CVE-2022-0854

A memory leak flaw was found in the Linux kernel’s DMA subsystem, in the way a user calls DMAFROMDEVICE. This flaw allows a local user to read random memory from the kernel space...

DEBIAN-CVE-2022-0382

An information leak flaw was found due to uninitialized memory in the Linux kernel's TIPC protocol subsystem, in the way a user sends a TIPC datagram to one or more destinations. This flaw allows a local user to read some kernel memory. This issue is limited to no more than 7 bytes, and the user...

Important: kernel

Issue Overview: A flaw was found in the Linux kernel, where a BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack. This issue occurs when the protection mechanism neglects the possibility of uninitialized memory locations on the BPF...

UBUNTU-CVE-2021-0961

In quotaprocwrite of xtquota2.c, there is a possible way to read kernel memory due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

Apple macOS Big Sur 缓冲区错误漏洞

Apple macOS Big Sur is a mobile application app from Apple USA. A security vulnerability exists in Apple macOS Big Sur, which can be exploited by local users to read kernel memory...

CVE-2021-30938

This issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.1, Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. A local user may be able to cause unexpected system termination or read kernel memory...

PT-2021-4234 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions up to 5.13.7 Description: The issue allows an unprivileged BPF program to obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack. This is possible because the protection...

PT-2021-7660 · Dell · Dbutil 2 3.Sys

Name of the Vulnerable Software and Affected Versions: Dell dbutil 2 3.sys driver affected versions not specified Description: The Dell dbutil 2 3.sys driver contains an insufficient access control vulnerability, which may lead to escalation of privileges, denial of service, or information...

Apple Kernel 缓冲区错误漏洞

The Apple Kernel is the kernel for Apple devices from Apple Inc. in the United States. A security vulnerability exists in the Apple Kernel, which can be exploited by a local user to read kernel memory. The following products and versions are affected: iPhone 6s and later, iPad Pro all models, iPa...

kernel: out-of-bounds read in libiscsi module

A flaw was found in the Linux kernel. An out-of-bounds read was discovered in the libiscsi module that could lead to reading kernel memory or a crash. The highest threat from this vulnerability is to data confidentiality as well as system availability...

VulnCheck KEV: CVE-2021-31955

Microsoft Windows Kernel contains an unspecified vulnerability that allows for information disclosure. Successful exploitation allows attackers to read the contents of kernel memory from a user-mode process...

Apple macOS Catalina 缓冲区错误漏洞

Apple macOS Catalina is a suite of specialized operating systems from the U.S.-based Apple Inc. developed specifically for Mac computers. A buffer error vulnerability exists in several Apple products, which originates from a local user and may result in unexpected system termination or reading of...

AZL-6526 CVE-2020-27171 affecting package kernel for versions less than 5.10.78.1-1

An issue was discovered in the Linux kernel before 5.11.8. kernel/bpf/verifier.c has an off-by-one error with a resultant integer underflow affecting out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information...

Apple FairPlay Buffer Error Vulnerability

Apple FairPlay is a core component of Apple Inc. that is used to provide media playback capabilities to devices. Apple FairPlay suffers from a buffer error vulnerability that exists due to a boundary condition within the FairPlay component in macOS. A native application can trigger an out-of-boun...

Linux kernel 缓冲区错误漏洞

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A buffer over-read vulnerability exists in the fbcon code in Linux kernel versions prior to 5.8.15. A local attacker...

CVE-2019-8759

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, macOS Catalina 10.15. A local user may be able to cause unexpected system termination or read kernel memory...

CVE-2020-12933

A denial of service vulnerability exists in the D3DKMTEscape handler functionality of AMD ATIKMDAG.SYS e.g. version 26.20.15029.27017. A specially crafted D3DKMTEscape API request can cause an out-of-bounds read in Windows OS kernel memory area. This vulnerability can be triggered from a...

Linux kernel memory leak vulnerability (CNVD-2020-52395)

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A memory leak vulnerability exists in the Linux Kernel's Ethernet driver. The vulnerability stems from a problem with...

CVE-2020-9812

An information disclosure issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A local user may be able to read kernel memory...

Unspecified Vulnerability in Apple macOS Catalina Wi-Fi Component

Apple macOS Catalina is a proprietary operating system developed by Apple Inc. for Mac computers.Wi-Fi is one of the wireless Internet components. A security vulnerability in the Wi-Fi component of Apple macOS Catalina prior to version 10.15.5 can be exploited by a local attacker to read kernel...