79 matches found
SUSE CVE-2023-7192
A memory leak problem was found in ctnetlinkcreateconntrack in net/netfilter/nfconntracknetlink.c in the Linux Kernel. This issue may allow a local attacker with CAPNETADMIN privileges to cause a denial of service DoS attack due to a refcount overflow...
Linux Kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A denial of service attack vulnerability exists in the Linux Kernel. The vulnerability is due to a memory leak found in ctnetlinkcreateconntrack in...
PT-2023-9474 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the HID intel-ish-hid ipc component in the Linux kernel. It involves the handling of the ACPI GPE bit, which is used for wake-up capabilities on EHL Elkhart Lak...
Oracle Linux 6 : kernel (ELSA-2020-4182)
The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-4182 advisory. 2.6.32-754.35.1.OL6 - Update genkey bug 25599697 2.6.32-754.35.1 - ata libata: fix NULL sdev dereference race in atapiqccomplete Kenneth Yin 1876296...
Medium: wayland
Issue Overview: An internal reference count is held on the buffer pool, incremented every time a new buffer is created from the pool. The reference count is maintained as an int; on LP64 systems this can cause the reference count to overflow if the client creates a large number of wlshm buffer...
CentOS 8 : wayland (CESA-2023:2786)
The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:2786 advisory. - An internal reference count is held on the buffer pool, incremented every time a new buffer is created from the pool. The reference count is maintained as an...
RHEL 8 : wayland (RHSA-2023:2786)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:2786 advisory. Wayland is a protocol for a compositor to talk to its clients, as well as a C library implementation of that protocol. The compositor can be a...
SUSE-SU-2023:1874-1 Security update for wayland
This update for wayland fixes the following issues: - CVE-2021-3782: Fixed a reference-count overflow in libwayland-server SHM handling. bsc1190486...
SUSE-SU-2023:1873-1 Security update for wayland
This update for wayland fixes the following issues: - CVE-2021-3782: Fixed a reference-count overflow in libwayland-server SHM handling. bsc1190486...
SUSE-SU-2023:1860-1 Security update for wayland
This update for wayland fixes the following issues: - CVE-2021-3782: Fixed a reference-count overflow in libwayland-server SHM handling. bsc1190486...
SUSE CVE-2017-17563
An issue was discovered in Xen through 4.9.x allowing guest OS users to cause a denial of service host OS crash or gain host OS privileges by leveraging an incorrect mask for reference-count overflow checking in shadow mode...
Security Bulletin: ISC DHCP server for IBM i is vulnerable to a denial of service attack due to a memory leak and refererence count overflow (CVE-2022-2928, CVE-2022-2929)
Summary ISC DHCP server on IBM i is vulnerable to a denial of service attack due to a memory leak in the fqdnuniversedecode function and a reference count overflow in the addoption function as described in the vulnerability details section. IBM i has addressed the vulnerabilities in ISC DHCP serv...
CLSA-2022-1669241675 Fix CVE(s): CVE-2022-2928, CVE-2022-2929
SECURITY UPDATE: option refcount overflow - debian/patches/CVE-2022-2928.patch: fix work with reference counter 'refcount' - CVE-2022-2928 SECURITY UPDATE: DHCP memory leak - debian/patches/CVE-2022-2929.patch: free memory when incorrect 'fqdn' labels are used - CVE-2022-2929...
Ubuntu 16.04 ESM : Wayland vulnerability (USN-5614-2)
The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5614-2 advisory. USN-5614-1 fixed a vulnerability in Wayland. This update provides the corresponding update for Ubuntu 16.04 ESM. Tenable has extracted the preceding description...
UBUNTU-CVE-2021-3782
An internal reference count is held on the buffer pool, incremented every time a new buffer is created from the pool. The reference count is maintained as an int; on LP64 systems this can cause the reference count to overflow if the client creates a large number of wlshm buffer objects, or if it...
CVE-2021-3782
An internal reference count is held on the buffer pool, incremented every time a new buffer is created from the pool. The reference count is maintained as an int; on LP64 systems this can cause the reference count to overflow if the client creates a large number of wlshm buffer objects, or if it...
NewStart CGSL MAIN 4.06 : kernel Multiple Vulnerabilities (NS-SA-2022-0075)
The remote NewStart CGSL host, running version MAIN 4.06, has kernel packages installed that are affected by multiple vulnerabilities: - The offset2lib patch as used by the Linux Kernel contains a vulnerability, if RLIMITSTACK is set to RLIMINFINITY and 1 Gigabyte of memory is allocated the maxim...
Mageia: Security Advisory (MGASA-2018-0410)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PT-2021-8110 · Xwayland +9 · Xwayland +9
Name of the Vulnerable Software and Affected Versions: Wayland affected versions not specified Description: The issue is related to an integer overflow in the reference count of the buffer pool. This can occur when a large number of wl shm buffer objects are created or when the server is coerced...
SUSE: Security Advisory (SUSE-SU-2018:0810-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...