33 matches found
AZL-59139 CVE-2024-58058 affecting package kernel for versions less than 5.15.180.1-1
In the Linux kernel, the following vulnerability has been resolved: ubifs: skip dumping tnc tree when zroot is null Clearing slab cache will free all znode in memory and make c-zroot.znode = NULL, then dumping tnc tree will access c-zroot.znode which cause null pointer dereference...
UBUNTU-CVE-2024-58058
In the Linux kernel, the following vulnerability has been resolved: ubifs: skip dumping tnc tree when zroot is null Clearing slab cache will free all znode in memory and make c-zroot.znode = NULL, then dumping tnc tree will access c-zroot.znode which cause null pointer dereference...
CVE-2024-58058 ubifs: skip dumping tnc tree when zroot is null
In the Linux kernel, the following vulnerability has been resolved: ubifs: skip dumping tnc tree when zroot is null Clearing slab cache will free all znode in memory and make c-zroot.znode = NULL, then dumping tnc tree will access c-zroot.znode which cause null pointer dereference...
SUSE CVE-2024-53171
In the Linux kernel, the following vulnerability has been resolved: ubifs: authentication: Fix use-after-free in ubifstncendcommit After an insertion in TNC, the tree might split and cause a node to change its znode-parent. A further deletion of other nodes in the tree which also could free the...
DEBIAN-CVE-2024-53171
In the Linux kernel, the following vulnerability has been resolved: ubifs: authentication: Fix use-after-free in ubifstncendcommit After an insertion in TNC, the tree might split and cause a node to change its znode-parent. A further deletion of other nodes in the tree which also could free the...
CVE-2024-53171 ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit
In the Linux kernel, the following vulnerability has been resolved: ubifs: authentication: Fix use-after-free in ubifstncendcommit After an insertion in TNC, the tree might split and cause a node to change its znode-parent. A further deletion of other nodes in the tree which also could free the...
Apache-ZooKeeper: Apache ZooKeeper: Information disclosure in persistent watcher handling
A flaw was found in the Apache Zookeeper package. Affected versions of this package are vulnerable to Information Exposure due to a missing ACL check in the handling of persistent watchers. An attacker can monitor child znodes by attaching a persistent watcher addWatch command to a parent node th...
GHSA-R978-9M6M-6GM6 Apache ZooKeeper vulnerable to information disclosure in persistent watchers handling
Information disclosure in persistent watchers handling in Apache ZooKeeper due to missing ACL check. It allows an attacker to monitor child znodes by attaching a persistent watcher addWatch command to a parent which the attacker has already access to. ZooKeeper server doesn't do ACL check when th...
DEBIAN-CVE-2024-23944
Information disclosure in persistent watchers handling in Apache ZooKeeper due to missing ACL check. It allows an attacker to monitor child znodes by attaching a persistent watcher addWatch command to a parent which the attacker has already access to. ZooKeeper server doesn't do ACL check when th...
CVE-2024-23944
Information disclosure in persistent watchers handling in Apache ZooKeeper due to missing ACL check. It allows an attacker to monitor child znodes by attaching a persistent watcher addWatch command to a parent which the attacker has already access to. ZooKeeper server doesn't do ACL check when th...
Apache Zookeeper 信息泄露漏洞
Apache Zookeeper is a software project of the U.S. Apache Apache Foundation, which is able to provide open source distributed configuration services, synchronization services, and naming registry for large-scale distributed computing. Apache ZooKeeper has an information disclosure vulnerability...
PT-2024-5776 · Apache +2 · Apache Zookeeper +2
Name of the Vulnerable Software and Affected Versions: Apache ZooKeeper versions prior to 3.9.2 Apache ZooKeeper versions prior to 3.8.4 Description: The issue is related to information disclosure in persistent watchers handling in Apache ZooKeeper due to missing ACL check. It allows an attacker ...
PT-2021-18153 · Apache · Apache Solr
Name of the Vulnerable Software and Affected Versions: Apache Solr versions prior to 8.8.2 Description: The issue arises when Apache Solr is started with specific configurations, such as the SaslZkACLProvider or VMParamsAllAndReadonlyDigestZkACLProvider, and there is no existing security.json...