kernel: uio: Fix use-after-free in uio_open

A flaw was found in the Linux kernel’s uio subsystem. A use-after-free memory flaw in the uioopen functionality allows a local user to crash or escalate their privileges on the system...

SUSE CVE-2021-47096

In the Linux kernel, the following vulnerability has been resolved: ALSA: rawmidi - fix the uninitalized userpversion The userpversion was uninitialized for the user space file structure in the open function, because the file private structure use kmalloc for the allocation. The kernel ALSA...

CVE-2021-47096

In the Linux kernel, the following vulnerability has been resolved: ALSA: rawmidi - fix the uninitalized userpversion The userpversion was uninitialized for the user space file structure in the open function, because the file private structure use kmalloc for the allocation. The kernel ALSA...

DEBIAN-CVE-2021-47096

In the Linux kernel, the following vulnerability has been resolved: ALSA: rawmidi - fix the uninitalized userpversion The userpversion was uninitialized for the user space file structure in the open function, because the file private structure use kmalloc for the allocation. The kernel ALSA...

CVE-2021-47096

In the Linux kernel, the following vulnerability has been resolved: ALSA: rawmidi - fix the uninitalized userpversion The userpversion was uninitialized for the user space file structure in the open function, because the file private structure use kmalloc for the allocation. The kernel ALSA...

UBUNTU-CVE-2021-47096

In the Linux kernel, the following vulnerability has been resolved: ALSA: rawmidi - fix the uninitalized userpversion The userpversion was uninitialized for the user space file structure in the open function, because the file private structure use kmalloc for the allocation. The kernel ALSA...

CVE-2021-47096 ALSA: rawmidi - fix the uninitalized user_pversion

In the Linux kernel, the following vulnerability has been resolved: ALSA: rawmidi - fix the uninitalized userpversion The userpversion was uninitialized for the user space file structure in the open function, because the file private structure use kmalloc for the allocation. The kernel ALSA...

Linux kernel security vulnerabilities

The Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A security vulnerability exists in the Linux kernel, which stems from a post-release reuse issue in the uio module's uioopen...

UBUNTU-CVE-2023-6277

An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFOpen API may allow a remote attacker to cause a denial of service via a craft input with size smaller than 379 KB...

AZL-44127 CVE-2023-45853 affecting package blosc for versions less than 1.21.6-1

MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip464 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. NOTE: pyminizip through 0.2.6 is also vulnerable because it bundles an...

kernel: use-after-free in __nfs42_ssc_open() in fs/nfs/nfs4file.c leading to remote Denial of Service attack

A use-after-free vulnerability was found in nfs42sscopen in fs/nfs/nfs4file.c in the Linux kernel. This flaw allows an attacker to conduct a remote denial of service...

PT-2025-18825 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A refcount leak in the smb2 open function has been identified. This issue occurs when memory allocation fails, causing the reference count of acls to leak. The problem is resolved by...

PT-2023-33197 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.83 Description: A memory leak was discovered in the tbnet open function. The issue was introduced in version v5.13 and is fixed in Linux Kernel version v5.15.83. Recommendations: For Linux Kernel versions...

PT-2022-34979 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to 6.0.3 Description: A potential resource leak was identified in the ssip pn open function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to...

Linux kernel cm4000_cs.c competition condition vulnerability

Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. Linux kernel 6.0.6 and earlier versions have a contention condition vulnerability that originates in drivers/char/pcmcia/cm4000cs.c when calling open if cmmopen and cm4000detach, an attacker can exploit...

PT-2022-23228 · Fdkaac +4 · Fdkaac +4

Name of the Vulnerable Software and Affected Versions: fdkaac affected versions not specified Description: A floating point exception FPE issue was discovered in fdkaac via the wav open function at /src/wav reader.c. Recommendations: At the moment, there is no information about a newer version th...

PT-2022-12155 · Fis +3 · Fis Gt.M +3

Name of the Vulnerable Software and Affected Versions: FIS GT.M versions through V7.0-000 Description: An issue was discovered related to a lack of NULL checks in calls to ious open in sr unix/ious open.c, allowing attackers to crash the application by dereferencing a NULL pointer. Recommendation...

PT-2021-6133 · Vim +6 · Vim +6

Name of the Vulnerable Software and Affected Versions: vim affected versions not specified Description: The issue is related to a Use After Free condition in the vim text editor, specifically in the ex open function located in src/ex docmd.c. This condition may allow an attacker to impact the...

DEBIAN-CVE-2021-25804

A NULL-pointer dereference in "Open" in avi.c of VideoLAN VLC Media Player 3.0.11 can a denial of service DOS in the application...

kernel: possible use-after-free due to a race condition in cdev_get of char_dev.c

A use-after-free flaw was found in the way the Linux kernel's filesystem subsystem handled a race condition in the chrdevopen function. This flaw allows a privileged local user to starve the resources, causing a denial of service or potentially escalating their privileges. The highest threat from...