22 matches found
CLSA-2026-1778787063 kernel: Fix of 122 CVEs
net: skbuff: propagate shared-frag marker through pskbcopy - mptcp: always handle address removal under msk socket lock CVE-2025-21875 - uprobes: Reject the shared zeropage in uprobewriteopcode CVE-2025-21881 - net: hns3: make sure ptp clock is unregister and freed if hclgeptpgetcycle returns an...
DNSmasq 安全漏洞
DNSmasq is a DNS configuration tool developed by Simon Kelley. DNSmasq has a security vulnerability, which stems from a buffer overflow in the extractaddresses function. This vulnerability allows attackers to trigger heap-based out-of-bounds reads by exploiting malformed DNS responses, causing a...
SUSE CVE-2026-43463
In the Linux kernel, the following vulnerability has been resolved: rxrpc, afs: Fix missing error pointer check after rxrpckernellookuppeer rxrpckernellookuppeer can also return error pointers in addition to NULL, so just checking for NULL is not sufficient. Fix this by: 1 Changing...
ROS-20260320-73-0003
A vulnerability in the WebSocket protocol implementation of the libsoup library of the GNOME GUI is related to pointer dereferencing errors. Exploitation of the vulnerability could allow a remote attacker to cause a denial of service by sending a specially crafted POST request...
ROS-20260120-7305
A vulnerability in the tcp component of the Linux operating system kernel is related to pointer dereferencing errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260119-7330
A vulnerability in the vidtvbridge.c component of the Linux kernel is related to pointer dereferencing errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
📄 Microsoft Windows 11 Administrator Protection Bypass / Privilege Escalation
Microsoft Windows 11 suffers from an administrator protection bypass local privilege escalation vulnerability. Proof of concept Metasploit module included. =============================================================================================================================================...
ROS-20251006-01
A vulnerability in the certtool utility of the GnuTLS transport layer security library is related to an operation exceeding the buffer boundaries. operation outside of a buffer in memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
CVE-2023-53440 nilfs2: fix sysfs interface lifetime
In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix sysfs interface lifetime The current nilfs2 sysfs support has issues with the timing of creation and deletion of sysfs entries, potentially leading to null pointer dereferences, use-after-free, and lockdep warnings...
ROS-20250804-03
Vulnerability of NCompress::NRar5::CDecoder method of RAR5 decoder of 7-Zip archiver is related to possibility of heap-based buffer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service Vulnerability of NArchive::NCom::CHandler::GetStream metho...
SUSE-SU-2025:0063-1 Security update for gstreamer-plugins-good
This update for gstreamer-plugins-good fixes the following issues: - CVE-2024-47540: Fixed an uninitialized stack memory in Matroska/WebM demuxer. boo1234421 - CVE-2024-47537: Fixed an out-of-bounds write in isomp4/qtdemux.c. boo1234414 - CVE-2024-47543: Fixed an out-of-bounds write in...
PT-2025-18464 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the function dpu plane virtual atomic check in the Linux kernel, which was dereferencing pointers returned by drm atomic get plane state without checking for...
kernel: xprtrdma: fix pointer derefs in error cases of rpcrdma_ep_create
A flaw was found in the Linux kernel in which a system crash can occur if there are certain errors establishing RPC-over-RDMA connections...
PT-2024-5646 · Microsoft · Windows Layer-2 Bridge Network Driver +1
Name of the Vulnerable Software and Affected Versions: Windows Layer-2 Bridge Network Driver affected versions not specified Description: The issue is related to errors in pointer dereferencing, which can be exploited by a remote attacker to cause a denial of service. This can affect the system,...
PT-2024-5626 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to errors in pointer dereferencing in the implementation of Network Address Translation NAT technology in Windows operating systems. This can be exploited by a remote...
PT-2024-1913 · Microsoft +8 · .Net Framework +8
Name of the Vulnerable Software and Affected Versions: Microsoft .NET affected versions not specified Description: The issue is related to pointer dereference errors in the Microsoft .NET platform. It can be exploited by a remote attacker to cause a denial of service. Recommendations: At the...
Adobe Acrobat DC Continuous Security Update (APSB21-51) - Windows
The host is missing an important security update according to Adobe August update. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...
PT-2020-6526 · Genivia · Gsoap
Name of the Vulnerable Software and Affected Versions: Genivia gSOAP version 2.8.107 Description: A denial-of-service issue exists in the WS-Security plugin functionality of Genivia gSOAP. This is due to pointer dereference errors when processing SOAP requests. An attacker can exploit this by...
kernel: NFSv3 server does not properly handle payload bounds checking of WRITE requests
The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lacked certain checks for the end of a buffer. A remote attacker could trigger a pointer-arithmetic error or possibly cause other unspecified impacts using crafted requests related to fs/nfsd/nfs3xdr.c and...
Google Chrome < 4.1.249.1036 Multiple Vulnerabilities
Binary data 5364.pasl...