441 matches found
UBUNTU-CVE-2024-58019
In the Linux kernel, the following vulnerability has been resolved: nvkm/gsp: correctly advance the read pointer of GSP message queue A GSP event message consists three parts: message header, RPC header, message body. GSP calculates the number of pages to write from the total size of a GSP messag...
CVE-2024-58019
In the Linux kernel, the following vulnerability has been resolved: nvkm/gsp: correctly advance the read pointer of GSP message queue A GSP event message consists three parts: message header, RPC header, message body. GSP calculates the number of pages to write from the total size of a GSP messag...
CVE-2024-58019 nvkm/gsp: correctly advance the read pointer of GSP message queue
In the Linux kernel, the following vulnerability has been resolved: nvkm/gsp: correctly advance the read pointer of GSP message queue A GSP event message consists three parts: message header, RPC header, message body. GSP calculates the number of pages to write from the total size of a GSP messag...
CVE-2024-58019 nvkm/gsp: correctly advance the read pointer of GSP message queue
In the Linux kernel, the following vulnerability has been resolved: nvkm/gsp: correctly advance the read pointer of GSP message queue A GSP event message consists three parts: message header, RPC header, message body. GSP calculates the number of pages to write from the total size of a GSP messag...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from incorrectly advancing the read pointer to the GSP message queue in nvkm...
CVE-2022-49209 bpf, sockmap: Fix memleak in tcp_bpf_sendmsg while sk msg is full
In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix memleak in tcpbpfsendmsg while sk msg is full If tcpbpfsendmsg is running while sk msg is full. When skmsgalloc returns -ENOMEM error, tcpbpfsendmsg goes to waitformemory. If partial memory has been alloced by...
CVE-2021-35095
Improper serialization of message queue client registration can lead to race condition allowing multiple gunyah message clients to register with same label in Snapdragon Connectivity, Snapdragon Mobile...
IBM MQ 加密问题漏洞
IBM MQ is a messaging middleware product from International Business Machines IBM. The product focuses on providing a reliable and validated messaging backbone for Service Oriented Architecture SOA. An encryption issue vulnerability exists in IBM MQ Container that stems from the use of a...
IBM MQ 安全漏洞
IBM MQ is a messaging middleware product from International Business Machines IBM. The product focuses on providing a reliable and validated messaging backbone for Service Oriented Architecture SOA. A security vulnerability exists in IBM MQ that stems from a vulnerability that could allow a local...
SUSE CVE-2024-53175
In the Linux kernel, the following vulnerability has been resolved: ipc: fix memleak if msginitns failed in createipcns Percpu memory allocation may failed during createipcns however this fail is not handled properly since ipc sysctls and mq sysctls is not released properly. Fix this by release...
UBUNTU-CVE-2024-53175
In the Linux kernel, the following vulnerability has been resolved: ipc: fix memleak if msginitns failed in createipcns Percpu memory allocation may failed during createipcns however this fail is not handled properly since ipc sysctls and mq sysctls is not released properly. Fix this by release...
IBM MQ 代码问题漏洞
IBM MQ is a messaging middleware product from International Business Machines IBM. The product focuses on providing a reliable and proven messaging backbone for Service Oriented Architecture SOA. A denial of service vulnerability exists in IBM MQ versions 8.1.0 through 8.1.0.25, which stems from...
PT-2024-9463 · Microsoft · Message Queue +1
Name of the Vulnerable Software and Affected Versions: Microsoft Message Queue MSMQ affected versions not specified Description: The issue is related to a remote code execution problem. It is associated with the use of memory after it has been freed, which can be exploited by a remote attacker to...
PT-2024-9439 · Microsoft · Message Queue +1
Name of the Vulnerable Software and Affected Versions: Microsoft Message Queue MSMQ affected versions not specified Description: The issue is related to a remote code execution problem. It is associated with the use of memory after it has been freed. This could allow a remote attacker to execute...
PT-2024-9345 · Microsoft · Message Queue +1
Name of the Vulnerable Software and Affected Versions: Microsoft Message Queue MSMQ affected versions not specified Description: The issue is related to an uncontrolled consumption of resources in Microsoft Message Queue MSMQ, which can lead to a denial of service. This can be exploited by a remo...
Ruijie Networks ReyeeOS 安全漏洞
Ruijie Networks ReyeeOS is a router from Ruijie Networks China. A security vulnerability exists in Ruijie Networks ReyeeOS versions 2.206.x through 2.320.x prior. An attacker could use this vulnerability to send messages to certain topics using an MQTT client connected with device credentials...
kernel: Kernel: Denial of Service via memory leak in mqueue component
A flaw was found in the Linux kernel's mqueue message queue component. A local attacker with low privileges could exploit a memory leak in the initmqueuefs function. This vulnerability occurs when retiremqsysctls is not called after setupmqsysctls fails, leading to resource exhaustion. This could...
PT-2024-35621
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak issue has been resolved in the Linux kernel. The problem occurs when percpu memory allocation fails during the creation of a new IPC namespace, and the failure is not handl...
PT-2025-8841
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been identified, specifically in the nvkm/gsp component. The issue arises from the incorrect advancement of the read pointer of the GSP message...
CVE-2024-47078 Meshtastic firmware Authentication/Authorization Bypass via MQTT
Meshtastic is an open source, off-grid, decentralized, mesh network. Meshtastic uses MQTT to communicate over an internet connection to a shared or private MQTT Server. Nodes can communicate directly via an internet connection or proxied through a connected phone i.e., via bluetooth. Prior to...