, triggering the l2caprecvacldata function. This flaw allows a local or bluetooth connection user to potentially crash the system...
kernel: race condition in xfrm_probe_algs can lead to OOB read/write
A race condition was found in the Linux kernel's IP framework for transforming packets XFRM subsystem when multiple calls to xfrmprobealgs occurred simultaneously. This flaw could allow a local attacker to potentially trigger an out-of-bounds write or leak kernel heap memory by performing an...
In the Linux kernel through 6.3.1 a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges. This occurs because anonymous sets are mishandled.
...
Use-After-Free
linux-lts is vulnerable to Use-After-Free. The vulnerability occurs within the netfilter 'nftables' when processing batch requests. This can be abused and used to perform arbitrary read and write operations on to the kernel memory...
kernel: race condition in xfrm_probe_algs can lead to OOB read/write
A race condition was found in the Linux kernel's IP framework for transforming packets XFRM subsystem when multiple calls to xfrmprobealgs occurred simultaneously. This flaw could allow a local attacker to potentially trigger an out-of-bounds write or leak kernel heap memory by performing an...
kernel: octeontx2-pf: Fix the use of GFP_KERNEL in atomic context on rt
In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: Fix the use of GFPKERNEL in atomic context on rt The commit 4af1b64f80fb "octeontx2-pf: Fix lmtst ID used in aura free" uses the get/putcpu to protect the usage of percpu pointer in -aurafreeptr callback, but it als...
kernel: octeontx2-pf: Avoid use of GFP_KERNEL in atomic context
In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: Avoid use of GFPKERNEL in atomic context Using GFPKERNEL in preemption disable context, causing below warning when CONFIGDEBUGATOMICSLEEP is enabled. 32.542271 BUG: sleeping function called from invalid context at...
kernel: race condition in xfrm_probe_algs can lead to OOB read/write
A race condition was found in the Linux kernel's IP framework for transforming packets XFRM subsystem when multiple calls to xfrmprobealgs occurred simultaneously. This flaw could allow a local attacker to potentially trigger an out-of-bounds write or leak kernel heap memory by performing an...
PT-2025-18619 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak issue has been identified in the Linux kernel. The problem occurs when the device add disk function fails, causing memory allocated in wbt enable default to not be...