205 matches found
Azure Linux 3.0 Security Update: kernel (CVE-2024-42247)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42247 advisory. - In the Linux kernel, the following vulnerability has been resolved: wireguard: allowedips: avoid unaligned...
FreeBSD : libcaca -- Multiple vulnerabilities (c10b639c-e51c-11ef-9e76-4ccc6adda413)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the c10b639c-e51c-11ef-9e76-4ccc6adda413 advisory. Sam Hocevar reports: Multiple memory leaks and invalid memory accesses: Tenable has extracted...
CVE-2024-56775
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix handling of plane refcount Why The mechanism to backup and restore plane states doesn't maintain refcount, which can cause issues if the refcount of the plane changes in between backup and restore operations,...
CVE-2024-56775 drm/amd/display: Fix handling of plane refcount
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix handling of plane refcount Why The mechanism to backup and restore plane states doesn't maintain refcount, which can cause issues if the refcount of the plane changes in between backup and restore operations,...
CVE-2024-56775
CVE-2024-56775 concerns the Linux kernel DRM/AMD display stack. The issue is in the plane state backup/restore flow where the plane refcount is not preserved, risking memory leaks if the refcount should decrease or double frees/invalid memory accesses if it should increase during state transition...
UBUNTU-CVE-2024-45818
The hypervisor contains code to accelerate VGA memory accesses for HVM guests, when the virtual VGA is in "standard" mode. Locking involved there has an unusual discipline, leaving a lock acquired past the return from the function that acquired it. This behavior results in a problem when emulatin...
Qualcomm Chipsets 安全漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from the frame size not being properly programmed into the decoder hardware, which could result in invalid memory accesses by the decoder...
Updated openssl packages fix security vulnerability
Low-level invalid GF2^m parameters lead to OOB memory accesses. CVE-2024-9143...
CVE-2024-50105
CVE-2024-50105 relates to the Linux kernel ASoC Qualcomm Soundwire path. The SC7280 Soundwire runtime stream allocation was not updated when allocation was moved to per-machine soundcard drivers, risking NULL pointer dereference or uninitialized memory during playback. The fix (commit 15c7fab0e04...
SUSE CVE-2024-46812
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skip inactive planes within ModeSupportAndSystemConfiguration Why Coverity reports Memory - illegal accesses. How Skip inactive planes...
UBUNTU-CVE-2024-46812
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skip inactive planes within ModeSupportAndSystemConfiguration Why Coverity reports Memory - illegal accesses. How Skip inactive planes...
EulerOS 2.0 SP9 : kernel (EulerOS-SA-2024-2394)
According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : kernel:ACPI: CPPC: Use accesswidth over bitwidth for system memory accessesCVE-2024-35995 ACPI: LPIT: Avoid u32 multiplication...
CVE-2024-43910
In the Linux kernel, the following vulnerability has been resolved: bpf: add missing checkfuncargregoff to prevent out-of-bounds memory accesses Currently, it's possible to pass in a modified CONSTPTRTODYNPTR to a global function as an argument. The adverse effects of this is that BPF helpers can...
CVE-2024-43910
In the Linux kernel, the following vulnerability has been resolved: bpf: add missing checkfuncargregoff to prevent out-of-bounds memory accesses Currently, it's possible to pass in a modified CONSTPTRTODYNPTR to a global function as an argument. The adverse effects of this is that BPF helpers can...
CVE-2024-43910
In the Linux kernel, the following vulnerability has been resolved: bpf: add missing checkfuncargregoff to prevent out-of-bounds memory accesses Currently, it's possible to pass in a modified CONSTPTRTODYNPTR to a global function as an argument. The adverse effects of this is that BPF helpers can...
CVE-2024-43910 bpf: add missing check_func_arg_reg_off() to prevent out-of-bounds memory accesses
In the Linux kernel, the following vulnerability has been resolved: bpf: add missing checkfuncargregoff to prevent out-of-bounds memory accesses Currently, it's possible to pass in a modified CONSTPTRTODYNPTR to a global function as an argument. The adverse effects of this is that BPF helpers can...
CVE-2024-43910 bpf: add missing check_func_arg_reg_off() to prevent out-of-bounds memory accesses
In the Linux kernel, the following vulnerability has been resolved: bpf: add missing checkfuncargregoff to prevent out-of-bounds memory accesses Currently, it's possible to pass in a modified CONSTPTRTODYNPTR to a global function as an argument. The adverse effects of this is that BPF helpers can...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the wifi:ath12k module driver sharing the same ring mask index with the monitor ring and the reo reinjection...
wireguard: allowedips: avoid unaligned 64-bit memory accesses
...
netlabel: fix out-of-bounds memory accesses
...