286 matches found
RUSTSEC-2024-0347 Incorrect usage of `#[repr(packed)]`
The affected versions make unsafe memory accesses under the assumption that reprpacked has a guaranteed field order. The Rust specification does not guarantee this, and https://github.com/rust-lang/rust/pull/125360 1.80.0-beta starts reordering fields of reprpacked structs, leading to illegal...
Incorrect usage of `#[repr(packed)]`
The affected versions make unsafe memory accesses under the assumption that reprpacked has a guaranteed field order. The Rust specification does not guarantee this, and https://github.com/rust-lang/rust/pull/125360 1.80.0-beta starts reordering fields of reprpacked structs, leading to illegal...
SUSE CVE-2024-27066
In the Linux kernel, the following vulnerability has been resolved: virtio: packed: fix unmap leak for indirect desc table When usedmaapi and premapped are true, then the dounmap is false. Because the dounmap is false, vringunmapextrapacked is not called by detachbufpacked. if unlikelyvq-dounmap...
CVE-2024-27066
In the Linux kernel, the following vulnerability has been resolved: virtio: packed: fix unmap leak for indirect desc table When usedmaapi and premapped are true, then the dounmap is false. Because the dounmap is false, vringunmapextrapacked is not called by detachbufpacked. if unlikelyvq-dounmap...
DEBIAN-CVE-2024-27066
In the Linux kernel, the following vulnerability has been resolved: virtio: packed: fix unmap leak for indirect desc table When usedmaapi and premapped are true, then the dounmap is false. Because the dounmap is false, vringunmapextrapacked is not called by detachbufpacked. if unlikelyvq-dounmap...
CVE-2024-27066
In the Linux kernel, the following vulnerability has been resolved: virtio: packed: fix unmap leak for indirect desc table When usedmaapi and premapped are true, then the dounmap is false. Because the dounmap is false, vringunmapextrapacked is not called by detachbufpacked. if unlikelyvq-dounmap...
UBUNTU-CVE-2024-27066
In the Linux kernel, the following vulnerability has been resolved: virtio: packed: fix unmap leak for indirect desc table When usedmaapi and premapped are true, then the dounmap is false. Because the dounmap is false, vringunmapextrapacked is not called by detachbufpacked. if unlikelyvq-dounmap...
CVE-2024-27066 virtio: packed: fix unmap leak for indirect desc table
In the Linux kernel, the following vulnerability has been resolved: virtio: packed: fix unmap leak for indirect desc table When usedmaapi and premapped are true, then the dounmap is false. Because the dounmap is false, vringunmapextrapacked is not called by detachbufpacked. if unlikelyvq-dounmap...
CVE-2024-27066 virtio: packed: fix unmap leak for indirect desc table
In the Linux kernel, the following vulnerability has been resolved: virtio: packed: fix unmap leak for indirect desc table When usedmaapi and premapped are true, then the dounmap is false. Because the dounmap is false, vringunmapextrapacked is not called by detachbufpacked. if unlikelyvq-dounmap...
CVE-2024-27066 virtio: packed: fix unmap leak for indirect desc table
In the Linux kernel, the following vulnerability has been resolved: virtio: packed: fix unmap leak for indirect desc table When usedmaapi and premapped are true, then the dounmap is false. Because the dounmap is false, vringunmapextrapacked is not called by detachbufpacked. if unlikelyvq-dounmap...
CVE-2024-27066
In the Linux kernel, the following vulnerability has been resolved: virtio: packed: fix unmap leak for indirect desc table When usedmaapi and premapped are true, then the dounmap is false. Because the dounmap is false, vringunmapextrapacked is not called by detachbufpacked. if unlikelyvq-dounmap...
PT-2024-21631 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to an unmap leak for indirect desc tables in the virtio packed functionality. When use dma api and premapped are true, do unmap is false, which prevents vring unma...
Mitsubishi Electric MELSEC-Q and MELSEC-L Input Validation Error Vulnerability
The Mitsubishi Electric MELSEC-Q Series is a MELSEC-Q series of programmable logic controllers from Mitsubishi Electric Japan. The Mitsubishi Electric MELSEC-Q and MELSEC-L have an input validation error vulnerability that originates from an integer overflow or wrap-around vulnerability in the CP...
SupremeBot and Mario cross the finish line together
Researchers have reported how popular game installers like Super Mario Games are being used to deliver malware. The malicious components include cryptominers, the SupremeBot mining client, and the open-source Umbral stealer. The game installers route offers some very distinct advantages to the...
Fixed rewards may also be cut
Lines of code Vulnerability details Impact Fixed rewards may change when packed. Proof of Concept In LotterySetup.packFixedRewards function packFixedRewardsuint256 memory rewards private view returns uint256 packed if rewards.length != selectionSize || rewards0 != 0 revert InvalidFixedRewardSetup...
SUSE CVE-2005-2920
Buffer overflow in libclamav/upx.c in Clam AntiVirus ClamAV before 0.87 allows remote attackers to execute arbitrary code via a crafted UPX packed executable...
SUSE CVE-2005-2919
libclamav/fsg.c in Clam AntiVirus ClamAV before 0.87 allows remote attackers to cause a denial of service infinite loop via a crafted FSG packed executable...
SUSE CVE-2006-4018
Heap-based buffer overflow in the pefromupx function in libclamav/upx.c in Clam AntiVirus ClamAV 0.81 through 0.88.3 allows remote attackers to execute arbitrary code via a crafted UPX packed file containing sections with large rsize values...
SUSE CVE-2007-6335
Integer overflow in libclamav in ClamAV before 0.92 allows remote attackers to execute arbitrary code via a crafted MEW packed PE file, which triggers a heap-based buffer overflow...
SUSE CVE-2008-0318
Integer overflow in the cliscanpe function in libclamav in ClamAV before 0.92.1, as used in clamd, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Petite packed PE file, which triggers a heap-based buffer overflow...