43 matches found
CVE-2022-40280
An issue was discovered in Samsung TizenRT through 3.0GBM and 3.1PRE. createDB in security/provisioning/src/provisioningdatabasemanager.c has a missing sqlite3close after sqlite3openv2, leading to a denial of service...
UBUNTU-CVE-2022-40281
An issue was discovered in Samsung TizenRT through 3.0GBM and 3.1PRE. cyasslconnectstep2 in curl/vtls/cyassl.c has a missing X509free after SSLgetpeercertificate, leading to information disclosure...
Design/Logic Flaw
An issue was discovered in Samsung TizenRT through 3.0GBM and 3.1PRE. cyasslconnectstep2 in curl/vtls/cyassl.c has a missing X509free after SSLgetpeercertificate, leading to information disclosure...
Denial of service
An issue was discovered in Samsung TizenRT through 3.0GBM and 3.1PRE. createDB in security/provisioning/src/provisioningdatabasemanager.c has a missing sqlite3close after sqlite3openv2, leading to a denial of service...
CVE-2022-40281
An issue was discovered in Samsung TizenRT through 3.0GBM and 3.1PRE. cyasslconnectstep2 in curl/vtls/cyassl.c has a missing X509free after SSLgetpeercertificate, leading to information disclosure...
CVE-2022-40280
An issue was discovered in Samsung TizenRT through 3.0GBM and 3.1PRE. createDB in security/provisioning/src/provisioningdatabasemanager.c has a missing sqlite3close after sqlite3openv2, leading to a denial of service...
CVE-2022-40280
Summary: Samsung TizenRT up to 3.0_GBM and 3.1_PRE contains a denial-of-service issue in the provisioning code. Affected component: provisioningdatabasemanager.c, function createDB . Root cause: after sqlite3_open_v2, there is a missing sqlite3_close, which leads to resource handling issues that ...
CVE-2022-40280
An issue was discovered in Samsung TizenRT through 3.0GBM and 3.1PRE. createDB in security/provisioning/src/provisioningdatabasemanager.c has a missing sqlite3close after sqlite3openv2, leading to a denial of service...
CVE-2022-40278
CVE-2022-40278 (Samsung TizenRT) affects TizenRT up to 3.0_GBM and 3.1_PRE. The vulnerability is in security/provisioning/src/provisioningdatabasemanager.c: createDB, where a missing sqlite3_free after sqlite3_exec can lead to a denial of service. Affected software is the TizenRT provisioning dat...
CVE-2022-40278
An issue was discovered in Samsung TizenRT through 3.0GBM and 3.1PRE. createDB in security/provisioning/src/provisioningdatabasemanager.c has a missing sqlite3free after sqlite3exec, leading to a denial of service...
CVE-2022-40278
An issue was discovered in Samsung TizenRT through 3.0GBM and 3.1PRE. createDB in security/provisioning/src/provisioningdatabasemanager.c has a missing sqlite3free after sqlite3exec, leading to a denial of service...
CVE-2022-40279
An issue was discovered in Samsung TizenRT through 3.0GBM and 3.1PRE. l2packetreceivetimeout in wpasupplicant/src/l2packet/l2packetpcap.c has a missing check on the return value of pcapdispatch, leading to a denial of service malfunction...
CVE-2022-40279
An issue was discovered in Samsung TizenRT through 3.0GBM and 3.1PRE. l2packetreceivetimeout in wpasupplicant/src/l2packet/l2packetpcap.c has a missing check on the return value of pcapdispatch, leading to a denial of service malfunction...
CVE-2022-40279
CVE-2022-40279 affects Samsung TizenRT up to 3.0_GBM and 3.1_PRE. The issue is in wpa_supplicant/src/l2_packet/l2_packet_pcap.c where l2_packet_receive_timeout fails to check the return value of pcap_dispatch, enabling a denial of service (malfunction). Connected documents provide concrete detail...
CVE-2022-40281
CVE-2022-40281 affects Samsung TizenRT versions up to 3.0_GBM and 3.1_PRE. The issue is in cyassl_connect_step2 (curl/vtls/cyassl.c) where an X509_free call after SSL_get_peer_certificate is missing, causing information disclosure. Connected sources (e.g., PT-2022-25320) describe the vulnerable r...
CVE-2022-40281
An issue was discovered in Samsung TizenRT through 3.0GBM and 3.1PRE. cyasslconnectstep2 in curl/vtls/cyassl.c has a missing X509free after SSLgetpeercertificate, leading to information disclosure...
CVE-2022-40281
An issue was discovered in Samsung TizenRT through 3.0GBM and 3.1PRE. cyasslconnectstep2 in curl/vtls/cyassl.c has a missing X509free after SSLgetpeercertificate, leading to information disclosure...
PT-2022-25317 · Samsung · Tizenrt
Name of the Vulnerable Software and Affected Versions: Samsung TizenRT versions through 3.0 GBM Samsung TizenRT version 3.1 PRE Description: An issue was discovered that leads to a denial of service, resulting in a malfunction. The problem is caused by a missing check on the return value of pcap...
PT-2022-25316 · Samsung · Tizenrt
Name of the Vulnerable Software and Affected Versions: Samsung TizenRT versions through 3.0 GBM Samsung TizenRT version 3.1 PRE Description: An issue in the createDB function within security/provisioning/src/provisioningdatabasemanager.c leads to a denial of service due to a missing sqlite3 free...
TizenRT 安全漏洞
TizenRT is an application system. A lightweight RTOS-based platform that supports low-end IoT devices. A security vulnerability exists in Samsung TizenRT version 3.0GBM and earlier, and version 3.1PRE, which stems from a lack of X509free in cyasslconnectstep2 of curl/vtls/cyassl.c after...