Lucene search
K

4 matches found

RedHat Linux
RedHat Linux
added 2020/09/29 10:31 p.m.4 views

kernel: use-after-free caused by a malicious USB device in the drivers/usb/misc/adutux.c driver

A flaw was found in the Linux kernel’s implementation for ADU devices from Ontrak Control Systems, where an attacker with administrative privileges and access to a local account could pre-groom the memory and physically disconnect or unload a module. The attacker must be able to access either of...

4.9CVSS7AI score0.00409EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/01/21 4:4 p.m.1 views

kernel: use-after-free in fs/xfs/xfs_super.c

A flaw was found in the Linux kernel's implementation of the XFS filesystem. A key data structure sb-sfsinfo may not be de-allocated when the system is under memory pressure. This same data structure is then used at a later time during filesystem operations. This could allow a local attacker who ...

7.8CVSS7AI score0.00607EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/08/06 12:47 p.m.1 views

kernel: a NULL pointer dereference in drivers/scsi/megaraid/megaraid_sas_base.c leading to DoS

A flaw was found in the Linux kernel, prior to version 5.0.7, in drivers/scsi/megaraid/megaraidsasbase.c, where a NULL pointer dereference can occur when megasascreateframepool fails in megasasalloccmds. An attacker can crash the system if they were able to load the megaraidsas kernel module and...

7.8CVSS7AI score0.05789EPSS
Exploits0References4
GoogleProjectZero
GoogleProjectZero
added 2016/12/14 12:0 a.m.22 views

Chrome OS exploit: one byte overflow and symlinks

The following article is an guest blog post from an external researcher i.e. the author is not a Project Zero or Google researcher. This post is about a Chrome OS exploit I reported to Chrome VRP in September. The Project Zero folks were nice to let me do a guest post about it, so here goes. The...

8.1AI score
Exploits0
Rows per page
Query Builder