Astra Linux - уязвимость в firefox

It was possible to mutate a JavaScript object in such a way that the JIT compiler could crash while tracing it. This vulnerability affects Firefox versions less than 125...

Azure Linux 3.0 Security Update: kernel (CVE-2024-56763)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56763 advisory. - In the Linux kernel, the following vulnerability has been resolved: tracing: Prevent bad count for...

EulerOS 2.0 SP10 : kernel (EulerOS-SA-2026-1050)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : media: uvcvideo: Handle cameras with invalid descriptorsCVE-2023-53437 scsi: target: iscsi: Fix a race condition between loginwork and the login...

CVE-2025-47985 Windows Event Tracing Elevation of Privilege Vulnerability

...

CVE-2023-53093

In the Linux kernel, the following vulnerability has been resolved: tracing: Do not let histogram values have some modifiers Histogram values can not be strings, stacktraces, graphs, symbols, syscalls, or grouped in buckets or log. Give an error if a value is set to do so. Note, the histogram cod...

CVE-2025-22035

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix use-after-free in printgraphfunctionflags during tracer switching Kairui reported a UAF issue in printgraphfunctionflags during ftrace stress testing 1. This issue can be reproduced if puting a 'mdelay10' after...

CVE-2022-49006 tracing: Free buffers when a used dynamic event is removed

In the Linux kernel, the following vulnerability has been resolved: tracing: Free buffers when a used dynamic event is removed After 65536 dynamic events have been added and removed, the "type" field of the event then uses the first type number that is available not currently used by other events...

CVE-2024-43890

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix overflow in getfreeelt "tracingmap-nextelt" in getfreeelt is at risk of overflowing. Once it overflows, new elements can still be inserted into the tracingmap even though the maximum number of elements maxelts has be...

CVE-2024-41004 tracing: Build event generation tests only as modules

In the Linux kernel, the following vulnerability has been resolved: tracing: Build event generation tests only as modules The kprobes and synth event generation test modules add events and lock get a reference those event file reference in module init function, and unlock and delete it in module...

CVE-2023-52879

CVE-2023-52879 describes a Linux kernel vulnerability in tracing, specifically adding ref counters to trace_event_file to prevent use-after-free when a kprobe event is deleted while its tracefs file is still open. The issue can cause a kernel NULL pointer dereference and crash (local privilege no...

CVE-2023-52879

In the Linux kernel, the following vulnerability has been resolved: tracing: Have traceeventfile have ref counters The following can crash the kernel: cd /sys/kernel/tracing echo 'p:sched schedule' kprobeevents exec 5events/kprobes/sched/enable kprobeevents exec 5&- The above commands: 1. Change...

CVE-2024-26645 tracing: Ensure visibility when inserting an element into tracing_map

In the Linux kernel, the following vulnerability has been resolved: tracing: Ensure visibility when inserting an element into tracingmap Running the following two commands in parallel on a multi-processor AArch64 machine can sporadically produce an unexpected warning about duplicate histogram...

Security Bulletin: IBM MQ trace can inadvertently trace sensitive data (CVE-2022-22325)

Summary An issue was identified with IBM MQ tracing logic used by queue managers and native C-based MQ clients that meant sensitive data could be captured while IBM MQ trace was running. This data would be stored in plaintext within the IBM MQ trace files. Vulnerability Details CVEID:...

CVE-2021-1662

Windows Event Tracing Elevation of Privilege Vulnerability...

OpenJDK: tracing insufficient access checks (Serviceability, 8010209)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serviceability. NOTE: the previous information is from th...

OpenJDK: tracing insufficient access checks (Serviceability, 8010209)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serviceability. NOTE: the previous information is from th...