CVE-2025-0288 CVE-2025-0288

Various Paragon Software products contain an arbitrary kernel memory vulnerability within biontdrv.sys, facilitated by the memmove function, which does not validate or sanitize user controlled input, allowing an attacker the ability to write arbitrary kernel memory and perform privilege escalatio...

Linux Kernel Memory Corruption Vulnerability (CNVD-2025-04158)

The Linux Kernel is the core component of the Linux operating system that manages the system's resources. A memory corruption vulnerability exists in the usbtvvideofree function in the Linux Kernel, which stems from an unnecessary lock call in the usbtvvideofree function that could lead to a...

Kaspersky多款产品 安全漏洞

Kaspersky Anti-Virus is a suite of antivirus software, Kaspersky Internet Security is a suite of security software with both anti-virus and firewall features. Internet Security is a suite of antivirus software for Internet security.Kaspersky Anti-Ransomware Tool is a security software that provid...

K5835: Security Advisory: Possible kernel memory vulnerability in the sendfile() system call - CVE-2005-0708

Security Advisory Description Note : Versions that are not listed in this Solution have not been evaluated for vulnerability to this security advisory. For information about F5 Networks' security policy regarding evaluating older and unsupported versions of F5 Networks products, refer to K4602:...

Ubuntu: Security Advisory (USN-3525-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-25375

An issue was discovered in drivers/usb/gadget/function/rndis.c in the Linux kernel before 5.16.10. The RNDIS USB gadget lacks validation of the size of the RNDISMSGSET command. Attackers can obtain sensitive information from kernel memory...

OESA-2021-1379 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with large shared memory segment counts which could lead to resource exhaustion and DoS.CVE-2021-3669 CVE-2021-3764 CVE-2021-3744...

CVE-2021-30787

This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. An application may be able to cause unexpected system termination or write kernel memory...

CVE-2021-21781

An information disclosure vulnerability exists in the ARM SIGPAGE functionality of Linux Kernel v5.4.66 and v5.4.54. The latest version 5.11-rc4 seems to still be vulnerable. A userland application can read the contents of the sigpage, which can leak kernel memory contents. An attacker can read a...

Apple iOS, iPadOS and watchOS Kernel Component Memory Corruption Vulnerability

Apple iOS is an operating system developed for mobile devices.Apple watchOS is an operating system for smartwatches.Apple iPadOS is an operating system for iPad tablets.Kernel is a kernel component of the operating system.Apple watchOS is a smartwatch operating system.Apple watchOS is a smartwatc...

Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-4228-1)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4228-1 advisory. It was discovered that a heap-based buffer overflow existed in the Marvell WiFi-Ex Driver for the Linux kernel. A physically proximate attacker could use...

Design/Logic Flaw

Multiple information leaks exist in various IOCTL handlers of the Kaspersky Internet Security KLDISK driver. Specially crafted IOCTL requests can cause the driver to return out-of-bounds kernel memory, potentially leaking sensitive information such as privileged tokens or kernel memory addresses...

CVE-2015-3288

mm/memory.c in the Linux kernel before 4.1.4 mishandles anonymous pages, which allows local users to gain privileges or cause a denial of service page tainting via a crafted application that triggers writing to page zero...

Apple OS X kernel memory corruption vulnerability (CNVD-2016-08100)

Apple OS X is a specialized operating system developed by Apple for Mac computers. kernel is one of the kernel components. A memory corruption vulnerability exists in the kernel in Apple OS X version 10.11.6. A local attacker can exploit this vulnerability to execute arbitrary code with kernel...

The vulnerability of the Mac OS X operating system allows a perpetrator to gain access to protected information in the kernel’s memory.

The vulnerability of the SMBClient component in the Mac OS X operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow an intruder, operating locally, to gain access to protected information in the kernel memory...

Design/Logic Flaw

The kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 do not properly initialize function buffers, which allows local users to obtain...

CVE-2013-1255

The CVE-2013-1255 entry describes a race condition in the win32k.sys kernel-mode driver that allows local privilege elevation and reading of arbitrary kernel memory. Affected are: Windows XP SP2/SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2/R2 SP1, and Windows 7 Gold/SP...

CVE-2013-1264

CVE-2013-1264 describes a race condition in the Windows kernel driver win32k.sys that enables local privilege escalation and the potential to read arbitrary kernel memory. Affected products/versions include Windows XP (SP2–SP3), Windows Server 2003 (SP2), Windows Vista (SP2), Windows Server 2008 ...

CVE-2013-1261

CVE-2013-1261 describes a race condition in the win32k.sys kernel‑mode driver that can enable local privilege escalation and allow an attacker to read arbitrary kernel memory. Affected products include various Windows versions listed in the initial document (XP SP2/SP3, Server 2003 SP2, Vista SP2...

Memory corruption

The PowerVR SGX driver in Android before 2.3.6 allows attackers to gain root privileges via an application that triggers kernel memory corruption using crafted user data to the pvrsrvkm device...