CVE-2024-53219 virtiofs: use pages instead of pointer for kernel direct IO

In the Linux kernel, the following vulnerability has been resolved: virtiofs: use pages instead of pointer for kernel direct IO When trying to insert a 10MB kernel module kept in a virtio-fs with cache disabled, the following warning was reported: ------------ cut here ------------ WARNING: CPU: ...

CVE-2024-53219 virtiofs: use pages instead of pointer for kernel direct IO

In the Linux kernel, the following vulnerability has been resolved: virtiofs: use pages instead of pointer for kernel direct IO When trying to insert a 10MB kernel module kept in a virtio-fs with cache disabled, the following warning was reported: ------------ cut here ------------ WARNING: CPU: ...

CVE-2024-53172 ubi: fastmap: Fix duplicate slab cache names while attaching

In the Linux kernel, the following vulnerability has been resolved: ubi: fastmap: Fix duplicate slab cache names while attaching Since commit 4c39529663b9 "slab: Warn on duplicate cache names when DEBUGVM=y", the duplicate slab cache names can be detected and a kernel WARNING is thrown out. In UB...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from improper request handling in the RDMA/rxe module, resulting in a memory leak...

kernel: nouveau: lock the client object tree.

A flaw was found in the nouveau module in the Linux kernel. A missing resource lock can cause a race condition and trigger a general protection fault, resulting in a denial of service...

The vulnerability of the vhost_vdpa_probe() function in the vhost-vdpa component of Linux kernel allows a attacker to cause a service failure.

The vulnerability of the vhostvdpaprobe function in the vhost-vdpa component of Linux kernel modules is related to double memory deallocation errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2024-6246

Wyze Cam v3 Realtek Wi-Fi Driver Heap-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Wyze Cam v3 IP cameras. Authentication is not required to exploit this vulnerability. The...

CVE-2024-6246

Wyze Cam v3 Realtek Wi-Fi Driver Heap-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Wyze Cam v3 IP cameras. Authentication is not required to exploit this vulnerability. The...

CVE-2024-6246 Wyze Cam v3 Realtek Wi-Fi Driver Heap-Based Buffer Overflow Remote Code Execution Vulnerability

Wyze Cam v3 Realtek Wi-Fi Driver Heap-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Wyze Cam v3 IP cameras. Authentication is not required to exploit this vulnerability. The...

CVE-2024-6246

CVE-2024-6246 affects Wyze Cam v3 via the Realtek Wi‑Fi kernel module. It is a heap-based buffer overflow caused by inadequate validation of user-supplied data length, allowing network-adjacent attackers to execute code in the kernel context without authentication. The vulnerability is documented...

CVE-2024-6246 Wyze Cam v3 Realtek Wi-Fi Driver Heap-Based Buffer Overflow Remote Code Execution Vulnerability

Wyze Cam v3 Realtek Wi-Fi Driver Heap-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Wyze Cam v3 IP cameras. Authentication is not required to exploit this vulnerability. The...

Wyze Cam 安全漏洞

Wyze Cam Wyze Labs is a series of cameras from Wyze USA. A security vulnerability exists in Wyze Cam version v3, which stems from the Realtek Wi-Fi kernel module improperly validating the length of user-supplied data before copying it to the heap buffer, which could be exploited by network-adjace...

The vulnerability of the hsr_deliver_master() function in the Linux operating system allows a hacker to cause service failures or enhance their privileges, thereby affecting the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the hsrdelivermaster function in the net/hsr/hsrforward.c module of the Linux operating system is related to the reutilization of previously released memory. Exploiting this vulnerability can allow an attacker to cause service failures or enhance their privileges to affect th...

CVE-2023-39179

A flaw was found within the handling of SMB2 read requests in the kernel ksmbd module. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this to disclose sensitive information on...

CVE-2023-39176

A flaw was found within the parsing of SMB2 requests that have a transform header in the kernel ksmbd module. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this to disclose...

UBUNTU-CVE-2023-39176

A flaw was found within the parsing of SMB2 requests that have a transform header in the kernel ksmbd module. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this to disclose...

CVE-2023-39180 Kernel: ksmbd: read request memory leak denial-of-service vulnerability

A flaw was found within the handling of SMB2READ commands in the kernel ksmbd module. The issue results from not releasing memory after its effective lifetime. An attacker can leverage this to create a denial-of-service condition on affected installations of Linux. Authentication is not required ...

The vulnerability of the gsm_cleanup_mux() function in the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the gsmcleanupmux function in the drivers/tty/ngsm.c kernel module of the Linux operating system is related to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...

CLSA-2024-1731602566 Fix of 76 CVEs

CVE-url: https://ubuntu.com/security/CVE-2024-44946 - kcm: Serialise kcmsendmsg for the same socket. CVE-url: https://ubuntu.com/security/CVE-2024-42292 - kobjectuevent: Fix OOB access within zapmodaliasenv CVE-url: https://ubuntu.com/security/CVE-2024-41042 - netfilter: nftables: prefer...

The vulnerability of the rm3100_common_probe() function in the drivers/iio/magnetometer/rm3100-core.c kernel module of the Linux operating system, which involves reading data beyond the allowed buffer limits, allows a malicious actor to cause a service failure.

The vulnerability of the rm3100commonprobe function in the drivers/iio/magnetometer/rm3100-core.c file of the Linux kernel is related to reading data beyond the allowable buffer size. Exploiting this vulnerability could allow an attacker to cause a service failure...