Lucene search
K

244 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:0 a.m.2 views

SUSE CVE-2020-9273

In ProFTPD 1.3.7, it is possible to corrupt the memory pool by interrupting the data transfer channel. This triggers a use-after-free in allocpool in pool.c, and possible remote code execution...

8.8CVSS7.4AI score0.10985EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:59 a.m.10 views

SUSE CVE-2020-11993

Apache HTTP Server versions 2.4.20 to 2.4.43 When trace/debug was enabled for the HTTP/2 module and on certain traffic edge patterns, logging statements were made on the wrong connection, causing concurrent use of memory pools. Configuring the LogLevel of modhttp2 above "info" will mitigate this...

5.3CVSS7AI score0.58716EPSS
Exploits2References12
SUSE CVE
SUSE CVE
added 2023/02/15 3:44 a.m.4 views

SUSE CVE-2021-26221

The ezxmlnew function in ezXML 0.8.6 and earlier is vulnerable to OOB write when opening XML file after exhausting the memory pool...

4.7CVSS7AI score0.01178EPSS
Exploits1References12
SUSE CVE
SUSE CVE
added 2023/02/15 3:44 a.m.5 views

SUSE CVE-2021-26222

The ezxmlnew function in ezXML 0.8.6 and earlier is vulnerable to OOB write when opening XML file after exhausting the memory pool...

6CVSS7AI score0.01178EPSS
Exploits1References12
SUSE CVE
SUSE CVE
added 2023/02/15 3:25 a.m.3 views

SUSE CVE-2022-33747

Arm: unbounded memory consumption for 2nd-level page tables Certain actions require e.g. removing pages from a guest's P2M Physical-to-Machine mapping. When large pages are in use to map guest pages in the 2nd-stage page tables, such a removal operation may incur a memory allocation to replace a...

3.8CVSS4.5AI score0.00259EPSS
Exploits0References12
NVD
NVD
added 2022/10/14 3:16 p.m.40 views

CVE-2022-42464

OpenHarmony-v3.1.2 and prior versions, 3.0.6 and prior versions have a Kernel memory pool override vulnerability in /dev/mmzuserdev device driver. The impact depends on the privileges of the attacker. The unprivileged process run on the device could disclose sensitive information including kernel...

7.8CVSS0.00185EPSS
Exploits0References1
OSV
OSV
added 2022/10/14 3:16 p.m.7 views

CVE-2022-42464

OpenHarmony-v3.1.2 and prior versions, 3.0.6 and prior versions have a Kernel memory pool override vulnerability in /dev/mmzuserdev device driver. The impact depends on the privileges of the attacker. The unprivileged process run on the device could disclose sensitive information including kernel...

7.8CVSS6.1AI score0.00185EPSS
Exploits0References1
Prion
Prion
added 2022/10/14 3:16 p.m.18 views

Design/Logic Flaw

OpenHarmony-v3.1.2 and prior versions, 3.0.6 and prior versions have a Kernel memory pool override vulnerability in /dev/mmzuserdev device driver. The impact depends on the privileges of the attacker. The unprivileged process run on the device could disclose sensitive information including kernel...

4.3CVSS7.7AI score0.00185EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/10/14 2:40 p.m.44 views

CVE-2022-42464 Kernel memory pool override in /dev/mmz_userdev device driver. The impact depends on the privileges of the attacker. The unprivileged process run on the device could disclose sensitive information including kernel pointer, which could be used in furth ...

OpenHarmony-v3.1.2 and prior versions, 3.0.6 and prior versions have a Kernel memory pool override vulnerability in /dev/mmzuserdev device driver. The impact depends on the privileges of the attacker. The unprivileged process run on the device could disclose sensitive information including kernel...

6.7CVSS7.9AI score0.00185EPSS
Exploits0References1
CVE
CVE
added 2022/10/14 2:40 p.m.42 views

CVE-2022-42464

CVE-2022-42464 affects OpenHarmony v3.1.2 and earlier (including 3.0.6 and prior) with a Kernel memory pool override in the /dev/mmz_userdev device driver. The vulnerability allows an unprivileged process to mmap kernel memory pools and override them, potentially exposing kernel pointers and enab...

7.8CVSS7.1AI score0.00185EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/10/14 2:40 p.m.8 views

CVE-2022-42464 Kernel memory pool override in /dev/mmz_userdev device driver. The impact depends on the privileges of the attacker. The unprivileged process run on the device could disclose sensitive information including kernel pointer, which could be used in furth ...

