Unspecified Vulnerability in Samsung Mobile Devices (CNVD-2020-32790)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. Samsung mobile devices have a security vulnerability that can be exploited by attackers to perform arbitrary memory mapping...

CVE-2020-13831

An issue was discovered on Samsung mobile devices with O8.x and P9.0 Exynos 7570 chipsets software. The Trustonic Kinibi component allows arbitrary memory mapping. The Samsung ID is SVE-2019-16665 June 2020...

CVE-2020-13831

An issue was discovered on Samsung mobile devices with O8.x and P9.0 Exynos 7570 chipsets software. The Trustonic Kinibi component allows arbitrary memory mapping. The Samsung ID is SVE-2019-16665 June 2020...

Code injection

An issue was discovered on Samsung mobile devices with O8.x and P9.0 Exynos 7570 chipsets software. The Trustonic Kinibi component allows arbitrary memory mapping. The Samsung ID is SVE-2019-16665 June 2020...

CVE-2020-13831

CVE-2020-13831 affects Samsung mobile devices running O(8.x) and P(9.0) on Exynos 7570. The vulnerability stems from the Trustonic Kinibi component, which allows arbitrary memory mapping. This yields high-severity impact (partial confidentiality, integrity, and availability; in NVD, CVSSv3.1 base...

SUSE-SU-2020:1538-1 Security update for qemu

This update for qemu fixes the following issues: Security issues fixed: - CVE-2020-1711: Fixed a potential OOB access in the iSCSI client code bsc1166240. - CVE-2019-12068: Fixed a potential DoS in the LSI SCSI controller emulation bsc1146873. - CVE-2020-1983: Fixed a use-after-free in the ipreas...

CVE-2020-3680

A race condition can occur when using the fastrpc memory mapping API. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8009, APQ8053, MSM8909W, MSM8917, MSM8953, QCS605, QM215, SA415M, SDM429, SDM429W, SDM439...

Race condition

A race condition can occur when using the fastrpc memory mapping API. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8009, APQ8053, MSM8909W, MSM8917, MSM8953, QCS605, QM215, SA415M, SDM429, SDM429W, SDM439...

CVE-2020-3680

CVE-2020-3680 describes a race condition in the fastrpc memory mapping API that affects Qualcomm Snapdragon platforms (e.g., Snapdragon Auto/Compute/IoT families) including APQ8009, APQ8053, MSM89xx, QCS605, SDM/SMR series, SXR1130, and others. Root cause: race condition within fastrpc mmap handl...

CVE-2020-3680

A race condition can occur when using the fastrpc memory mapping API. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8009, APQ8053, MSM8909W, MSM8917, MSM8953, QCS605, QM215, SA415M, SDM429, SDM429W, SDM439...

CVE-2020-12446

The ene.sys driver in G.SKILL Trident Z Lighting Control through 1.00.08 exposes mapping and un-mapping of physical memory, reading and writing to Model Specific Register MSR registers, and input from and output to I/O ports to local non-privileged users. This leads to privilege escalation to NT...

PT-2020-13118

Name of the Vulnerable Software and Affected Versions: G.SKILL Trident Z Lighting Control versions 1.00.08 and earlier Description: The issue allows local non-privileged users to access sensitive operations, including mapping and un-mapping of physical memory, reading and writing to Model Specifi...

CVE-2020-12138

AMD ATI atillk64.sys 5.11.9.0 allows low-privileged users to interact directly with physical memory by calling one of several driver routines that map physical memory into the virtual address space of the calling process. This could enable low-privileged users to achieve NT AUTHORITY\SYSTEM...

PT-2020-13060

Name of the Vulnerable Software and Affected Versions atillk64.sys version 5.11.9.0 Description The issue allows low-privileged users to interact directly with physical memory by calling one of several driver routines that map physical memory into the virtual address space of the calling process...

Lunar - A Lightweight Native DLL Mapping Library That Supports Mapping Directly From Memory

A lightweight native DLL mapping library that supports mapping directly from memory Features Imports and delay imports are resolved Relocations are performed Image sections are mapped with the correct page protection Exception handlers are initialised A security cookie is generated and initialise...

Privilege Escalation

The kernel is vulnerable to Privilege Escalation.A system with SELinux enforced was more permissive in allowing local users in the unconfinedt domain to map low memory areas even if the mmapminaddr restriction was enabled. This could aid in the local exploitation of NULL pointer dereference bugs...

Exploit for Race Condition in Canonical Ubuntu_Linux

This is a PoC exploit for CVE-2016-5195, a vulnerability in the Linux kernel that allows for a Dirty Cow DC attack. The exploit is implemented in C++ and Go, with a legacy version in C++. The exploit targets the Linux kernel's memory mapping feature, which allows an attacker to map a file into a...

CVE-2020-10848

An issue was discovered on Samsung mobile devices with O8.x, P9.0, and Q10.0 Exynos 9810 chipsets software. Arbitrary memory mapping exists in TEE. The Samsung ID is SVE-2019-16665 February 2020...

CVE-2020-10848

An issue was discovered on Samsung mobile devices with O8.x, P9.0, and Q10.0 Exynos 9810 chipsets software. Arbitrary memory mapping exists in TEE. The Samsung ID is SVE-2019-16665 February 2020...

Code injection

An issue was discovered on Samsung mobile devices with O8.x, P9.0, and Q10.0 Exynos 9810 chipsets software. Arbitrary memory mapping exists in TEE. The Samsung ID is SVE-2019-16665 February 2020...