6578 matches found
CVE-2022-49067
CVE-2022-49067 is about a Linux kernel issue where virt_addr_valid() incorrectly returned true for vmalloc addresses in 64-bit Book3E (and related 32-bit behavior). Investigations across multiple advisories (NVD, Red Hat, Debian OSV, Unity/NASL/Nessus plugins) describe the root cause: __pa() can ...
CVE-2021-47655
In the Linux kernel, the following vulnerability has been resolved: media: venus: vdec: fixed possible memory leak issue The venushelperallocdpbbufs implementation allows an early return on an error path when checking the id from idaallocmin which would not release the earlier buffer allocation...
CVE-2021-47644 media: staging: media: zoran: move videodev alloc
In the Linux kernel, the following vulnerability has been resolved: media: staging: media: zoran: move videodev alloc Move some code out of zr36057init and create new functions for handling zr-videodev. This permit to ease code reading and fix a zr-videodev memory leak...
Linux Kernel Memory Corruption Vulnerability (CNVD-2025-04158)
The Linux Kernel is the core component of the Linux operating system that manages the system's resources. A memory corruption vulnerability exists in the usbtvvideofree function in the Linux Kernel, which stems from an unnecessary lock call in the usbtvvideofree function that could lead to a...
The vulnerabilities of x86/mm kernel components of the Linux operating system, which allow a hacker to cause a service failure
The vulnerability of x86/mm kernel components of the Linux operating system is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...
SUSE CVE-2023-2163
Incorrect verifier pruning in BPF in Linux Kernel =5.4 leads to unsafe code paths being incorrectly marked as safe, resulting in arbitrary read/write in kernel memory, lateral privilege escalation, and container escape...
CVE-2024-36054
Hw64.sys in Marvin Test HW.exe before 5.0.5.0 allows unprivileged user-mode processes to arbitrarily read kernel memory and consequently gain all privileges via IOCTL 0x9c4064b8 via MmMapIoSpace and IOCTL 0x9c406490 via ZwMapViewOfSection...
Azure Linux 3.0 Security Update: kernel (CVE-2024-43854)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43854 advisory. - In the Linux kernel, the following vulnerability has been resolved: block: initialize integrity buffer to ze...
Azure Linux 3.0 Security Update: kernel (CVE-2024-42283)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42283 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: nexthop: Initialize all fields in...
CVE-2024-13614
Kaspersky has fixed a security issue in Kaspersky Anti-Virus SDK for Windows, Kaspersky Security for Virtualization Light Agent, Kaspersky Endpoint Security for Windows, Kaspersky Small Office Security, Kaspersky for Windows Standard, Plus, Premium, Kaspersky Free, Kaspersky Anti-Virus, Kaspersky...
Juniper Networks Junos OS Evolved Memory Misreference Vulnerability
Juniper Networks Junos OS Evolved is an upgraded version of Juniper Networks' Junos OS. A memory misreference vulnerability exists in Juniper Networks Junos OS Evolved, which arises from a failure to free kernel memory when processing certain malformed IPv6 packets, and can be exploited by an...
CVE-2024-13614
Kaspersky has fixed a security issue in Kaspersky Anti-Virus SDK for Windows, Kaspersky Security for Virtualization Light Agent, Kaspersky Endpoint Security for Windows, Kaspersky Small Office Security, Kaspersky for Windows Standard, Plus, Premium, Kaspersky Free, Kaspersky Anti-Virus, Kaspersky...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: cpufreq: sun50i: prevent out-of-bounds access A KASAN enabled kernel reports an out-of-bounds access when handling the nvmem cell in the sun50i cpufreq driver: ================================================================== BU...
CVE-2024-13614
Kaspersky has fixed a security issue in Kaspersky Anti-Virus SDK for Windows, Kaspersky Security for Virtualization Light Agent, Kaspersky Endpoint Security for Windows, Kaspersky Small Office Security, Kaspersky for Windows Standard, Plus, Premium, Kaspersky Free, Kaspersky Anti-Virus, Kaspersky...
CVE-2024-13614
Kaspersky has fixed a security issue in Kaspersky Anti-Virus SDK for Windows, Kaspersky Security for Virtualization Light Agent, Kaspersky Endpoint Security for Windows, Kaspersky Small Office Security, Kaspersky for Windows Standard, Plus, Premium, Kaspersky Free, Kaspersky Anti-Virus, Kaspersky...
CVE-2024-13614
Kaspersky vulnerabilities (CVE-2024-13614) affect multiple Kaspersky products, including Kaspersky Anti-Virus SDK for Windows and related endpoint/consumer suites. Root cause: an integer overflow that could let an authenticated attacker write data to a limited area outside the allocated kernel me...
CVE-2022-25746
Memory corruption in kernel due to missing checks when updating the access rights of a memextent mapping...
Kaspersky多款产品 安全漏洞
Kaspersky Anti-Virus is a suite of antivirus software, Kaspersky Internet Security is a suite of security software with both anti-virus and firewall features. Internet Security is a suite of antivirus software for Internet security.Kaspersky Anti-Ransomware Tool is a security software that provid...
CVE-2022-2652
Depending on the way the format strings in the card label are crafted it's possible to leak kernel stack memory. There is also the possibility for DoS due to the v4l2loopback kernel module crashing when providing the card label on request reproduce e.g. with many %s modifiers in a row...
CVE-2024-5679
CWE-787: Out-of-Bounds Write vulnerability exists that could cause local denial-of-service, or kernel memory leak when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver...