CVE-2021-29938

CVE-2021-29938 concerns the Rust slice-deque crate. The connected advisories indicate that SliceDeque::drain_filter can drop the last element twice if the predicate panics, due to the implementation mutating the drain-filter iterator index before invoking the predicate. Affected scope is the slic...

CVE-2021-29940

CVE-2021-29940 affects the Rust crate and related advisories: the through/through_and code path can trigger a double free when the mapping function panics. The root cause involves duplicating ownership via ptr::read on a mutable reference, causing both the original and the duplicated object to be...

CVE-2021-29940

An issue was discovered in the through crate through 2021-02-18 for Rust. There is a double free in through and throughand upon a panic of the map function...

Samsung SMR has an unspecified vulnerability

Samsung SMR is a system firmware from Samsung South Korea. It provides storage for system applications. A security vulnerability exists in SMR Mar-2021 Release 1, which stems from the fact that an incorrect implementation handles file descriptors that can lead to memory corruption, resulting in...

CVE-2021-29650

CVE-2021-29650 affects the Linux kernel prior to 5.11.11. The netfilter subsystem (net/netfilter/x_tables.c and include/linux/netfilter/x_tables.h) may omit a full memory barrier when a new table value is assigned, enabling a local attacker to trigger a DoS/panic in netfilter. The issue is docume...

CVE-2020-7463

In FreeBSD 12.1-STABLE before r364644, 11.4-STABLE before r364651, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, improper handling in the kernel causes a use-after-free bug by sending large user messages from multiple threads on the same SCTP socket. The...

CVE-2020-7462

In 11.4-PRERELEASE before r360733 and 11.3-RELEASE before p13, improper mbuf handling in the kernel causes a use-after-free bug by sending IPv6 Hop-by-Hop options over the loopback interface. The use-after-free situation may result in unintended kernel behaviour including a kernel panic...

Design/Logic Flaw

In FreeBSD 12.1-STABLE before r364644, 11.4-STABLE before r364651, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, improper handling in the kernel causes a use-after-free bug by sending large user messages from multiple threads on the same SCTP socket. The...

CVE-2020-7463

Removed by vendor...

CVE-2020-7462

Removed by vendor...

CVE-2021-25370

An incorrect implementation handling file descriptor in dpu driver prior to SMR Mar-2021 Release 1 results in memory corruption leading to kernel panic...

CVE-2021-25370

An incorrect implementation handling file descriptor in dpu driver prior to SMR Mar-2021 Release 1 results in memory corruption leading to kernel panic...

Memory corruption

An incorrect implementation handling file descriptor in dpu driver prior to SMR Mar-2021 Release 1 results in memory corruption leading to kernel panic...

CVE-2021-25370

CVE-2021-25370 is a Samsung-internal chain of three vulnerabilities fixed in SMR Mar-2021 Release 1. The final issue is a use-after-free in the Display Processing Unit (DPU) driver that allows memory corruption leading to kernel panic when a file descriptor is mishandled in the DPU path. The thre...

CVE-2021-25370

An incorrect implementation handling file descriptor in dpu driver prior to SMR Mar-2021 Release 1 results in memory corruption leading to kernel panic...

CVE-2021-25370

An incorrect implementation handling file descriptor in dpu driver prior to SMR Mar-2021 Release 1 results in memory corruption leading to kernel panic...

CVE-2021-25370

An incorrect implementation handling file descriptor in dpu driver prior to SMR Mar-2021 Release 1 results in memory corruption leading to kernel panic. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

Samsung SMR 资源管理错误漏洞

Samsung SMR is a system firmware from Samsung South Korea. It provides storage for system applications. A security vulnerability exists in SMR Mar-2021 Release 1, which stems from the fact that an incorrect implementation handles file descriptors that can lead to memory corruption, resulting in...

SUSE-SU-2021:0937-1 Security update for go1.16

This update for go1.16 fixes the following issues: - go1.16.2 released 2021-03-11 bsc1182345 - go1.16.1 released 2021-03-10 bsc1182345 - CVE-2021-27918: Fixed an infinite loop when using xml.NewTokenDecoder with a custom TokenReader bsc1183333. - CVE-2021-27919: Fixed an issue where archive/zip:...

Denial Of Service (DoS)

etcd is vulnerable to denial of service DoS. It does not handle the case when an entry index is greater then the number of entries in the ReadAll method in wal/wal.go, leading to issues when WAL entries are being read during consensus as an arbitrary etcd consensus participant and causing a runti...