Lucene search
K

286 matches found

OSV
OSV
added 2024/07/01 12:0 p.m.12 views

RUSTSEC-2024-0347 Incorrect usage of `#[repr(packed)]`

The affected versions make unsafe memory accesses under the assumption that reprpacked has a guaranteed field order. The Rust specification does not guarantee this, and https://github.com/rust-lang/rust/pull/125360 1.80.0-beta starts reordering fields of reprpacked structs, leading to illegal...

7AI score
Exploits0References2
RustSec
RustSec
added 2024/07/01 12:0 p.m.5 views

Incorrect usage of `#[repr(packed)]`

The affected versions make unsafe memory accesses under the assumption that reprpacked has a guaranteed field order. The Rust specification does not guarantee this, and https://github.com/rust-lang/rust/pull/125360 1.80.0-beta starts reordering fields of reprpacked structs, leading to illegal...

7AI score
Exploits0Affected Software1
SUSE CVE
SUSE CVE
added 2024/05/04 2:23 a.m.2 views

SUSE CVE-2024-27066

In the Linux kernel, the following vulnerability has been resolved: virtio: packed: fix unmap leak for indirect desc table When usedmaapi and premapped are true, then the dounmap is false. Because the dounmap is false, vringunmapextrapacked is not called by detachbufpacked. if unlikelyvq-dounmap...

5.5CVSS7.6AI score0.00222EPSS
Exploits0References3
NVD
NVD
added 2024/05/01 1:15 p.m.20 views

CVE-2024-27066

In the Linux kernel, the following vulnerability has been resolved: virtio: packed: fix unmap leak for indirect desc table When usedmaapi and premapped are true, then the dounmap is false. Because the dounmap is false, vringunmapextrapacked is not called by detachbufpacked. if unlikelyvq-dounmap...

5.5CVSS7.4AI score0.00222EPSS
Exploits0References4
OSV
OSV
added 2024/05/01 1:15 p.m.3 views

DEBIAN-CVE-2024-27066

In the Linux kernel, the following vulnerability has been resolved: virtio: packed: fix unmap leak for indirect desc table When usedmaapi and premapped are true, then the dounmap is false. Because the dounmap is false, vringunmapextrapacked is not called by detachbufpacked. if unlikelyvq-dounmap...

5.5CVSS5.3AI score0.00222EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/05/01 1:15 p.m.22 views

CVE-2024-27066

In the Linux kernel, the following vulnerability has been resolved: virtio: packed: fix unmap leak for indirect desc table When usedmaapi and premapped are true, then the dounmap is false. Because the dounmap is false, vringunmapextrapacked is not called by detachbufpacked. if unlikelyvq-dounmap...

5.5CVSS5.9AI score0.00222EPSS
Exploits0References11
OSV
OSV
added 2024/05/01 1:15 p.m.7 views

UBUNTU-CVE-2024-27066

In the Linux kernel, the following vulnerability has been resolved: virtio: packed: fix unmap leak for indirect desc table When usedmaapi and premapped are true, then the dounmap is false. Because the dounmap is false, vringunmapextrapacked is not called by detachbufpacked. if unlikelyvq-dounmap...

5.5CVSS5.9AI score0.00222EPSS
Exploits0References12
OSV
OSV
added 2024/05/01 1:4 p.m.15 views

CVE-2024-27066 virtio: packed: fix unmap leak for indirect desc table

In the Linux kernel, the following vulnerability has been resolved: virtio: packed: fix unmap leak for indirect desc table When usedmaapi and premapped are true, then the dounmap is false. Because the dounmap is false, vringunmapextrapacked is not called by detachbufpacked. if unlikelyvq-dounmap...

5.5CVSS6.1AI score0.00222EPSS
Exploits0References7
Cvelist
Cvelist
added 2024/05/01 1:4 p.m.19 views

CVE-2024-27066 virtio: packed: fix unmap leak for indirect desc table

In the Linux kernel, the following vulnerability has been resolved: virtio: packed: fix unmap leak for indirect desc table When usedmaapi and premapped are true, then the dounmap is false. Because the dounmap is false, vringunmapextrapacked is not called by detachbufpacked. if unlikelyvq-dounmap...

