66 matches found
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: A memory leak was fixed in the mtdparsertplinksafeloader.Parse function. The function mtdparsertplinksafeloader.Parse allocates a buffer through mtdparsertplinksafeloader.ReadTable. If the allocation of partsidx.nam...
UBUNTU-CVE-2026-45921
In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: Fix memory leak in mtdparsertplinksafeloaderparse The function mtdparsertplinksafeloaderparse allocates buf via mtdparsertplinksafeloaderreadtable. If the allocation for partsidx.name fails inside the loop, the code...
CVE-2026-45921
In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: Fix memory leak in mtdparsertplinksafeloaderparse The function mtdparsertplinksafeloaderparse allocates buf via mtdparsertplinksafeloaderreadtable. If the allocation for partsidx.name fails inside the loop, the code...
CVE-2026-45921
CVE-2026-45921 affects the Linux kernel’s mtd: parsers component, specifically the function mtd_parser_tplink_safeloader_parse(). The issue arises when buf allocated by mtd_parser_tplink_safeloader_read_table() is not freed if parts[idx].name allocation fails inside the loop, causing a memory lea...
CVE-2026-45921 mtd: parsers: Fix memory leak in mtd_parser_tplink_safeloader_parse()
In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: Fix memory leak in mtdparsertplinksafeloaderparse The function mtdparsertplinksafeloaderparse allocates buf via mtdparsertplinksafeloaderreadtable. If the allocation for partsidx.name fails inside the loop, the code...
CVE-2026-45921 mtd: parsers: Fix memory leak in mtd_parser_tplink_safeloader_parse()
In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: Fix memory leak in mtdparsertplinksafeloaderparse The function mtdparsertplinksafeloaderparse allocates buf via mtdparsertplinksafeloaderreadtable. If the allocation for partsidx.name fails inside the loop, the code...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the mtd parser function mtd.parsertplinksafeloader.Parse. This function fails to release the...
CVE-2026-45921
In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: Fix memory leak in mtdparsertplinksafeloaderparse The function mtdparsertplinksafeloaderparse allocates buf via mtdparsertplinksafeloaderreadtable. If the allocation for partsidx.name fails inside the loop, the code...
PT-2026-43788
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak occurs in the mtd parser tplink safeloader parse function. The function allocates a buffer buf using mtd parser tplink safeloader read table. If the allocation for...
CVE-2023-43137
TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds ACL rules after authentication, and the rule name parameter has injection points...
CVE-2023-43138
TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds NAPT rules after authentication, and the rule name has an injection point...
EUVD-2024-53566
Malicious code in bioql PyPI...
CVE-2023-38909
An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the IV component in the AES128-CBC function...
CVE-2023-38907
An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to replay old messages encrypted with a still valid session key...
CVE-2023-38908
An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the TSKEP authentication function...
CVE-2023-38906
An issue in TPLink Smart Bulb Tapo series L530 1.1.9, L510E 1.0.8, L630 1.0.3, P100 1.4.9, Smart Camera Tapo series C200 1.1.18, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the authentication code for the UDP message...
CVE-2024-57357
An issue in TPLINK TL-WPA 8630 TL-WPA8630USV22.0.4 Build 20230427 allows a remote attacker to execute arbitrary code via function sub4256CC, which allows command injection by injecting 'devpwd'...
CVE-2024-57357
An issue in TPLINK TL-WPA 8630 TL-WPA8630USV22.0.4 Build 20230427 allows a remote attacker to execute arbitrary code via function sub4256CC, which allows command injection by injecting 'devpwd'...
CVE-2024-57357
An issue in TPLINK TL-WPA 8630 TL-WPA8630USV22.0.4 Build 20230427 allows a remote attacker to execute arbitrary code via function sub4256CC, which allows command injection by injecting 'devpwd'...
CVE-2024-57357
CVE-2024-57357 affects TP-LINK TL-WPA 8630 (US) model, specifically version 2.0.4 Build 20230427, where a vulnerability in function sub_4256CC enables remote command injection via the devpwd parameter, potentially allowing arbitrary code execution. Exploitation details are described as a remote c...