20 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: s390/bpf: Fixed bpfarchtextpoke when newaddr == NULL The commit 7ded842b356d “s390/bpf: Fixed bpfplt pointer arithmetic” accidentally removed the critical portion of the commit c730fce7c70c “s390/bpf: Fixed bpfarchtextpoke when...
ALSA-2025:23480 Moderate: openssh security update
OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fixes: openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand...
Linux Distros Unpatched Vulnerability : CVE-2025-38283
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hisiaccvfiopci: bugfix live migration function without VF device driver If the VF device driver is not loaded in the Guest OS and we attempt to perform device...
PT-2025-31085
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to the bpf arch text poke function within the s390/bpf subsystem. A previous fix, introduced by commit c730fce7c70c, was inadvertently removed b...
DEBIAN-CVE-2025-38283
In the Linux kernel, the following vulnerability has been resolved: hisiaccvfiopci: bugfix live migration function without VF device driver If the VF device driver is not loaded in the Guest OS and we attempt to perform device data migration, the address of the migrated data will be NULL. The liv...
CVE-2025-38283 hisi_acc_vfio_pci: bugfix live migration function without VF device driver
In the Linux kernel, the following vulnerability has been resolved: hisiaccvfiopci: bugfix live migration function without VF device driver If the VF device driver is not loaded in the Guest OS and we attempt to perform device data migration, the address of the migrated data will be NULL. The liv...
PT-2025-29003
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the hisi acc vfio pci component related to live migration. Specifically, if a Virtual Function VF device driver is not loaded in the Guest OS,...
kernel: r8169: Fix possible ring buffer corruption on fragmented Tx packets.
in linux kernel r8169, when transmitting small fragmented packets, invalid entries were inserted into the transmit ring buffer, leading to calls to dmaunmapsingle with a null address...
kernel: r8169: Fix possible ring buffer corruption on fragmented Tx packets.
in linux kernel r8169, when transmitting small fragmented packets, invalid entries were inserted into the transmit ring buffer, leading to calls to dmaunmapsingle with a null address...
kernel: r8169: Fix possible ring buffer corruption on fragmented Tx packets.
in linux kernel r8169, when transmitting small fragmented packets, invalid entries were inserted into the transmit ring buffer, leading to calls to dmaunmapsingle with a null address...
kernel: r8169: Fix possible ring buffer corruption on fragmented Tx packets.
in linux kernel r8169, when transmitting small fragmented packets, invalid entries were inserted into the transmit ring buffer, leading to calls to dmaunmapsingle with a null address...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from a call to the freepagesexact function using a NULL address...
DEBIAN-CVE-2024-26785
In the Linux kernel, the following vulnerability has been resolved: iommufd: Fix protection fault in iommufdtestsyzconviova Syzkaller reported the following bug: general protection fault, probably for non-canonical address 0xdffffc0000000038: 0000 1 SMP KASAN KASAN: null-ptr-deref in range...
AZL-38998 CVE-2022-3854 affecting package ceph for versions less than 18.2.1-1
A flaw was found in Ceph, relating to the URL processing on RGW backends. An attacker can exploit the URL processing by providing a null URL to crash the RGW, causing a denial of service...
DEBIAN-CVE-2022-3854
A flaw was found in Ceph, relating to the URL processing on RGW backends. An attacker can exploit the URL processing by providing a null URL to crash the RGW, causing a denial of service...
PublicVault Contract Allows Minting Tokens to a Null Address
Lines of code Vulnerability details Impact The PublicVault contract allows the minting of tokens to a null address. When the redeemFutureEpoch function is called with a null address as the receiver, the function will still proceed with the minting of the underlying asset, but the tokens will not...
PT-2022-6797 · Ceph +4 · Ceph +4
Name of the Vulnerable Software and Affected Versions: Ceph affected versions not specified Description: A flaw was found in Ceph, relating to the URL processing on RGW backends. An attacker can exploit the URL processing by providing a null URL to crash the RGW, causing a denial of service...
Denial of Service Vulnerability in WPS Presentation (CNVD-2017-33993)
WPS office is an office software suite independently developed by Kingsoft Corporation. A denial of service vulnerability exists in WPS presentation wpp.exe in WPS when parsing a specific ppt file with a NULL address, which can be exploited by an attacker to cause a denial of service...
360 Compressor has an override access vulnerability
360 Compress is a free decompression software from 360. An over-the-horizon access vulnerability exists in 360 Zip. The vulnerability is due to 360zipc.dll writing data to a NULL address, allowing an attacker to exploit the vulnerability to execute code...
ms.winhelp.exploit.txt
Date: Mon, 24 May 1999 07:18:23 +0100 From: Mnemonix To: [email protected] Subject: Exploit and Analysis of the Winhlp32.exe buffer overrun. Analysis of the winhlp32.exe buffer overrun. The buffer overrun in winhlp32.exe occurs when it attempts to read a cnt file with an overly lon...