Lucene search
+L

56 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:40 a.m.2 views

SUSE CVE-2017-13167

An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993...

4CVSS8.2AI score0.00191EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/02/15 4:5 a.m.5 views

SUSE CVE-2019-19807

In the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to sndtimeropen and sndtimercloselocked. The timeri variable was originally intended to be for a newly created timer instance, but was used for a...

7.8CVSS7.2AI score0.00551EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2020/09/29 10:31 p.m.9 views

kernel: use-after-free in sound/core/timer.c

A memory flaw was found in the ALSA subsystem of the Linux kernel. The struct sndtimerinstance function fails the timer-maxinstances check leading to an invalid address. This could lead to a use-after-free vulnerability...

7.8CVSS7.1AI score0.00551EPSS
Exploits1References4
Veracode
Veracode
added 2020/07/22 3:44 a.m.27 views

Use-after-free

The kernel is vulnerable to use-after-free. The vulnerability exists in sound/core/timer.c due to erroneous code refactoring which allows an attacker to cause a memory corruption...

7.8CVSS7.4AI score0.00551EPSS
Exploits1References9Affected Software2
OSV
OSV
added 2019/12/15 11:15 p.m.12 views

CVE-2019-19807

In the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to sndtimeropen and sndtimercloselocked. The timeri variable was originally intended to be for a newly created timer instance, but was used for a...

7.8CVSS7.5AI score
Exploits0References7
OSV
OSV
added 2019/12/15 11:15 p.m.4 views

DEBIAN-CVE-2019-19807

In the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to sndtimeropen and sndtimercloselocked. The timeri variable was originally intended to be for a newly created timer instance, but was used for a...

7.8CVSS6.5AI score0.00551EPSS
Exploits1References1
Prion
Prion
added 2019/12/15 11:15 p.m.28 views

Design/Logic Flaw

In the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to sndtimeropen and sndtimercloselocked. The timeri variable was originally intended to be for a newly created timer instance, but was used for a...

7.2CVSS7.3AI score0.00551EPSS
Exploits1References7Affected Software2
OSV
OSV
added 2019/12/15 11:15 p.m.6 views

UBUNTU-CVE-2019-19807

In the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to sndtimeropen and sndtimercloselocked. The timeri variable was originally intended to be for a newly created timer instance, but was used for a...

7.8CVSS6.7AI score0.00551EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2019/11/06 12:0 a.m.11 views

PT-2019-4662 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.3.11 Description: The issue is related to a use-after-free error in the Linux kernel, specifically in the sound/core/timer.c file. This error is caused by erroneous code refactoring and is associated with the...

10CVSS7AI score0.16908EPSS
Exploits32References473
Veracode
Veracode
added 2019/05/02 6:9 a.m.33 views

Privilege Escalation

linux kernel is vulnerable to privilege escalation. This vulnerability exists in sound timer code in the sndtimeruserread function in the sound/core/timer.c file in the Linux kernel. An unprivileged attacker can exploit the race condition to cause an out-of-bound access which may lead to a system...

7.8CVSS7.7AI score0.00191EPSS
Exploits0References12Affected Software1
BDU FSTEC
BDU FSTEC
added 2018/01/12 12:0 a.m.11 views

The vulnerability of the ALSA/dev/snd/timer driver (sound/core/timer.c) in the Linux operating system allows a hacker to obtain confidential information.

The vulnerability of the ALSA/dev/snd/timer driver sound/core/timer.c in the Linux operating system is related to the disclosure of information during simultaneous data reading and analysis. Exploiting this vulnerability can allow an attacker, operating locally, to obtain confidential information...

5.5CVSS6.6AI score0.00721EPSS
Exploits0References45Affected Software2
NVD
NVD
added 2017/12/06 2:29 p.m.19 views

CVE-2017-13167

An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993...

7.8CVSS7.4AI score0.00191EPSS
Exploits0References2
OSV
OSV
added 2017/12/06 2:29 p.m.5 views

CVE-2017-13167

An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993...

7.8CVSS7AI score
Exploits0References2
OSV
OSV
added 2017/12/06 2:29 p.m.3 views

DEBIAN-CVE-2017-13167

An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993...

7.8CVSS8.3AI score0.00191EPSS
Exploits0References1
Prion
Prion
added 2017/12/06 2:29 p.m.21 views

Privilege escalation

An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993...

7.2CVSS7.3AI score0.00191EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2017/12/06 2:29 p.m.26 views

CVE-2017-13167

An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993...

7.8CVSS6.8AI score0.00191EPSS
Exploits0References4
OSV
OSV
added 2017/12/06 2:29 p.m.10 views

UBUNTU-CVE-2017-13167

An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993...

7.8CVSS6.7AI score0.00191EPSS
Exploits0References5
CVE
CVE
added 2017/12/06 2:0 p.m.132 views

CVE-2017-13167

CVE-2017-13167 is described as an elevation of privilege vulnerability in the kernel sound timer affecting the Android kernel. The provided connected document notes the product as Android and versions as the Android kernel, with Android ID A-37240993. The Unity Linux/UTSA advisories reference thi...

7.8CVSS7.3AI score0.00191EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/12/06 2:0 p.m.27 views

CVE-2017-13167

An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993...

7.4AI score0.00191EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2017/12/06 2:0 p.m.34 views

CVE-2017-13167

An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993...

7.8CVSS6.4AI score0.00191EPSS
Exploits0
Rows per page
Query Builder