Multiple Apple Products Kernel Component Information Disclosure Vulnerability (CNVD-2020-34135)

Apple iOS is an operating system developed for mobile devices.Apple iPadOS is an operating system for iPad tablets.Apple macOS Catalina is a specialized operating system developed for Mac computers.Kernel is one of the kernel components. Kernel is one of the kernel components. A security...

Exploit for Use of Uninitialized Resource in Microsoft

CVE-2020-1206 Uninitialized Kernel Memory Read POC c 2020 Z...

Apple macOS Catalina Bluetooth component buffer overflow vulnerability (CNVD-2020-23212)

Apple macOS Catalina is a specialized operating system developed by Apple for Mac computers.Bluetooth is one of the Bluetooth components. A buffer overflow vulnerability in the Bluetooth component in Apple macOS Catalina versions prior to 10.15.4 can be exploited by a local attacker to cause an...

CVE-2019-7293

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A local user may be able to read kernel memory...

Memory corruption

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A local user may be able to read kernel memory...

kernel: use-after-free Read in vhost_transport_send_pkt

A flaw was found where an attacker may be able to have an uncontrolled read to kernel-memory from within a vm guest. A race condition between connect and close function may allow an attacker using the AFVSOCK protocol to gather a 4 byte information leak or possibly impersonate AFVSOCK messages...

kernel: Information leak in cdrom_ioctl_drive_status

An information leak was discovered in the Linux kernel in cdromioctldrivestatus function in drivers/cdrom/cdrom.c that could be used by local attackers to read kernel memory at certain location...

Code injection

Kernel can do a memory read from arbitrary address passed by user during execution of a syscall in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9205, MDM9650, QCA8081,...

Linux kernel information disclosure vulnerability (CNVD-2019-38261)

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. An information disclosure vulnerability exists in Linux kernel versions prior to 5.2.14. The vulnerability stems from...

kernel: Information leak in cdrom_ioctl_drive_status

An information leak was discovered in the Linux kernel in cdromioctldrivestatus function in drivers/cdrom/cdrom.c that could be used by local attackers to read kernel memory at certain location...

PaX read_kmem Denial of Service Vulnerability

pax is a patch for Linux that is designed to improve system security by preventing the exploitation of memory corruption vulnerabilities. A security vulnerability exists in the grsecurity PaX patch in PaX. An attacker can exploit the vulnerability to cause a system crash memory leak...

Multiple Apple Products IOHIDFamily Memory Corruption Vulnerability

Apple iOS is an operating system developed for mobile devices. apple tvOS is an operating system for smart TVs. apple macOS Mojave is a specialized operating system developed for Mac computers. iOHIDFamily is one of the kernel extensions abstract interfaces to human-computer interface devices...

macOS 10.13.6 Multiple Vulnerabilities (Security Update 2019-002)

The remote host is running macOS 10.13.6 and is missing a security update. It is therefore, affected by multiple vulnerabilities including: - An application may be able to execute arbitrary code with kernel privileges. CVE-2019-8529 - A local user may be able to read kernel memory. CVE-2019-8504 ...

Apple macOS High Sierra AMD out-of-bounds read vulnerability (CNVD-2019-01540)

Apple macOS High Sierra is a suite of specialized operating systems developed for Mac computers by Apple, Inc. AMD is one of the AMD product components. An out-of-bounds read vulnerability exists in AMD in Apple macOS High Sierra version 10.13.4. A local attacker could exploit the vulnerability t...

Updated kernel packages fix security vulnerabilities

This kernel update is based on the upstream 4.14.89 and fixes at least the following security issues: Cross-hyperthread Spectre v2 mitigation is now provided by the Single Thread Indirect Branch Predictors STIBP support. Note that STIBP also requires the functionality be supported by the Intel...

kernel: vhost: Information disclosure in vhost/vhost.c:vhost_new_msg()

The Linux kernel does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhostnewmsg function. This can allow local privileged users to read some kernel memory contents when reading from the /dev/vhost-net device file...

Linux kernel information disclosure vulnerability (CNVD-2018-18597)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. An information disclosure vulnerability exists in the 'cdromioctldrivestatus' function in the drivers/cdrom/cdrom.c file in versions of the Linux kernel prior to 4.18....

Kernel: hw: cpu: L1 terminal fault (L1TF)

Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of...

Design/Logic Flaw

The timercreate syscall implementation in kernel/time/posix-timers.c in the Linux kernel before 4.14.8 doesn't properly validate the sigevent-sigevnotify field, which leads to out-of-bounds access in the showtimer function called when /proc/$PID/timers is read. This allows userspace applications ...

UBUNTU-CVE-2018-1118

Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhostnewmsg function. This can allow local privileged users to read some kernel memory contents when reading from the /dev/vhost-ne...