1694 matches found
UBUNTU-CVE-2024-46702
In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Mark XDomain as unplugged when router is removed I noticed that when we do discrete host router NVM upgrade and it gets hot-removed from the PCIe side as a result of NVM firmware authentication, if there is another...
The vulnerability of Linux operating system’s AOE kernel driver, related to the use of memory after it is freed, allows attackers to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the Linux operating system’s AOE kernel driver is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its integrity, and cause service failures...
The vulnerability of the kernel driver of Windows operating systems allows attackers to gain increased privileges.
The vulnerability of the kernel driver of Windows operating systems is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...
kernel: virtio-net: tap: mlx5_core short frame denial of service
A denial of service DoS attack was found in the mlx5 driver in the Linux kernel. A KVM guest VM using virtio-net can crash the host by sending a short packet, for example, size = ETHHLEN...
CVE-2024-3655 Mali GPU Kernel Driver allows improper GPU memory processing operations
Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.This issue affects...
CVE-2024-3655 Mali GPU Kernel Driver allows improper GPU memory processing operations
Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.This issue affects...
kernel: virtio-net: tun: mlx5_core short frame denial of service
A denial of service DoS attack was found in the mlx5 driver in the Linux kernel. A KVM guest VM using virtio-net can crash the host by sending a short packet, for example, size = ETHHLEN...
SUSE CVE-2024-21810
Improper input validation in the Linux kernel mode driver for some IntelR Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access...
SUSE CVE-2024-23981
Wrap-around error in Linux kernel mode driver for some IntelR Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2024-28947
Improper input validation in kernel mode driver for some IntelR Server Board S2600ST Family firmware before version 02.01.0017 may allow a privileged user to potentially enable escalation of privilege via local access...
CVE-2024-23981
Wrap-around error in Linux kernel mode driver for some IntelR Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2024-21806
Improper conditions check in Linux kernel mode driver for some IntelR Ethernet Network Controllers and Adapters E810 Series before version 28.3 may allow an authenticated user to potentially enable denial of service via local access...
CVE-2024-21807
Improper initialization in the Linux kernel mode driver for some IntelR Ethernet Network Controllers and Adapters before version 28.3 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2024-28947
CVE-2024-28947 relates to Intel® Server Board S2600ST Family firmware prior to 02.01.0017, where improper input validation in the kernel-mode driver can allow a locally privileged user to escalate privileges. Affected product is Intel Server Board S2600ST Family firmware; root cause is input vali...
PT-2024-20217 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel mode driver for IntelR Ethernet Network Controllers and Adapters versions prior to 28.3 Description: A wrap-around error in the Linux kernel mode driver may allow an authenticated user to potentially enable escalation of privileg...
PT-2024-6364 · Intel · Intel Ethernet Network Controllers/Adapters
Name of the Vulnerable Software and Affected Versions: IntelR Ethernet Network Controllers and Adapters versions prior to 28.3 Description: The issue is related to insufficient input validation in the Linux kernel mode driver, which may allow an authenticated user to potentially enable escalation...
PT-2024-5987 · Microsoft · Windows 11 +2
Name of the Vulnerable Software and Affected Versions: Microsoft Windows 10 versions prior to 10.0.19044.4651 Microsoft Windows 10 22h2 versions prior to 10.0.19045.4651 Microsoft Windows 11 21h2 versions prior to 10.0.22000.3079 Description: The issue is related to a buffer overflow in the Windo...
The vulnerability of the Kernel Streaming WOW Thunk Service Driver (Drivers\ksthunk.sys) on Windows operating systems, which allows a hacker to escalate their privileges.
The vulnerability of the Kernel Streaming WOW Thunk Service Driver Drivers\ksthunk.sys on Windows operating systems is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...
thermal/drivers/tsens: Fix null pointer dereference
...
kernel: scsi: ibmvfc: Remove BUG_ON in the case of an empty event pool
In the Linux kernel, the following vulnerability has been resolved: scsi: ibmvfc: Remove BUGON in the case of an empty event pool In practice the driver should never send more commands than are allocated to a queue's event pool. In the unlikely event that this happens, the code asserts a BUGON, a...