CVE-2020-8835

In the Linux kernel 5.5.0 and newer, the bpf verifier kernel/bpf/verifier.c did not properly restrict the register bounds for 32-bit operations, leading to out-of-bounds reads and writes in kernel memory. The vulnerability also affects the Linux 5.4 stable series, starting with v5.4.7, as the...

Apple macOS Catalina Bluetooth component buffer overflow vulnerability (CNVD-2020-22473)

Apple macOS Catalina is a specialized operating system developed by Apple for Mac computers.Bluetooth is one of the Bluetooth components. A buffer overflow vulnerability exists in the Bluetooth component of Apple macOS Catalina versions prior to 10.15.4. A local attacker could exploit this...

Apple macOS Catalina Bluetooth component buffer overflow vulnerability (CNVD-2020-23213)

Apple macOS Catalina is a proprietary operating system developed by Apple Inc. for Mac computers.Bluetooth is one of the Bluetooth components. A buffer overflow vulnerability in the Bluetooth component in Apple macOS Catalina versions prior to 10.15.4 can be exploited by a local attacker to cause...

Apple macOS Catalina Bluetooth component buffer overflow vulnerability (CNVD-2020-23212)

Apple macOS Catalina is a specialized operating system developed by Apple for Mac computers.Bluetooth is one of the Bluetooth components. A buffer overflow vulnerability in the Bluetooth component in Apple macOS Catalina versions prior to 10.15.4 can be exploited by a local attacker to cause an...

FreeBSD : FreeBSD -- Kernel memory disclosure with nested jails (6b90acba-6a0a-11ea-92ab-00163e433440)

A missing NUL-termination check for the jailset2 configration option 'osrelease' may return more bytes when reading the jail configuration back with jailget2 than were originally set. Impact : For jails with a non-default setting of children.max 0 'nested jails' a superuser inside a jail can crea...

FreeBSD-SA-20:08.jail

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-20:08.jail Security Advisory The FreeBSD Project Topic: Kernel memory disclosure with nested jails Category: core Module: kern Announced: 2020-03-19 Credits:...

FreeBSD -- Kernel memory disclosure with nested jails

Problem Description: A missing NUL-termination check for the jailset2 configration option "osrelease" may return more bytes when reading the jail configuration back with jailget2 than were originally set. Impact: For jails with a non-default setting of children.max 0 "nested jails" a superuser...

PT-2020-4971 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.5.11 Description: The issue is related to the kmem cache alloc bulk function in the Linux kernel, specifically in the mm/slub.c file. It is associated with errors in executing multithreaded tasks, known as a...

kernel: rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel lacks a certain upper-bound check, leading to a buffer overflow

A flaw was found in the Linux kernel's implementation of the RealTek wireless drivers WiFi-direct or WiFi peer-to-peer driver implementation. When the RealTek wireless networking hardware is configured to accept WiFi-Direct or WiFi P2P connections, an attacker within the wireless network...

kernel: rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel lacks a certain upper-bound check, leading to a buffer overflow

A flaw was found in the Linux kernel's implementation of the RealTek wireless drivers WiFi-direct or WiFi peer-to-peer driver implementation. When the RealTek wireless networking hardware is configured to accept WiFi-Direct or WiFi P2P connections, an attacker within the wireless network...

Microsoft Windows Network Driver Interface Specification Information Disclosure Vulnerability (CNVD-2020-28440)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. The Windows Network Driver Interface Specification NDIS is one of the network driver...

kernel: memory leak in register_queue_kobjects() in net/core/net-sysfs.c leads to denial of service

A flaw that allowed an attacker to leak kernel memory was found in the network subsystem where an attacker with permissions to create tun/tap devices can create a denial of service and panic the system...

CVE-2020-3843

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.4.7, watchOS 5.3.7. A remote attacker may be able to cause unexpected system termination or corrupt kernel memory...

CVE-2020-3843

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.4.7, watchOS 5.3.7. A remote attacker may be able to cause unexpected system termination or corrupt kernel memory...

CVE-2020-3836

An access issue was addressed with improved memory management. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. A malicious application may be able to determine kernel memory layout...

CVE-2020-3836

An access issue was addressed with improved memory management. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. A malicious application may be able to determine kernel memory layout...

Memory corruption

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.4.7, watchOS 5.3.7. A remote attacker may be able to cause unexpected system termination or corrupt kernel memory...

Memory corruption

An access issue was addressed with improved memory management. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. A malicious application may be able to determine kernel memory layout...

CVE-2020-3843

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.4.7, watchOS 5.3.7. A remote attacker may be able to cause unexpected system termination or corrupt kernel memory...

CVE-2020-3836

CVE-2020-3836 is an Apple kernel memory-management issue disclosed as an access problem that could allow a malicious, local app to determine the kernel memory layout. The vulnerability affects multiple Apple OSes: iOS 13.3.1, iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, and watchOS 6.1.2. ...