3095 matches found
CVE-2024-43897
...
CVE-2024-33065 Improper Input Validation in Camera
Memory corruption while taking snapshot when an offset variable is set by camera driver...
PT-2024-25103
Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned in the provided descriptions. Description There is a memory corruption issue that occurs when taking a snapshot, specifically when a camera driver sets an offset variable. This issue can potential...
BandiView_PoC
BandiView Vulnerability Report Vulnerability 1 Vulnerab...
ROS-20240927-05
Vulnerability in the afunix component's unixreleasesock/unixstreamsendmsg function is related to competitive access to a resource race condition. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the drivers/media/test-drivers/vidtv/vidtvpsi...
kernel: ftruncate: pass a signed offset
An unexpected file truncate flaw was found when opening files with specific parameters in the Linux kernel's file-system. This vulnerability allows a local user to corrupt specific files when having access to these files...
kernel: smb: client: fix potential OOBs in smb2_parse_contexts()
A flaw was found in the smb client in the Linux kernel. A potential out-of-bounds error was seen in the smb2parsecontexts function. Validate offsets and lengths before dereferencing create contexts in smb2parsecontexts...
CVE-2024-46740 binder: fix UAF caused by offsets overwrite
In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF caused by offsets overwrite Binder objects are processed and copied individually into the target buffer during transactions. Any raw data in-between these objects is copied as well. However, this raw data copy lac...
CVE-2024-46740 binder: fix UAF caused by offsets overwrite
In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF caused by offsets overwrite Binder objects are processed and copied individually into the target buffer during transactions. Any raw data in-between these objects is copied as well. However, this raw data copy lac...
SUSE CVE-2024-46708
In the Linux kernel, the following vulnerability has been resolved: pinctrl: qcom: x1e80100: Fix special pin offsets Remove the erroneus 0x100000 offset to prevent the boards from crashing on pin state setting, as well as for the intended state changes to take effect...
DEBIAN-CVE-2024-46708
In the Linux kernel, the following vulnerability has been resolved: pinctrl: qcom: x1e80100: Fix special pin offsets Remove the erroneus 0x100000 offset to prevent the boards from crashing on pin state setting, as well as for the intended state changes to take effect...
AZL-49318 CVE-2024-46701 affecting package kernel 6.6.126.1-1
In the Linux kernel, the following vulnerability has been resolved: libfs: fix infinite directory reads for offset dir After we switch tmpfs dir operations from simplediroperations to simpleoffsetdiroperations, every rename happened will fill new dentry to dest dir's maple...
DEBIAN-CVE-2024-46701
In the Linux kernel, the following vulnerability has been resolved: libfs: fix infinite directory reads for offset dir After we switch tmpfs dir operations from simplediroperations to simpleoffsetdiroperations, every rename happened will fill new dentry to dest dir's maple...
UBUNTU-CVE-2024-46701
In the Linux kernel, the following vulnerability has been resolved: libfs: fix infinite directory reads for offset dir After we switch tmpfs dir operations from simplediroperations to simpleoffsetdiroperations, every rename happened will fill new dentry to dest dir's maple...
CVE-2024-46701 libfs: fix infinite directory reads for offset dir
In the Linux kernel, the following vulnerability has been resolved: libfs: fix infinite directory reads for offset dir After we switch tmpfs dir operations from simplediroperations to simpleoffsetdiroperations, every rename happened will fill new dentry to dest dir's maple...
EulerOS 2.0 SP10 : kernel (EulerOS-SA-2024-2441)
According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : kernel: cpu/hotplug: Don't offline the last non-isolated CPUCVE-2023-52831 kernel: IB/mlx5: Fix initializing CQ fragments bufferCVE-2021-47261...
SUSE CVE-2024-44966
In the Linux kernel, the following vulnerability has been resolved: binfmtflat: Fix corruption when not offsetting data start Commit 04d82a6d0881 "binfmtflat: allow not offsetting data start" introduced a RISC-V specific variant of the FLAT format which does not allocate any space for the obsolet...
DEBIAN-CVE-2024-44966
In the Linux kernel, the following vulnerability has been resolved: binfmtflat: Fix corruption when not offsetting data start Commit 04d82a6d0881 "binfmtflat: allow not offsetting data start" introduced a RISC-V specific variant of the FLAT format which does not allocate any space for the obsolet...
UBUNTU-CVE-2024-44966
In the Linux kernel, the following vulnerability has been resolved: binfmtflat: Fix corruption when not offsetting data start Commit 04d82a6d0881 "binfmtflat: allow not offsetting data start" introduced a RISC-V specific variant of the FLAT format which does not allocate any space for the obsolet...
CVE-2024-33042
Memory corruption when Alternative Frequency offset value is set to 255...