Lucene search
K

108 matches found

BDU FSTEC
BDU FSTEC
added 2024/09/24 12:0 a.m.8 views

The vulnerability of the freeaddrinfo() function in the libpcap library, which allows a hacker to cause a service failure

The vulnerability of the freeaddrinfo function in the libpcap library is related to the invocation of freeaddrinfo for the same allocated memory block. Exploiting this vulnerability could allow an attacker to cause a service failure...

4.4CVSS6.5AI score0.00227EPSS
Exploits0References6Affected Software4
RedhatCVE
RedhatCVE
added 2024/09/02 6:40 a.m.25 views

CVE-2023-7256

A vulnerability was found in libpcap. During the setup of a remote packet capture, the internal sockinitaddress function calls getaddrinfo and possibly freeaddrinfo, but does not clearly indicate to the caller function as to whether freeaddrinfo remains to be called after the function returns. Th...

4.4CVSS6.6AI score0.00227EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2024/08/31 12:15 a.m.24 views

CVE-2023-7256

In affected libpcap versions during the setup of a remote packet capture the internal function sockinitaddress calls getaddrinfo and possibly freeaddrinfo, but does not clearly indicate to the caller function whether freeaddrinfo still remains to be called after the function returns. This makes i...

4.4CVSS6.8AI score0.00227EPSS
Exploits0References1
CVE
CVE
added 2024/08/30 11:44 p.m.145 views

CVE-2023-7256

CVE-2023-7256 – libpcap is affected by a double-free in the remote packet capture setup path. The root cause is that sock_initaddress() calls getaddrinfo() and may call freeaddrinfo(), but does not clearly communicate to the caller whether freeaddrinfo() still needs to be called after return. Thi...

4.4CVSS4.7AI score0.00227EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2024/08/17 9:9 a.m.15 views

CVE-2024-42292

In the Linux kernel, the following vulnerability has been resolved: kobjectuevent: Fix OOB access within zapmodaliasenv zapmodaliasenv wrongly calculates size of memory block to move, so will cause OOB memory access issue if variable MODALIAS is not the last one within its @env parameter, fixed b...

7.1CVSS5.6AI score0.00248EPSS
Exploits0
CNNVD
CNNVD
added 2024/08/17 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from miscalculating the size of memory blocks, allowing out-of-bounds access to memory...

7.1CVSS6.5AI score0.00248EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2024/08/13 3:9 p.m.3 views

kernel: proc/vmcore: fix clearing user buffer by properly using clear_user()

In the Linux kernel, the following vulnerability has been resolved: proc/vmcore: fix clearing user buffer by properly using clearuser To clear a user buffer we cannot simply use memset, we have to use clearuser. With a virtio-mem device that registers a vmcorecb and has some logically unplugged...

7.8CVSS7AI score0.00229EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/07/16 2:34 a.m.4 views

SUSE CVE-2024-40917

In the Linux kernel, the following vulnerability has been resolved: memblock: make memblocksetnode also warn about use of MAXNUMNODES On an old x86 system with SRAT just covering space above 4Gb: ACPI: SRAT: Node 0 PXM 0 mem 0x100000000-0xfffffffff hotplug the commit referenced below leads to thi...

5.5CVSS7.2AI score0.00264EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/05/28 3:29 p.m.5 views

SUSE CVE-2021-47566

In the Linux kernel, the following vulnerability has been resolved: proc/vmcore: fix clearing user buffer by properly using clearuser To clear a user buffer we cannot simply use memset, we have to use clearuser. With a virtio-mem device that registers a vmcorecb and has some logically unplugged...

5.5CVSS6.3AI score0.00229EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2024/05/27 11:30 a.m.30 views

CVE-2021-47566

In the Linux kernel, the following vulnerability has been resolved: proc/vmcore: fix clearing user buffer by properly using clearuser To clear a user buffer we cannot simply use memset, we have to use clearuser. With a virtio-mem device that registers a vmcorecb and has some logically unplugged...

