EUVD-2002-1962

Malware in sbrugna...

Tenda AC7 /goform/SetRebootTimer File Buffer Overflow Vulnerability

Tenda AC7 is a wireless router from Tenda, a Chinese company. The Tenda AC7 suffers from a buffer overflow vulnerability, which originates from the parameter reboottime in the file /goform/SetRebootTimer that fails to correctly validate the length of the input data, and can be exploited by an...

The vulnerabilities of the `__mod_timer()` and `kvfree_call_rcu()` functions in the Linux operating system allow a hacker to trigger a service failure.

The vulnerability of the modtimer and kvfreecallrcu functions in the Linux operating system is related to synchronization errors when using shared resources „Race Conditions“. Exploiting this vulnerability can allow an attacker to cause a service failure...

CVE-2024-50154

In the Linux kernel, the following vulnerability has been resolved: tcp/dccp: Don't use timerpending in reqskqueueunlink. Martin KaFai Lau reported use-after-free 0 in reqsktimerhandler. """ We are seeing a use-after-free from a bpf prog attached to tracetcpretransmitsynack. The program passes th...

The vulnerability of the del_timer() function in the Linux operating system allows a hacker to trigger a service failure or cause other adverse effects.

The vulnerability of the deltimer function in the Linux operating system’s kernel is related to a memory reclamation error. Exploiting this vulnerability could allow an attacker to cause a service failure or have other adverse effects...

CVE-2024-38618 ALSA: timer: Set lower bound of start tick time

In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Set lower bound of start tick time Currently ALSA timer doesn't have the lower limit of the start tick time, and it allows a very small size, e.g. 1 tick with 1ns resolution for hrtimer. Such a situation may lead to ...

The vulnerability of the batadv_dat_start_timer() function in the distributed-arp-table.c module of the B.A.T.M.A.N. network interface card of the Linux operating system allows a hacker to induce a service failure.

The vulnerability of the batadvdatstarttimer function in the distributed-arp-table.c module of the B.A.T.M.A.N. network interface card of the Linux operating system is related to the use of memory after it is freed. Exploiting this vulnerability could allow a attacker to cause a service failure...

PYSEC-2022-43090

The d8s-timer for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-dates package. The affected version of d8s-htm is 0.1.0...

USN-5648-1 linux-gke-5.15 vulnerabilities

It was discovered that the framebuffer driver on the Linux kernel did not verify size limits when changing font or screen size, leading to an out-of- bounds write. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2021-33655 Duoming...

CVE-2018-12367

In the previous mitigations for Spectre, the resolution or precision of various methods was reduced to counteract the ability to measure precise time intervals. In that work PerformanceNavigationTiming was not adjusted but it was found that it could be used as a precision timer. This vulnerabilit...

CVE-2017-13167

An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993...