130 matches found
2023.1 IPU - Intel® Xeon® Processor Advisory
Summary: A potential security vulnerability in some Intel® Xeon® Processors with Intel® Software Guard Extensions SGX may allow escalation of privilege. Intel is releasing firmware updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2022-33196 Description: Incorrec...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from memcg not limiting the number of portable operating system interface POSIX file locks, which can lead to hos...
kernel: unaccounted ipc objects in Linux kernel lead to breaking memcg limits and DoS attacks
A memory overflow vulnerability was found in the Linux kernel’s ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. The highest threat from th...
The vulnerability of the s390/s390x memory controller component in Linux operating systems allows attackers to disclose sensitive information that should be protected.
The vulnerability of the s390/s390x memory controller component in Linux operating systems is related to incorrect handling of zero bytes or Nul characters during data exchange. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by security...
The vulnerability of the i5100_init_one handler in Linux kernel allows a hacker to trigger a service failure.
The vulnerability of the i5100initone implementation drivers/edac/i5100edac.ko in the Linux kernel is related to a memory leak. Exploiting this vulnerability can allow an attacker to cause a system failure by disabling ADDI-DATA GmbH communication cards with the identifier PCIDEVICEIDINTEL510019...
UBUNTU-CVE-2018-16847
An OOB heap buffer r/w access issue was found in the NVM Express Controller emulation in QEMU. It could occur in nvmecmbops routines in nvme device. A guest user/process could use this flaw to crash the QEMU process resulting in DoS or potentially run arbitrary code with privileges of the QEMU...
CVE-2014-8171
The memory resource controller aka memcg in the Linux kernel allows local users to cause a denial of service deadlock by spawning new processes within a memory-constrained cgroup...
CVE-2014-8171
The memory resource controller aka memcg in the Linux kernel allows local users to cause a denial of service deadlock by spawning new processes within a memory-constrained cgroup...
CentOS 7 : kernel (CESA-2015:2152)
Updated kernel packages that fix multiple security issues, address several hundred bugs, and add numerous enhancements are now available as part of the ongoing support and maintenance of Red Hat Enterprise Linux version 7. This is the second regular update. Red Hat Product Security has rated this...
kernel: memcg: OOM handling DoS
It was found that the Linux kernel memory resource controller's memcg handling of OOM out of memory conditions could lead to deadlocks. An attacker able to continuously spawn new processes within a single memory-constrained cgroup during an OOM event could use this flaw to lock up the system...