167 matches found
CVE-2024-52560
CVE-2024-52560 — Linux kernel ntfs3 handling improved . The vulnerability, resolved in the Linux kernel, involved the NTFS-3G ntfs3 driver marking an inode as bad only after detecting an error in mi_enum_attr(). The fix extends mi_enum_attr()’s interface by adding a new parameter (struct ntfs_ino...
CVE-2024-57999 powerpc/pseries/iommu: IOMMU incorrectly marks MMIO range in DDW
In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/iommu: IOMMU incorrectly marks MMIO range in DDW Power Hypervisor can possibily allocate MMIO window intersecting with Dynamic DMA Window DDW range, which is over 32-bit addressing. These MMIO pages needs to be...
PT-2025-8818
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved. The issue is related to the mi enum attr function in the fs/ntfs3 component. The function interface has been extended with an...
CVE-2025-0503 Leaked User IDs and Metadata of Deleted DMs
Mattermost versions 9.11.x = 9.11.6 fail to filter out DMs from the deleted channels endpoint which allows an attacker to infer user IDs and other metadata from deleted DMs if someone had manually marked DMs as deleted in the database...
Astra Linux – Vulnerability in Firefox, Thunderbird
Unexpected marking operations at the beginning of the sweeping process could lead to a use-after-free vulnerability. This vulnerability affects Firefox 129, Firefox ESR 115.14, Firefox ESR 128.1, Thunderbird 128.1, and Thunderbird 115.14...
CVE-2022-1064
SQL injection through marking blog comments on bulk as spam in GitHub repository forkcms/forkcms prior to 5.11.1...
CVE-2024-56702
In the Linux kernel, the following vulnerability has been resolved: bpf: Mark rawtp arguments with PTRMAYBENULL Arguments to a raw tracepoint are tagged as trusted, which carries the semantics that the pointer will be non-NULL. However, in certain cases, a raw tracepoint argument may end up being...
mptcp: pm: only mark 'subflow' endp as available
...
Mattermost Access Control Error Vulnerability (CNVD-2024-45900)
Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. An Access Control Error vulnerability exists in Mattermost versions 9.5.x through 9.5.7 and 9.10.x through 9.10.0, which stems from a failure to enforce proper access control and can be exploited by an...
CVE-2024-43813 IDOR when marking read a user's channel
Mattermost versions 9.5.x = 9.5.7, 9.10.x = 9.10.0 fail to enforce proper access controls which allows any authenticated user, including guests, to mark any channel inside any team as read for any user...
mozilla: Use-after-free in JavaScript garbage collection
The Mozilla Foundation Security Advisory describes this flaw as: Unexpected marking work at the start of sweeping could have led to a use-after-free...
mozilla: Use-after-free in JavaScript garbage collection
The Mozilla Foundation Security Advisory describes this flaw as: Unexpected marking work at the start of sweeping could have led to a use-after-free...
mozilla: Use-after-free in JavaScript garbage collection
The Mozilla Foundation Security Advisory describes this flaw as: Unexpected marking work at the start of sweeping could have led to a use-after-free...
mozilla: Use-after-free in JavaScript garbage collection
The Mozilla Foundation Security Advisory describes this flaw as: Unexpected marking work at the start of sweeping could have led to a use-after-free...
mozilla: Use-after-free in JavaScript garbage collection
The Mozilla Foundation Security Advisory describes this flaw as: Unexpected marking work at the start of sweeping could have led to a use-after-free...
mozilla: Use-after-free in JavaScript garbage collection
The Mozilla Foundation Security Advisory describes this flaw as: Unexpected marking work at the start of sweeping could have led to a use-after-free...
mozilla: Use-after-free in JavaScript garbage collection
The Mozilla Foundation Security Advisory describes this flaw as: Unexpected marking work at the start of sweeping could have led to a use-after-free...
mozilla: Use-after-free in JavaScript garbage collection
The Mozilla Foundation Security Advisory describes this flaw as: Unexpected marking work at the start of sweeping could have led to a use-after-free...
mozilla: Use-after-free in JavaScript garbage collection
The Mozilla Foundation Security Advisory describes this flaw as: Unexpected marking work at the start of sweeping could have led to a use-after-free...
mozilla: Use-after-free in JavaScript garbage collection
The Mozilla Foundation Security Advisory describes this flaw as: Unexpected marking work at the start of sweeping could have led to a use-after-free...