PT-2026-3953

VB-Audio Matrix and Matrix Coconut versions ending in 1.0.2.2 and 2.0.2.2 and earlier, respectively, contain a local privilege escalation vulnerability in the VBMatrix VAIO virtual audio driver vbmatrixvaio64 win10.sys. The driver allocates a 128-byte non-paged pool buffer and, upon receiving IOC...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003306)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003306 advisory. The acpinsevaluate function in drivers/acpi/acpica/nseval.c in the Linux kernel through 4.12.9 does not flush the operand cache and causes a kernel stack dump, which...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003529)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003529 advisory. In the Linux kernel through 4.15.4, the floppy driver reveals the addresses of kernel functions and global variables using printk calls within the function showflopp...

CVE-2018-9384

In multiple locations, there is a possible way to bypass KASLR due to an unusual root cause. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...

CVE-2024-54531

The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.2. An app may be able to bypass kASLR...

Apple macOS 安全漏洞

Apple macOS is a set of specialized operating systems developed for Mac computers by the American company Apple Apple. A security vulnerability exists in Apple macOS Sequoia versions prior to 15.2. An attacker can bypass kASLR by exploiting this vulnerability...

UBUNTU-CVE-2023-3640

A possible unauthorized memory access flaw was found in the Linux kernel's cpuentryarea mapping of X86 CPU data to memory, where a user may guess the location of exception stacks or other important data. Based on the previous CVE-2023-0597, the 'Randomize per-cpu entry area' feature was implement...

SUSE CVE-2017-11472

The acpinsterminate function in drivers/acpi/acpica/nsutils.c in the Linux kernel before 4.12 does not flush the operand cache and causes a kernel stack dump, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism in the kernel throug...

CVE-2020-12901

Arbitrary Free After Use in AMD Graphics Driver for Windows 10 may lead to KASLR bypass or information disclosure...

CVE-2020-12899

Arbitrary Read in AMD Graphics Driver for Windows 10 may lead to KASLR bypass or denial of service...

AMD Graphics Driver 信息泄露漏洞

AMD Graphics Driver is an integrated graphics driver from AMD. AMD Graphics Driver for Windows 10 suffers from an information disclosure vulnerability that can be exploited by attackers to cause a KASLR bypass...

AMD Graphics Driver 安全漏洞

AMD Graphics Driver is an integrated graphics driver from AMD. A security vulnerability exists in AMD Graphics Driver, which can be exploited by attackers to cause privilege escalation, denial of service, information disclosure, KASLR bypass, or arbitrary write to kernel memory...

PT-2017-13022

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.12.10 Linux kernel versions prior to 4.9 for KASLR protection mechanism bypass Description The issue allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechani...

UBUNTU-CVE-2017-13695

The acpinsevaluate function in drivers/acpi/acpica/nseval.c in the Linux kernel through 4.12.9 does not flush the operand cache and causes a kernel stack dump, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism in the kernel throu...

UBUNTU-CVE-2015-8569

The 1 pptpbind and 2 pptpconnect functions in drivers/net/ppp/pptp.c in the Linux kernel through 4.3.3 do not verify an address length, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism via a crafted application...

UBUNTU-CVE-2015-8575

The scosockbind function in net/bluetooth/sco.c in the Linux kernel before 4.3.4 does not verify an address length, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism via a crafted application...

Microsoft Windows Kernel Information Disclosure Vulnerability (CNVD-2015-07595)

Microsoft Windows is a series of operating systems designed for personal computer and server users from the American company Microsoft. An information disclosure vulnerability exists in Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1,Windows 10 Gold and 1511. Allows a local user to...

Microsoft Windows Kernel Memory Address Checksum Privilege Elevation Vulnerability

Microsoft Windows is a popular operating system. A security vulnerability exists in Microsoft Windows due to a failure of the kernel to properly validate memory addresses, which allows local attackers to exploit the vulnerability to build special applications that bypass KASLR protection and...