3 matches found
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
Linux block and network PV device frontends do not zero memory regions before sharing them with the backend CVE-2022-26365, CVE-2022-33740. Additionally, the granularity of the grant table does not allow sharing smaller than a 4K page, resulting in unrelated data residing in the same 4K page as...
CVE-2026-48984
pam_usb for Linux (affected: v0.9.1 and earlier) has a memory handling flaw where xfree() frees buffers without zeroing contents, potentially leaving sensitive data (including one-time pad bytes) in freed heap memory. On systems with use-after-free or heap inspection capabilities, this could perm...
The vulnerability of the mbedtls_ssl_read function in TLS and SSL implementations allows a attacker to compromise data integrity.
The vulnerability of the mbedtlssslread function in TLS and SSL protocols is related to the absence of buffer zeroing. Exploiting this vulnerability allows a remote attacker to compromise data integrity...