5.5CVSS6.5AI score0.00229EPSS
Exploits0References4
NVD
NVD
added 2024/05/24 3:15 p.m.24 views

CVE-2021-47566

In the Linux kernel, the following vulnerability has been resolved: proc/vmcore: fix clearing user buffer by properly using clearuser To clear a user buffer we cannot simply use memset, we have to use clearuser. With a virtio-mem device that registers a vmcorecb and has some logically unplugged...

7.8CVSS6.4AI score0.00229EPSS
Exploits0References8
OSV
OSV
added 2024/05/24 3:15 p.m.4 views

DEBIAN-CVE-2021-47566

In the Linux kernel, the following vulnerability has been resolved: proc/vmcore: fix clearing user buffer by properly using clearuser To clear a user buffer we cannot simply use memset, we have to use clearuser. With a virtio-mem device that registers a vmcorecb and has some logically unplugged...

7.8CVSS5.8AI score0.00229EPSS
Exploits0References1
OSV
OSV
added 2024/05/24 3:15 p.m.27 views

CVE-2021-47566

In the Linux kernel, the following vulnerability has been resolved: proc/vmcore: fix clearing user buffer by properly using clearuser To clear a user buffer we cannot simply use memset, we have to use clearuser. With a virtio-mem device that registers a vmcorecb and has some logically unplugged...

7.8CVSS6.7AI score
Exploits0References8
UbuntuCve
UbuntuCve
added 2024/05/24 3:15 p.m.29 views

CVE-2021-47566

In the Linux kernel, the following vulnerability has been resolved: proc/vmcore: fix clearing user buffer by properly using clearuser To clear a user buffer we cannot simply use memset, we have to use clearuser. With a virtio-mem device that registers a vmcorecb and has some logically unplugged...

7.8CVSS6.5AI score0.00229EPSS
Exploits0References10
Cvelist
Cvelist
added 2024/05/24 3:12 p.m.29 views

CVE-2021-47566 proc/vmcore: fix clearing user buffer by properly using clear_user()

In the Linux kernel, the following vulnerability has been resolved: proc/vmcore: fix clearing user buffer by properly using clearuser To clear a user buffer we cannot simply use memset, we have to use clearuser. With a virtio-mem device that registers a vmcorecb and has some logically unplugged...

6.3AI score0.00229EPSS
Exploits0References8
BDU FSTEC
BDU FSTEC
added 2024/05/15 12:0 a.m.6 views

The vulnerability of the btrfs_get_root_ref() function in the fs/btrfs/disk-io.c file of the Linux kernel’s file system allows a hacker to cause a service failure.

The vulnerability of the btrfsgetrootref function in the fs/btrfs/disk-io.c file of the Linux kernel’s file system is related to the repeated release of a reserved memory block. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.2AI score0.00236EPSS
Exploits0References30Affected Software2
OSV
OSV
added 2024/05/01 6:15 a.m.2 views

DEBIAN-CVE-2024-26989

In the Linux kernel, the following vulnerability has been resolved: arm64: hibernate: Fix level3 translation fault in swsuspsave On arm64 machines, swsuspsave faults if it attempts to access MEMBLOCKNOMAP memory ranges. This can be reproduced in QEMU using UEFI when booting with rodata=off...

7.8CVSS5.7AI score0.00238EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/02/22 12:0 a.m.3 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the fact that dlparmemoryremovebyindex may access ranges beyond the drmem lmb array...

7.8CVSS7.8AI score0.00246EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2023/11/16 7:15 p.m.30 views

CVE-2023-6174

An invalid memory block read was found in Wireshark's SSH dissector. This issue may lead to an application crash and denial of service via packet injection or crafted capture file...

4.3CVSS6.4AI score0.00746EPSS
Exploits0References5
Code423n4
Code423n4
added 2023/09/11 12:0 a.m.17 views

"rights" stored in memory is overwriting the memory block storing "from" and 32 bytes memory is given to store 20 byes long "contract_"

Lines of code Vulnerability details Impact Detailed description of the impact of this finding. Expected code should keccak over packed encoding of rights, from, to, contract, tokenId but as 'rights' values are overwriting 'from' values and 32 bytes memory block has been allocated to 'contract'...

7.3AI score
Exploits0
Rows per page
Query Builder