116 matches found
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel suffers from a memory leak vulnerability that stems from apple-aic not handling node reference counting correctly during initialization, which can be exploited by ...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a node reference returned by ofparsephandle not being properly freed in ariesaudioprobe...
CVE-2024-56556
In the Linux kernel, the following vulnerability has been resolved: binder: fix node UAF in binderaddfreezework In binderaddfreezework we iterate over the proc-nodes with the proc-innerlock held. However, this lock is temporarily dropped in order to acquire the node-lock first lock nesting order...
SUSE CVE-2024-56556
In the Linux kernel, the following vulnerability has been resolved: binder: fix node UAF in binderaddfreezework In binderaddfreezework we iterate over the proc-nodes with the proc-innerlock held. However, this lock is temporarily dropped in order to acquire the node-lock first lock nesting order...
DEBIAN-CVE-2024-56556
In the Linux kernel, the following vulnerability has been resolved: binder: fix node UAF in binderaddfreezework In binderaddfreezework we iterate over the proc-nodes with the proc-innerlock held. However, this lock is temporarily dropped in order to acquire the node-lock first lock nesting order...
UBUNTU-CVE-2024-56556
In the Linux kernel, the following vulnerability has been resolved: binder: fix node UAF in binderaddfreezework In binderaddfreezework we iterate over the proc-nodes with the proc-innerlock held. However, this lock is temporarily dropped in order to acquire the node-lock first lock nesting order...
SUSE CVE-2024-53075
In the Linux kernel, the following vulnerability has been resolved: riscv: Prevent a bad reference count on CPU nodes When populating cache leaves we previously fetched the CPU device node at the very beginning. But when ACPI is enabled we go through a specific branch which returns early and does...
DEBIAN-CVE-2024-53075
In the Linux kernel, the following vulnerability has been resolved: riscv: Prevent a bad reference count on CPU nodes When populating cache leaves we previously fetched the CPU device node at the very beginning. But when ACPI is enabled we go through a specific branch which returns early and does...
CVE-2022-49016
In the Linux kernel, the following vulnerability has been resolved: net: mdiobus: fix unbalanced node reference count I got the following report while doing devicemscc-miim load test with CONFIGOFUNITTEST and CONFIGOFDYNAMIC enabled: OF: ERROR: memory leak, expected refcount 1 instead of 2,...
UBUNTU-CVE-2022-49016
In the Linux kernel, the following vulnerability has been resolved: net: mdiobus: fix unbalanced node reference count I got the following report while doing devicemscc-miim load test with CONFIGOFUNITTEST and CONFIGOFDYNAMIC enabled: OF: ERROR: memory leak, expected refcount 1 instead of 2,...
UBUNTU-CVE-2022-48859
In the Linux kernel, the following vulnerability has been resolved: net: marvell: prestera: Add missing ofnodeput in presteraswitchsetbasemacaddr This node pointer is returned by offindcompatiblenode with refcount incremented. Calling ofnodeput to aovid the refcount leak...
SUSE CVE-2024-40991
In the Linux kernel, the following vulnerability has been resolved: dmaengine: ti: k3-udma-glue: Fix ofk3udmaglueparsechnbyid The ofk3udmaglueparsechnbyid helper function erroneously invokes "ofnodeput" on the "udmaxnp" device-node passed to it, without having incremented its reference count at a...
Linux kernel security vulnerabilities
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the presence of a node reference count leak...
kernel: usb: typec: wusb3801: fix fwnode refcount leak in wusb3801_probe()
A reference count leak was found in the wusb3801 USB Type-C driver. When wusb3801hwinit fails during probe, the firmware node reference is not properly released, causing a gradual memory leak...
kernel: usb: renesas: Fix refcount leak bug
In the Linux kernel, the following vulnerability has been resolved: usb: renesas: Fix refcount leak bug In usbhsrza1hardwareinit, offindnodebyname will return a node pointer with refcount incremented. We should use ofnodeput when it is not used anymore...
kernel: usb: host: Fix refcount leak in ehci_hcd_ppc_of_probe
In the Linux kernel, the following vulnerability has been resolved: usb: host: Fix refcount leak in ehcihcdppcofprobe offindcompatiblenode returns a node pointer with refcount incremented, we should use ofnodeput on it when done. Add missing ofnodeput to avoid refcount leak...
GSD-2023-1000174 net: mdiobus: fix unbalanced node reference count
net: mdiobus: fix unbalanced node reference count This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.82 by commit...
PT-2024-11137 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a null pointer dereference in the lpfc prep els iocb function. This can occur when lpfc issue els plogi is called with a did for which no matching ndlp is found...
SA-CONTRIB-2011-018 - Node Reference URL Widget - Cross Site Scripting
The Node Reference URL Widget module adds a new widget to the Node Reference field type, allowing node reference fields to be auto-populated based on a value from the URL. The module does not sanitize some of the user-supplied data before displaying it, leading to a Cross Site Scripting XSS...
Drupal CCK "Node Reference" Module < 6.x-2.8 Security Bypass Vulnerability
Binary data 5643.prm...