CVE-2019-6207

CVE-2019-6207 is an out-of-bounds read in kernel memory handling that could let a malicious app determine kernel memory layout. Apple fixes: iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2, via/improved input validation. Public documentation shows affected components (Kernel and related su...

CVE-2019-6207

An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to determine kernel memory layout...

Product update: Virtuozzo 7.0 Update 12 Hotfix 1 (7.0.12-338)

The Hotfix 1 for Virtuozzo 7.0 Update 12 provides stability and usability bug fixes. It also introduces a new kernel 3.10.0-1062.4.2.vz7.116.7. Vulnerability id: PSBM-100079, PSBM-100093 VMs with inconsistent bitmaps could not be migrated. Vulnerability id: PSBM-100158 Kernel memory leak on VM st...

Apple macOS Catalina Core Memory Corruption Vulnerability

Apple macOS Catalina is a specialized operating system developed for Mac computers. A memory corruption vulnerability exists in the Apple macOS Catalina kernel, which can be exploited by an attacker to submit a special request to execute arbitrary code in kernel context...

Apple macOS Catalina Kernel Memory Corruption Vulnerability

Apple macOS Catalina is a specialized operating system developed for Mac computers. A memory corruption vulnerability exists in the Apple macOS Catalina kernel, which allows local attackers to exploit the vulnerability by submitting a special request to execute arbitrary code in the kernel contex...

CVE-2019-19535

A flaw was found in the Linux kernel’s implementation of the Peak CANBUS USB device driver. An information leak caused by the device could allow a local attacker to possibly gain private information from uninitialized kernel memory...

kernel: Information leak in cdrom_ioctl_drive_status

An information leak was discovered in the Linux kernel in cdromioctldrivestatus function in drivers/cdrom/cdrom.c that could be used by local attackers to read kernel memory at certain location...

kernel: use-after-free Read in vhost_transport_send_pkt

A flaw was found where an attacker may be able to have an uncontrolled read to kernel-memory from within a vm guest. A race condition between connect and close function may allow an attacker using the AFVSOCK protocol to gather a 4 byte information leak or possibly impersonate AFVSOCK messages...

kernel: Use-after-free due to race condition in AF_PACKET implementation

A use-after-free flaw can occur in the Linux kernel due to a race condition between packetdobind and packetnotifier functions called for an AFPACKET socket. An unprivileged, local user could use this flaw to induce kernel memory corruption on the system, leading to an unresponsive system or to a...

kernel: Out-of-bounds write via userland offsets in ebt_entry struct in netfilter/ebtables.c

A flaw was found in the Linux kernel's implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory...

kernel: Exploitable memory corruption due to UFO to non-UFO path switch

An exploitable memory corruption flaw was found in the Linux kernel. The append path can be erroneously switched from UFO to non-UFO in ipufoappenddata when building an UFO packet with MSGMORE option. If unprivileged user namespaces are available, this flaw can be exploited to gain root privilege...

kernel: Memory corruption due to incorrect socket cloning

A possible memory corruption due to a type confusion was found in the Linux kernel in the skclonelock function in the net/core/sock.c. The possibility of local escalation of privileges cannot be fully ruled out for a local unprivileged attacker...

CVE-2011-2480

Information Disclosure vulnerability in the 802.11 stack, as used in FreeBSD before 8.2 and NetBSD when using certain non-x86 architectures. A signedness error in the IEEE80211IOCCHANINFO ioctl allows a local unprivileged user to cause the kernel to copy large amounts of kernel memory back to the...

CVE-2011-2480

Information Disclosure vulnerability in the 802.11 stack, as used in FreeBSD before 8.2 and NetBSD when using certain non-x86 architectures. A signedness error in the IEEE80211IOCCHANINFO ioctl allows a local unprivileged user to cause the kernel to copy large amounts of kernel memory back to the...

Information disclosure

Information Disclosure vulnerability in the 802.11 stack, as used in FreeBSD before 8.2 and NetBSD when using certain non-x86 architectures. A signedness error in the IEEE80211IOCCHANINFO ioctl allows a local unprivileged user to cause the kernel to copy large amounts of kernel memory back to the...

CVE-2011-2480

CVE-2011-2480 is an Information Disclosure vulnerability in the 802.11 stack reported for FreeBSD before 8.2 and NetBSD on certain non-x86 architectures. The flaw is a signedness error in the IEEE80211_IOC_CHANINFO ioctl that allows a local unprivileged user to cause the kernel to copy large amou...

CVE-2011-2480

Information Disclosure vulnerability in the 802.11 stack, as used in FreeBSD before 8.2 and NetBSD when using certain non-x86 architectures. A signedness error in the IEEE80211IOCCHANINFO ioctl allows a local unprivileged user to cause the kernel to copy large amounts of kernel memory back to the...

Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2019-089)

According to the versions of the parallels-server-bm-release / vzkernel / etc packages installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - hw: Machine Check Error on Page Size Change IFU - hw: Intel GPU blitter manipulation can allow for...

hw: Intel GPU blitter manipulation can allow for arbitrary kernel memory write

A flaw was found in the Intel graphics hardware GPU, where a local attacker with the ability to issue commands to the GPU could inadvertently lead to memory corruption and possible privilege escalation. The attacker could use the GPU blitter to perform privilege MMIO operations, not limited to th...

CVE-2019-19055

A memory leak in the nl80211getftmresponderstats function in net/wireless/nl80211.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service memory consumption by triggering nl80211hdrput failures, aka CID-1399c59fa929. NOTE: third parties dispute the relevance of this...