2 matches found
kernel: cifs: Fix memory and information leak in smb3_reconfigure()
A memory and information leak vulnerability was found in the Linux kernel's CIFS/SMB3 filesystem driver. When smb3reconfigure fails during smb3syncsessionctxpasswords, the newly allocated password buffers newpassword and newpassword2 are not freed or securely erased. This causes a memory leak and...
CVE-2021-34757
CVE-2021-34757 affects Cisco Business 220 Series Smart Switches firmware. The root issue is static/key/password vulnerabilities (hardcoded credentials) in the device firmware that could let an attacker with Administrator privileges access sensitive login credentials or reconfigure user passwords....