14 matches found
Astra Linux - уязвимость в linux-5.10, linux, linux-6.1, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: posix-timers: Ensure that the limit on the timer ID search loop is valid. The posixtimeradd function attempts to allocate a posix timer ID by starting from the cached ID stored after the last successful allocation. This is done b...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013682)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013682 advisory. In the Linux kernel, the following vulnerability has been resolved: posix-timers: Ensure timer ID search-loop limit is valid posixtimeradd tries to allocate a posix...
CVE-2025-68247
The CVE-2025-68247 issue affects the Linux kernel posix-timers code, specifically do_timer_create(), where memory allocated for a timer ID could leak if user-space access faults occur during timer creation. The underlying root cause is the allocation happening before validating user-space data; t...
SUSE CVE-2023-53728
In the Linux kernel, the following vulnerability has been resolved: posix-timers: Ensure timer ID search-loop limit is valid posixtimeradd tries to allocate a posix timer ID by starting from the cached ID which was stored by the last successful allocation. This is done in a loop searching the ID...
Linux Distros Unpatched Vulnerability : CVE-2023-53728
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - posix-timers: Ensure timer ID search-loop limit is valid posixtimeradd tries to allocate a posix timer ID by starting from the cached ID which was stored by th...
CVE-2023-53728
In the Linux kernel, the following vulnerability has been resolved: posix-timers: Ensure timer ID search-loop limit is valid posixtimeradd tries to allocate a posix timer ID by starting from the cached ID which was stored by the last successful allocation. This is done in a loop searching the ID...
DEBIAN-CVE-2023-53728
In the Linux kernel, the following vulnerability has been resolved: posix-timers: Ensure timer ID search-loop limit is valid posixtimeradd tries to allocate a posix timer ID by starting from the cached ID which was stored by the last successful allocation. This is done in a loop searching the ID...
CVE-2023-53728 posix-timers: Ensure timer ID search-loop limit is valid
In the Linux kernel, the following vulnerability has been resolved: posix-timers: Ensure timer ID search-loop limit is valid posixtimeradd tries to allocate a posix timer ID by starting from the cached ID which was stored by the last successful allocation. This is done in a loop searching the ID...
CVE-2023-53728 posix-timers: Ensure timer ID search-loop limit is valid
In the Linux kernel, the following vulnerability has been resolved: posix-timers: Ensure timer ID search-loop limit is valid posixtimeradd tries to allocate a posix timer ID by starting from the cached ID which was stored by the last successful allocation. This is done in a loop searching the ID...
CVE-2023-53728
The CVE affects the Linux kernel’s posix-timers path, where posix_timer_add() allocates timer IDs by scanning from a cached, last-allocation ID. The loop that searches for a free ID is not properly synchronized with the starting value, because start is read locklessly while the hash lock is acqui...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an invalid timer ID search loop limit in the posixtimeradd function, which could lead to an infinite loop...
CVE-2010-3886
The CTimeoutEventList::InsertIntoTimeoutList function in Microsoft mshtml.dll uses a certain pointer value as part of producing Timer ID values for the setTimeout and setInterval methods in VBScript and JScript, which allows remote attackers to obtain sensitive information about the heap memory...
CVE-2010-3886
The CTimeoutEventList::InsertIntoTimeoutList function in Microsoft mshtml.dll uses a certain pointer value as part of producing Timer ID values for the setTimeout and setInterval methods in VBScript and JScript, which allows remote attackers to obtain sensitive information about the heap memory...
Microsoft - 'MSHTML.dll' CTIMEOUTEVENTLIST::INSERTINTOTIMEOUTLIST Memory Leak
mshtml.dll CTimeoutEventList::InsertIntoTimeoutList Timer ID Pointer leak - Rubén Santamarta www.reversemode.com var i = 1; // counter function LeakOrDie var t; t=setInterval"foo",2000; t-=i; document.getElementById'atun'.innerHTML = ' Pointer leaked: '+'0x'+t.toString16; i++; function foo return...