Linux kernel 缓冲区错误漏洞

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A buffer over-read vulnerability exists in the fbcon code in Linux kernel versions prior to 5.8.15. A local attacker...

Microsoft Windows/Windows Server Information Disclosure Vulnerability (CNVD-2021-63302)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation USA.Microsoft Windows is a set of operating systems for personal devices.Microsoft Windows Server is a set of server operating systems. Microsoft Windows/Windows Server Win32k has an information disclosure...

Microsoft Windows/Windows Server Information Disclosure Vulnerability

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation USA.Microsoft Windows is a set of operating systems for personal devices.Microsoft Windows Server is a set of server operating systems. An information disclosure vulnerability exists in the Microsoft...

About the security content of Security Update 2020-006 High Sierra, Security Update 2020-006 Mojave - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

PT-2020-11851 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 11.0.1 Description: A logic issue was addressed with improved state management, allowing a malicious application to potentially determine kernel memory layout. Recommendations: For versions prior to 11.0.1, update to...

PT-2020-20904 · Apple · Macos Catalina +7

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 11.0.1 tvOS versions prior to 14.0 macOS Big Sur versions prior to 11.1 macOS Catalina versions prior to Security Update 2020-001 macOS Mojave versions prior to Security Update 2020-007 watchOS versions prior to 7.0 iO...

About the security content of Security Update 2020-006 High Sierra, Security Update 2020-006 Mojave

About the security content of Security Update 2020-006 High Sierra, Security Update 2020-006 Mojave This document describes the security content of Security Update 2020-006 High Sierra, Security Update 2020-006 Mojave. About Apple security updates For our customers' protection, Apple doesn't...

PT-2020-20910 · Apple · Ipados +4

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 11.0.1 iOS versions prior to 14.2 iPadOS versions prior to 14.2 tvOS versions prior to 14.2 watchOS versions prior to 7.1 Description: A logic issue was addressed with improved state management. A malicious application...

kernel: out-of-bounds write in mpol_parse_str function in mm/mempolicy.c

An out-of-bounds write flaw was found in the Linux kernel. An empty nodelist in mempolicy.c is mishandled durig mount option parsing leading to a stack-based out-of-bounds write. The highest threat from this vulnerability is to system availability...

kernel: information leak bug caused by a malicious USB device in the drivers/media/usb/ttusb-dec/ttusb_dec.c

An information leak flaw was found in the Linux kernel's USB digital video device driver. An attacker with a malicious USB device presenting itself as a 'Technotrend/Hauppauge USB DEC' device is able to issue commands to this specific device and leak kernel internal memory information. The highes...

kernel: information leak bug caused by a malicious USB device in the drivers/media/usb/ttusb-dec/ttusb_dec.c

An information leak flaw was found in the Linux kernel's USB digital video device driver. An attacker with a malicious USB device presenting itself as a 'Technotrend/Hauppauge USB DEC' device is able to issue commands to this specific device and leak kernel internal memory information. The highes...

Buffer Overflow Vulnerability in Multiple Apple Products (CNVD-2020-61634)

Apple iOS is an operating system developed for mobile devices.Apple tvOS is an operating system for smart TVs.Apple iPadOS is an operating system for iPad tablets.Apple iOS is an operating system for mobile devices.Apple tvOS is an operating system for smart TVs.Apple tvOS is an operating system...

Apple macOS Catalina buffer overflow vulnerability (CNVD-2020-60822)

Apple macOS Catalina is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS Catalina versions prior to 10.15.4, which stems from the possibility that a malicious application may be able to determine the kernel memory layout,...

VulnCheck KEV: CVE-2020-27950

Apple iOS, iPadOS, macOS, and watchOS contain a memory initialization vulnerability that may allow a malicious application to disclose kernel memory...

Apple macOS Catalina Bluetooth Memory Corruption Vulnerability

Apple OS X is a specialized operating system developed by Apple for Mac computers. A security vulnerability exists in OS X Bluetooth, which can be exploited by a local user to cause the system to unexpectedly terminate or read kernel memory. An attacker could exploit this vulnerability to cause t...

CVE-2019-8780

The issue was addressed with improved permissions logic. This issue is fixed in iOS 13.1 and iPadOS 13.1, tvOS 13. A malicious application may be able to determine kernel memory layout...

CVE-2019-8780

The issue was addressed with improved permissions logic. This issue is fixed in iOS 13.1 and iPadOS 13.1, tvOS 13. A malicious application may be able to determine kernel memory layout...

CVE-2019-8744

A memory corruption issue existed in the handling of IPv6 packets. This issue was addressed with improved memory management. This issue is fixed in macOS Catalina 10.15, tvOS 13, macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, watchOS 6, iOS 13. A malicious...

CVE-2019-8744

A memory corruption issue existed in the handling of IPv6 packets. This issue was addressed with improved memory management. This issue is fixed in macOS Catalina 10.15, tvOS 13, macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, watchOS 6, iOS 13. A malicious...

CVE-2019-8759

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, macOS Catalina 10.15. A local user may be able to cause unexpected system termination or read kernel memory...