CVE-2024-55413

A vulnerability exits in driver snxppamd.sys in SUNIX Parallel Driver x64 - 10.1.0.0, which allows low-privileged users to read and write arbitary i/o port via specially crafted IOCTL requests . This can be exploited for privilege escalation, code execution under high privileges, and information...

CVE-2024-55413

A vulnerability exits in driver snxppamd.sys in SUNIX Parallel Driver x64 - 10.1.0.0, which allows low-privileged users to read and write arbitary i/o port via specially crafted IOCTL requests . This can be exploited for privilege escalation, code execution under high privileges, and information...

CVE-2024-55413

SUNIX Parallel Driver X64 (snxppamd.sys) vulnerability (CVE-2024-55413) affects version 10.1.0.0. An attacker with low privileges can read/write arbitrary I/O ports via crafted IOCTL requests, enabling privilege escalation, potential code execution with high privileges, and information disclosure...

SUNIX Parallel Driver 缓冲区错误漏洞

SUNIX Parallel Driver is a parallel driver from China's SUNIX Technology SUNIX. A security vulnerability exists in SUNIX Parallel Driver x64 - version 10.1.0.0. An attacker can exploit the vulnerability to elevate privileges and execute code to cause information disclosure...

PT-2025-3114 · Sunix · Sunix Parallel Driver X64

Name of the Vulnerable Software and Affected Versions: SUNIX Parallel Driver x64 version 10.1.0.0 Description: A vulnerability exists in the driver snxppamd.sys, allowing low-privileged users to read and write arbitrary I/O ports via specially crafted IOCTL requests. This can be exploited for...

Race Condition

Overview PSyclone is a PSyclone - a compiler for Finite Element/Volume/Difference DSLs in Fortran Affected versions of this package are vulnerable to Race Condition due to inadequate checks for pure procedure calls in loop parallelization. This vulnerability derives from the...

PT-2025-37962

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6 Description The Linux kernel contains a flaw in the efivarfs module related to an out-of-bounds write in the efivarfs d compare function. This issue occurs when dentry-d name.len is less than EFI VARIABLE GUI...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a handling issue in the crypto:pcrypt subsystem when padatadoparallel returns -EBUSY...

DEBIAN-CVE-2024-53167

In the Linux kernel, the following vulnerability has been resolved: nfs/blocklayout: Don't attempt unregister for invalid block device Since commit d869da91cccb "nfs/blocklayout: Fix premature PR key unregistration" an unmount of a pNFS SCSI layout-enabled NFS may dereference a NULL blockdevice i...

USN-7166-2 linux-aws, linux-aws-5.15 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - RISC-V architecture; - S390 architecture; - x86 architecture; - Block layer subsystem; - ACPI...

Security update for docker

This update for docker fixes the following issues: Update docker-buildx to v0.19.2. See upstream changelog online at . Some notable changelogs from the last update: Add a new toggle file /etc/docker/suse-secrets-enable which allows users to disable the SUSEConnect integration with Docker which...

USN-7166-1 linux, linux-gcp, linux-gcp-5.15, linux-gke, linux-gkeop, linux-ibm, linux-ibm-5.15, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-oracle-5.15, linux-raspi vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - RISC-V architecture; - S390 architecture; - x86 architecture; - Block layer subsystem; - ACPI...

PT-2025-8769

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been identified, related to an out-of-bounds read during lookup in the xfrm state. The issue arises when lookup and resize operations run in...

Ubuntu 22.04 LTS : Linux kernel (Azure) vulnerabilities (USN-7123-1)

"The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7123-1 advisory. It was discovered that the CIFS network file system implementation in the Linux kernel did not properly validate certain SMB messages, leading to an...

Huawei HarmonyOS Permission Issues Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a privilege issue vulnerability that stems from a vulnerability in the Parallel Vision module that enables application privileg...

kernel: crypto: pcrypt - Fix hungtask for PADATA_RESET

In the Linux kernel, the following vulnerability has been resolved: crypto: pcrypt - Fix hungtask for PADATARESET We found a hungtask bug in testaeadveccfg as follows: INFO: task cryptomgrtest:391009 blocked for more than 120 seconds. "echo 0 /proc/sys/kernel/hungtasktimeoutsecs" disables this...

kernel: dev/parport: fix the array out-of-bounds risk

An array out-of-bounds flaw was found in dev/parport in the Linux kernel. This issue may result in a crash...

kernel: efi/unaccepted: touch soft lockup during memory accept

In the Linux kernel, the following vulnerability has been resolved: efi/unaccepted: touch soft lockup during memory accept Commit 50e782a86c98 "efi/unaccepted: Fix soft lockups caused by parallel memory acceptance" has released the spinlock so other CPUs can do memory acceptance in parallel and n...

USN-7089-3: Linux kernel vulnerabilities

Chenyuan Yang discovered that the USB Gadget subsystem in the Linux kernel did not properly check for the device to be enabled before writing. A local attacker could possibly use this to cause a denial of service. CVE-2024-25741 Several security issues were discovered in the Linux kernel. An...

CVE-2024-47827

A flaw was found in Argo Workflows. Due to a race condition in a global variable, the Argo Workflows controller can crash on command by any user with access to execute a workflow, which can lead to a denial of service...