Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a sched/smt component that has an unbalanced scheduling SMT Simultaneous Multi-Threading state statistics...

New Windows Backdoor BITSLOTH Exploits BITS for Stealthy Communication

Cybersecurity researchers have discovered a previously undocumented Windows backdoor that leverages a built-in feature called Background Intelligent Transfer Service BITS as a command-and-control C2 mechanism. The newly identified malware strain has been codenamed BITSLOTH by Elastic Security Lab...

The vulnerability of the Request Submission and Scheduling components of the Oracle Concurrent Processing application in the Oracle E-Business Suite allows attackers to disclose sensitive information.

The vulnerability of the Request Submission and Scheduling components in Oracle Concurrent Processing of the Oracle E-Business Suite exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose sensitive...

PT-2024-4300 · Google +5 · Google Chrome +5

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 125.0.6422.76 Microsoft Edge affected versions not specified Description: The issue is related to a use-after-free vulnerability in the Scheduling component of Google Chrome and Microsoft Edge browsers. This...

The vulnerability of the Radio Scheduling component in the microprogramming software of Tp-Link AC1350 allows a intruder to execute arbitrary code.

The vulnerability of the Radio Scheduling component in the microprogramming software of Tp-Link AC1350 wireless access points is related to buffer overflows in the stack when processing the “action” parameter. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using...

PT-2024-4901 · Oracle · Oracle E-Business Suite

Name of the Vulnerable Software and Affected Versions: Oracle E-Business Suite versions 12.2.3 through 12.2.13 Description: The issue is related to insufficient input validation in the Request Submission and Scheduling component of Oracle Concurrent Processing. This easily exploitable vulnerabili...

PT-2023-35458 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.169 Description: The issue concerns a bounds check priority in the Linux Kernel's scheduling component. The actual impact and potential for attack have not been fully determined. Recommendations: For Linux...

PT-2023-35396 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.13 Description: The issue concerns a bounds check priority in the Linux Kernel's scheduling component. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...

PT-2021-8180 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a use-after-free error in the Linux kernel's sched/fair component. This error occurs when the unregister fair sched group function unlinks all cfs rqs from a...

The vulnerability in the scheduling component of the Google Chrome browser allows a perpetrator to access confidential data, compromise its integrity, and cause service interruptions.

The vulnerability of Google Chrome’s browser scheduling component relates to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service interruptions...