PT-2024-26831 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the QSEECOM APP SEND command, which expects both request and response buffers to be in a single memory region. Failure to adhere to this has resulted in either ...

DEBIAN-CVE-2024-35935

In the Linux kernel, the following vulnerability has been resolved: btrfs: send: handle path ref underflow in header iterateinoderef Change BUGON to proper error handling if building the path buffer fails. The pointers are not printed so we don't accidentally leak kernel addresses...

CVE-2024-35935

In the Linux kernel, the following vulnerability has been resolved: btrfs: send: handle path ref underflow in header iterateinoderef Change BUGON to proper error handling if building the path buffer fails. The pointers are not printed so we don't accidentally leak kernel addresses...

CVE-2024-35935 btrfs: send: handle path ref underflow in header iterate_inode_ref()

In the Linux kernel, the following vulnerability has been resolved: btrfs: send: handle path ref underflow in header iterateinoderef Change BUGON to proper error handling if building the path buffer fails. The pointers are not printed so we don't accidentally leak kernel addresses...

CVE-2024-35935 btrfs: send: handle path ref underflow in header iterate_inode_ref()

In the Linux kernel, the following vulnerability has been resolved: btrfs: send: handle path ref underflow in header iterateinoderef Change BUGON to proper error handling if building the path buffer fails. The pointers are not printed so we don't accidentally leak kernel addresses...

PT-2024-32874 · WordPress · Cost Calculator Builder

Name of the Vulnerable Software and Affected Versions: Cost Calculator Builder Pro plugin for WordPress versions up to 3.1.72 Description: The issue allows authenticated attackers with subscriber-level access and above to make web requests to arbitrary locations originating from the web...

serial: mxs-auart: add spinlock around changing cts state

...

VulnCheck KEV: CVE-2013-2912

Use-after-free vulnerability in the PepperInProcessRouter::SendToHost function in content/renderer/pepper/pepperinprocessrouter.cc in the Pepper Plug-in API PPAPI in Google Chrome before 30.0.1599.66 allows remote attackers to cause a denial of service or possibly have unspecified other...

CVE-2023-32164

D-Link D-View TftpSendFileThread Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of D-Link D-View. Authentication is not required to exploit this vulnerability. The specific flaw exist...

CVE-2024-3585

The Send PDF for Contact Form 7 plugin for WordPress is vulnerable to unauthorized access of form submissions due to a missing capability check on the hooks function in all versions up to, and including, 1.0.2.3. This makes it possible for unauthenticated attackers to download information about...

CVE-2024-3585

CVE-2024-3585 describes a vulnerability in the Send PDF for Contact Form 7 plugin for WordPress. It permits unauthenticated access to form submissions (including PDFs) due to a missing capability check on the hooks function in all versions up to and including 1.0.2.3, enabling information exposur...

WordPress plugin Send PDF for Contact Form 7 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in PHP. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in WordPress plugin...

DEBIAN-CVE-2024-27000

In the Linux kernel, the following vulnerability has been resolved: serial: mxs-auart: add spinlock around changing cts state The uarthandlectschange function in serialcore expects the caller to hold uport-lock. For example, I have seen the below kernel splat, when the Bluetooth driver is loaded ...

UBUNTU-CVE-2024-27000

In the Linux kernel, the following vulnerability has been resolved: serial: mxs-auart: add spinlock around changing cts state The uarthandlectschange function in serialcore expects the caller to hold uport-lock. For example, I have seen the below kernel splat, when the Bluetooth driver is loaded ...

WordPress Send PDF for Contact Form 7 plugin <= 1.0.2.3 - Missing Authorization vulnerability

Missing Authorization vulnerability discovered by Krzysztof Zając in WordPress Plugin Send PDF for Contact Form 7 versions = 1.0.2.3...

WordPress Send PDF for Contact Form 7 Plugin <= 1.0.2.3 is vulnerable to Broken Access Control

Software Send PDF for Contact Form 7 Type Plugin Vulnerable versions = 1.0.2.3 Fixed in 1.0.2.4 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-3585 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 13d8f4997e3b Credits Krzysztof Zają...

CVE-2021-47196

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Set send and receive CQ before forwarding to the driver Preset both receive and send CQ pointers prior to call to the drivers and overwrite it later again till the mlx4 is going to be changed do not overwrite ibqp...

CVE-2021-47196

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Set send and receive CQ before forwarding to the driver Preset both receive and send CQ pointers prior to call to the drivers and overwrite it later again till the mlx4 is going to be changed do not overwrite ibqp...

DEBIAN-CVE-2024-26766

In the Linux kernel, the following vulnerability has been resolved: IB/hfi1: Fix sdma.h tx-numdescs off-by-one error Unfortunately the commit fd8958efe877 introduced another error causing the descs array to overflow. This reults in further crashes easily reproducible by sendmsg system call...

DEBIAN-CVE-2024-26689

In the Linux kernel, the following vulnerability has been resolved: ceph: prevent use-after-free in encodecapmsg In fs/ceph/caps.c, in encodecapmsg, "use after free" error was caught by KASAN at this line - 'cephbuffergetarg-xattrbuf;'. This implies before the refcount could be increment here, it...