PT-2021-4879 · Arm · Arm Mali Gpu Kernel Driver

Name of the Vulnerable Software and Affected Versions: Arm Mali GPU kernel driver versions Bifrost r0p0 through r28p0 before r29p0 Arm Mali GPU kernel driver versions Valhall r19p0 through r28p0 before r29p0 Arm Mali GPU kernel driver versions Midgard r4p0 through r30p0 Description: The issue is...

AZL-38836 CVE-2021-28361 affecting package ceph for versions less than 18.2.2-1

An issue was discovered in Storage Performance Development Kit SPDK before 20.01.01. If a PDU is sent to the iSCSI target with a zero length but data is expected, the iSCSI target can crash with a NULL pointer dereference...

Fedora: Security Advisory for rubygem-actionpack (FEDORA-2021-b571fca1b8)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

The vulnerability of the JUnit4 library, related to the lack of protection for service data, allows attackers to disclose protected information.

The vulnerability of the JUnit4 library is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to disclose the protected information...

The vulnerability of the ARM System Memory Management Unit (SMMU) in NVIDIA Jetson TX2 processors allows a hacker to cause a system failure.

The vulnerability of the ARM System Memory Management Unit SMMU on NVIDIA Jetson TX2 processors lies in insufficient checking of exception states. Exploiting this vulnerability can allow attackers to cause system failures...

GPU driver 资源管理错误漏洞

The Qualcomm Adreno GPU is a mobile platform-integrated GPU from Qualcomm Incorporated USA. A resource management error vulnerability exists in the GPU driver, which stems from improper reference memory checking...

Siemens DIGSI 4 Elevation of Privilege Vulnerability

DIGSI 4 is the operating and configuration software for the SIPROTEC 4 and SIPROTEC Compact Protection Unit. An elevation of privilege vulnerability exists in Siemens DIGSI 4. An attacker could exploit the vulnerability by placing a DLL with system-executed code...

UBUNTU-CVE-2021-27379

An issue was discovered in Xen through 4.11.x, allowing x86 Intel HVM guest OS users to achieve unintended read/write DMA access, and possibly cause a denial of service host OS crash or gain privileges. This occurs because a backport missed a flush, and thus IOMMU updates were not always correct...

DEBIAN-CVE-2021-27138

The boot loader in Das U-Boot before 2021.04-rc2 mishandles use of unit addresses in a FIT...

CVE-2021-27138

The boot loader in Das U-Boot before 2021.04-rc2 mishandles use of unit addresses in a FIT...

CVE-2021-27138

The boot loader in Das U-Boot before 2021.04-rc2 mishandles use of unit addresses in a FIT...

UBUNTU-CVE-2021-27138

The boot loader in Das U-Boot before 2021.04-rc2 mishandles use of unit addresses in a FIT...

CVE-2021-27138

The boot loader in Das U-Boot before 2021.04-rc2 mishandles use of unit addresses in a FIT...

CVE-2021-27138

The boot loader in Das U-Boot before 2021.04-rc2 mishandles use of unit addresses in a FIT...

CVE-2021-27138

The boot loader in Das U-Boot before 2021.04-rc2 mishandles use of unit addresses in a FIT...

Google Chrome 缓冲区错误漏洞

Chrome is a simple and efficiently designed web browsing tool developed by Google that is characterized by its simplicity and speed. A stack overflow vulnerability exists in the GPU process in versions prior to Google Chrome 88.0.4324.182. No detailed vulnerability details are provided at this ti...

Celeb SIM-Swap Crime Ring Stole $100M from U.S. Victims

A posse of alleged SIM-swapping cybercriminals has been rounded up across Europe by law-enforcement after the crooks finagled more than $100 million from U.S. celebrities and their families. Eight people in the U.K. were arrested in connection with the crime ring, in addition to individuals in...

USN-4713-2 linux, linux-gke-5.0, linux-gke-5.3, linux-hwe, linux-raspi2-5.3 vulnerability

It was discovered that the LIO SCSI target implementation in the Linux kernel performed insufficient identifier checking in certain XCOPY requests. An attacker with access to at least one LUN in a multiple backstore environment could use this to expose sensitive information or modify data...

CVE-2021-0347

In ccu, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Product: Android; Versions: Android-8.1, Android-9, Android-10, Android-11; Patch ID:...

openSUSE Security Update : cobbler (openSUSE-2021-46)

This update for cobbler fixes the following issues : - Add cobbler-tests subpackage for unit testing for openSUSE/SLE - Adds LoadModule definitions for openSUSE/SLE - Switch to new refactored auth module. - use systemctl to restart cobblerd on logfile rotation boo1169207 Mainline logrotate conf...