25 matches found
GSD-2021-1001365 virtio_console: Assure used length from device is limited
virtioconsole: Assure used length from device is limited This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.198 by commit...
UVI-2021-1001264 virtio_console: Assure used length from device is limited
virtioconsole: Assure used length from device is limited This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.52 by commit...
UVI-2021-1001188 virtio_console: Assure used length from device is limited
virtioconsole: Assure used length from device is limited This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.13.4 by commit...
The vulnerability in the Linux operating system’s driver/drivers/char/virtio_console.c file allows a hacker to trigger a service failure or cause other adverse effects.
The vulnerability in the driver drivers/char/virtioconsole.c of the Linux operating system arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a local attacker to improperly interact with the CONFIGVMAPSTACK parameter, resulting in a...
Memory corruption
drivers/char/virtioconsole.c in the Linux kernel 4.9.x and 4.10.x before 4.10.12 interacts incorrectly with the CONFIGVMAPSTACK option, which allows local users to cause a denial of service system crash or memory corruption or possibly have unspecified other impact by leveraging use of more than...