55 matches found
PT-2025-33588
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel related to memory allocation for the skb shared info member of an skb socket buffer during the transition from netdev alloc ip align to build skb...
Linux Distros Unpatched Vulnerability : CVE-2021-47542
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: qlogic: qlcnic: Fix a NULL pointer dereference in qlcnic83xxaddrings In qlcnic83xxaddrings, the indirect function of ahw-hwops-allocmbxargs will be called ...
Linux Distros Unpatched Vulnerability : CVE-2019-15211
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the drivers/media/v4l2-core/v4l2-dev.c...
CVE-2025-38274 fpga: fix potential null pointer deref in fpga_mgr_test_img_load_sgt()
In the Linux kernel, the following vulnerability has been resolved: fpga: fix potential null pointer deref in fpgamgrtestimgloadsgt fpgamgrtestimgloadsgt allocates memory for sgt using kunitkzalloc however it does not check if the allocation failed. It then passes sgt to sgalloctable, which passe...
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: tpm: Changed to kvalloc in eventlog/acpi.c The following failure was reported on HPE ProLiant D320: 10.693310 T1 tpmtis STM0925:00: 2.0 TPM device-id 0x3, rev-id 0 10.848132 T1 ------------ Cut here ------------ 10.853559 T1...
ROS-20250616-07
A vulnerability in the Mbed TLS software is related to a bug in the handling of memory allocation during the during the TLS handshake. Exploitation of the vulnerability could allow an attacker to bypass the authentication process Mbed TLS software vulnerability is related to insecure default...
Alibaba Cloud Linux 3 : 0089: cryptsetup (ALINUX3-SA-2021:0089)
"The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2021:0089 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2020-14382: A vulnerability was found in...
SUSE-SU-2025:1285-1 Security update for etcd
This update for etcd fixes the following issues: - Update to version 3.5.21: - CVE-2025-30204: Fixed a bug that could allow excessive memory allocation during header parsing in jwt-go. bsc1240515...
DEBIAN-CVE-2024-58005
In the Linux kernel, the following vulnerability has been resolved: tpm: Change to kvalloc in eventlog/acpi.c The following failure was reported on HPE ProLiant D320: 10.693310 T1 tpmtis STM0925:00: 2.0 TPM device-id 0x3, rev-id 0 10.848132 T1 ------------ cut here ------------ 10.853559 T1...
CVE-2024-58005 tpm: Change to kvalloc() in eventlog/acpi.c
In the Linux kernel, the following vulnerability has been resolved: tpm: Change to kvalloc in eventlog/acpi.c The following failure was reported on HPE ProLiant D320: 10.693310 T1 tpmtis STM0925:00: 2.0 TPM device-id 0x3, rev-id 0 10.848132 T1 ------------ cut here ------------ 10.853559 T1...
mm/vmalloc: fix vmalloc which may return null if called with __GFP_NOFAIL
...
CVE-2023-48713
Knative Serving (on Kubernetes) contains a DoS flaw (CVE-2023-48713) caused by an unbound memory allocation in the /metrics response. If an attacker controls a pod sufficiently to influence its responses, they can trigger a denial of service in the autoscaler. The issue is specific to the metrics...
Qualcomm Chipsets Buffer Error Vulnerability
Qualcomm Chipsets are a family of chipsets from Qualcomm, an American company. A security vulnerability exists in the Qualcomm Chipsets that stems from a memory corruption when allocating memory in the COmxApeDec module of the Audio...
SUSE CVE-2023-2283
A vulnerability was found in libssh, where the authentication check of the connecting client can be bypassed in thepkiverifydatasignature function in memory allocation problems. This issue may happen if there is insufficient memory or the memory usage is limited. The problem is caused by the retu...
SUSE CVE-2013-6479
util.c in libpurple in Pidgin before 2.10.8 does not properly allocate memory for HTTP responses that are inconsistent with the Content-Length header, which allows remote HTTP servers to cause a denial of service application crash via a crafted response...
SUSE CVE-2016-7178
epan/dissectors/packet-umtsfp.c in the UMTS FP dissector in Wireshark 2.x before 2.0.6 does not ensure that memory is allocated for certain data structures, which allows remote attackers to cause a denial of service invalid write access and application crash via a crafted packet...
SUSE CVE-2020-29370
An issue was discovered in kmemcacheallocbulk in mm/slub.c in the Linux kernel before 5.5.11. The slowpath lacks the required TID increment, aka CID-fd4d9c7d0c71...
FTP 安全漏洞
FTP is a simple FTP client and server implementation by Rovin Bhandari, a personal developer. A security vulnerability in FTP version 96c1a35, which stems from the use of malloc instead of free, can be exploited by an attacker to cause a denial of service by engaging in client-side activity such ...
Mitsubishi Electric MC Works64 缓冲区错误漏洞
Mitsubishi Electric MC Works64 is a data acquisition and monitoring system SCADA from Mitsubishi Electric Japan. A security vulnerability exists in Mitsubishi Electric MC Works64 that stems from a coding error in the SQL query engine memory allocation code that makes it possible to execute a seri...
DEBIAN-CVE-2021-45481
In WebKitGTK before 2.32.4, there is incorrect memory allocation in WebCore::ImageBufferCairoImageSurfaceBackend::create, leading to a segmentation violation and application crash, a different vulnerability than CVE-2021-30889...