42 matches found
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: PCI: kirin – A buffer overflow issue was addressed in kirinpcieparseport. Within kirinpcieparseport, the value of pcie-numslots is compared to pcie-gpioidreset.size which is equal to MAXPCISLOTS. This comparison is correct;...
Azure Linux 3.0 Security Update: kernel (CVE-2024-47751)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47751 advisory. - In the Linux kernel, the following vulnerability has been resolved: PCI: kirin: Fix buffer overflow in...
EUVD-2023-30577
Malicious code in bioql PyPI...
CVE-2023-26784
SQL Injection vulnerability found in Kirin Fortress Machine v.1.7-2020-0610 allows attackers to execute arbitrary code via the /admin.php?controller=admincommonuser parameter...
Elevation of Privilege Vulnerability in Galaxy Kirin Desktop Operating System by Kirin Software Co.
Galaxy KyLin desktop operating system is a high performance operating system with practicality, innovation and maintainability. An elevation of privilege vulnerability exists in the Galaxy KyLin desktop operating system, which can be exploited by attackers to gain control of a server...
SUSE CVE-2024-47751
In the Linux kernel, the following vulnerability has been resolved: PCI: kirin: Fix buffer overflow in kirinpcieparseport Within kirinpcieparseport, the pcie-numslots is compared to pcie-gpioidreset size MAXPCISLOTS which is correct and would lead to an overflow. Thus, fix condition to...
AZL-50909 CVE-2024-47751 affecting package kernel for versions less than 6.6.56.1-5
In the Linux kernel, the following vulnerability has been resolved: PCI: kirin: Fix buffer overflow in kirinpcieparseport Within kirinpcieparseport, the pcie-numslots is compared to pcie-gpioidreset size MAXPCISLOTS which is correct and would lead to an overflow. Thus, fix condition to...
DEBIAN-CVE-2024-47751
In the Linux kernel, the following vulnerability has been resolved: PCI: kirin: Fix buffer overflow in kirinpcieparseport Within kirinpcieparseport, the pcie-numslots is compared to pcie-gpioidreset size MAXPCISLOTS which is correct and would lead to an overflow. Thus, fix condition to...
UBUNTU-CVE-2024-47751
In the Linux kernel, the following vulnerability has been resolved: PCI: kirin: Fix buffer overflow in kirinpcieparseport Within kirinpcieparseport, the pcie-numslots is compared to pcie-gpioidreset size MAXPCISLOTS which is correct and would lead to an overflow. Thus, fix condition to...
CVE-2024-47751
CVE-2024-47751 affects the Linux kernel PCI Kirin driver, where kirin_pcie_parse_port() could access beyond pcie->gpio_id_reset/MAX_PCI_SLOTS due to num_slots handling. The fix changes the condition to pcie->num_slots + 1 >= MAX_PCI_SLOTS and moves the increment of num_slots below the ch...
CVE-2024-47751 PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port()
In the Linux kernel, the following vulnerability has been resolved: PCI: kirin: Fix buffer overflow in kirinpcieparseport Within kirinpcieparseport, the pcie-numslots is compared to pcie-gpioidreset size MAXPCISLOTS which is correct and would lead to an overflow. Thus, fix condition to...
CVE-2024-47751
In the Linux kernel, the following vulnerability has been resolved: PCI: kirin: Fix buffer overflow in kirinpcieparseport Within kirinpcieparseport, the pcie-numslots is compared to pcie-gpioidreset size MAXPCISLOTS which is correct and would lead to an overflow. Thus, fix condition to...
CVE-2024-47751 PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port()
In the Linux kernel, the following vulnerability has been resolved: PCI: kirin: Fix buffer overflow in kirinpcieparseport Within kirinpcieparseport, the pcie-numslots is compared to pcie-gpioidreset size MAXPCISLOTS which is correct and would lead to an overflow. Thus, fix condition to...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a buffer overflow in the kirin driver in the PCI subsystem when parsing PCIe ports, which could cause the...
CVE-2024-48781
An issue in Wanxing Technology Yitu Project Management Kirin Edition 2.3.6 allows a remote attacker to execute arbitrary code via a specially constructed so file/opt/EdrawProj-2/plugins/imageformat...
CVE-2024-48781
The CVE-2024-48781 entry concerns Wanxing Technology Yitu Project Management Kirin Edition 2.3.6. A remote attacker can trigger arbitrary code execution by supplying a specially crafted file to /opt/EdrawProj-2/plugins/imageformat. The issue is described consistently across multiple sources (NVD/...
PT-2024-33216 · Wanxing Technology · Wanxing Technology Yitu Project Management Kirin Edition
Name of the Vulnerable Software and Affected Versions: Wanxing Technology Yitu Project Management Kirin Edition version 2.3.6 Description: The issue allows a remote attacker to execute arbitrary code via a specially constructed so file in /opt/EdrawProj-2/plugins/imageformat. This enables the...
CVE-2024-48781
An issue in Wanxing Technology Yitu Project Management Kirin Edition 2.3.6 allows a remote attacker to execute arbitrary code via a specially constructed so file/opt/EdrawProj-2/plugins/imageformat...
Elevation of Privilege Vulnerability in Galaxy Kirin Operating System by Kirin Software Co.
Kirin Software Ltd. is a company that builds secure and innovative operating system products and corresponding solutions for general-purpose and specialized domains. An elevation of privilege vulnerability exists in Kirin Software's Galaxy Kirin operating system, which can be exploited by attacke...
kirin.com.tw Cross Site Scripting vulnerability OBB-3861132
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...