GSD-2022-1005442 rxrpc: Fix locking in rxrpc's sendmsg

rxrpc: Fix locking in rxrpc's sendmsg This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.64 by commit 2bc769b8edb158be7379d15f36e23d66cf85005...

GSD-2022-1005121 powerpc/pci: Fix get_phb_number() locking

powerpc/pci: Fix getphbnumber locking This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.4 by commit 90f195c01a2e8d8da6281791617e21109719c981...

GSD-2022-1005053 net/mlx5: Disable irq when locking lag_lock

net/mlx5: Disable irq when locking laglock This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit...

GSD-2022-1005036 rxrpc: Fix locking in rxrpc's sendmsg

rxrpc: Fix locking in rxrpc's sendmsg This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit 091dc91e119fdd61432347231724f4e861c6b465...

PT-2022-33379 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v5.19.2 through v5.19.4 Description: The issue is related to the get phb number function, which has a locking problem. This problem was introduced in version v5.19.2 and fixed in version v5.19.4. The actual impact and...

PT-2022-33700 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.64 Description: The issue concerns a locking problem in rxrpc's sendmsg. The actual impact and potential for attack have not been proven yet. Recommendations: For Linux Kernel versions prior to v5.15.64,...

PT-2022-33294 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.6 Description: The issue concerns a locking problem in rxrpc's sendmsg. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to v5.19.6, upda...

Contracts that lock Ether

Lines of code Vulnerability details Impact When receive function, hasn't a revert all ethers send contracts will be locked forever. Proof of Concept Bob send ether to contract, funds were locked forever and Bob lost money. Tools Used manually Recommended Mitigation Steps Remove the payable...

mariadb: improper locking due to the unreleased lock in extra/mariabackup/ds_compress.cc

MariaDB Server before 10.7 is vulnerable to Denial of Service. In extra/mariabackup/dscompress.cc, when an error occurs pthreadcreate returns a nonzero value while executing the method createworkerthreads, the held lock is not released correctly, which allows local users to trigger a denial of...

PT-2024-11768

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.0.0-rc3+ Description The issue arises from the psb gem unpin function calling dma resv lock while the underlying ww mutex is destroyed by drm gem object release. To fix this, the drm gem object release call in...

Lack of input array length check in UNSAFE_swapExactTokensForTokens() could lock user's funds

Lines of code Vulnerability details Impact In case the amounts and routes array do not match in length by mistake: the swap might fail the swap could stop early during the swap path user funds could be locked forever in some situations Proof of Concept src/Swap/BaseV1-periphery.sol function...

No validation on wcanto may lead into lock deposit because of arbitrary address in deposit call

Lines of code Vulnerability details No validation on wcanto may lead into lock deposit because of arbitrary address in deposit call Impact Address wcanto is not being validated. In case of wrong deployment, function swapExactCANTOForTokens will lock ether in a wrong contract. Consideration...

CVE-2022-26451

In ged, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07202966; Issue ID: ALPS07202966...

CVE-2022-26451

In ged, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07202966; Issue ID: ALPS07202966...

CVE-2022-26451

In ged, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07202966; Issue ID: ALPS07202966...

Design/Logic Flaw

In ged, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07202966; Issue ID: ALPS07202966...

CVE-2022-26451

In ged, a use-after-free due to improper locking is described, enabling local escalation to SYSTEM privileges with no user interaction required. Patch ID ALPS07202966 (Issue ALPS07202966) is noted as the remediation; exploitation status is not detailed in the provided documents.

CVE-2022-26451

In ged, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07202966; Issue ID: ALPS07202966...

MediaTek 芯片资源管理错误漏洞

MediaTek chips are a variety of chips from MediaTek, a Chinese company called MediaTek. A security vulnerability exists in the ged module of the MediaTek chips, which stems from improper locking and use after free. This could result in a local privilege escalation that requires system execution...

PT-2022-17862 · Ged · Ged

Name of the Vulnerable Software and Affected Versions: ged affected versions not specified Description: The issue is related to a possible use after free due to improper locking, which could lead to local escalation of privilege. System execution privileges are needed for exploitation, and user...