Lucene search
K

220 matches found

CVE
CVE
added 2025/09/17 2:56 p.m.23 views

CVE-2023-53353

The CVE concerns the Linux kernel in accel/habanalabs where the memory manager IDR destruction is postponed from the memory manager fini to hpriv_release(). The issue arises because destroying the IDR while a user context may still hold memory buffers could cause release calls to fail later, crea...

5.5CVSS6AI score0.00156EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2025/09/17 2:56 p.m.2 views

CVE-2023-53352 drm/ttm: check null pointer before accessing when swapping

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: check null pointer before accessing when swapping Add a check to avoid null pointer dereference as below: 90.002283 general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 1 PREEMPT SMP KASA...

5.5CVSS6AI score0.00184EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/09/02 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-38669

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Revert drm/gem-shmem: Use dmabuf from GEM object instance This reverts commit 1a148af06000e545e714fe3210af3d77ff903c11. The dmabuf field in struct drmgemobject ...

5.5CVSS6.3AI score0.00121EPSS
Exploits0References3
CVE
CVE
added 2025/08/19 5:2 p.m.26 views

CVE-2025-38554

CVE-2025-38554 in the Linux kernel describes a use-after-free (UAF) involving VMAs: if vma->mm is freed after vma->vm_refcnt has dropped, a recycled VMA could be mishandled, leading to UAF. The race can occur when VMAs are recycled under RCU (with SLAB_TYPESAFE_BY_RCU) and lock_vma_under_rc...

7.8CVSS7.1AI score0.00162EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2025/07/16 12:0 a.m.5 views

Romm 安全漏洞

Romm is an open source read-only memory manager from The RomM Project. A security vulnerability exists in RomM versions prior to 3.10.3 and prior to 4.0.0-beta.3, which stems from the presence of authentication path traversal in the api/raw endpoints, which could lead to the disclosure of passwor...

8.3CVSS6.6AI score0.00445EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/23 6:15 a.m.5 views

CVE-2024-47029

In TrustySharedMemoryManager::GetSharedMemory of ondevice/trusty/trustysharedmemorymanager.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed fo...

5.5CVSS6.2AI score0.00072EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:13 p.m.17 views

CVE-2021-39682

In mgmallocpage of memorygroupmanager.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

7.8CVSS7.2AI score0.00122EPSS
Exploits0References1
Amazon
Amazon
added 2025/04/17 12:0 a.m.19 views

Important: ghostscript

Issue Overview: The calculation of the buffer size was being done with int values, and overflowing that data type. The bug has existed since the creation of the file contrib/japanese/gdevnpdl.c The calculation of the buffer size was being done with int values, and overflowing that data type. By...

9.8CVSS7.9AI score0.00806EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/04/17 12:0 a.m.9 views

Amazon Linux 2 : ghostscript (ALAS-2025-2820)

The version of ghostscript installed on the remote host is prior to 9.54.0-9. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2820 advisory. Fix confusion between bytes and shorts. Data is being copied from a string in multiple of shorts, rather than multipl...

9.8CVSS7.2AI score0.00586EPSS
Exploits0References8
Amazon
Amazon
added 2025/04/01 12:0 a.m.7 views

Important: ghostscript

Issue Overview: The calculation of the buffer size was being done with int values, and overflowing that data type. The bug has existed since the creation of the file contrib/japanese/gdevnpdl.c The calculation of the buffer size was being done with int values, and overflowing that data type. By...

9.8CVSS7.2AI score0.00806EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2016-10012

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The shared memory manager associated with pre-authentication compression in sshd in OpenSSH before 7.4 does not ensure that a bounds check is enforced by all...

7.8CVSS6.9AI score0.01281EPSS
Exploits1References2
OSV
OSV
added 2024/11/13 9:15 p.m.2 views

UBUNTU-CVE-2024-36275

NULL pointer dereference in some IntelR OptaneTM PMem Management software versions before CRMGMT02.00.00.4040, CRMGMT03.00.00.0499 may allow a authenticated user to potentially enable denial of service via local access...

6.1CVSS5.8AI score0.00207EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/10/25 12:0 a.m.5 views

Google Pixel 安全漏洞

Google Pixel is a smartphone from the American company Google Google. Google Pixel suffers from a buffer overflow vulnerability that stems from incorrect boundary checking in TrustySharedMemoryManager::GetSharedMemory at ondevice/trusty/trustysharedmemorymanager.cc, which could be exploited by an...

5.5CVSS7.1AI score0.00072EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/08/07 12:0 a.m.7 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a race condition between a delayed split and a large folio migration in the mm module, which could lead to a...

5.5CVSS6.4AI score0.00184EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/08/07 12:0 a.m.8 views

The vulnerability of the __unmap_hugepage_range() function in the Linux kernel memory manager allows a hacker to trigger a system failure.

The vulnerability of the unmaphugepagerange function in the mm/hugetlb.c file of the Linux kernel’s memory manager is related to an incorrect check in the code that returns vmaneedsreservation. Exploiting this vulnerability could allow an attacker to trigger a service failure...

5.5CVSS6AI score0.0018EPSS
Exploits0References7Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.38 views

RHEL 6 : openssh (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openssh: loading of untrusted PKCS11 modules in ssh-agent CVE-2016-10009 - openssh: Bounds check can be...

7.8CVSS7.3AI score0.58568EPSS
Exploits12References6
Tenable Nessus
Tenable Nessus
added 2023/09/27 12:0 a.m.23 views

Amazon Linux 2 : firefox (ALASFIREFOX-2023-006)

The version of firefox installed on the remote host is prior to 102.10.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2FIREFOX-2023-006 advisory. The Mozilla Foundation describes this issue as follows:Unexpected data returned from the Safe Browsing API could...

8.8CVSS7.8AI score0.00741EPSS
Exploits0References18
NVD
NVD
added 2023/06/02 5:15 p.m.21 views

CVE-2023-29536

An attacker could cause the memory manager to incorrectly free a pointer that addresses attacker-controlled memory, resulting in an assertion, memory corruption, or a potentially exploitable crash. This vulnerability affects Firefox 112, Focus for Android 112, Firefox ESR 102.10, Firefox for...

8.8CVSS8.1AI score0.00702EPSS
Exploits0References4
OSV
OSV
added 2023/06/02 5:15 p.m.1 views

DEBIAN-CVE-2023-29536

An attacker could cause the memory manager to incorrectly free a pointer that addresses attacker-controlled memory, resulting in an assertion, memory corruption, or a potentially exploitable crash. This vulnerability affects Firefox 112, Focus for Android 112, Firefox ESR 102.10, Firefox for...

8.8CVSS7.9AI score0.00702EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2023/06/02 12:0 a.m.16 views

CVE-2023-29536

An attacker could cause the memory manager to incorrectly free a pointer that addresses attacker-controlled memory, resulting in an assertion, memory corruption, or a potentially exploitable crash. This vulnerability affects Firefox 112, Focus for Android 112, Firefox ESR 102.10, Firefox for...

8.8CVSS8.4AI score0.00702EPSS
Exploits0
Rows per page
Query Builder