The vulnerability of the LightNVM subsystem in the Linux operating system allows a hacker to increase their privileges and execute arbitrary code.

The vulnerability of the LightNVM subsystem in the Linux operating system is related to the lack of checks on the size of data received from the user during copying of these data into the kernel’s memory. Exploiting this vulnerability can allow an attacker to enhance their privileges and execute...

CLSA-2023-1682605601 Fix of 53 CVEs

CVE-2022-1198 - drivers: hamradio: 6pack: fix UAF bug caused by modtimer Bionic update: upstream stable patchset 2022-03-04 LP: 1963717 // CVE-2020-36516 - ipv4: avoid using shared IP generator for connected sockets CVE-2022-36879 - xfrm: xfrmpolicy: fix a possible double xfrmpolsput in...

USN-6040-1: Linux kernel (HWE) vulnerabilities

It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-1281 It was discovered that the OverlayFS...

USN-6000-1 linux-bluefield vulnerabilities

It was discovered that the Upper Level Protocol ULP subsystem in the Linux kernel did not properly handle sockets entering the LISTEN state in certain protocols, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execut...

SUSE CVE-2023-0198

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where improper restriction of operations within the bounds of a memory buffer can lead to denial of service, information disclosure, and data tampering...

UBUNTU-CVE-2023-0198

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where improper restriction of operations within the bounds of a memory buffer can lead to denial of service, information disclosure, and data tampering...

DEBIAN-CVE-2022-42432

This vulnerability allows local attackers to disclose sensitive information on affected installations of the Linux Kernel 6.0-rc2. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within...

PT-2023-21636 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 Description: A buffer overflow issue was addressed with improved memory handling, which may allow an app to cause unexpected system termination or write kernel memory. Recommendations: For versions prior to 13.3,...

Apple macOS Monterey 缓冲区错误漏洞

Apple macOS Monterey is the 18th major release of Apple's macOS for the Macintosh desktop operating system. Apple macOS Monterey suffers from a buffer error vulnerability. An attacker could exploit this vulnerability to cause the system to unexpectedly terminate or corrupt kernel memory...

Apple macOS Monterey 资源管理错误漏洞

Apple macOS Monterey is the 18th major release of Apple's macOS for the Macintosh desktop operating system. Apple macOS Monterey suffers from a resource management error vulnerability. An attacker could exploit this vulnerability to cause the system to unexpectedly terminate or corrupt kernel...

PT-2023-21448 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 11.7.5 macOS versions prior to 12.6.4 macOS versions prior to 13.3 Description: The issue was addressed with improved memory handling. A remote user may be able to cause unexpected system termination or corrupt kernel...

PT-2023-23746 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 Description: A buffer overflow issue was addressed with improved memory handling. This issue may allow an app to cause unexpected system termination or write kernel memory. Recommendations: For versions prior to...

PT-2023-21626 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 Description: An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. An app may be able to disclose kernel memory. Recommendations: For...

PT-2023-21635 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 Description: A buffer overflow issue was addressed with improved memory handling. This issue may allow an app to cause unexpected system termination or write kernel memory. Recommendations: For versions prior to...

PT-2023-21461 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 Description: A buffer overflow issue was addressed with improved memory handling, which may allow an app to cause unexpected system termination or write kernel memory. Recommendations: For versions prior to 13.3,...

PT-2023-21631 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 Description: A buffer overflow issue was addressed with improved memory handling. This issue may allow an app to cause unexpected system termination or write kernel memory. Recommendations: For versions prior to...

PT-2023-21634 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 Description: A buffer overflow issue was addressed with improved memory handling, which may allow an app to cause unexpected system termination or write kernel memory. Recommendations: For versions prior to 13.3,...

PT-2023-21433 · Apple · Macos Monterey +4

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 macOS Monterey versions prior to 12.6.4 macOS Big Sur versions prior to 11.7.5 iOS versions prior to 15.7.4 iPadOS versions prior to 15.7.4 Description: An out-of-bounds write issue was addressed with improved inp...

Apple iOS 和 iPadOS 安全漏洞

Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for the iPad tablet computer. A security vulnerability exists in Apple iOS and iPadOS that originates from an application that may leak kern...

PT-2023-23790 · Apple · Macos Ventura +1

Name of the Vulnerable Software and Affected Versions: macOS Ventura versions prior to 13.3 Description: The issue was addressed with improved bounds checks. An app may be able to cause unexpected system termination or write kernel memory. Recommendations: For versions prior to 13.3, update to...