6037 matches found
CVE-2024-26750 af_unix: Drop oob_skb ref before purging queue in GC.
In the Linux kernel, the following vulnerability has been resolved: afunix: Drop oobskb ref before purging queue in GC. syzbot reported another task hung in unixgc. 0 The current while loop assumes that all of the left candidates have oobskb and calling kfreeskboobskb releases the remaining...
CVE-2024-26780
In the Linux kernel, the following vulnerability has been resolved: afunix: Fix task hung while purging oobskb in GC. syzbot reported a task hung; at the same time, GC was looping infinitely in listforeachentrysafe for OOB skb. 0 syzbot demonstrated that the listforeachentrysafe was not actually...
DEBIAN-CVE-2024-26686
In the Linux kernel, the following vulnerability has been resolved: fs/proc: dotaskstat: use sig-statslock to gather the threads/children stats locktasksighand can trigger a hard lockup. If NRCPUS threads call dotaskstat at the same time and the process has NRTHREADS, it will spin with irqs...
CVE-2024-26686 fs/proc: do_task_stat: use sig->stats_lock to gather the threads/children stats
In the Linux kernel, the following vulnerability has been resolved: fs/proc: dotaskstat: use sig-statslock to gather the threads/children stats locktasksighand can trigger a hard lockup. If NRCPUS threads call dotaskstat at the same time and the process has NRTHREADS, it will spin with irqs...
CVE-2023-52637
CVE-2023-52637 refers to a Linux kernel vulnerability in the j1939 subsystem where a use-after-free (UAF) could occur due to modification of jsk->filters while receiving packets and during setsockopt(SO_J1939_FILTER). The fix adds locking on jsk->sk to prevent UAF and stabilize access to fi...
RUSTSEC-2024-0332 Degradation of service in h2 servers with CONTINUATION Flood
An attacker can send a flood of CONTINUATION frames, causing h2 to process them indefinitely. This results in an increase in CPU usage. Tokio task budget helps prevent this from a complete denial-of-service, as the server can still respond to legitimate requests, albeit with increased latency. Mo...
CVE-2024-3225
A vulnerability was found in SourceCodester PHP Task Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file edit-task.php. The manipulation of the argument taskid leads to sql injection. The attack may be launched remotely. The exploit h...
CVE-2024-3225
A vulnerability was found in SourceCodester PHP Task Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file edit-task.php. The manipulation of the argument taskid leads to sql injection. The attack may be launched remotely. The exploit h...
CVE-2024-3224
A vulnerability has been found in SourceCodester PHP Task Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file task-details.php. The manipulation of the argument taskid leads to sql injection. The attack can be launched remotely...
CVE-2024-3224
A vulnerability has been found in SourceCodester PHP Task Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file task-details.php. The manipulation of the argument taskid leads to sql injection. The attack can be launched remotely...
CVE-2024-3225 SourceCodester PHP Task Management System edit-task.php sql injection
A vulnerability was found in SourceCodester PHP Task Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file edit-task.php. The manipulation of the argument taskid leads to sql injection. The attack may be launched remotely. The exploit h...
CVE-2024-3225
The CVE-2024-3225 entry concerns SourceCodester PHP Task Management System 1.0, where the vulnerability resides in edit-task.php. The issue stems from manipulation of the task_id argument, leading to SQL injection. It can be exploited remotely and the exploit has been disclosed publicly. Multiple...
CVE-2024-3224 SourceCodester PHP Task Management System task-details.php sql injection
A vulnerability has been found in SourceCodester PHP Task Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file task-details.php. The manipulation of the argument taskid leads to sql injection. The attack can be launched remotely...
CVE-2024-3224
CVE-2024-3224 affects SourceCodester PHP Task Management System 1.0, with a vulnerability in the file task-details.php where manipulating the task_id parameter leads to SQL injection. This is a network-accessible issue reported as critical, with public disclosure of exploits per the NVD entry. Th...
CVE-2024-3224 SourceCodester PHP Task Management System task-details.php sql injection
A vulnerability has been found in SourceCodester PHP Task Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file task-details.php. The manipulation of the argument taskid leads to sql injection. The attack can be launched remotely...
CVE-2024-3223
A vulnerability, which was classified as critical, was found in SourceCodester PHP Task Management System 1.0. Affected is an unknown function of the file admin-manage-user.php. The manipulation of the argument adminid leads to sql injection. It is possible to launch the attack remotely. The...
CVE-2024-3223
CVE-2024-3223 affects SourceCodester PHP Task Management System 1.0. The vulnerability resides in the unknown function within the file admin-manage-user.php , where manipulating the parameter admin_id leads to SQL injection . It can be exploited remotely, and public disclosures exist. Connected s...
CVE-2024-3223 SourceCodester PHP Task Management System admin-manage-user.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester PHP Task Management System 1.0. Affected is an unknown function of the file admin-manage-user.php. The manipulation of the argument adminid leads to sql injection. It is possible to launch the attack remotely. The...
CVE-2024-3223 SourceCodester PHP Task Management System admin-manage-user.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester PHP Task Management System 1.0. Affected is an unknown function of the file admin-manage-user.php. The manipulation of the argument adminid leads to sql injection. It is possible to launch the attack remotely. The...
CVE-2024-3222
A vulnerability, which was classified as critical, has been found in SourceCodester PHP Task Management System 1.0. This issue affects some unknown processing of the file admin-password-change.php. The manipulation of the argument adminid leads to sql injection. The attack may be initiated...