Lucene search
K

196 matches found

OSV
OSV
added 2024/05/21 3:15 p.m.1 views

UBUNTU-CVE-2021-47281

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: Fix race of sndseqtimeropen The timer instance per queue is exclusive, and sndseqtimeropen should have managed the concurrent accesses. It looks as if it's checking the already existing timer instance at the beginning,...

7CVSS6.1AI score0.00234EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2024/03/06 4:52 a.m.4 views

SUSE CVE-2021-47096

In the Linux kernel, the following vulnerability has been resolved: ALSA: rawmidi - fix the uninitalized userpversion The userpversion was uninitialized for the user space file structure in the open function, because the file private structure use kmalloc for the allocation. The kernel ALSA...

4CVSS6AI score0.00208EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2024/03/05 5:10 p.m.34 views

CVE-2021-47096

In the Linux kernel, the following vulnerability has been resolved: ALSA: rawmidi - fix the uninitalized userpversion The userpversion was uninitialized for the user space file structure in the open function, because the file private structure use kmalloc for the allocation. The kernel ALSA...

5.5CVSS6.7AI score0.00208EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2024/03/04 6:15 p.m.7 views

CVE-2021-47096

In the Linux kernel, the following vulnerability has been resolved: ALSA: rawmidi - fix the uninitalized userpversion The userpversion was uninitialized for the user space file structure in the open function, because the file private structure use kmalloc for the allocation. The kernel ALSA...

4CVSS6.3AI score0.00208EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2024/03/04 6:15 p.m.34 views

CVE-2021-47096

In the Linux kernel, the following vulnerability has been resolved: ALSA: rawmidi - fix the uninitalized userpversion The userpversion was uninitialized for the user space file structure in the open function, because the file private structure use kmalloc for the allocation. The kernel ALSA...

4CVSS7.4AI score0.00208EPSS
Exploits0References2
Prion
Prion
added 2024/03/04 6:15 p.m.26 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: ALSA: rawmidi - fix the uninitalized userpversion The userpversion was uninitialized for the user space file structure in the open function, because the file private structure use kmalloc for the allocation. The kernel ALSA...

7.5AI score0.00208EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2024/03/04 6:15 p.m.28 views

CVE-2021-47096

In the Linux kernel, the following vulnerability has been resolved: ALSA: rawmidi - fix the uninitalized userpversion The userpversion was uninitialized for the user space file structure in the open function, because the file private structure use kmalloc for the allocation. The kernel ALSA...

4CVSS6.3AI score0.00208EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/03/04 6:10 p.m.41 views

CVE-2021-47096 ALSA: rawmidi - fix the uninitalized user_pversion

In the Linux kernel, the following vulnerability has been resolved: ALSA: rawmidi - fix the uninitalized userpversion The userpversion was uninitialized for the user space file structure in the open function, because the file private structure use kmalloc for the allocation. The kernel ALSA...

7.5AI score0.00208EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/03/04 6:10 p.m.30 views

CVE-2021-47096 ALSA: rawmidi - fix the uninitalized user_pversion

In the Linux kernel, the following vulnerability has been resolved: ALSA: rawmidi - fix the uninitalized userpversion The userpversion was uninitialized for the user space file structure in the open function, because the file private structure use kmalloc for the allocation. The kernel ALSA...

6.9AI score0.00208EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2024/03/04 6:10 p.m.26 views

CVE-2021-47096

In the Linux kernel, the following vulnerability has been resolved: ALSA: rawmidi - fix the uninitalized userpversion The userpversion was uninitialized for the user space file structure in the open function, because the file private structure use kmalloc for the allocation. The kernel ALSA...

4CVSS4.9AI score0.00208EPSS
Exploits0
Code423n4
Code423n4
added 2023/09/06 12:0 a.m.9 views

In BondingVotes.sol, clock() will not work properly for Arbitrum due to use of block.number

Lines of code Vulnerability details Impact In BondingVotes.sol, clock is set to match the current round and clock has been extensively used in onlyPastRounds, getVotes, delegates, checkpointBondingState, checkpointTotalActiveStake, getTotalActiveStakeAt, getBondingCheckpointAt and it is given as...

6.8AI score
Exploits0
Code423n4
Code423n4
added 2023/07/07 12:0 a.m.13 views

No check for active Arbitrum Sequencer

Lines of code Vulnerability details Impact If the Arbitrum sequencer goes down, the stale ratio will be used during the swap. Proof of Concept readChainlinkFeed gets the price from chainlink oracle and the ratio is used during the swap. function readChainlinkFeed uint256 quoteAmount,...

6.8AI score
Exploits0
Code423n4
Code423n4
added 2023/06/09 12:0 a.m.16 views

LES (Light Ethereum Subprotocol) doesn't forward the transaction to the sequencer

Lines of code Vulnerability details Impact LES Light Ethereum Subprotocol doesn't forward the transaction to the sequencer when receiving it over RPC. Proof of Concept When a user submits a transaction to op-geth node validator/verfier mode, the node sends the transaction to the sequencer, if no...

6.8AI score
Exploits0
Code423n4
Code423n4
added 2023/03/07 12:0 a.m.18 views

No check for active sequencer

Lines of code Vulnerability details Impact The protocol will operate at the previous stale rates. Proof of Concept Chainlink recommends that all Optimistic L2 oracles consult the Sequencer Uptime Feed to ensure that the sequencer is live before trusting the data returned by the oracle, even if...

6.9AI score
Exploits0
Veracode
Veracode
added 2023/02/15 7:36 a.m.19 views

Improper Verification Of Cryptographic Signature

openzeppelincairocontracts is vulnerable to Improper Verification of Cryptographic Signature. A malicious user is able to bypass signature validation to impersonate an instance of an account and gain access to confidential user data, because isvalidethsignature is missing a call to finalizekeccak...

6.4CVSS5.6AI score0.0022EPSS
Exploits0References5Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 5:57 a.m.3 views

SUSE CVE-2010-3080

Double free vulnerability in the sndseqossopen function in sound/core/seq/oss/seqossinit.c in the Linux kernel before 2.6.36-rc4 might allow local users to cause a denial of service or possibly have unspecified other impact via an unsuccessful attempt to open the /dev/sequencer device...

7.2CVSS7AI score0.00416EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/02/15 5:53 a.m.5 views

SUSE CVE-2011-1476

Integer underflow in the Open Sound System OSS subsystem in the Linux kernel before 2.6.39 on unspecified non-x86 platforms allows local users to cause a denial of service memory corruption by leveraging write access to /dev/sequencer...

4CVSS6.2AI score0.00425EPSS
Exploits1References12
SUSE CVE
SUSE CVE
added 2023/02/15 5:53 a.m.1 views

SUSE CVE-2011-1477

Multiple array index errors in sound/oss/opl3.c in the Linux kernel before 2.6.39 allow local users to cause a denial of service heap memory corruption or possibly gain privileges by leveraging write access to /dev/sequencer...

7.2CVSS6.8AI score0.00409EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2023/02/15 4:52 a.m.3 views

SUSE CVE-2017-2899

An exploitable integer overflow exists in the TIFF loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.tif' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...

8.8CVSS8AI score0.01824EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:52 a.m.4 views

SUSE CVE-2017-2905

An exploitable integer overflow exists in the bmp loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.bmp' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...

8.8CVSS8AI score0.01866EPSS
Exploits1References3
Rows per page
Query Builder