DEBIAN-CVE-2024-46726

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Ensure index calculation will not overflow WHY & HOW Make sure vmid0p72idx, vnom0p8idx and vmax0p9idx calculation will never overflow and exceess array size. This fixes 3 OVERRUN and 1 INTEGEROVERFLOW issues...

Asrmicro ASR Series 安全漏洞

The Asrmicro ASR Series is a series of chips from Avantage Technology Asrmicro, a Chinese company. A security vulnerability exists in the Asrmicro ASR Series that stems from incorrect output and possible memory access overruns. The following products are affected: ASR360x Series chips, ASR160x...

Advisory ROSA-SA-2024-2324

Software: xorg-x11-server 1.20.4 OS: rosa-server79 packageevrstring: xorg-x11-server-1.20.4-25.res7 CVE-ID: CVE-2023-6377 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: An error has been detected in xorg-server. Requesting or modifying XKB button actions, such as switching from touchpad to mouse, can...

Sony Xperia 系列安全漏洞

The Sony Xperia series is a line of smartphones from the Japanese company Sony Sony. A security vulnerability exists in the Sony Xperia 1, 5, and Pro series versions, which stems from a lack of validation of the number of frames passed during music playback, which may result in memory access...

DPDK 缓冲区错误漏洞

DPDK is a data plane development kit for Linux-based platforms. The product supports execution of packet processing on multiple CPU architectures. A security vulnerability exists in DPDK, which stems from the function vhostusersetinflightfd that does not validate msg-payload.inflight.numqueues,...

2021’s Most Dangerous Software Weaknesses

Mitre Corp. recently updated its list of the top 25 most dangerous software bugs, and it’s little surprise that a number of them have been on that list for years. The Common Weakness Enumeration CWE list represents vulnerabilities that have been widely known for years, yet are still being coded...

The vulnerability of the ImageIO component in Mac OS operating systems allows a hacker to execute arbitrary code.

The vulnerability of the ImageIO component in Mac OS operating systems is related to writing beyond buffer boundaries in memory, as well as to operations beyond buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using malicious web conten...

Vulnerabilities of operating systems such as Mac OS X and iOS, allowing attackers to execute arbitrary code or cause system failures

The vulnerability of the CoreFoundation component in Mac OS X and iOS operating systems arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause a service failure memory corruption,...

openSUSE Security Update : kernel (openSUSE-SU-2011:0004-1)

The openSUSE 11.3 kernel was updated to fix various bugs and security issues. Following security issues have been fixed: CVE-2010-4347: A local user could inject ACPI code into the kernel via the world-writable 'customdebug' file, allowing local privilege escalation. CVE-2010-4258: A local attack...

Important: kernel security and bug fix update

2.6.18-53.1.14.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - NET Fix msi issue with kexec/kdump Michael Chan orabug 6219364 - MM Fix allocpagesnode static nid' race made kernel crash Joe Jin orabug 6187457 - splice Fix bad unlockpage in error case Jens Axboe...