1141 matches found
CVE-2025-46585
Out-of-bounds array read/write vulnerability in the kernel module Impact: Successful exploitation of this vulnerability may affect availability...
PT-2025-19972 · Huawei · Harmonyos
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue is related to an out-of-bounds array read/write vulnerability in the kernel module. Successful exploitation of this vulnerability may affect availability. Recommendations: At the...
Huawei HarmonyOS 安全漏洞
Huawei HarmonyOS is an operating system from the Chinese company Huawei. Huawei HarmonyOS suffers from an out-of-bounds read/write vulnerability. The vulnerability stems from the kernel module failing to properly check array boundaries when processing certain data. An attacker can exploit this...
CVE-2023-53140
In the Linux kernel, the following vulnerability has been resolved: scsi: core: Remove the /proc/scsi/$procname directory earlier Remove the /proc/scsi/$procname directory earlier to fix a race condition between unloading and reloading kernel modules. This fixes a bug introduced in 2009 by commit...
CVE-2023-53140 scsi: core: Remove the /proc/scsi/${proc_name} directory earlier
In the Linux kernel, the following vulnerability has been resolved: scsi: core: Remove the /proc/scsi/$procname directory earlier Remove the /proc/scsi/$procname directory earlier to fix a race condition between unloading and reloading kernel modules. This fixes a bug introduced in 2009 by commit...
The vulnerability of the `btrfs_log_new_name()` function in the `fs/btrfs/tree-log.c` module of the file system support module for Linux’s kernel allows a hacker to cause a service failure.
The vulnerability of the btrfslognewname function in the fs/btrfs/tree-log.c module of the btrfs file system support module in Linux systems is related to improper control of resource identifiers “resource injection”. Exploiting this vulnerability could allow an attacker to trigger a service...
The vulnerability in the kernel module kcsan/debugfs.c of the Linux operating system allows a hacker to cause a service failure.
The vulnerability in the kernel/kcsan/debugfs.c module of the Linux operating system is related to insufficient blocking of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...
DEBIAN-CVE-2025-22037
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix null pointer dereference in allocpreauthhash The Client send malformed smb2 negotiate request. ksmbd return error response. Subsequently, the client can send smb2 session setup even thought conn-preauthinfo is not...
CVE-2025-23135 RISC-V: KVM: Teardown riscv specific bits after kvm_exit
In the Linux kernel, the following vulnerability has been resolved: RISC-V: KVM: Teardown riscv specific bits after kvmexit During a module removal, kvmexit invokes arch specific disable call which disables AIA. However, we invoke aiaexit before kvmexit resulting in the following warning. KVM...
The vulnerability of the function cm3_helper_translate_curve_toHW_format() in the AMD Display driver’s kernel module /drivers/gpu/drm/amd/display/dc/dcn30/dcn30_cm_common.c, which can be exploited by attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the cm3helpertranslatecurvetohwformat function in the AMD Display driver’s kernel module /drivers/gpu/drm/amd/display/dc/dcn30/dcn30cmcommon.c in the Linux kernel is related to the copying of buffers without checking their size a classic buffer overflow attack. Exploiting thi...
PT-2025-16332
The anti-theft protection mechanism can be bypassed by attackers due to weak response generation algorithms for the head unit. It is possible to reveal all 32 corresponding responses by sniffing CAN traffic or by pre-calculating the values, which allow to bypass the protection. First identified o...
The vulnerability of the smb2_send_interim_resp() function in the fs/ksmbd/smb2pdu.c module of the Linux file system support module allows a attacker to compromise the integrity of protected information or cause service failures.
The vulnerability of the smb2sendinterimresp function in the fs/ksmbd/smb2pdu.c module of the Linux file system support module is related to the use of the NULL pointer. Exploiting this vulnerability could allow an attacker to compromise the integrity of protected information or cause service...
Vulnerability of the efx_ef10pci_sriov_disable() function in the drivers/net/ethernet/sfc/ef10_sriov.c module – a driver for supporting Solarflare Ethernet network adapters in Linux kernel. This vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the efxef10pcisriovdisable function in the drivers/net/ethernet/sfc/ef10sriov.c module – the driver for Solarflare Ethernet network adapters in Linux operating systems – is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an...
CVE-2025-31173
Memory write permission bypass vulnerability in the kernel futex module Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2025-31173
Memory write permission bypass vulnerability in the kernel futex module Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2025-31172
Memory write permission bypass vulnerability in the kernel futex module Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2025-31172
Memory write permission bypass vulnerability in the kernel futex module Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2025-31172
Memory write permission bypass vulnerability in the kernel futex module Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2025-31171
CVE-2025-31171 describes a file read permission bypass in the kernel file system module, affecting Huawei HarmonyOS. The vulnerability allows bypass of read permissions within the kernel file system component, with potential impact to service confidentiality (local exploitation; low attack comple...
The vulnerabilities of the functions dbAdjTree() and dbFindLeaf() in the kernel module fs/jfs/jfs_dmap.c of the Linux operating system allow a hacker to cause a service failure.
The vulnerability of the functions dbAdjTree and dbFindLeaf in the kernel module fs/jfs/jfsdmap.c of the Linux operating system is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...