Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from pointers being able to access memory outside of a buffer...

CVE-2024-35940 pstore/zone: Add a null pointer check to the psz_kmsg_read

In the Linux kernel, the following vulnerability has been resolved: pstore/zone: Add a null pointer check to the pszkmsgread kasprintf returns a pointer to dynamically allocated memory which can be NULL upon failure. Ensure the allocation was successful by checking the pointer validity...

CVE-2024-35891

The CVE-2024-35891 issue affects the Linux kernel net:phy: micrel area, specifically lan8814_get_sig_rx() and lan8814_get_sig_tx(). The vulnerability stems from ptp_parse_header() returning NULL for abnormally formed or corrupted packets, leading to a potential null pointer dereference. The fix a...

CVE-2023-52696

In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv: Add a null pointer check in opalpowercapinit kasprintf returns a pointer to dynamically allocated memory which can be NULL upon failure...

CVE-2023-34288 Ashlar-Vellum Cobalt XE File Parsing Uninitialized Pointer Remote Code Execution Vulnerability

Ashlar-Vellum Cobalt XE File Parsing Uninitialized Pointer Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target mus...

CVE-2024-31413

Omron Sysmac Studio/CX‑One and CX‑Programmer are affected by CVE‑2024‑31413 due to a pointer not at the start of a buffer, enabling arbitrary code execution when opening a crafted project file. Affected versions include CX‑One v4.61.1 or earlier and Sysmac Studio v1.56 or earlier. The issue is de...

CVE-2021-47197

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: nullify cq-dbg pointer in mlx5debugcqremove Prior to this patch in case mlx5coredestroycq failed it proceeds to rest of destroy operations. mlx5coredestroycq could be called again by user and cause additional call of...

CVE-2021-47183

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix link down processing to address NULL pointer dereference If an FC link down transition while PLOGIs are outstanding to fabric well known addresses, outstanding ABTS requests may result in a NULL pointer dereferenc...

CVE-2024-26649

CVE-2024-26649 (linux kernel, drm/amdgpu) fixes a NULL pointer dereference in RLC firmware loading. Root cause: when RLC firmware header size is invalid, the firmware pointer is released and later dereferenced. The patch skips the validation to prevent the NULL pointer dereference during subseque...

CVE-2024-30161

CVE-2024-30161 – Qt6 base (qt6-base) / QNetworkReply header data in Qt 6.5.4, 6.5.5, and 6.6.2 can be exposed via a dangling pointer when running Qt for WebAssembly (wasm). The root cause is a dangling pointer access to header data, affecting WebAssembly builds; earlier/later Qt versions are not ...

CVE-2023-52492

In the Linux kernel, the following vulnerability has been resolved: dmaengine: fix NULL pointer in channel unregistration function dmaasyncdevicechannelregister can fail. In case of failure, chan-local is freed with freepercpu, and chan-local is nullified. When dmaasyncdeviceunregister is called...

GPAC Security Vulnerabilities

GPAC is an open source multimedia framework. A security vulnerability exists in GPAC version 2.3-DEV-rev588-g7edc40fee-mastergpac, which originated from a null pointer reference in gfdashsetupperiod in mediatools/dashclient that allows remote attackers to obtain sensitive information...

CVE-2021-47087

In the Linux kernel, the following vulnerability has been resolved: tee: optee: Fix incorrect page free bug Pointer to the allocated pages struct page page has already progressed towards the end of allocation. It is incorrect to perform freepagespage, order using this pointer as we would free any...

D-Link DIR-823G Security Vulnerability

The D-Link DIR-823G is a wireless router from China-based AUO D-Link. A security vulnerability exists in the D-Link DIR-823G A1V1.0.2B05 version, which stems from a null pointer dereference vulnerability in the sub41C488 function...

CVE-2021-47045

A flaw was found in the scsi/lpfcIt subsystem of the Linux kernel, where it is possible to call lpfcissueelsplogi passing a did argument for which no matching ndlp is found. A call is then made to lpfcprepelsiocb with a NULL pointer to a lpfcnodelist structure, resulting in a NULL pointer...

CVE-2021-47002 SUNRPC: Fix null pointer dereference in svc_rqst_free()

In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fix null pointer dereference in svcrqstfree When allocpagesnode returns null in svcrqstalloc, the null rqscratchpage pointer will be dereferenced when calling putpage in svcrqstfree. Fix it by adding a null check...

CVE-2021-46981

In the Linux kernel, the following vulnerability has been resolved: nbd: Fix NULL pointer in flushworkqueue Open /dev/nbdX first, the configrefs will be 1 and the pointers in nbddevice are still null. Disconnect /dev/nbdX, then reference a null recvworkq. The protection by configrefs in...

CVE-2021-46981 nbd: Fix NULL pointer in flush_workqueue

In the Linux kernel, the following vulnerability has been resolved: nbd: Fix NULL pointer in flushworkqueue Open /dev/nbdX first, the configrefs will be 1 and the pointers in nbddevice are still null. Disconnect /dev/nbdX, then reference a null recvworkq. The protection by configrefs in...

CVE-2021-46981 nbd: Fix NULL pointer in flush_workqueue

In the Linux kernel, the following vulnerability has been resolved: nbd: Fix NULL pointer in flushworkqueue Open /dev/nbdX first, the configrefs will be 1 and the pointers in nbddevice are still null. Disconnect /dev/nbdX, then reference a null recvworkq. The protection by configrefs in...

CVE-2024-25768

OpenDMARC 1.4.2 contains a null pointer dereference vulnerability in /OpenDMARC/libopendmarc/opendmarcpolicy.c...