CVE-2024-49868 btrfs: fix a NULL pointer dereference when failed to start a new trasacntion

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix a NULL pointer dereference when failed to start a new trasacntion BUG Syzbot reported a NULL pointer dereference with the following crash: FAULTINJECTION: forcing a failure. starttransaction+0x830/0x1670...

SUSE-SU-2024:3074-1 Security update for unbound

This update for unbound fixes the following issues: - CVE-2024-43167: Fix null pointer dereference issue in function ubctxsetfwd bsc1229068...

CVE-2023-52901

In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Check endpoint is valid before dereferencing it When the host controller is not responding, all URBs queued to all endpoints need to be killed. This can cause a kernel panic if we dereference an invalid endpoint. Fix...

CVE-2024-40959

In the Linux kernel, the following vulnerability has been resolved: xfrm6: check ip6dstidev return value in xfrm6getsaddr ip6dstidev can return NULL, xfrm6getsaddr must act accordingly. syzbot reported: Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 1...

CVE-2021-47353

In the Linux kernel, the following vulnerability has been resolved: udf: Fix NULL pointer dereference in udfsymlink function In function udfsymlink, epos.bh is assigned with the value returned by udftgetblk. The function udftgetblk is defined in udf/misc.c and returns the value of sbgetblk functi...

CVE-2023-52564

A use-after-free flaw was found in the Linux kernel that may lead to a crash...

Ubuntu 18.04 ESM / 20.04 LTS : Linux kernel vulnerabilities (USN-6625-1)

The remote Ubuntu 18.04 ESM / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6625-1 advisory. Marek Marczykowski-Grecki discovered that the Xen event channel infrastructure implementation in the Linux kernel contained a race condition...

Double free

stbimage is a single file MIT licensed library for processing images. It may look like stbiloadgifmain doesn’t give guarantees about the content of output value delays upon failure. Although it sets delays to zero at the beginning, it doesn’t do it in case the image is not recognized as GIF and a...

Ubuntu 18.04 ESM / 20.04 LTS : dwarves vulnerabilities (USN-6215-1)

The remote Ubuntu 18.04 ESM / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6215-1 advisory. It was discovered that dwarves incorrectly handled certain memory operations under certain circumstances. An attacker could possibly use this...

CVE-2023-3359

A flaw was found in the Linux kernel’s brcmnvramparse in drivers/nvmem/brcmnvram.c. This issue lacks checking the return value of kzalloc, which can cause a NULL pointer dereference issue...

GSD-2023-1002106 xhci: Fix null pointer dereference when host dies

xhci: Fix null pointer dereference when host dies This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.90 by commit...

CVE-2022-3110

An issue was discovered in the Linux kernel through 5.16-rc6. rtwinitxmitpriv in drivers/staging/r8188eu/core/rtwxmit.c lacks check of the return value of rtwallochwxmits and will cause the null pointer dereference...

Heimdal Kerberos vulnerable to remotely triggered NULL pointer dereference

Overview The Heimdal Software Kerberos 5 implementation is vulnerable to a null pointer dereferance. An attacker with network access to an application that depends on the vulnerable code path can cause the application to crash. Description CVE-2022-3116 A flawed logical condition in...

Null pointer dereference

An issue was discovered in mjs mJS: Restricted JavaScript engine, ES6 JavaScript version 6. There is NULL pointer dereference in mjsprint in mjs.c...

Null pointer dereference

An issue was discovered in mjs mJS: Restricted JavaScript engine, ES6 JavaScript version 6. There is NULL pointer dereference in jsonprintf in mjs.c...

CVE-2021-33442

An issue was discovered in mjs mJS: Restricted JavaScript engine, ES6 JavaScript version 6. There is NULL pointer dereference in jsonprintf in mjs.c...

CVE-2020-36558

A race condition in the Linux kernel before 5.5.7 involving VTRESIZEX could lead to a NULL pointer dereference and general protection fault...

CVE-2022-32201

In libjpeg 1.63, there is a NULL pointer dereference in Component::SubXOf in component.hpp...

CVE-2021-42577

An issue was discovered in Softing OPC UA C++ SDK before 5.70. A malformed OPC/UA message abort packet makes the client crash with a NULL pointer dereference...

CVE-2022-0617

A flaw null pointer dereference in the Linux kernel UDF file system functionality was found in the way user triggers udffilewriteiter function for the malicious UDF image. A local user could use this flaw to crash the system. Actual from Linux kernel 4.2-rc1 till 5.17-rc2...