kernel: mwifiex_usb_recv() in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker to cause DoS via crafted USB device

A denial of service flaw was found in mwifiexusbrecv in drivers/net/wireless/marvell/mwifiex/usb.c in the usb subsystem of the Linux kernel. This is due to a missing clean-up for a malfunctioning usb device with an unknown recvtype...

CVE-2022-24705 Buffer Overflow via Crafted Ipv6 Prefix Attribute Type Client Request in accel-ppp v1.12

The radpacketrecv function in radius/packet.c suffers from a memcpy buffer overflow, resulting in an overly-large recvfrom into a fixed buffer that causes a buffer overflow and overwrites arbitrary memory. If the server connects with a malicious client, crafted client requests can remotely trigge...

CVE-2022-21801

The CVE-2022-21801 issue affects Reolink RLC-410W netserver.recv_command, where an integer overflow in the handling of the header data_size permits a path that can dereference a null recv_data buffer, causing a crash and device reboot. Technical details show the vulnerable flow in netserver, incl...

PT-2024-11807

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to the SUNRPC component in the Linux kernel, where the -sock can be set to NULL asynchronously unless the -recv mutex is held. This can trigger an oops when a sysfs...

The vulnerability of the mwifiex_usb_recv function (drivers/net/wireless/marvell/mwifiex/usb.c) in the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the mwifiexusbrecv function drivers/net/wireless/marvell/mwifiex/usb.c in the Linux Server kernel is related to resource release errors. Exploiting this vulnerability can allow an attacker to cause service failures...

CVE-2021-25488

Lack of boundary checking of a buffer in recvdata of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read...

PT-2024-11256 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak has been resolved in the Linux kernel, specifically in the rds recvmsg function. The issue was caused by an unputted refcount in case of error. When rds cmsg recv fails,...

freerdp: out-of-bounds read in irp functions

In FreeRDP before 2.1.0, there is an out-of-bound read in irp functions parallelprocessirpcreate, serialprocessirpcreate, driveprocessirpwrite, printerprocessirpwrite, rdpeirecvpdu, serialprocessirpwrite. This has been fixed in 2.1.0...

ALPINE-CVE-2020-11080

In nghttp2 before version 1.41.0, the overly large HTTP/2 SETTINGS frame payload causes denial of service. The proof of concept attack involves a malicious client constructing a SETTINGS frame with a length of 14,400 bytes 2400 individual settings entries over and over again. The attack causes th...

The vulnerabilities of the functions BasicSocket#recv_nonblock and BasicSocket#read_nonblock in the Ruby programming language allow attackers to gain unauthorized access to protected information.

The vulnerability of the BasicSocketrecvnonblock and BasicSocketreadnonblock functions in the Ruby programming language is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected...

The vulnerability of the recv_files and read_ndx_and attrs functions in the rsync daemon allows a hacker to circumvent existing access restrictions and compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of rsync exists due to the lack of checks on the filenames fnamecmp in the daemonfilterlist data structure in the recvfiles function in receiver.c, and the absence of a sanitizepaths mechanism for paths found in the “xname follows” strings in the readndxand attrs function in...

Novatek NT9665X HFS Recv buffer overflow code execution vulnerability

Summary An exploitable code execution vulnerability exists in the HTTP request-parsing function of the NT9665X Chipset firmware running on the Anker Roav A1 Dashcam, version “RoavA1SWV1.9.” A specially crafted packet can cause an unlimited and arbitrary write to memory, resulting in code executio...

Linux/ARM - Reverse TCP (192.168.1.1:4444/TCP) Shell (/bin/sh) + Password (MyPasswd) + Null-Free Shellcode (156 bytes)

Linux/ARM - Reverse TCP 192.168.1.1:4444/TCP Shell /bin/sh + Password MyPasswd + Null-Free Shellcode 156 bytes. Shellcode exploit for ARM platform / Title: Linux/ARM - Password Protected Reverse Shell TCP /bin/sh. Null free shellcode 156 bytes Date: 2018-01-15 Tested: armv7l Raspberry Pi v3 Autho...

FreeRDP Rdp Client License Recv Code Execution Vulnerability(CVE-2017-2834)

Summary An exploitable code execution vulnerability exists in the authentication functionality of FreeRDP 2.0.0-beta1+android11. A specially crafted server response can cause an out-of-bounds write resulting in an exploitable condition. An attacker can compromise the server or use a man in the...

Linux kernel ipv4/udp. c remote arbitrary code execution(CVE-2016-10229)-vulnerability warning-the black bar safety net

! Vulnerability description The Linux kernel is the United States, the Linux Foundation released theoperating systemLinux the kernel. Linux kernel 4.5 the previous version of the udp. c file there is a security vulnerability, the Linux kernel udp. c allows a remote attacker via UDP traffic to...

Linux kernel 'udp. c' remote code execution vulnerability(CVE-2016-10229)

The Linux kernel allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSGPEEK flag. This may create a kernel panic or memory corruption leading to privilege escalation...

CVE-2016-10229

udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSGPEEK flag...

UBUNTU-CVE-2016-10229

udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSGPEEK flag...

Code injection

udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSGPEEK flag...

CVE-2016-10229

udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSGPEEK flag...