Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from a call to the dmafreecoherent function on an unmapped DMA pointer...

CVE-2023-32724

Memory pointer is in a property of the Ducktape object. This leads to multiple vulnerabilities related to direct memory access and manipulation...

DEBIAN-CVE-2023-32724

Memory pointer is in a property of the Ducktape object. This leads to multiple vulnerabilities related to direct memory access and manipulation...

CVE-2023-32724

Memory pointer is in a property of the Ducktape object. This leads to multiple vulnerabilities related to direct memory access and manipulation...

CVE-2023-32724

Memory pointer is in a property of the Ducktape object. This leads to multiple vulnerabilities related to direct memory access and manipulation...

Design/Logic Flaw

Memory pointer is in a property of the Ducktape object. This leads to multiple vulnerabilities related to direct memory access and manipulation...

UBUNTU-CVE-2023-32724

Memory pointer is in a property of the Ducktape object. This leads to multiple vulnerabilities related to direct memory access and manipulation...

CVE-2023-32724

Memory pointer is in a property of the Ducktape object. This leads to multiple vulnerabilities related to direct memory access and manipulation...

CVE-2023-32724

CVE-2023-32724 concerns Zabbix’s use of the Duktape JavaScript engine, where a memory pointer is exposed via a Ducktape object property, enabling direct memory access/manipulation. The connected sources confirm this affects Zabbix frontend/backend components relying on Duktape, with potential hig...

PT-2023-9376 · Zabbix +3 · Zabbix +3

Name of the Vulnerable Software and Affected Versions: Zabbix affected versions not specified Description: The issue is related to incorrect permission assignment for a critical resource in the Zabbix monitoring system. Exploitation of this issue may allow a remote attacker to access confidential...

curl: CVE-2023-28319: UAF in SSH sha256 fingerprint check

Vulnerability description not provided...

CVE-2022-31625

In PHP versions 7.4.x below 7.4.30, 8.0.x below 8.0.20, and 8.1.x below 8.1.7, when using Postgres database extension, supplying invalid parameters to the parametrized query may lead to PHP attempting to free memory using uninitialized data as pointers. This could lead to RCE vulnerability or...

Xiaomi MIUI elevation of privilege vulnerability

Xiaomi MIUI is an Android-based smartphone operating system developed by Xiaomi Technology Xiaomi in China. version 12.5.2 of Xiaomi MIUI contains a security vulnerability that stems from a memory pointer being copied to two function modules when a function is called. An attacker could exploit th...

Double free

There is a pointer double free vulnerability in Some MIUI Services. When a function is called, the memory pointer is copied to two function modules, and an attacker can cause the pointer to be repeatedly released through malicious operations, resulting in the affected module crashing and affectin...

Xiaomi MIUI 资源管理错误漏洞

Xiaomi MIUI is an Android-based smartphone operating system developed by Xiaomi Technology Xiaomi in China. version 12.5.2 of Xiaomi MIUI contains a security vulnerability that stems from a memory pointer being copied to two function modules when a function is called. An attacker could exploit th...

Mageia: Security Advisory (MGASA-2014-0497)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

ALPINE-CVE-2021-22945

When sending data to an MQTT server, libcurl = 7.73.0 and 7.78.0 could in some circumstances erroneously keep a pointer to an already freed memory area and both use that again in a subsequent call to send data and also free it again...

AZL-6589 CVE-2021-38205 affecting package kernel for versions less than 5.10.78.1-1

drivers/net/ethernet/xilinx/xilinxemaclite.c in the Linux kernel before 5.13.3 makes it easier for attackers to defeat an ASLR protection mechanism because it prints a kernel pointer i.e., the real IOMEM pointer...

CVE-2021-22548

An attacker can change the pointer to untrusted memory to point to trusted memory region which causes copying trusted memory to trusted memory, if the latter is later copied out, it allows for reading of memory regions from the trusted region. It is recommended to update past 0.6.2 or git commit...

Omron CX-One and CX-Protocol Security Vulnerabilities

Omron CX-One is an integrated toolkit from Omron Japan. The products include inverters, temperature controllers, and PLC programming software, etc. CX-Protocol is one of the components used to create a serial communication protocol to communicate with standard serial devices. A security...