CVE-2026-20620

An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.7.4, macOS Sonoma 14.8.4, macOS Tahoe 26.3. An attacker may be able to cause unexpected system termination or read kernel memory...

kernel: net: atlantic: fix fragment overflow handling in RX path

An out-of-bounds write vulnerability was found in the Aquantia Atlantic network driver in the Linux kernel. When receiving packets that span more than MAXSKBFRAGS 17 fragments, the driver writes beyond the skb fragment array bounds in skbaddrxfrag, causing kernel memory corruption and panic...

Apple macOS 安全漏洞

Apple macOS is a specialized operating system developed by Apple for Mac computers. An out-of-bounds read vulnerability exists in Apple macOS, which can be exploited by an attacker to cause the system to unexpectedly terminate or read kernel memory...

PT-2026-7759

Name of the Vulnerable Software and Affected Versions macOS versions prior to Tahoe 26.3 macOS versions prior to Sonoma 14.8.4 macOS versions prior to Sequoia 15.7.4 iOS versions prior to 18.7.5 iPadOS versions prior to 18.7.5 visionOS versions prior to 26.3 Description The issue involves improve...

PT-2026-7758

Name of the Vulnerable Software and Affected Versions macOS Sequoia versions prior to 15.7.4 macOS Tahoe versions prior to 26.3 macOS Sonoma versions prior to 14.8.4 Description An out-of-bounds read issue exists due to insufficient input validation. This could allow an attacker to cause the syst...

Apple多款产品 安全漏洞

Apple iOS is an operating system developed for mobile devices.Apple macOS is a specialized operating system developed for Mac computers.Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in several Apple products. An attacker could exploit this vulnerability to...

CVE-2021-26410

Improper syscall input validation in ASP AMD Secure Processor may force the kernel into reading syscall parameter values from its own memory space allowing an attacker to infer the contents of the kernel memory leading to potential information disclosure...

CVE-2021-26410

Improper syscall input validation in ASP AMD Secure Processor may force the kernel into reading syscall parameter values from its own memory space allowing an attacker to infer the contents of the kernel memory leading to potential information disclosure...

CVE-2021-26410

Improper syscall input validation in ASP AMD Secure Processor may force the kernel into reading syscall parameter values from its own memory space allowing an attacker to infer the contents of the kernel memory leading to potential information disclosure...

CVE-2021-26410

The CVE-2021-26410 entry concerns an improper syscall input validation in the AMD Secure Processor (ASP) that may force the kernel to read syscall parameter values from its own memory space, enabling an attacker to infer contents of kernel memory and potentially disclose information. Connected so...

CVE-2021-26410

Improper syscall input validation in ASP AMD Secure Processor may force the kernel into reading syscall parameter values from its own memory space allowing an attacker to infer the contents of the kernel memory leading to potential information disclosure...

CVE-2021-26381

Improper system call parameter validation in the Trusted OS may allow a malicious driver to perform mapping or unmapping operations on a large number of pages, potentially resulting in kernel memory corruption...

CVE-2021-26381

Improper system call parameter validation in the Trusted OS may allow a malicious driver to perform mapping or unmapping operations on a large number of pages, potentially resulting in kernel memory corruption...

CVE-2021-26381

CVE-2021-26381 concerns improper system call parameter validation in the Trusted OS (TOS) that could let a malicious driver map/unmap a large number of pages, potentially causing kernel memory corruption. The connected sources describe this as a local, high-privilege issue with impact to memory c...

CVE-2021-26381

Improper system call parameter validation in the Trusted OS may allow a malicious driver to perform mapping or unmapping operations on a large number of pages, potentially resulting in kernel memory corruption...

PT-2026-7458

Name of the Vulnerable Software and Affected Versions Trusted OS affected versions not specified Description A flaw exists in the Trusted OS related to improper validation of system call parameters. This could allow a malicious driver to perform numerous mapping or unmapping operations on system...

PT-2026-7459

Name of the Vulnerable Software and Affected Versions AMD Secure Processor affected versions not specified Description A flaw exists in the syscall input validation within the AMD Secure Processor ASP. This issue could allow an attacker to force the kernel to read syscall parameter values from it...

AMD Ryzen 安全漏洞

The AMD Ryzen is a central processing unit CPU developed by American semiconductor company AMD. The AMD Ryzen has a security vulnerability caused by improper input validation in system calls. This vulnerability may allow the kernel to read system call parameter values from its own memory space,...

AMD Ryzen和AMD Athlon 安全漏洞

AMD Ryzen and AMD Athlon are both products of American semiconductor company AMD. AMD Ryzen is a type of Central Processing Unit CPU. AMD Athlon is a series of microprocessors. Both AMD Ryzen and AMD Athlon have security vulnerabilities. These vulnerabilities stem from improper validation of syst...

kernel: Linux kernel: Memory corruption in Squashfs due to incorrect block size calculation

A flaw was found in the Linux kernel's Squashfs filesystem. A local attacker can exploit this vulnerability by simultaneously mounting a Squashfs filesystem and issuing a specific input/output control ioctl command. This can lead to an incorrect block size calculation, causing a shift-out-of-boun...