56 matches found
kernel: use-after-free in drivers/infiniband/core/ucma.c ctx use-after-free
An issue was discovered in the Linux kernels Userspace Connection Manager Access for RDMA. This could allow a local attacker to crash the system, corrupt memory or escalate privileges...
OESA-2021-1279 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: there was a null pointer dereference in llcpsockgetname in net/nfc/llcpsock.c and reproduced it in linux-5.13.0-rc2. An unprivileged user can trigger this bug and cause denial of service. Root Cause After creating an nfc socket,...
DEBIAN-CVE-2020-36385
An issue was discovered in the Linux kernel before 5.10. drivers/infiniband/core/ucma.c has a use-after-free because the ctx is reached via the ctxlist in some ucmamigrateid situations where ucmaclose is called, aka CID-f5449e74802c...
UBUNTU-CVE-2020-36385
An issue was discovered in the Linux kernel before 5.10. drivers/infiniband/core/ucma.c has a use-after-free because the ctx is reached via the ctxlist in some ucmamigrateid situations where ucmaclose is called, aka CID-f5449e74802c...
kernel: use-after-free in ucma_leave_multicast in drivers/infiniband/core/ucma.c
A flaw was found in the Linux Kernel in the ucmaleavemulticast function in drivers/infiniband/core/ucma.c which allows access to a certain data structure after freeing it in ucmaprocessjoin. This allows an attacker to cause a use-after-free bug and to induce kernel memory corruption, leading to a...
kernel: use-after-free in ucma_leave_multicast in drivers/infiniband/core/ucma.c
A flaw was found in the Linux Kernel in the ucmaleavemulticast function in drivers/infiniband/core/ucma.c which allows access to a certain data structure after freeing it in ucmaprocessjoin. This allows an attacker to cause a use-after-free bug and to induce kernel memory corruption, leading to a...
A vulnerability in the Linux kernel’s drivers/infiniband/core/ucma.c file, which allows a hacker to trigger a service failure.
The vulnerability in the Linux kernel’s drivers/infiniband/core/ucma.c file is related to the use of memory after it has been freed. Exploiting this vulnerability could allow an attacker to cause a service failure...
openSUSE Security Update : the Linux Kernel (openSUSE-2018-1549)
The openSUSE Leap 42.3 kernel was updated to 4.4.165-81.1 to receive various bugfixes. The following non-security bugs were fixed : - 9p locks: fix glock.clientid leak in dolock bnc1012382. - 9p: clear dangling pointers in p9statfree bnc1012382. - ACPI / LPSS: Add alternative ACPI HIDs for Cherry...
Security update for the Linux Kernel (important)
The openSUSE Leap 42.3 kernel was updated to 4.4.165-81.1 to receive various bugfixes. The following non-security bugs were fixed: - 9p locks: fix glock.clientid leak in dolock bnc1012382. - 9p: clear dangling pointers in p9statfree bnc1012382. - ACPI / LPSS: Add alternative ACPI HIDs for Cherry...
Linux kernel denial of service vulnerability (CNVD-2018-17477)
Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the drivers/infiniband/core/ucma.c file in Linux kernel version 4.17.11 and earlier, which stems from the 'ucmaprocessjoin' function...
Double free
drivers/infiniband/core/ucma.c in the Linux kernel through 4.17.11 allows ucmaleavemulticast to access a certain data structure after a cleanup step in ucmaprocessjoin, which allows attackers to cause a denial of service use-after-free...
DEBIAN-CVE-2018-14734
drivers/infiniband/core/ucma.c in the Linux kernel through 4.17.11 allows ucmaleavemulticast to access a certain data structure after a cleanup step in ucmaprocessjoin, which allows attackers to cause a denial of service use-after-free...
Description of the cumulative update for Office Communications Server 2007 R2, Unified Communications Managed API 2.0 Core Redist 64-bit: March, 2011
Describes the bugs that are resolved in the cumulative update for Office Communications Server 2007 R2, Unified Communications Managed API 2.0 Core Redist 64-bit that is dated March 2011.SummaryThis article describes the issues that is fixed in the cumulative update for Office Communications Serv...
A DTMF-based IVR application that is developed by using Lync Server 2010, UCMA 3.0 Workflow APIs crashes
Fixes an issue in which a DTMF-based IVR application crashes when a user barges-in multiple times with invalid DTMF digits or barges-in to request help. This issue occurs if the application is developed by using Lync Server 2010, UCMA 3.0 Workflow APIs.SymptomsConsider the following scenario: You...
Security update 1970-01-01
...
Security update 1970-01-01
...