1694 matches found
kernel: net: qcom/emac: fix UAF in emac_remove
A vulnerability was found in the Linux kernel's Qualcomm EMAC driver, where the emacremove function can lead to a use-after-free issue when the driver tries to access data after the network device has been freed, causing instability and a crash in the network subsystem...
Moderate: python-idna security update
The hsakmt packages include a thunk library for AMD's Heterogeneous System Architecture HSA Linux kernel driver amdkfd. Security Fixes: python-idna: potential DoS via resource consumption via specially crafted inputs to idna.encode CVE-2024-3651 For more details about the security issues, includi...
Exploit for Improper Input Validation in Google Android
Exploit for CVE-2022-20186 The write up can be found here...
Exploit for Improper Input Validation in Google Android
Exploit for CVE-2022-20186 The write up can be found here...
The vulnerability of the liteuartremove() function in the LiteUART driver of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the liteuartremove function in the drivers/tty/serial/liteuart.c file of the Linux kernel’s LiteUART driver is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...
The vulnerability of the scp_ipi_init() function in the kernel subsystem driver of the Linux operating system allows a hacker to induce a service failure.
The vulnerability of the scpipiinit function in the drivers/remoteproc/mtkscp.c file of the Linux kernel’s processor driver relates to memory writing beyond the bounds of the allocated buffer. Exploiting this vulnerability could allow an attacker to cause a system failure...
RLSA-2024:3846 Moderate: python-idna security update
The hsakmt packages include a thunk library for AMD's Heterogeneous System Architecture HSA Linux kernel driver amdkfd. Security Fixes: python-idna: potential DoS via resource consumption via specially crafted inputs to idna.encode CVE-2024-3651...
CVE-2024-4610
A use-after-free vulnerability was found in the Arm Ltd Bifrost GPU kernel driver. The Arm Ltd Valhall GPU Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations to gain access to already freed memory. This issue affects the Bifrost GPU Kernel Driver fr...
(Pwn2Own) Microsoft Windows cldflt Heap-based Buffer Overflow Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the cldflt kernel...
Arm Warns of Actively Exploited Zero-Day Vulnerability in Mali GPU Drivers
Arm is warning of a security vulnerability impacting Mali GPU Kernel Driver that it said has been actively exploited in the wild. Tracked as CVE-2024-4610, the use-after-free issue impacts the following products - Bifrost GPU Kernel Driver all versions from r34p0 to r40p0 Valhall GPU Kernel Drive...
ALSA-2024:3846 Moderate: python-idna security update
The hsakmt packages include a thunk library for AMD's Heterogeneous System Architecture HSA Linux kernel driver amdkfd. Security Fixes: python-idna: potential DoS via resource consumption via specially crafted inputs to idna.encode CVE-2024-3651...
CVE-2024-34332
An issue in SiSoftware SANDRA v31.66 SANDRA.sys 15.18.1.1 and before allows an attacker to escalate privileges via a crafted buffer sent to the Kernel Driver using the DeviceIoControl Windows API...
CVE-2024-34332
CVE-2024-34332 describes a local privilege-escalation in SiSoftware SANDRA up to v31.66 (SANDRA.sys 15.18.1.1 or earlier) where a crafted buffer sent to the Windows kernel driver via DeviceIoControl can elevate privileges. The issue affects the kernel driver component and enables an attacker with...
CVE-2024-34332
An issue in SiSoftware SANDRA v31.66 SANDRA.sys 15.18.1.1 and before allows an attacker to escalate privileges via a crafted buffer sent to the Kernel Driver using the DeviceIoControl Windows API...
PT-2024-25791 · Sisoftware · Sisoftware Sandra
Name of the Vulnerable Software and Affected Versions: SiSoftware SANDRA versions prior to v31.67 Description: An issue in SiSoftware SANDRA allows an attacker to escalate privileges via a crafted buffer sent to the Kernel Driver using the DeviceIoControl Windows API. Recommendations: For...
SiSoftware SANDRA Security Vulnerability
SiSoftware SANDRA is a benchmarking, system diagnostic and analysis tool from SiSoftware UK. A security vulnerability exists in SiSoftware SANDRA version 31.66 and earlier, which originates from an attacker who has elevated privileges by sending a crafted buffer to the kernel driver using the...
CVE-2024-34332
An issue in SiSoftware SANDRA v31.66 SANDRA.sys 15.18.1.1 and before allows an attacker to escalate privileges via a crafted buffer sent to the Kernel Driver using the DeviceIoControl Windows API...
CVE-2024-4610
Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.This issue affects Bifrost GPU Kernel Driver: from r34p0 through r40p0;...
CVE-2024-4610
CVE-2024-4610 is a Use-After-Free vulnerability in Arm Mali Bifrost and Valhall GPU kernel drivers that allows a local, non-privileged user to manipulate GPU memory and access memory that has already been freed (affected r34p0–r40p0). Public sources confirm exploitation relevance: it is listed in...
OESA-2024-1694 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: RDMA: Verify port when creating flow rule Validate port value provided by the user and with that remove no longer needed validation by the driver. The missing...