CVE-2022-48620

uev aka libuev before 2.4.1 has a buffer overflow in epollwait if maxevents is a large number...

DEBIAN-CVE-2022-48620

uev aka libuev before 2.4.1 has a buffer overflow in epollwait if maxevents is a large number...

PT-2024-11762

Name of the Vulnerable Software and Affected Versions uev aka libuev versions prior to 2.4.1 Description The issue is related to a buffer overflow in the epoll wait function when maxevents is a large number. Recommendations For versions prior to 2.4.1, update to version 2.4.1 or later to resolve...

CVE-2022-48620

uev aka libuev before 2.4.1 has a buffer overflow in epollwait if maxevents is a large number...

kernel: scsi: storvsc: Fix handling of virtual Fibre Channel timeouts

In the Linux kernel, the following vulnerability has been resolved: scsi: storvsc: Fix handling of virtual Fibre Channel timeouts Hyper-V provides the ability to connect Fibre Channel LUNs to the host system and present them in a guest VM as a SCSI device. I/O to the vFC device is handled by the...

kernel: sctp: check send stream number after wait_for_sndbuf

In the Linux kernel, the following vulnerability has been resolved: sctp: check send stream number after waitforsndbuf This patch fixes a corner case where the asoc out stream count may change after waitforsndbuf. When the main thread in the client starts a connection, if its out stream count is...

kernel: drm/amdkfd: Fix an illegal memory access

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix an illegal memory access In the kfdwaitonevents function, the kfdeventwaiter structure is allocated by alloceventwaiters, but the event field of the waiter structure is not initialized; When copyfromuser fails in...

kernel: Linux kernel: Denial of Service in io_uring due to hung task detection

A flaw was identified in the Linux kernel’s iouring subsystem related to how request completions are handled when an iouring instance exits. During cleanup, the function ioringexitwork was waiting in an uninterruptible state for request completions. Under certain test and signal conditions e.g.,...

kernel: NFSD: fix use-after-free in nfsd4_ssc_setup_dul()

An expired pointer dereference flaw was found in the NFSv4 implementation in the Linux kernel, which may negatively affect system availability when the kernel thread is signaled during a mount/unmount operation. If signalpending returns true, scheduletimeout will not be executed, causing the...

kernel: drm/amdkfd: Fix an illegal memory access

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix an illegal memory access In the kfdwaitonevents function, the kfdeventwaiter structure is allocated by alloceventwaiters, but the event field of the waiter structure is not initialized; When copyfromuser fails in...

kernel: sctp: check send stream number after wait_for_sndbuf

In the Linux kernel, the following vulnerability has been resolved: sctp: check send stream number after waitforsndbuf This patch fixes a corner case where the asoc out stream count may change after waitforsndbuf. When the main thread in the client starts a connection, if its out stream count is...

M-05 Unmitigated

Lines of code Vulnerability details Original Issue M-05: Reward sandwiching in VotiumStrategy Details The issue outlined above is about making instant profit by depositing before the boost happens and withdrawing right after the boost occurs. Those who locked their positions for 16+ weeks get the...

Medium: haproxy2

Issue Overview: The HAProxy Github issue describes this vulnerability as follows: Crash SEGV in httpwaitforresponse in 2.2.19, 2.2.24, and 2.2.26 because sl start line variable is NULL. CVE-2023-0056 Affected Packages: haproxy2 Note: This advisory is applicable to Amazon Linux 2 - Haproxy2 Extra...

CVE-2023-31084

...

DietPi-Dashboard 安全漏洞

DietPi-Dashboard is a component of the DietPi operating system that provides a web-based user interface for managing and monitoring DietPi installed devices. A security vulnerability exists in DietPi-Dashboard that stems from the fact that the Dashboard only allows one TLS handshake at a given...

A reorg on the origin chain after a proposal has been validated will result in loss of funds for the protocol

Lines of code Vulnerability details Impact The protocol will lose the funds that the user sent to the origin chain InterchainProposalSender contract for the proposal. Proof of Concept When a proposal gets submitted it gets reviewed by validators on the Axelar network and then receives a validatio...

PT-2025-54162

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to the initialization of wait queue head t. Specifically, the refscale test can occasionally cause a kernel crash due to an attempt to access an...

OESA-2023-1368 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: An issue was discovered in drivers/media/dvb-core/dvbfrontend.c in the Linux kernel 6.2. There is a blocking operation when a task is in !TASKRUNNING. In dvbfrontendgetevent, waiteventinterruptible is called; the condition is...

kernel: use-after-free in ath9k_htc_probe_device() could cause an escalation of privileges

A use-after-free flaw was found in the Linux kernel’s Atheros wireless adapter driver in the way a user forces the ath9khtcwaitfortarget function to fail with some input messages. This flaw allows a local user to crash or potentially escalate their privileges on the system...

kernel: driver core: Fix wait_for_device_probe() & deferred_probe_timeout interaction

In the Linux kernel, the following vulnerability has been resolved: driver core: Fix waitfordeviceprobe & deferredprobetimeout interaction Mounting NFS rootfs was timing out when deferredprobetimeout was non-zero 1. This was because ipautoconfig initcall times out waiting for the network interfac...