4528 matches found
UVI-2021-1001179 memory: fsl_ifc: fix leak of IO mapping on probe failure
memory: fslifc: fix leak of IO mapping on probe failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.13.4 by commit...
PT-2024-11307 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a Use After Free UAF bug in the fza probe function. The fp variable, which is netdev private data, cannot be used after the free netdev call. Using fp after fre...
IBM Sterling Secure Proxy 代码问题漏洞
IBM Sterling Secure Proxy is an International Business Machines Corporation IBM application proxy for securing file transfers in an organization's unprotected zone DMZ. IBM Sterling Secure Proxy has a server-side request forgery vulnerability vulnerability that originates from a server that fails...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.504.2.el7 - md/raid1: properly indicate failure when ending a failed write request Paul Clements Orabug: 32887159 - video: hypervfb: Add ratelimit on error message Michael Kelley Orabug: 32856879 - Drivers: hv: vmbus: Initialize unloadevent statically Andrea Parri Microsoft Orabug:...
UVI-2021-1000556 drm/meson: fix shutdown crash when component not probed
drm/meson: fix shutdown crash when component not probed This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.9 by commit...
Exploit for Improper Access Control in Elasticsearch
欢迎各位大佬提BUG,当前版本 AssetScanV1.3 周期 初版:2019年11月28日 V1.0初版编写完成 修改1:2019年12月02日 感谢Shadow·J反馈kali下文件导入异常 修改2:2019年12月03日 V1.1发布,新增ARP存活检测(回滚,测bug) 修改3:2019年12月04日 V1.2发布,修复漏洞脚本异常,修复weblogic脚本 修改4:2019年12月05日 V1.2修改,感谢sevck提供设计思路以及代码不规范问题 修改5:2019年12月05日 V1.2修改,修复IP数据处理异常 修改6:2019年12月19日...
PT-2024-11328 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a resource leak in the Linux kernel's megaraid sas driver. When the scsi add host or megasas start aen function fails during the PCI device probe, the driver do...
GSD-2021-1000210 can: mcp251xfd: mcp251xfd_probe(): fix an error pointer dereference in probe
can: mcp251xfd: mcp251xfdprobe: fix an error pointer dereference in probe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.5 by commit...
GSD-2021-1000146 virtiofs: fix memory leak in virtio_fs_probe()
virtiofs: fix memory leak in virtiofsprobe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.36 by commit...
GSD-2021-1000108 ACPI: GTDT: Don't corrupt interrupt mappings on watchdow probe failure
ACPI: GTDT: Don't corrupt interrupt mappings on watchdow probe failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.11.20 by commit...
GSD-2021-1000069 ACPI: GTDT: Don't corrupt interrupt mappings on watchdow probe failure
ACPI: GTDT: Don't corrupt interrupt mappings on watchdow probe failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.3 by commit...
UVI-2021-1000210 can: mcp251xfd: mcp251xfd_probe(): fix an error pointer dereference in probe
can: mcp251xfd: mcp251xfdprobe: fix an error pointer dereference in probe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.5 by commit...
UVI-2021-1000175 ACPI: GTDT: Don't corrupt interrupt mappings on watchdow probe failure
ACPI: GTDT: Don't corrupt interrupt mappings on watchdow probe failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.118 by commit...
GSD-2021-1000144 ACPI: GTDT: Don't corrupt interrupt mappings on watchdow probe failure
ACPI: GTDT: Don't corrupt interrupt mappings on watchdow probe failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.36 by commit...
GSD-2021-1000175 ACPI: GTDT: Don't corrupt interrupt mappings on watchdow probe failure
ACPI: GTDT: Don't corrupt interrupt mappings on watchdow probe failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.118 by commit...
UVI-2021-1000146 virtiofs: fix memory leak in virtio_fs_probe()
virtiofs: fix memory leak in virtiofsprobe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.36 by commit...
UVI-2021-1000108 ACPI: GTDT: Don't corrupt interrupt mappings on watchdow probe failure
ACPI: GTDT: Don't corrupt interrupt mappings on watchdow probe failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.11.20 by commit...
UVI-2021-1000069 ACPI: GTDT: Don't corrupt interrupt mappings on watchdow probe failure
ACPI: GTDT: Don't corrupt interrupt mappings on watchdow probe failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.3 by commit...
PT-2024-11329
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak has been resolved in the Linux kernel. The issue occurred in the probe function when the final serial config fails, causing the info variable to leak. A resource handling...
PT-2024-11216 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.19.177-gdba4159c14ef-dirty 45 Description: The vulnerability is related to the use of 'request firmware nowait' instead of 'request firmware' in the 'rp2 probe' function. This can cause a NULL pointer...