145 matches found
Mozilla: Potential use-after-free due to AlignedBuffer self-move
The Mozilla Foundation Security Advisory describes this flaw as: If an AlignedBuffer were assigned to itself, the subsequent self-move could result in an incorrect reference count and later use-after-free...
Linux kernel security vulnerabilities
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the fact that PM reference counts are not expected to be incremented upon return in xiicxfer and xiici2cremo...
CVE-2021-46937
In the Linux kernel, the following vulnerability has been resolved: mm/damon/dbgfs: fix 'struct pid' leaks in 'dbgfstargetidswrite' DAMON debugfs interface increases the reference counts of 'struct pid's for targets from the 'targetids' file write callback 'dbgfstargetidswrite', but decreases the...
CVE-2021-46937
In the Linux kernel, the following vulnerability has been resolved: mm/damon/dbgfs: fix 'struct pid' leaks in 'dbgfstargetidswrite' DAMON debugfs interface increases the reference counts of 'struct pid's for targets from the 'targetids' file write callback 'dbgfstargetidswrite', but decreases the...
DEBIAN-CVE-2021-46937
In the Linux kernel, the following vulnerability has been resolved: mm/damon/dbgfs: fix 'struct pid' leaks in 'dbgfstargetidswrite' DAMON debugfs interface increases the reference counts of 'struct pid's for targets from the 'targetids' file write callback 'dbgfstargetidswrite', but decreases the...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a flaw in the netdevsim device driver where reference counts are improperly managed, which can be exploited ...
CVE-2020-11935
CVE-2020-11935 concerns the aufs filesystem implementation in the Linux kernel, where inode reference counts are improperly managed in the vfsub_dentry_open() method. This defect can allow a local attacker to trigger a denial-of-service condition. The connected documents consistently describe the...
CVE-2020-11935 aufs: improperly managed inode reference counts in the vfsub_dentry_open() method
It was discovered that aufs improperly managed inode reference counts in the vfsubdentryopen method. A local attacker could use this vulnerability to cause a denial of service attack...
CVE-2020-11935
Removed by vendor...
SUSE CVE-2016-4558
The BPF subsystem in the Linux kernel before 4.5.5 mishandles reference counts, which allows local users to cause a denial of service use-after-free or possibly have unspecified other impact via a crafted application on 1 a system with more than 32 Gb of memory, related to the program reference...
SUSE CVE-2022-2327
iouring use workflags to determine which identity need to grab from the calling process to make sure it is consistent with the calling process when executing IORINGOP. Some operations are missing some types, which can lead to incorrect reference counts which can then lead to a double free. We...
Huawei HarmonyOS 安全漏洞
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS, which stems from improper update of reference counts. An attacker could exploit the vulnerability to cau...
Red Hat Enterprise Linux 资源管理错误漏洞
Red Hat Enterprise Linux is a Linux operating system for business users from Red Hat, Inc. A security vulnerability in Red Hat Enterprise Linux exists because the onstreamio function and the dnsstreamcomplete function in resolved-dns-stream.c do not increment the reference count of a DnsStream...
CVE-2022-2327
iouring use workflags to determine which identity need to grab from the calling process to make sure it is consistent with the calling process when executing IORINGOP. Some operations are missing some types, which can lead to incorrect reference counts which can then lead to a double free. We...
CVE-2022-2327 Use-after-free in io_uring ad work_flags in Linux Kernel
iouring use workflags to determine which identity need to grab from the calling process to make sure it is consistent with the calling process when executing IORINGOP. Some operations are missing some types, which can lead to incorrect reference counts which can then lead to a double free. We...
PT-2022-7703 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the version containing commit df3f3bb5059d20ef094d6b2f0256c4bf4127a859 Description: The issue is related to a double free vulnerability in the Linux kernel, specifically with the io uring feature. This...
CVE-2022-2327
iouring use workflags to determine which identity need to grab from the calling process to make sure it is consistent with the calling process when executing IORINGOP. Some operations are missing some types, which can lead to incorrect reference counts which can then lead to a double free. We...
DEBIAN-CVE-2022-26364
x86 pv: Insufficient care with non-coherent mappings This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Xen maintains a type reference count for pages, in addition to a regular reference count. This scheme is used to...
CVE-2022-26364
x86 pv: Insufficient care with non-coherent mappings This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Xen maintains a type reference count for pages, in addition to a regular reference count. This scheme is used to...
CVE-2022-26363
x86 pv: Insufficient care with non-coherent mappings This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Xen maintains a type reference count for pages, in addition to a regular reference count. This scheme is used to...