MSM和Qualcomm platform-kernel 资源管理错误漏洞

MSM is a sample management tool from the individual developer Holger Graef in France. Enables researchers to track their samples from any PC in the lab.Qualcomm platform-kernel is a Linux kernel codebase from Qualcomm, USA. A resource management error vulnerability exists in MSM and Qualcomm...

CVE-2025-38479 dmaengine: fsl-edma: free irq correctly in remove path

In the Linux kernel, the following vulnerability has been resolved: dmaengine: fsl-edma: free irq correctly in remove path Add fsledma-txirq/errirq check to avoid below warning because no errirq at i.MX9 platform. Otherwise there will be kernel dump: WARNING: CPU: 0 PID: 11 at...

USN-7323-1: Linux kernel vulnerabilities

Attila Szász discovered that the HFS+ file system implementation in the Linux Kernel contained a heap overflow vulnerability. An attacker could use a specially crafted file system image that, when mounted, could cause a denial of service system crash or possibly execute arbitrary code...

USN-7294-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - Block layer subsystem; - ACPI drivers; - Drivers core; - ATA over ethernet AOE driver; - TPM...

PT-2024-40035 · Ez Systems · Ezpublish-Kernel +1

Name of the Vulnerable Software and Affected Versions: ezsystems/ezplatform-kernel versions prior to v1.0.3 ezsystems/ezpublish-kernel versions prior to v7.5.8 ezsystems/ezpublish-kernel versions prior to v6.13.6.4 ezsystems/ezpublish-kernel versions prior to v5.4.15 Description: The issue is an...

PT-2023-9159 · Qualcomm · Qualcomm 4 Gen 1 Mobile Platform

Name of the Vulnerable Software and Affected Versions: Qualcomm 4 Gen 1 Mobile Platform affected versions not specified Description: The issue is related to memory corruption that occurs when the resource manager sends the host kernel a reply message with multiple fragments. This can potentially...

CVE-2021-40501

CVE-2021-40501 affects SAP ABAP Platform Kernel versions 7.77, 7.81, 7.85, 7.86. The root cause is missing authorization checks for an authenticated business user, enabling privilege escalation (read/modify data beyond the vulnerable system). The exploitation details are not provided in the conne...

CVE-2021-40501

SAP ABAP Platform Kernel - versions 7.77, 7.81, 7.85, 7.86, does not perform necessary authorization checks for an authenticated business user, resulting in escalation of privileges. That means this business user is able to read and modify data beyond the vulnerable system. However, the attacker...

Cross-site scripting in eZ Platform Kernel

Impact In file upload it is possible by certain means to upload files like .html and .js. These may contain XSS exploits which will be run when links to them are accessed by victims. Patches The fix consists simply of adding common types of scriptable file types to the configuration of the alread...