72 matches found
ALBA-2021:4516 usermode bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
Debian: Security Advisory (DLA-2744-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [BUGFIX] [DLA 2744-1] usermode upgrade issues
----------------------------------------------------------------------- Debian LTS Advisory DLA-2744-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta August 16, 2021 https://wiki.debian.org/LTS -...
DLA-2744-1 usermode - security update
Bulletin has no description...
Debian DLA-2744-1 : usermode - LTS security update
The remote Debian 9 host has a package installed that is affected by a vulnerability as referenced in the dla-2744 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 70300 C Tenable Network Security...
An issue was discovered in the Linux kernel before 5.11.11. The user mode driver (UMD) has a copy_process() memory leak related to a lack of cleanup steps in kernel/usermode_driver.c and kernel/bpf/preload/bpf_preload_kern.c aka CID-f60a85cad677.
...
NewStart CGSL CORE 5.04 / MAIN 5.04 : libuser Multiple Vulnerabilities (NS-SA-2021-0044)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has libuser packages installed that are affected by multiple vulnerabilities: - libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the userhelper program in the usermode package, directly modifies /etc/passwd, which...
WOW64!Hooks: WOW64 Subsystem Internals and Hooking Techniques
Microsoft is known for their backwards compatibility. When they rolled out the 64-bit variant of Windows years ago they needed to provide compatibility with existing 32-bit applications. In order to provide seamless execution regardless of application bitness, the WoW Windows on Windows system wa...
Qiling - Advanced Binary Emulation Framework
Qiling is an advanced binary emulation framework, with the following features: Cross platform: Windows, MacOS, Linux, BSD Cross architecture: X86, X8664, Arm, Arm64, Mips Multiple file formats: PE, MachO, ELF Emulate & sandbox machine code in a isolated environment Provide high level API to setup...
Privilege escalation
IOCTL Handling in the kyrld.sys driver in Kyrol Internet Security 9.0.6.9 allows an attacker to achieve privilege escalation, denial-of-service, and code execution via usermode because 0x9C402401 using METHODNEITHER results in a read primitive...
CVE-2019-19197
CVE-2019-19197 relates to IOCTL handling in the kyrld.sys driver of Kyrol Internet Security 9.0.6.9. The vulnerability arises when 0x9C402401 is issued via METHOD_NEITHER, leading to a read primitive that enables local privilege escalation, denial of service, and potential code execution in userm...
Denial Of Service (DoS)
libuser is vulnerable to denial of service DoS attacks. The vulnerability exists as an incomplete blacklist vulnerability in the chfn function in libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the userhelper program in the usermode package, allows local users to cause a denial of...
Medium: nvidia
Issue Overview: NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer nvlddmkm.sys handler for DxgkDdiEscape where a NULL pointer dereference may lead to denial of service or possible escalation of privileges. CVE-2018-6247 NVIDIA Windows GPU Display Driver contains ...
CVE-2018-6251
NVIDIA Windows GPU Display Driver contains a vulnerability in the DirectX 10 Usermode driver, where a specially crafted pixel shader can cause writing to unallocated memory, leading to denial of service or potential code execution...
Design/Logic Flaw
NVIDIA GPU Display Driver contains a vulnerability in the DirectX and OpenGL Usermode drivers where a specially crafted pixel shader can cause infinite recursion leading to denial of service...
CVE-2018-6253
NVIDIA GPU Display Driver contains a vulnerability in the DirectX and OpenGL Usermode drivers where a specially crafted pixel shader can cause infinite recursion leading to denial of service...
CVE-2018-6253
NVIDIA GPU Display Driver contains a vulnerability in the DirectX and OpenGL Usermode drivers where a specially crafted pixel shader can cause infinite recursion leading to denial of service...
CVE-2018-6251
CVE-2018-6251 affects the NVIDIA Windows GPU Display Driver, specifically the DirectX 10 Usermode driver. A specially crafted pixel shader can cause writing to unallocated memory, leading to denial of service or potential code execution. This vulnerability is reported across multiple feeds (NVD, ...
CVE-2018-6253
NVIDIA GPU Display Driver contains a vulnerability in the DirectX and OpenGL Usermode drivers where a specially crafted pixel shader can cause infinite recursion leading to denial of service...
CVE-2018-6253
CVE-2018-6253 affects NVIDIA GPU Display Driver with a flaw in the DirectX and OpenGL Usermode drivers: a specially crafted pixel shader can cause infinite recursion, leading to denial of service. The vulnerability is detailed across multiple disclosures (NVD CVSS 2.0/3.0 showing MEDIUM base seve...