5 matches found
kernel: rpmsg: char: Avoid double destroy of default endpoint
In the Linux kernel, the following vulnerability has been resolved: rpmsg: char: Avoid double destroy of default endpoint The rpmsgdevremove in rpmsgcore is the place for releasing this default endpoint. So need to avoid destroying the default endpoint in rpmsgchrdeveptdevdestroy, this should be...
kernel: rpmsg: qcom_smd: Fix refcount leak in qcom_smd_parse_edge
In the Linux kernel, the following vulnerability has been resolved: rpmsg: qcomsmd: Fix refcount leak in qcomsmdparseedge ofparsephandle returns a node pointer with refcount incremented, we should use ofnodeput on it when done...
DEBIAN-CVE-2023-52670
In the Linux kernel, the following vulnerability has been resolved: rpmsg: virtio: Free driveroverride when rpmsgremove Free driveroverride when rpmsgremove, otherwise the following memory leak will occur: unreferenced object 0xffff0000d55d7080 size 128: comm "kworker/u8:2", pid 56, jiffies...
systemd: systemd-resolved allows unprivileged users to configure DNS
An improper authorization flaw was discovered in systemd-resolved in the way it configures the exposed DBus interface org.freedesktop.resolve1. An unprivileged local attacker could call all DBus methods, even when marked as privileged operations. An attacker could abuse this flaw by changing the...
Adobe Issues HotFix For ColdFusion
Adobe this afternoon released hotfixes and security updates for three of its products that patch a handful of vulnerabilities, none of which are being publicly exploited. The most serious vulnerabilities were in ColdFusion, Adobe’s web application development platform. The hotfix affects ColdFusi...