CVE-2022-42854

CVE-2022-42854 affects Apple macOS Bluetooth security. A memory handling issue could allow an app to disclose kernel memory. This vulnerability is addressed in macOS Monterey 12.6.2 and macOS Ventura 13.1 (Apple security updates HT213532/HT213533). Remediation: update to the fixed macOS versions;...

PT-2022-27961 · Apple · Ios +1

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 16.2 iPadOS versions prior to 16.2 Description: The issue allows an app to potentially disclose kernel memory due to inadequate memory handling. This has been addressed with improved memory handling. Recommendations: For...

PT-2022-21577 · Apple · Ios

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 16 Description: An out-of-bounds read issue existed, leading to the disclosure of kernel memory. This issue was addressed with improved input validation. An app may be able to disclose kernel memory. Recommendations: For...

CVE-2022-42854

The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6.2, macOS Ventura 13.1. An app may be able to disclose kernel memory...

USN-5780-1: Linux kernel (OEM) vulnerabilities

It was discovered that a memory leak existed in the IPv6 implementation of the Linux kernel. A local attacker could use this to cause a denial of service memory exhaustion. CVE-2022-3524 It was discovered that the Bluetooth HCI implementation in the Linux kernel did not properly deallocate memory...

macOS 12.x < 12.6.2 Multiple Vulnerabilities (HT213533)

The remote host is running a version of macOS / Mac OS X that is 12.x prior to 12.6.2. It is, therefore, affected by multiple vulnerabilities: - The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6.2, macOS Ventura 13.1. An app may be able to disclose...

PT-2022-26629 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 12.6.2 macOS versions prior to 13.1 Description: The issue was addressed with improved memory handling. An app may be able to disclose kernel memory. Recommendations: For macOS versions prior to 12.6.2, update to macOS...

Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2022-10072)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-10072 advisory. - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883027 CVE-2022-4378 - proc: avoid integer type confusion i...

PT-2022-36432 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.225 Description: The issue is related to memory leaks in the napi get frags function. It was introduced in version v4.15 and fixed in version v5.4.225. The actual impact and attack plausibility have not yet...

PT-2022-36013 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.10 Description: The issue concerns a possible memory leak in the siox device add function. This problem was introduced in version v4.16 and is fixed in Linux Kernel version v6.0.10. The actual impact and...

PT-2022-36233 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.78 Description: A keyring memory leak occurs on mount failure. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to v5.15.78, update to...

Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2022-26385)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-26385 advisory. - A vulnerability was found in the pfkeyregister function in net/key/afkey.c in the Linux kernel. This flaw allows a local, unprivileged user to gain acces...

kernel: KVM: cmpxchg_gpte can write to pfns outside the userspace region

A flaw was found in KVM. When updating a guest's page table entry, vmpgoff was improperly used as the offset to get the page's pfn. As vaddr and vmpgoff are controllable by user-mode processes, this flaw allows unprivileged local users on the host to write outside the userspace region and...

PUB-A-234030265

In extractmetadata of dm-android-verity.c, there is a possible way to corrupt kernel memory due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

PUB-A-220738351

In TBD of TBD, there is a possible way to corrupt kernel memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2022-45887

An issue was discovered in the Linux kernel through 6.0.9. drivers/media/usb/ttusb-dec/ttusbdec.c has a memory leak because of the lack of a dvbfrontenddetach call...

CVE-2022-42896

There are use-after-free vulnerabilities in the Linux kernel's net/bluetooth/l2capcore.c's l2capconnect and l2capleconnectreq functions which may allow code execution and leaking kernel memory respectively remotely via Bluetooth. A remote attacker could execute code leaking kernel memory via...

CVE-2022-42896

There are use-after-free vulnerabilities in the Linux kernel's net/bluetooth/l2capcore.c's l2capconnect and l2capleconnectreq functions which may allow code execution and leaking kernel memory respectively remotely via Bluetooth. A remote attacker could execute code leaking kernel memory via...

Design/Logic Flaw

There are use-after-free vulnerabilities in the Linux kernel's net/bluetooth/l2capcore.c's l2capconnect and l2capleconnectreq functions which may allow code execution and leaking kernel memory respectively remotely via Bluetooth. A remote attacker could execute code leaking kernel memory via...

CVE-2022-42896

There are use-after-free vulnerabilities in the Linux kernel's net/bluetooth/l2capcore.c's l2capconnect and l2capleconnectreq functions which may allow code execution and leaking kernel memory respectively remotely via Bluetooth. A remote attacker could execute code leaking kernel memory via...