4525 matches found
Denial Of Service (DoS)
firefox is vulnerable to denial of service. The vulnerability exists because loading fonts on workers was not thread-safe which allows an attacker to cause an application crash...
libvirt: missing locking in nwfilterConnectNumOfNWFilters can lead to denial of service
A flaw was found in the libvirt nwfilter driver. The virNWFilterObjListNumOfNWFilters method failed to acquire the driver-nwfilters mutex before iterating over virNWFilterObj instances. There was no protection to stop another thread from concurrently modifying the driver-nwfilters object. This fl...
kernel: sched/fair: Fix fault in reweight_entity
In the Linux kernel, the following vulnerability has been resolved: sched/fair: Fix fault in reweightentity Syzbot found a GPF in reweightentity. This has been bisected to commit 4ef0c5c6b5ba "kernel/sched: Fix schedfork access an invalid schedtaskgroup" There is a race between schedpostfork and...
GSD-2022-1007678 nilfs2: fix leak of nilfs_root in case of writer thread creation failure
nilfs2: fix leak of nilfsroot in case of writer thread creation failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.331 by commit...
GSD-2022-1007545 nilfs2: fix leak of nilfs_root in case of writer thread creation failure
nilfs2: fix leak of nilfsroot in case of writer thread creation failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.262 by commit...
GSD-2022-1007454 nilfs2: fix leak of nilfs_root in case of writer thread creation failure
nilfs2: fix leak of nilfsroot in case of writer thread creation failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.218 by commit...
GSD-2022-1007336 nilfs2: fix leak of nilfs_root in case of writer thread creation failure
nilfs2: fix leak of nilfsroot in case of writer thread creation failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.148 by commit...
GSD-2022-1007268 dmaengine: hisilicon: Add multi-thread support for a DMA channel
dmaengine: hisilicon: Add multi-thread support for a DMA channel This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.150 by commit...
GSD-2022-1007162 nilfs2: fix leak of nilfs_root in case of writer thread creation failure
nilfs2: fix leak of nilfsroot in case of writer thread creation failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.74 by commit...
GSD-2022-1007068 dmaengine: hisilicon: Add multi-thread support for a DMA channel
dmaengine: hisilicon: Add multi-thread support for a DMA channel This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.75 by commit...
GSD-2022-1007048 ACPI: APEI: do not add task_work to kernel thread to avoid memory leak
ACPI: APEI: do not add taskwork to kernel thread to avoid memory leak This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.75 by commit...
GSD-2022-1006932 nilfs2: fix leak of nilfs_root in case of writer thread creation failure
nilfs2: fix leak of nilfsroot in case of writer thread creation failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.2 by commit...
GSD-2022-1006814 dmaengine: hisilicon: Add multi-thread support for a DMA channel
dmaengine: hisilicon: Add multi-thread support for a DMA channel This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.3 by commit...
PT-2022-35873 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.296 Description: A potential issue exists where there is a leak of nilfs root in the event of a writer thread creation failure. The actual impact and likelihood of an attack have not been confirmed...
PT-2022-35800 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.19.262 Description: A leak of nilfs root occurs in case of writer thread creation failure. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior ...
PT-2022-35187 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.2 Description: A potential issue exists where there is a leak of nilfs root in the event of a writer thread creation failure. The actual impact and likelihood of an attack have not been confirmed...
PT-2022-35506 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.150 Description: A potential issue exists where a memory leak could occur due to the addition of task work to a kernel thread. The actual impact and attack plausibility have not yet been proven...
PT-2022-35069 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.3 Description: The issue is related to the addition of multi-thread support for a DMA channel in the hisilicon dmaengine driver. The actual impact and attack plausibility have not yet been proven...
PT-2022-35323 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.75 Description: The issue is related to the addition of multi-thread support for a DMA channel in the hisilicon dmaengine driver. The actual impact and attack plausibility have not yet been proven...
PT-2022-35709 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.218 Description: The issue is related to a leak of nilfs root in the event of a writer thread creation failure. The actual impact and potential for attack have not been fully determined. Recommendations: Fo...