107 matches found
DEBIAN-CVE-2022-49913
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix inode list leak during backref walking at findparentnodes During backref walking, at findparentnodes, if we are dealing with a data extent and we get an error while resolving the indirect backrefs, at...
CVE-2022-49913
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix inode list leak during backref walking at findparentnodes During backref walking, at findparentnodes, if we are dealing with a data extent and we get an error while resolving the indirect backrefs, at...
CVE-2022-49914
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix inode list leak during backref walking at resolveindirectrefs During backref walking, at resolveindirectrefs, if we get an error we jump to the 'out' label and call ulistfree on the 'parents' ulist, which frees all the...
UBUNTU-CVE-2022-49914
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix inode list leak during backref walking at resolveindirectrefs During backref walking, at resolveindirectrefs, if we get an error we jump to the 'out' label and call ulistfree on the 'parents' ulist, which frees all the...
CVE-2022-49914 btrfs: fix inode list leak during backref walking at resolve_indirect_refs()
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix inode list leak during backref walking at resolveindirectrefs During backref walking, at resolveindirectrefs, if we get an error we jump to the 'out' label and call ulistfree on the 'parents' ulist, which frees all the...
CVE-2022-49914
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix inode list leak during backref walking at resolveindirectrefs During backref walking, at resolveindirectrefs, if we get an error we jump to the 'out' label and call ulistfree on the 'parents' ulist, which frees all the...
CVE-2022-49913
CVE-2022-49913 concerns a memory leak in the Linux kernel’s btrfs backref walking code. During find_parent_nodes() on data extents, if an error occurs while resolving indirect backrefs (resolve_indirect_refs()) or while iterating direct refs in the rbtree, inode lists attached to direct refs not ...
CVE-2022-49913 btrfs: fix inode list leak during backref walking at find_parent_nodes()
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix inode list leak during backref walking at findparentnodes During backref walking, at findparentnodes, if we are dealing with a data extent and we get an error while resolving the indirect backrefs, at...
DNSSEC NSEC. The accidental treasure map to your subdomains
TL;DR: DNSSEC secures DNS but may unintentionally expose domain structures via NSEC/NSEC3 records, enabling zone walking to enumerate subdomains. NSEC openly lists domain names, making enumeration easy. NSEC3 hashes names, making enumeration harder, but attackers can still crack weak...
The vulnerability of the Ivanti EPM endpoint management software, related to out-of-memory reading, allows a hacker to exploit their privileges.
The vulnerability of the Ivanti EPM endpoint management software relates to memory-walking attacks. Exploiting this vulnerability can allow attackers to gain increased privileges...
The vulnerability of Adobe InDesign’s computer layout automation tool, related to memory-walking attacks, allows attackers to bypass ASLR protection and disclose the protected information.
The vulnerability of Adobe InDesign’s computer layout automation tool is related to memory-walking attacks. Exploiting this vulnerability can allow attackers to bypass ASLR protection and disclose the protected information...
The vulnerability of Adobe InDesign’s computer layout automation tool, related to memory-walking attacks, allows attackers to bypass ASLR protection and disclose the protected information.
The vulnerability of Adobe InDesign’s computer layout automation tool is related to memory-walking attacks. Exploiting this vulnerability can allow an attacker to bypass ASLR protection and disclose the protected information...
The vulnerability of Adobe InDesign’s computer layout automation tool, related to memory-walking attacks, allows attackers to bypass ASLR protection and disclose the protected information.
The vulnerability of Adobe InDesign’s computer layout automation tool is related to memory-walking attacks. Exploiting this vulnerability can allow an attacker to bypass ASLR protection and disclose the protected information...
The vulnerability of Adobe InDesign’s computer layout automation tool, related to memory-walking attacks, allows attackers to bypass ASLR protection and disclose the protected information.
The vulnerability of Adobe InDesign’s computer layout automation tool is related to memory-walking attacks. Exploiting this vulnerability can allow an attacker to bypass ASLR protection and disclose the protected information...
The vulnerability of the Remote Access Connection Manager in Windows operating systems allows a hacker to increase their privileges.
The vulnerability of the Remote Access Connection Manager in Windows operating systems is related to memory-walking attacks. Exploiting this vulnerability can allow a malicious actor to gain increased privileges remotely...
SUSE CVE-2024-45024
In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: fix hugetlb vs. core-mm PT locking We recently made GUP's common page table walking code to also walk hugetlb VMAs without most hugetlb special-casing, preparing for the future of having less hugetlb-specific page tab...
The vulnerability of the WebTransport interface in Google Chrome and Microsoft Edge allows a hacker to execute arbitrary code.
The vulnerability of the WebTransport interface in Google Chrome and Microsoft Edge relates to memory-walking attacks. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially created HTML page...
The vulnerability of the VMware ESXi hypervisor, related to memory-walking, allows a attacker to trigger a service failure.
The vulnerability of the VMware ESXi hypervisor is related to reading beyond the memory boundary. Exploiting this vulnerability can allow an attacker to cause a service failure...
Siemens network software vulnerabilities related to memory-walking, which allow attackers to cause service failures.
The vulnerability of Siemens network software is related to reading beyond the memory boundary. Exploiting this vulnerability can allow an attacker to trigger a Basic Kernel Failure BSOD in Windows systems...
The vulnerability of Adobe InDesign’s computer font automation tool, related to memory-walking, allows attackers to gain unauthorized access to protected information and circumvent the ASLR protection mechanism.
The vulnerability of Adobe InDesign’s computer layout automation tool is related to memory-walking attacks. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information and bypass security mechanisms like ASLR...