6620 matches found
PUB-A-187851056
In dsipaneldebugfsreadcmdset of dsipanel.c, there is a possible disclosure of freed kernel heap memory due to a use after free. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...
kernel: use-after-free in show_numa_stats function
A flaw was found in the Linux kernel’s implementation of displaying NUMA statistics, where displaying the scheduler statistics could trigger a use-after-free in shownumastats and display the kernel memory to userspace. The highest threat from this vulnerability is to system availability...
PT-2021-13713 · Qualcomm · Qualcomm Snapdragon
Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: The issue is related to improper validation of kernel buffer address while copying information back to user buffer, which can lead to kernel memory information exposure to user...
The vulnerability in the `timer_create` system call handling mechanism of Linux kernels allows a malicious actor to gain access to kernel memory from user space or cause a system crash.
The vulnerability of the timercreate function in Linux kernel-based system calls involves reading memory beyond its permitted limits. Exploiting this vulnerability can allow an attacker to gain access to kernel memory from user space or cause a system failure...
PT-2021-13714 · Qualcomm · Qualcomm Gpu Driver
Name of the Vulnerable Software and Affected Versions: Qualcomm npu driver affected versions not specified Description: The issue is related to improper validation of kernel buffer address while copying information back to user buffer, which can lead to kernel memory information exposure to user...
CVE-2021-30845
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.6. A local user may be able to read kernel memory...
CVE-2021-30845
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.6. A local user may be able to read kernel memory...
CVE-2021-30845
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.6. A local user may be able to read kernel memory...
Cross site scripting
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.6. A local user may be able to read kernel memory...
CVE-2021-30845
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.6. A local user may be able to read kernel memory...
An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel before 5.14.6. Local attackers able to access the Aspeed LPC control interface could overwrite memory in the kernel and potentially execute privileges aka CID-b49a0e69a7b1. This occurs because a certain comparison uses values that are not memory sizes.
...
CVE-2021-34866
A vulnerability was found in Linux Kernel, where a type confusion problem in checkmapfunccompatibility may lead to free arbitrary kernel memory. Mitigation The default Red Hat Enterprise Linux kernel prevents unprivileged users from being able to use eBPF by the kernel.unprivilegedbpfdisabled...
OESA-2021-1379 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with large shared memory segment counts which could lead to resource exhaustion and DoS.CVE-2021-3669 CVE-2021-3764 CVE-2021-3744...
kernel: powerpc: KVM guest OS users can cause host OS memory corruption
A flaw was found on the Linux kernel. On the PowerPC platform, the KVM guest allows the OS users to cause host OS memory corruption via rtasargs.nargs. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...
DEBIAN-CVE-2021-42252
An issue was discovered in aspeedlpcctrlmmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel before 5.14.6. Local attackers able to access the Aspeed LPC control interface could overwrite memory in the kernel and potentially execute privileges, aka CID-b49a0e69a7b1. This occurs becaus...
CVE-2021-42252
The CVE-2021-42252 issue affects the Linux kernel up to version 5.14.5 in aspeed_lpc_ctrl_mmap (drivers/soc/aspeed/aspeed-lpc-ctrl.c). A memory overwrite can occur via the Aspeed LPC control interface when a comparison uses non-memory-size values, enabling a local attacker to potentially escalate...
The vulnerability of the Linux operating system’s kernel, related to information disclosure through discrepancies, allows attackers to read a portion of the kernel’s memory.
The vulnerability of the Linux operating system’s kernel is related to the exposure of information through incompatibility. Exploiting this vulnerability allows an attacker to read a portion of the kernel’s memory...
Qualcomm 芯片输入验证错误漏洞
A Qualcomm chip is a chip from Qualcomm Incorporated USA. a way of miniaturizing circuits mainly semiconductor devices, but also passive components, etc. and is manufactured from time to time on the surface of semiconductor wafers. An input validation error vulnerability exists in multiple Qualco...
Qualcomm 芯片 输入验证错误漏洞
A Qualcomm chip is a chip from Qualcomm Incorporated USA. a way of miniaturizing circuits mainly semiconductor devices, but also passive components, etc. and is manufactured from time to time on the surface of semiconductor wafers. An input validation error vulnerability exists in multiple Qualco...
loop_rw_iter in fs/io_uring.c in the Linux kernel 5.10 through 5.14.6 allows local users to gain privileges by using IORING_OP_PROVIDE_BUFFERS to trigger a free of a kernel buffer as demonstrated by using /proc/<pid>/maps for exploitation.
...