The vulnerability of the iio_gts_build_avail_scale_table() function in the drivers/iio/industrialio-gts-helper.c kernel of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the iiogtsbuildavailscaletable function in the drivers/iio/industrialio-gts-helper.c file of the Linux kernel is related to improper memory release before deleting the last pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the bcmasp_xmit() function in the drivers/net/ethernet/broadcom/asp2/bcmasp_intf.c component of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the bcmaspxmit function in the drivers/net/ethernet/broadcom/asp2/bcmaspintf.c file of the Linux kernel is related to improper memory release before deleting the last pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the fib4_rule_action() function in the net/ipv4/fibRules.c module of the IPv4 protocol implementation in the Linux operating system allows a attacker to cause a service failure.

The vulnerability of the fib4ruleaction function in the net/ipv4/fibrules.c module of the Linux operating system’s IPv4 kernel implementation is related to improper memory release before deleting the last pointer memory leak. Exploiting this vulnerability could allow an attacker to cause a servic...

The vulnerability of the xe_display_fini_noirq() function in the Linux kernel’s Direct Rendering Infrastructure Support driver allows a malicious actor to cause a service failure.

The vulnerability of the xedisplayfininoirq function in the Direct Rendering Infrastructure DRI driver of the Linux operating system is related to improper memory release before deleting the last pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

SUSE CVE-2024-40940

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail In case of flow rule creation fail in mlx5lagcreateportseltable, instead of previously created rules, the tainted pointer is deleted deveral times. Fix this...

Adobe Flash - Sound.loadPCMFromByteArray Dangling Pointer

Adobe Flash - Sound.loadPCMFromByteArray Dangling Pointer Source: https://code.google.com/p/google-security-research/issues/detail?id=698 There is a dangling pointer that can be read, but not written to in loadPCMFromByteArray. A minimal PoC is as follows: var s = new Sound; var b = new ByteArray...