EUVD-2024-52846

Malicious code in bioql PyPI...

Azure Linux 3.0 Security Update: kernel (CVE-2024-55916)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-55916 advisory. - In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: util: Avoid accessing a...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-55916)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-55916 advisory. - In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: util: Avoid accessing a...

Linux Distros Unpatched Vulnerability : CVE-2024-55916

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet If the KVP or VSS daemon starts before the VMBus channel's ringbuffer is fully initialized, ...

CVE-2024-55916

In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet If the KVP or VSS daemon starts before the VMBus channel's ringbuffer is fully initialized, we can hit the panic below: hvutils: Registering HyperV Utility Drive...

CVE-2024-55916

In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet If the KVP or VSS daemon starts before the VMBus channel's ringbuffer is fully initialized, we can hit the panic below: hvutils: Registering HyperV Utility Drive...

CVE-2024-55916

The CVE-2024-55916 entry refers to a Linux kernel race where the KVP/VSS daemon may run before the VMBus ringbuffer is fully initialized. Concrete detail: a NULL pointer dereference can occur in hv_pkt_iter_first when the daemon opens / dev/vmbus/hv_kvp and registers before vmbus_open() completes...

CVE-2024-55916 Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet

In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet If the KVP or VSS daemon starts before the VMBus channel's ringbuffer is fully initialized, we can hit the panic below: hvutils: Registering HyperV Utility Drive...

CVE-2024-55916 Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet

In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet If the KVP or VSS daemon starts before the VMBus channel's ringbuffer is fully initialized, we can hit the panic below: hvutils: Registering HyperV Utility Drive...

CVE-2024-55916 Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet

In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet If the KVP or VSS daemon starts before the VMBus channel's ringbuffer is fully initialized, we can hit the panic below: hvutils: Registering HyperV Utility Drive...

Realtek RtsUpx Usb Utility Driver Access Control Error Vulnerability (CNVD-2021-91639)

Realtek RtsUpx Usb Utility Driver is a Usb utility driver from Realtek Semiconductor China.An access control error vulnerability exists in the Realtek RtsUpx USB Utility Driver for Camera Hub Audio, which stems from the product's failure to device's IO control packet for permission detection. An...

Realtek RtsUpx Usb Utility Driver Resource Management Error Vulnerability

Realtek RtsUpx Usb Utility Driver is a Usb utility driver from Realtek Semiconductor China.A resource management error vulnerability exists in the Realtek RtsUpx USB Utility Driver for Camera Hub Audio, which stems from the product's handling of IO control packets without proper memory boundary...

CVE-2021-36925

RtsUpx.sys in Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio through 1.14.0.0 allows local low-privileged users to achieve an arbitrary read or write operation from/to physical memory leading to Escalation of Privileges, Denial of Service, Code Execution, and Information Disclosure via a...

CVE-2021-36925

CVE-2021-36925 details (normal mode) Realtek RtsUpx.sys, the USB Utility Driver for Camera/Hub/Audio, up to version 1.14.0.0 is affected. The vulnerability allows local, low-privileged users to perform arbitrary reads/writes in physical memory via a crafted IOCTL to the device, leading to potenti...

CVE-2021-36923

Summary: CVE-2021-36923 affects Realtek RtsUpx USB Utility Driver (Realtek RtsUpx.sys) up to version 1.14.0.0. The root cause is an access-control/IOCTL handling flaw that permits local, low-privileged users to access privileged USB IN/OUT operations. This can enable escalation of privileges, den...

CVE-2021-36922

CVE-2021-36922 affects Realtek RtsUpx USB Utility Driver (Realtek RtsUpx.sys) for Camera/Hub/Audio up to version 1.14.0.0. The root cause is failure to perform privilege checks on device IO control packets, enabling local, low-privilege users to gain unauthorized access to USB devices. Impact inc...

Realtek RtsUpx USB Utility Driver 访问控制错误漏洞

Realtek RtsUpx Usb Utility Driver is a Usb utility driver from Realtek Semiconductor Realtek, China. An Access Control Error vulnerability exists in the Realtek RtsUpx USB Utility Driver for Camera Hub Audio, which stems from the product's failure to perform privilege checks on the device's IO...