117 matches found
CVE-2024-34609
Improper access control in VoiceNoteService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background...
CVE-2024-34608
Improper access control in PaymentManagerService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background...
CVE-2024-34607
Improper access control in SamsungNotesService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background...
CVE-2024-34606
Improper access control in SmartThingsService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background...
CVE-2024-34604
Improper access control in LedCoverService prior to SMR Aug-2024 Release 1 allows local attackers to bypass restrictions on starting services from the background...
CVE-2024-34604
CVE-2024-34604 involves improper access control in LedCoverService prior to SMR Aug-2024 Release 1, allowing a local attacker to bypass restrictions on starting services from the background. Affected component: LedCoverService. Root cause: access-control weaknesses enabling background-start bypas...
CVE-2023-52839
CVE-2023-52839 describes a Linux kernel vulnerability in perf where broadcasting to other CPUs when starting a counter was removed as part of a fix (commit 3fec323339a4). Root cause: unnecessary broadcast in perf code could lead to a warning and potential instability; fix eliminates the broadcast...
CVE-2023-52839 drivers: perf: Do not broadcast to other cpus when starting a counter
In the Linux kernel, the following vulnerability has been resolved: drivers: perf: Do not broadcast to other cpus when starting a counter This command: $ perf record -e cycles:k -e instructions:k -c 10000 -m 64M dd if=/dev/zero of=/dev/null count=1000 gives rise to this kernel warning: 444.364395...
CVE-2023-52839
In the Linux kernel, the following vulnerability has been resolved: drivers: perf: Do not broadcast to other cpus when starting a counter This command: $ perf record -e cycles:k -e instructions:k -c 10000 -m 64M dd if=/dev/zero of=/dev/null count=1000 gives rise to this kernel warning: 444.364395...
SUSE CVE-2024-26896
In the Linux kernel, the following vulnerability has been resolved: wifi: wfx: fix memory leak when starting AP Kmemleak reported this error: unreferenced object 0xd73d1180 size 184: comm "wpasupplicant", pid 1559, jiffies 13006305 age 964.245s hex dump first 32 bytes: 00 00 00 00 00 00 00 00 00 ...
DEBIAN-CVE-2024-26896
In the Linux kernel, the following vulnerability has been resolved: wifi: wfx: fix memory leak when starting AP Kmemleak reported this error: unreferenced object 0xd73d1180 size 184: comm "wpasupplicant", pid 1559, jiffies 13006305 age 964.245s hex dump first 32 bytes: 00 00 00 00 00 00 00 00 00 ...
UBUNTU-CVE-2024-26896
In the Linux kernel, the following vulnerability has been resolved: wifi: wfx: fix memory leak when starting AP Kmemleak reported this error: unreferenced object 0xd73d1180 size 184: comm "wpasupplicant", pid 1559, jiffies 13006305 age 964.245s hex dump first 32 bytes: 00 00 00 00 00 00 00 00 00 ...
CVE-2024-26896 wifi: wfx: fix memory leak when starting AP
In the Linux kernel, the following vulnerability has been resolved: wifi: wfx: fix memory leak when starting AP Kmemleak reported this error: unreferenced object 0xd73d1180 size 184: comm "wpasupplicant", pid 1559, jiffies 13006305 age 964.245s hex dump first 32 bytes: 00 00 00 00 00 00 00 00 00 ...
CVE-2024-26896 wifi: wfx: fix memory leak when starting AP
In the Linux kernel, the following vulnerability has been resolved: wifi: wfx: fix memory leak when starting AP Kmemleak reported this error: unreferenced object 0xd73d1180 size 184: comm "wpasupplicant", pid 1559, jiffies 13006305 age 964.245s hex dump first 32 bytes: 00 00 00 00 00 00 00 00 00 ...
Vyper Security Vulnerability
Vyper is the Pythonic smart contract language for EVM. A security vulnerability exists in Vyper 0.3.10 and earlier versions, which stems from a read position overflow that can be caused if too large a value is specified as the starting index of an array...
Digital Car Keys Are Coming
Soon we will be able to unlock and start our cars from our phones. Lets hope people are thinking about security...
python: urllib.parse url blocklisting bypass
A flaw was found in the Python package. An issue in the urllib.parse component could allow attackers to bypass blocklisting methods by supplying a URL that starts with blank characters.This may lead to compromised Integrity...
Webinar: Tips from MSSPs to MSSPs – Building a Profitable vCISO Practice
In today's fast-paced and ever-changing digital landscape, businesses of all sizes face a myriad of cybersecurity threats. Putting in place the right people, technological tools and services, MSSPs are in a great position to ensure their customers' cyber resilience. The growing need of SMEs and...
An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank characters.
...
ASB-A-244154558
In run of ChooseTypeAndAccountActivity.java, there is a possible escalation of privilege due to unsafe deserialization. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...