Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from the possibility that powerpc/tm may be overwritten by SLB miss when processing user r13 in trechkpt,...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the svcrdmabuildwrites function potentially overstepping its bounds to access the segment array of the Write...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not limiting the maximum segment size based on the capabilities of the DMA engine, which could result in a DMA...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: Fix the issue of failing to release the skbuff in seg6inputcore. The seg6input function is responsible for adding the SRH into a packet, with the operation delegated to seg6inputcore. This function uses skbcowhead to...

CVE-2021-35110

Possible buffer overflow to improper validation of hash segment of file while allocating memory in Snapdragon Connectivity, Snapdragon Mobile...

CVE-2020-15212

In TensorFlow Lite before versions 2.2.1 and 2.3.1, models using segment sum can trigger writes outside of bounds of heap allocated buffers by inserting negative elements in the segment ids tensor. Users having access to segmentidsdata can alter outputindex and then write to outside of outputdata...

CVE-2020-15214

In TensorFlow Lite before versions 2.2.1 and 2.3.1, models using segment sum can trigger a write out bounds / segmentation fault if the segment ids are not sorted. Code assumes that the segment ids are in increasing order, using the last element of the tensor holding them to determine the...

CVE-2020-6084

An exploitable denial of service vulnerability exists in the ENIP Request Path Logical Segment functionality of Allen-Bradley Flex IO 1794-AENT/B 4.003. A specially crafted network request can cause a loss of communications with the device resulting in denial-of-service. An attacker can send a...

ABB ASPECT-Enterprise NEXUS and MATRIX Series

SUMMARY ABB became aware of vulnerabilities in the product versions listed as affected in the advisory. ASPECT devices are not intended to be internet-facing. A product advisory issued in June 2023 informed customers of this already. An attacker who successfully exploits these vulnerabilities...

CVE-2024-0244

Buffer overflow in CPCA PCFAX number process of Office Multifunction Printers and Laser Printers which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code.:Satera MF750C Series firmware v03.07 and earlier sold in Japan. Colo...

Fuchsia 安全漏洞

Fuchsia is an open source general purpose operating system. Fuchsia suffers from a security vulnerability that stems from a network protocol header field generation algorithm that could lead to TCP ISN, TCP timestamps, TCP/UDP source ports, and IPv4/IPv6 segment IDs being guessed...

x86/bugs: Use code segment selector for VERW operand

...

Oracle Java SE Multiple Vulnerabilities (January 2025 CPU)

The 8u431, 11.0.26, 17.0.14, 20.3.16, 21.0.5, 21.3.12, 23.0.2, and perf versions of Java installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2025 CPU advisory. - Vulnerability in Oracle Java SE component: Install Sparkle. The supported version that i...

SUSE CVE-2024-56594

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: set the right AMDGPU sg segment limitation The driver needs to set the correct maxsegmentsize; otherwise debugdmamapsg will complain about the over-mapping of the AMDGPU sg length as following: WARNING: CPU: 6 PID: 19...

CVE-2025-21593

An Improper Control of a Resource Through its Lifetime vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker to cause a Denial-of-Service DoS. On devices with SRv6 Segment Routing over IPv6 enabled, an...

PT-2025-1072

Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 21.2R3-S9 Junos OS versions from 21.4 before 21.4R3-S10 Junos OS versions from 22.2 before 22.2R3-S5 Junos OS versions from 22.3 before 22.3R3-S4 Junos OS versions from 22.4 before 22.4R3-S3 Junos OS versions from 23...

PT-2025-30880

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained a flaw where uprobes could be misused destructively when placed within an instruction. The kernel validated the presence of a valid instruction at the specifie...

PT-2026-2900

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to kexec and the Integrity Measurement Architecture IMA. Specifically, the issue arises when the kexec target address is allocated within the CM...

CVE-2024-56594

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: set the right AMDGPU sg segment limitation The driver needs to set the correct maxsegmentsize; otherwise debugdmamapsg will complain about the over-mapping of the AMDGPU sg length as following: WARNING: CPU: 6 PID: 19...

CVE-2024-53220

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to account dirty data in getsecsrequired It will trigger system panic w/ testcase in 1: ------------ cut here ------------ kernel BUG at fs/f2fs/segment.c:2752! RIP: 0010:newcurseg+0xc81/0x2110 Call Trace:...