1351 matches found
CVE-2023-33990
SAP SQL Anywhere - version 17.0, allows an attacker to prevent legitimate users from accessing the service by crashing the service. An attacker with low privileged account and access to the local system can write into the shared memory objects. This can be leveraged by an attacker to perform a...
CVE-2023-33990
SAP SQL Anywhere - version 17.0, allows an attacker to prevent legitimate users from accessing the service by crashing the service. An attacker with low privileged account and access to the local system can write into the shared memory objects. This can be leveraged by an attacker to perform a...
CVE-2023-33990 Denial of Service (DoS) vulnerability in SAP SQL Anywhere
SAP SQL Anywhere - version 17.0, allows an attacker to prevent legitimate users from accessing the service by crashing the service. An attacker with low privileged account and access to the local system can write into the shared memory objects. This can be leveraged by an attacker to perform a...
PT-2023-4104 · Sap · Sap Sql Anywhere
Name of the Vulnerable Software and Affected Versions: SAP SQL Anywhere version 17.0 Description: The issue allows an attacker to prevent legitimate users from accessing the service by crashing it. An attacker with a low-privileged account and access to the local system can write into shared memo...
CVE-2023-26085
A possible out-of-bounds read and write due to an improper length check of shared memory was discovered in Arm NN Android-NN-Driver before 23.02...
CVE-2023-26085
A possible out-of-bounds read and write due to an improper length check of shared memory was discovered in Arm NN Android-NN-Driver before 23.02...
Out-of-bounds
A possible out-of-bounds read and write due to an improper length check of shared memory was discovered in Arm NN Android-NN-Driver before 23.02...
Qualcomm Adreno/KGSL Data Leakage
Qualcomm Adreno/KGSL: pages can be freed to page pool while having GPU references on !CONFIGQCOMKGSLUSESHMEM Tested on a Pixel 4 again with a slightly outdated version of KGSL. I ordered a Pixel 5a but don't have it yet... On KGSL builds where CONFIGQCOMKGSLUSESHMEM is not set or on older KGSL...
kernel: drm/virtio: improper return value check in virtio_gpu_object_shmem_init()
In the Linux kernel before 6.0.3, drivers/gpu/drm/virtio/virtgpuobject.c misinterprets the drmgemshmemgetsgtable return value expects it to be NULL in the error case, whereas it is actually an error pointer...
device-mapper-multipath: multipathd: insecure handling of files in /dev/shm leading to symlink attack
A vulnerability was found in the device-mapper-multipath. The device-mapper-multipath allows local users to obtain root access, in conjunction with CVE-2022-41974. Local users that are able to access /dev/shm can change symlinks in multipathd due to incorrect symlink handling, which may lead to...
CVE-2021-46763
Insufficient input validation in the SMU may enable a privileged attacker to write beyond the intended bounds of a shared memory buffer potentially leading to a loss of integrity...
CVE-2021-46763
The CVE-2021-46763 entry concerns AMD components: the AMD Secure Processor (ASP) and AMD System Management Unit (SMU). The root cause is insufficient input validation in the SMU, which may allow a privileged attacker to write beyond the bounds of a shared memory buffer, potentially compromising i...
device-mapper-multipath: multipathd: insecure handling of files in /dev/shm leading to symlink attack
A vulnerability was found in the device-mapper-multipath. The device-mapper-multipath allows local users to obtain root access, in conjunction with CVE-2022-41974. Local users that are able to access /dev/shm can change symlinks in multipathd due to incorrect symlink handling, which may lead to...
kernel: drm/virtio: improper return value check in virtio_gpu_object_shmem_init()
In the Linux kernel before 6.0.3, drivers/gpu/drm/virtio/virtgpuobject.c misinterprets the drmgemshmemgetsgtable return value expects it to be NULL in the error case, whereas it is actually an error pointer...
kernel: mm/mempolicy: fix mpol_new leak in shared_policy_replace
In the Linux kernel, the following vulnerability has been resolved: mm/mempolicy: fix mpolnew leak in sharedpolicyreplace If mpolnew is allocated but not used in restart loop, mpolnew will be freed via mpolput before returning to the caller. But refcnt is not initialized yet, so mpolput could not...
PT-2023-12577 · Amd · 2Nd Gen Amd Epyc™ +41
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to insufficient input validation in the SMU, which may allow a privileged attacker to write beyond the intended bounds of a shared...
PT-2023-1001 · Arm · Arm Nn Android-Nn-Driver
Name of the Vulnerable Software and Affected Versions: Arm NN Android-NN-Driver versions prior to 23.02 Description: A possible out-of-bounds read and write was discovered due to an improper length check of shared memory. This issue could lead to local escalation of privilege with no additional...
USN-6030-1 linux-snapdragon vulnerabilities
It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-1281 It was discovered that the System V IPC...
USN-6020-1 linux-bluefield vulnerabilities
It was discovered that the System V IPC implementation in the Linux kernel did not properly handle large shared memory counts. A local attacker could use this to cause a denial of service memory exhaustion. CVE-2021-3669 It was discovered that the KVM VMX implementation in the Linux kernel did no...
USN-6014-1: Linux kernel vulnerabilities
Xuewei Feng, Chuanpu Fu, Qi Li, Kun Sun, and Ke Xu discovered that the TCP implementation in the Linux kernel did not properly handle IPID assignment. A remote attacker could use this to cause a denial of service connection termination or inject forged data. CVE-2020-36516 Ke Sun, Alyssa Milburn,...