Privilege Escalation

PHP is vulnerable to privilege escalation. When running PHP FPM SAPI with main FPM daemon process running as root and child worker processes running as lower-privileged users, it is possible for the child processes to access memory shared with the main process and write to it, modifying it in a w...

UBUNTU-CVE-2021-21703

In PHP versions 7.3.x up to and including 7.3.31, 7.4.x below 7.4.25 and 8.0.x below 8.0.12, when running PHP FPM SAPI with main FPM daemon process running as root and child worker processes running as lower-privileged users, it is possible for the child processes to access memory shared with the...

Security update for the Linux Kernel (important)

openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:1365-1 Rating: important References: 1065729 1148868 1152489 1154353 1159886 1167773 1170774 1173746 1176940 1184439 1184804 1185302 1185677 1185726 1185762 1187167 1188067 1188651 1188986 1189297...

SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2021:3447-1)

The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3447-1 advisory. - u'Specifically timed and handcrafted traffic can cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encrypti...

Security update for the Linux Kernel (important)

openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:3447-1 Rating: important References: 1065729 1148868 1152489 1154353 1159886 1167773 1170774 1173746 1176940 1184439 1184804 1185302 1185677 1185726 1185762 1187167 1188067 1188651 1188986 1189297...

Security update for the Linux Kernel (important)

openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:3338-1 Rating: important References: 1065729 1148868 1152489 1154353 1159886 1167773 1170774 1171688 1173746 1174003 1176447 1176940 1177028 1178134 1184439 1184804 1185302 1185550 1185677 1185726...

CVE-2021-34758

A vulnerability in the memory management of Cisco TelePresence Collaboration Endpoint CE Software and Cisco RoomOS Software could allow an authenticated, local attacker to corrupt a shared memory segment, resulting in a denial of service DoS condition. This vulnerability is due to insufficient...

CVE-2021-34758

A vulnerability in the memory management of Cisco TelePresence Collaboration Endpoint CE Software and Cisco RoomOS Software could allow an authenticated, local attacker to corrupt a shared memory segment, resulting in a denial of service DoS condition. This vulnerability is due to insufficient...

Design/Logic Flaw

A vulnerability in the memory management of Cisco TelePresence Collaboration Endpoint CE Software and Cisco RoomOS Software could allow an authenticated, local attacker to corrupt a shared memory segment, resulting in a denial of service DoS condition. This vulnerability is due to insufficient...

CVE-2021-34758 Cisco TelePresence Collaboration Endpoint and RoomOS Software Denial of Service Vulnerability

A vulnerability in the memory management of Cisco TelePresence Collaboration Endpoint CE Software and Cisco RoomOS Software could allow an authenticated, local attacker to corrupt a shared memory segment, resulting in a denial of service DoS condition. This vulnerability is due to insufficient...

Cisco RoomOS Software和Cisco TelePresence Collaboration Endpoint Software 访问控制错误漏洞

Cisco RoomOS Software and Cisco TelePresence Collaboration Endpoint Software are both products of the U.S. company Cisco Cisco.Cisco RoomOS Software is a set of automatic management software for Cisco devices. The software is mainly used for upgrading and managing the motherboard firmware of Cisc...

SUSE SLED12 / SLES12 Security Update : Mesa (SUSE-SU-2021:3117-1)

The remote SUSE Linux SLED12 / SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:3117-1 advisory. - An exploitable shared memory permissions vulnerability exists in the functionality of X11 Mesa 3D Graphics Library 19.1.2. An attacker can...

SUSE-SU-2021:3117-1 Security update for Mesa

This update for Mesa fixes the following issues: Security issue fixed: - CVE-2019-5068: Fixed exploitable shared memory permissions vulnerability bsc1156015...

Linux kernel资源管理错误漏洞

The Linux Kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux Kernel suffers from a security vulnerability that stems from a measure of shared memory usage that does not scale with the number of shared memory segments. An attack...

PT-2021-7675 · Linux +8 · Linux Kernel +8

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw in the Linux kernel is related to incorrect calculation of used IPC identifiers in the sysvipc find ipc function. This issue may lead to resource exhaustion and denial of servic...

CVE-2021-34381

Trusty TLK contains a vulnerability in the NVIDIA TLK kernel function where a lack of checks allows the exploitation of an integer overflow on the size parameter of the tzmapsharedmem function, which might lead to denial of service, information disclosure, or data tampering...

NVIDIA TLK 输入验证错误漏洞

Nvidia NVIDIA TLK is a scheduler from Nvidia Corporation of America for use with Trusted Firmware-A TF-A. NVIDIA TLK suffers from an Input Validation Error vulnerability that stems from Trusty TLK containing a vulnerability in the NVIDIA TLK kernel function, where a missing check allows...

Nvidia NVIDIA TLK 缓冲区错误漏洞

Nvidia NVIDIA TLK is a scheduler from Nvidia Corporation, USA, for use with Trusted Firmware-A TF-A. A security vulnerability exists in NVIDIA TLK, which stems from Trusty TLK contains a vulnerability in the NVIDIA TLK kernel function, where a missing check allows exploitation of an integer...

Chrome SandboxedUnpacker Unsafe Shared Memory Use Vulnerability

Chrome: SandboxedUnpacker unsafe use of shared memory. If we look at the mojo interface gzipper.mojom services/datadecoder/public/mojom/gzipper.mojom: // An interface that lets callers compress and uncompress data using gzip. interface Gzipper // Compresses |data| using gzip and returns it as...

CVE-2020-11298

While waiting for a response to a callback or listener request, non-secure clients can change permissions to shared memory buffers used by HLOS Invoke Call to secure kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT,...