Microsoft Windows Secure Kernel Mode 安全漏洞

Microsoft Windows Secure Kernel Mode is a security feature from Microsoft Corporation USA that uses virtualization technology to enhance system security. A security vulnerability exists in Microsoft Windows Secure Kernel Mode. An attacker could exploit the vulnerability to elevate privileges. The...

ROS-20241108-03

Vulnerability of multiqtune function of schmultiq component of Linux kernel is related to writing outside of dynamic memory buffer boundaries. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute arbitrary code in kernel mode by executing specially specially...

CVE-2024-50146

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Don't call cleanup on profile rollback failure When profile rollback fails in mlx5enetdevchangeprofile, the netdev profile var is left set to NULL. Avoid a crash when unloading the driver by not calling profile-cleanup...

CVE-2024-50132

Technical details for CVE-2024-50132 are not publicly available in the provided documents. Monitor for updates.

The Windows Registry Adventure #4: Hives and the registry layout

Posted by Mateusz Jurczyk, Google Project Zero To a normal user or even a Win32 application developer, the registry layout may seem simple: there are five root keys that we know from Regedit abbreviated as HKCR, HKLM, HKCU, HKU and HKCC, and each of them contains a nested tree structure that serv...

The severity of the Elevation of Privilege – Windows Kernel-Mode Driver (CVE-2024-35250) vulnerability has increased

The severity of the Elevation of Privilege - Windows Kernel-Mode Driver CVE-2024-35250 vulnerability has increased. This vulnerability was fixed as part of the June Microsoft Patch Tuesday. As in the case of the CVE-2024-30090 vulnerability, it was discovered by a researcher with the nickname...

CVE-2024-49942

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Prevent null pointer access in xemigratecopy xemigratecopy designed to copy content of TTM resources. When source resource is null, it will trigger a NULL pointer dereference in xemigratecopy. To avoid this situation,...

CVE-2024-49942 drm/xe: Prevent null pointer access in xe_migrate_copy

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Prevent null pointer access in xemigratecopy xemigratecopy designed to copy content of TTM resources. When source resource is null, it will trigger a NULL pointer dereference in xemigratecopy. To avoid this situation,...

CVE-2024-49942 drm/xe: Prevent null pointer access in xe_migrate_copy

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Prevent null pointer access in xemigratecopy xemigratecopy designed to copy content of TTM resources. When source resource is null, it will trigger a NULL pointer dereference in xemigratecopy. To avoid this situation,...

CVE-2024-49934 fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name

In the Linux kernel, the following vulnerability has been resolved: fs/inode: Prevent dumpmapping accessing invalid dentry.dname.name It's observed that a crash occurs during hot-remove a memory device, in which user is accessing the hugetlb. See calltrace as following: ------------ cut here...

CVE-2024-47687

The CVE-2024-47687 issue affects the Linux kernel mlx5/vdpa path. It fixes an invalid MR resource destroy where error paths could release uninitialized MR resources. The patch adds a missing check in mlx5_vdpa_destroy_mr_resources() to block destroying non-initialized MR resources, addressing a N...

The vulnerability of the Secure Kernel Mode mode in Windows operating systems allows attackers to enhance their privileges.

The vulnerability of the Secure Kernel Mode mode in Windows operating systems is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of the Kernel-Mode Driver driver in Windows operating systems allows attackers to increase their privileges.

The vulnerability of the Kernel-Mode Driver driver in Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Kernel-Mode Driver component in Windows operating systems allows attackers to disclose sensitive information that is protected by this mechanism.

The vulnerability of the Kernel-Mode Driver component in Windows operating systems is related to improper boundary removal of critical data. Exploiting this vulnerability can allow an attacker to disclose protected information...

CVE-2024-43535

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability...

CVE-2024-43535

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability...

CVE-2024-43528

Windows Secure Kernel Mode Elevation of Privilege Vulnerability...

CVE-2024-43528 Windows Secure Kernel Mode Elevation of Privilege Vulnerability

...

CVE-2024-43554

CVE-2024-43554 corresponds to a Windows Kernel-Mode Driver Information Disclosure vulnerability with an impact described as Access to sensitive data (CVSS ~5.5). Affected component is a kernel-mode driver; root cause details are not fully disclosed in the provided documents. Microsoft has issued ...

CVE-2024-43554 Windows Kernel-Mode Driver Information Disclosure Vulnerability

...