6.7AI score0.00222EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/05/01 1:4 p.m.19 views

CVE-2024-27066 virtio: packed: fix unmap leak for indirect desc table

In the Linux kernel, the following vulnerability has been resolved: virtio: packed: fix unmap leak for indirect desc table When usedmaapi and premapped are true, then the dounmap is false. Because the dounmap is false, vringunmapextrapacked is not called by detachbufpacked. if unlikelyvq-dounmap...

6.3AI score0.00222EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2024/05/01 1:4 p.m.17 views

CVE-2024-27066

In the Linux kernel, the following vulnerability has been resolved: virtio: packed: fix unmap leak for indirect desc table When usedmaapi and premapped are true, then the dounmap is false. Because the dounmap is false, vringunmapextrapacked is not called by detachbufpacked. if unlikelyvq-dounmap...

5.5CVSS6AI score0.00222EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/05/01 12:0 a.m.10 views

PT-2024-21631 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to an unmap leak for indirect desc tables in the virtio packed functionality. When use dma api and premapped are true, do unmap is false, which prevents vring unma...

9.1CVSS6.6AI score0.01635EPSS
Exploits0References667
CNNVD
CNNVD
added 2024/03/15 12:0 a.m.3 views

Mitsubishi Electric MELSEC-Q and MELSEC-L Input Validation Error Vulnerability

The Mitsubishi Electric MELSEC-Q Series is a MELSEC-Q series of programmable logic controllers from Mitsubishi Electric Japan. The Mitsubishi Electric MELSEC-Q and MELSEC-L have an input validation error vulnerability that originates from an integer overflow or wrap-around vulnerability in the CP...

9.8CVSS7.6AI score0.01044EPSS
Exploits0References4
Malwarebytes
Malwarebytes
added 2023/06/27 1:0 a.m.37 views

SupremeBot and Mario cross the finish line together

Researchers have reported how popular game installers like Super Mario Games are being used to deliver malware. The malicious components include cryptominers, the SupremeBot mining client, and the open-source Umbral stealer. The game installers route offers some very distinct advantages to the...

6.7AI score
Exploits0
Code423n4
Code423n4
added 2023/03/09 12:0 a.m.6 views

Fixed rewards may also be cut

Lines of code Vulnerability details Impact Fixed rewards may change when packed. Proof of Concept In LotterySetup.packFixedRewards function packFixedRewardsuint256 memory rewards private view returns uint256 packed if rewards.length != selectionSize || rewards0 != 0 revert InvalidFixedRewardSetup...

6.7AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 6:17 a.m.4 views

SUSE CVE-2005-2920

Buffer overflow in libclamav/upx.c in Clam AntiVirus ClamAV before 0.87 allows remote attackers to execute arbitrary code via a crafted UPX packed executable...

7.5CVSS8.2AI score0.08227EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:17 a.m.6 views

SUSE CVE-2005-2919

libclamav/fsg.c in Clam AntiVirus ClamAV before 0.87 allows remote attackers to cause a denial of service infinite loop via a crafted FSG packed executable...

5CVSS6.7AI score0.03612EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:14 a.m.3 views

SUSE CVE-2006-4018

Heap-based buffer overflow in the pefromupx function in libclamav/upx.c in Clam AntiVirus ClamAV 0.81 through 0.88.3 allows remote attackers to execute arbitrary code via a crafted UPX packed file containing sections with large rsize values...

7.5CVSS8.3AI score0.19058EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:9 a.m.5 views

SUSE CVE-2007-6335

Integer overflow in libclamav in ClamAV before 0.92 allows remote attackers to execute arbitrary code via a crafted MEW packed PE file, which triggers a heap-based buffer overflow...

7.5CVSS9.7AI score0.18382EPSS
Exploits4References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:9 a.m.3 views

SUSE CVE-2008-0318

Integer overflow in the cliscanpe function in libclamav in ClamAV before 0.92.1, as used in clamd, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Petite packed PE file, which triggers a heap-based buffer overflow...

10CVSS9.5AI score0.07876EPSS
Exploits0References4
Rows per page
Query Builder