PT-2022-21503 · Apple · Ios +4

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 15.6 iPadOS versions prior to 15.6 tvOS versions prior to 15.6 macOS Monterey versions prior to 12.5 Description: The issue allows an app to potentially disclose kernel memory due to inadequate memory handling...

PT-2022-21493 · Apple · Macos Monterey +5

Name of the Vulnerable Software and Affected Versions: watchOS versions prior to 8.7 tvOS versions prior to 15.6 iOS versions prior to 15.6 iPadOS versions prior to 15.6 macOS Monterey versions prior to 12.5 Description: An out-of-bounds read issue was addressed with improved bounds checking, whi...

PT-2022-21511 · Apple · Ios +3

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 12.5 tvOS versions prior to 15.6 iOS versions prior to 15.6 iPadOS versions prior to 15.6 Description: The issue allows an app to potentially cause unexpected system termination or write kernel memory due to inadequate...

DEBIAN-CVE-2021-33655

When sending malicous data to kernel by ioctl cmd FBIOPUTVSCREENINFO,kernel will write memory out of bounds...

UBUNTU-CVE-2021-33656

When setting font with malicous data by ioctl cmd PIOFONT,kernel will write memory out of bounds...

UBUNTU-CVE-2021-33655

When sending malicous data to kernel by ioctl cmd FBIOPUTVSCREENINFO,kernel will write memory out of bounds...

The vulnerability of microprogramming software for Intel and AMD processors allows attackers to extract sensitive information from the kernel’s memory or launch attacks on host systems from virtual machines.

The vulnerability of microprogramming software for Intel and AMD processors lies in errors during the processing of the “ret” instruction, which extracts an address to move from the stack. Exploiting this vulnerability can allow attackers to extract protected information from the kernel’s memory ...

The vulnerability of microprogramming software for Intel and AMD processors allows attackers to extract sensitive information from the kernel’s memory or launch attacks on host systems from virtual machines.

The vulnerability of microprogramming software for Intel and AMD processors lies in errors during the processing of the “ret” instruction, which retrieves an address for transitioning from the stack. Exploiting this vulnerability can allow attackers to extract protected information from the...

AZL-10137 CVE-2021-4135 affecting package kernel for versions less than 5.15.67.1-4

A memory leak vulnerability was found in the Linux kernel's eBPF for the Simulated networking device driver in the way user uses BPF for the device such that function nsimmapallocelem being called. A local user could use this flaw to get unauthorized access to some data...

CVE-2022-20238

'remappfnrange' here may map out of size kernel memory for example, may map the kernel area, and because the 'vma-vmpageprot' can also be controlled by userspace, so userspace may map the kernel area to be writable, which is easy to be exploitedProduct: AndroidVersions: Android SoCAndroid ID:...

CVE-2022-20238

'remappfnrange' here may map out of size kernel memory for example, may map the kernel area, and because the 'vma-vmpageprot' can also be controlled by userspace, so userspace may map the kernel area to be writable, which is easy to be exploitedProduct: AndroidVersions: Android SoCAndroid ID:...

Design/Logic Flaw

'remappfnrange' here may map out of size kernel memory for example, may map the kernel area, and because the 'vma-vmpageprot' can also be controlled by userspace, so userspace may map the kernel area to be writable, which is easy to be exploitedProduct: AndroidVersions: Android SoCAndroid ID:...

CVE-2022-20238

'remappfnrange' here may map out of size kernel memory for example, may map the kernel area, and because the 'vma-vmpageprot' can also be controlled by userspace, so userspace may map the kernel area to be writable, which is easy to be exploitedProduct: AndroidVersions: Android SoCAndroid ID:...

CVE-2021-39715

In showregs of process.c, there is a possible leak of kernel memory and addresses due to log information disclosure. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

Qualcomm 芯片资源管理错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc. and are often manufactured on the surface of semiconductor wafers. A resource management error vulnerability exists in Qualcomm chips that stems...

Oracle Linux 8 : kernel (ELSA-2022-5316)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-5316 advisory. - debug: lockdown kgdb Orabug: 34270802 CVE-2022-21499 - esp: limit skbpagefragrefill use to a single page Sabrina Dubroca 2062114 CVE-2022-27666 - esp...

Ubuntu 16.04 ESM : Linux kernel vulnerabilities (USN-5500-1)

The remote Ubuntu 16.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5500-1 advisory. Eric Biederman discovered that the cgroup process migration implementation in the Linux kernel did not perform permission checks correctly in some...

ASB-A-233154555

'remappfnrange' here may map out of size kernel memory for example, may map the kernel area, and because the 'vma-vmpageprot' can also be controlled by userspace, so userspace may map the kernel area to be writable, which is easy to be exploited...

ASB-A-216825460

In USB driver, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation...

OESA-2022-1727 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: A use-after-free flaw was found in the Linux kernel’s sound subsystem in the way a user triggers concurrent calls of PCM hwparams. The hwfree ioctls or similar race condition happens inside ALSA PCM for other ioctls. This flaw...