49 matches found
Traccar 5.12 Remote Code Execution
class MetasploitModule 'Traccar v5 Remote Code Execution CVE-2024-31214 and CVE-2024-24809', 'Description' = %q Remote Code Execution in Traccar v5.1 - v5.12. Remote code execution can be obtained by combining two vulnerabilities: A path traversal vulnerability CVE-2024-24809 and an unrestricted...
GSD-2023-1002054 riscv/kprobe: Fix instruction simulation of JALR
riscv/kprobe: Fix instruction simulation of JALR This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.91 by commit...
GSD-2023-1001226 arm64: mm: kfence: only handle translation faults
arm64: mm: kfence: only handle translation faults This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.86 by commit...
GSD-2023-1000955 mm, compaction: fix fast_isolate_around() to stay within boundaries
mm, compaction: fix fastisolatearound to stay within boundaries This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.87 by commit...
GSD-2023-1000854 arm64: mm: kfence: only handle translation faults
arm64: mm: kfence: only handle translation faults This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.16 by commit...
GSD-2023-1000838 perf/x86/intel/uncore: Fix reference count leak in hswep_has_limit_sbox()
perf/x86/intel/uncore: Fix reference count leak in hswephaslimitsbox This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.16 by commit...
GSD-2022-1007973 arm64: entry: avoid kprobe recursion
arm64: entry: avoid kprobe recursion This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.78 by commit 71d6c33fe223255f4416a01514da2c0bc3e283e7...
GSD-2022-1006331 swiotlb: avoid potential left shift overflow
swiotlb: avoid potential left shift overflow This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.9 by commit...
GSD-2022-1005372 riscv:uprobe fix SR_SPIE set/clear handling
riscv:uprobe fix SRSPIE set/clear handling This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.2 by commit...
GSD-2022-1005273 netdevsim: fib: Fix reference count leak on route deletion failure
netdevsim: fib: Fix reference count leak on route deletion failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.2 by commit...
GSD-2022-1004412 btrfs: zoned: fix a leaked bioc in read_zone_info
btrfs: zoned: fix a leaked bioc in readzoneinfo This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.56 by commit...
GSD-2022-1003128 drm/mediatek: Add vblank register/unregister callback functions
drm/mediatek: Add vblank register/unregister callback functions This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.14 by commit...
GSD-2022-1002796 drm/mediatek: Add vblank register/unregister callback functions
drm/mediatek: Add vblank register/unregister callback functions This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.3 by commit...
GSD-2022-1001915 rtc: pl031: fix rtc features null pointer dereference
rtc: pl031: fix rtc features null pointer dereference This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.33 by commit...
GSD-2022-1001881 ASoC: codecs: rx-macro: fix accessing compander for aux
ASoC: codecs: rx-macro: fix accessing compander for aux This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.33 by commit...
GSD-2022-1001777 drm/dp: Fix off-by-one in register cache size
drm/dp: Fix off-by-one in register cache size This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.33 by commit...
GSD-2022-1001589 crypto: octeontx2 - remove CONFIG_DM_CRYPT check
crypto: octeontx2 - remove CONFIGDMCRYPT check This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.19 by commit...
GSD-2022-1000821 mm/filemap: Fix handling of THPs in generic_file_buffered_read()
mm/filemap: Fix handling of THPs in genericfilebufferedread This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.26 by commit...
GSD-2022-1000782 iwlwifi: mvm: check debugfs_dir ptr before use
iwlwifi: mvm: check debugfsdir ptr before use This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.27 by commit...
GSD-2022-1000777 blktrace: fix use after free for struct blk_trace
blktrace: fix use after free for struct blktrace This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.27 by commit...