OpenHarmony-v3.1.2 and prior versions, 3.0.6 and prior versions have a Kernel memory pool override vulnerability in /dev/mmzuserdev device driver. The impact depends on the privileges of the attacker. The unprivileged process run on the device could disclose sensitive information including kernel...

6.7CVSS7.8AI score0.00185EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/10/14 12:0 a.m.9 views

PT-2022-26447 · Unknown · Openharmony

Name of the Vulnerable Software and Affected Versions: OpenHarmony versions 3.1.2 and prior OpenHarmony versions 3.0.6 and prior Description: The issue is related to a Kernel memory pool override vulnerability in the /dev/mmz userdev device driver. The impact depends on the privileges of the...

7.8CVSS7.3AI score0.00185EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/10/14 12:0 a.m.23 views

OpenHarmony 安全漏洞

OpenHarmony is a kind of Hongmeng operating system open source project of China OpenAtom Foundation Foundation. A security vulnerability exists in OpenHarmony v3.1.2 and earlier and 3.0.6 and earlier, which stems from a kernel memory pool overwriting issue in its /dev/mmzuserdev device driver...

7.8CVSS7.8AI score0.00185EPSS
Exploits0References2
OSV
OSV
added 2022/10/11 1:15 p.m.2 views

DEBIAN-CVE-2022-33747

Arm: unbounded memory consumption for 2nd-level page tables Certain actions require e.g. removing pages from a guest's P2M Physical-to-Machine mapping. When large pages are in use to map guest pages in the 2nd-stage page tables, such a removal operation may incur a memory allocation to replace a...

3.8CVSS4.8AI score0.00259EPSS
Exploits0References1
NVD
NVD
added 2022/10/11 1:15 p.m.17 views

CVE-2022-33747

Arm: unbounded memory consumption for 2nd-level page tables Certain actions require e.g. removing pages from a guest's P2M Physical-to-Machine mapping. When large pages are in use to map guest pages in the 2nd-stage page tables, such a removal operation may incur a memory allocation to replace a...

3.8CVSS0.00259EPSS
Exploits0References8
OSV
OSV
added 2022/10/11 1:15 p.m.1 views

DEBIAN-CVE-2022-33746

P2M pool freeing may take excessively long The P2M pool backing second level address translation for guests may be of significant size. Therefore its freeing may take more time than is reasonable without intermediate preemption checks. Such checking for the need to preempt was so far missing...

6.5CVSS6.3AI score0.00265EPSS
Exploits0References1
OSV
OSV
added 2022/10/11 1:15 p.m.4 views

ALPINE-CVE-2022-33747

Arm: unbounded memory consumption for 2nd-level page tables Certain actions require e.g. removing pages from a guest's P2M Physical-to-Machine mapping. When large pages are in use to map guest pages in the 2nd-stage page tables, such a removal operation may incur a memory allocation to replace a...

3.8CVSS6.8AI score0.00259EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/10/11 1:15 p.m.3 views

CVE-2022-33747

Arm: unbounded memory consumption for 2nd-level page tables Certain actions require e.g. removing pages from a guest's P2M Physical-to-Machine mapping. When large pages are in use to map guest pages in the 2nd-stage page tables, such a removal operation may incur a memory allocation to replace a...

3.8CVSS5.7AI score0.00259EPSS
Exploits0References12
ATTACKERKB
ATTACKERKB
added 2022/10/11 1:15 p.m.1 views

CVE-2022-33746

P2M pool freeing may take excessively long The P2M pool backing second level address translation for guests may be of significant size. Therefore its freeing may take more time than is reasonable without intermediate preemption checks. Such checking for the need to preempt was so far missing...

6.5CVSS5.7AI score0.00265EPSS
Exploits0References12
OSV
OSV
added 2022/10/11 1:15 p.m.3 views

UBUNTU-CVE-2022-33747

Arm: unbounded memory consumption for 2nd-level page tables Certain actions require e.g. removing pages from a guest's P2M Physical-to-Machine mapping. When large pages are in use to map guest pages in the 2nd-stage page tables, such a removal operation may incur a memory allocation to replace a...

3.8CVSS5.8AI score0.00259EPSS
Exploits0References6
Rows per page
Query Builder