Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of checking function return values, potentially leading to null pointer dereferencing...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from improper checking of the return value of mmcaddhost, which could lead to a memory leak and null pointer...

EUVD-2024-41538

Malicious code in bioql PyPI...

Libopensc: uninitialized values after incorrect or missing checking return values of functions in libopensc

...

WordPress plugin WooCommerce OTP Login With Phone Number, OTP Verification 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exis...

CVE-2025-21790

In the Linux kernel, the following vulnerability has been resolved: vxlan: check vxlanvnigroupinit return value vxlaninit must check vxlanvnigroupinit success otherwise a crash happens later, spotted by syzbot. Oops: general protection fault, probably for non-canonical address 0xdffffc000000002c:...

The vulnerability of the Curve.IsOnCurve component in the Golang programming language, which allows a malicious actor to influence the accessibility and integrity of the resource.

The vulnerability of the Curve.IsOnCurve component in the Golang programming language is related to incorrect checking of the returned value by a method or function. Exploiting this vulnerability can allow an attacker to influence the accessibility and integrity of a resource...

kernel: net: asix: add proper error handling of usb read errors

In the Linux kernel, the following vulnerability has been resolved: net: asix: add proper error handling of usb read errors Syzbot once again hit uninit value in asix driver. The problem still the same -- asixreadcmd reads less bytes, than was requested by caller. Since all read requests are...

The vulnerability of the Yokogawa Dual-redundant Platform for Computer (PC2CKM) lies in the improper checking of the return value of a method or function, allowing an attacker to trigger a service failure.

The vulnerability of the Yokogawa Dual-redundant Platform for Computer PC2CKM is related to improper checking of the return value of a method or function. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a service failure by sending broadcast UDP packets...

AZL-48801 CVE-2024-45618 affecting package opensc 0.23.0-5

A vulnerability was found in pkcs15-init in OpenSC. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially crafted response to APDUs. Insufficient or missing checking of return values of functions leads to unexpected work with variables that have...

PT-2023-3753

Name of the Vulnerable Software and Affected Versions Citrix ADC and Citrix Gateway affected versions not specified Description The issue is related to an arbitrary file read in Citrix ADC and Citrix Gateway, previously known as Citrix NetScaler Application Delivery Controller and Citrix NetScale...

Vulnerability of the expr__ctx_new() function (tools/perf/util/expr.c): This function is part of the Linux operating system’s kernel utilities, which allows a hacker to cause a service failure or potentially have other adverse effects.

The vulnerability of the exprctxnew function tools/perf/util/expr.c in the Linux kernel is related to incorrect checking of the returned value from a method or function. Exploiting this vulnerability could allow an attacker to cause a service failure or potentially have other adverse effects...

The vulnerability of the BIOS microprogramming system of Intel processors allows a hacker to gain unauthorized access to protected information.

The vulnerability of the BIOS microprogramming system of Intel processors is related to incorrect checking of the return value. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

GSD-2022-1003214 USB: host: isp116x: check return value after calling platform_get_resource()

USB: host: isp116x: check return value after calling platformgetresource This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.47 by commit...

The vulnerability of software for performing virtualization at the operating system level, also known as containerization, Singularity, arises from insufficient checking of unusual or exceptional states. This allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of software for performing virtualization at the operating system level, also known as containerization, is related to improper checking of the return value of functions. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data, compromise it...

Cisco Webex Meetings HTML Injection Vulnerability

Cisco Webex Meetings provides affordable enterprise virtual meeting solutions. An HTML injection vulnerability exists in certain pages of Cisco Webex Meetings. The vulnerability stems from improper checking of parameter values on the affected pages. An attacker could exploit the vulnerability by...

Denial Of Service (DoS)

FFmpeg is vulnerable to denial of service DoS attacks. A malicious user can pass a file which contains a large itemnum value to bypass the large value checking, causing the file to consume a large amount of memory that can lead to memory exhaustion in the system...

SUSE-SU-2015:2110-1 Security update for LibVNCServer

The libvncserver package was updated to fix the following security issues: - bsc897031: fix several security issues: CVE-2014-6051: Integer overflow in MallocFrameBuffer on client side. CVE-2014-6052: Lack of malloc return value checking on client side. CVE-2014-6053: Server crash on a very large...

SUSE SLED12 / SLES12 Security Update : LibVNCServer (SUSE-SU-2015:2088-1)

The LibVNCServer package was updated to fix the following security issues : - bsc897031: fix several security issues : - CVE-2014-6051: Integer overflow in MallocFrameBuffer on client side. - CVE-2014-6052: Lack of malloc return value checking on client side. - CVE-2014-6053: Server crash on a ve...

libvncserver -- multiple security vulnerabilities

Nicolas Ruff reports: Integer overflow in MallocFrameBuffer on client side. Lack of malloc return value checking on client side. Server crash on a very large ClientCutText message. Server crash when scaling factor is set to zero. Multiple stack overflows in File Transfer feature...