18095 matches found
Astra Linux – Vulnerability in Chromium
Insufficient policy enforcement in DevTools in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
Astra Linux – Vulnerability in Chromium
Inappropriate implementation in the iframe Sandbox in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to leak cross-origin data through a crafted HTML page...
Astra Linux – Vulnerability in Chromium
Insufficient data validation in Mojo in Google Chrome prior to version 105.0.5195.102 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page...
Astra Linux – Vulnerability in libhttp-daemon-perl
HTTP::Daemon is a simple HTTP server class written in Perl. Versions prior to 6.15 are vulnerable to a vulnerability that could potentially be exploited to gain privileged access to APIs or corrupt intermediate caches. It’s unclear how severe these risks are; most Perl-based applications are serv...
Astra Linux – Vulnerability in Linux 5.10, Linux
A issue was discovered in the Linux kernel through version 5.16-rc6. The function freechargerirq in drivers/power/supply/wm8350power.c lacks a free variable for WM8350IRQCHGFASTRDY, which is registered in wm8350initcharger...
Astra Linux – Vulnerability in Linux 5.10, Linux, Linux 5.15
A issue was discovered in the Linux kernel through version 5.16-rc6. The function malidpcrtcreset in the file drivers/gpu/drm/arm/malidpcrtc.c lacks a check on the return value of kzalloc. This could lead to a null pointer dereferencing...
Astra Linux – Vulnerability in Mariadb 10.3
It was discovered that MariaDB versions 10.2 to 10.7 contain a segmentation fault due to the component Exectimetracker::getloops/Filesorttracker::reportuse/filesort...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
A issue was discovered in the Linux kernel through version 5.18.9. A type confusion bug in nftseteleminit could be exploited by a local attacker to escalate privileges. This is a different vulnerability than CVE-2022-32250. The attacker can obtain root access, but must start with an unprivileged...
Astra Linux – Vulnerability in Mariadb 10.3
A issue was discovered in the Field::setdefault component of MariaDB Server v10.6 and earlier versions. This issue allows attackers to cause a Denial of Service DoS attack through specially crafted SQL statements...
Astra Linux – Vulnerability in bind9
By flooding the target resolver with queries that exploit this flaw, an attacker can significantly impair the resolver’s performance, effectively denying legitimate clients access to the DNS resolution service...
Astra Linux – Vulnerability in Node-EJS
The ejs also known as Embedded JavaScript templates package version 3.1.6 for Node.js enables server-side template injection in settings view optionsoutputFunctionName. This is parsed as an internal option, and the outputFunctionName option is overwritten with an arbitrary OS command which is...
Astra Linux – Vulnerability in maven-shared-utils
In Apache Maven’s maven-shared-utils before version 3.3.3, the Commandline class could generate double-quoted strings without proper escaping, allowing for shell injection attacks...
Astra Linux – Vulnerability in Git
Git is a revision control system. Before versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, when cloning a local source repository that contained symlinks through the filesystem, Git might create hardlinks to arbitrary user-readable files within the same filesystem as the target...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: smb: client: fixed UAF in smb2reconnectserver The UAF bug occurs because smb2reconnectserver accesses a session that is already being torn down by another thread that is executing cifsputsmbses. This can happen when a the client...
Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: s390/cio: Ensure that the copied buf is terminated with NUL characters. Currently, we allocate a kernel buffer of size lbuf and copy lbuf from userspace to that buffer. Later, we use the scanf function on this buffer, but we do n...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: do not free the NULL coalescing rule. If parsing fails, we can dereference a NULL pointer here...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: fpga: manager: Added a module owner pointer and used it to count the module’s references. The current implementation of the fpgamanager assumes that the low-level module registers a driver for the parent device and uses its...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: keys: Fixed the issue where the expiration time of a key was overwritten during instantiation, causing it to become permanent. This issue causes problems with DNS resolution, as the expiration time set by user-space is overwritte...
Astra Linux – Vulnerability in Zabbix
Within Zabbix, users have the ability to directly modify memory pointers in the JavaScript engine...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: mm/slab: makefreekfree should accept error pointers. Currently, if an automatically freed allocation is an error pointer, it can lead to a crash. An example of this is in the function wm831x gpiodbgshow. c 171 char label freekfre...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: mapletree: fixed the null pointer dereferencing in masemptyarearev. Currently, the code calls masstart followed by masdataend if the maple state is MASTART. However, masstart might return with the maplestate being NULL. This coul...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: drm/msm/a6xx: Avoid a nullptr dereference when the speedbin setting fails Calling a6xxdestroy before adrenogpuinit leads to a null pointer dereference on msmgpucleanup: platformsetdrvdatagpu-pdev, NULL; This occurs because...
Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: thermal/drivers/tsens: Fixed null pointer dereferencing. The function computeinterceptslope is called from calibrate8960 in tsens-8960.c. This call involves a parameter of type priv, p1, NULL, ONEPTCALIB, which leads to a null...
Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: epoll: Be more careful regarding the lifetime of file pointers. epoll may call vfspoll with a file pointer that may race with the last fput. This would cause fcount to decrease to zero. While the ep-mtx locking ensures that th...
Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1, and Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fixed deadlock issues with SRQ async events. The xalock function for the SRQ table may be required in AEQ. Use xastoreirq/xaeraseirq to avoid deadlock...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Modified the print level of CQE errors. Excessive printing may cause panic in the kernel. Change ibdeverr to ibdeverrratelimited, and adjust the printing level of CQE dumps to debug level...
Astra Linux – Vulnerability in WebKit2GTK
The issue was resolved through improved bounds checks. This issue is fixed in Safari 17.5, iOS 17.5, iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, visionOS 1.2, and watchOS 10.5. Processing maliciously crafted web content may lead to arbitrary code execution...
Astra Linux – Vulnerability in hdf5
HDF5 through 1.14.3 contains a heap buffer overflow in H5Aattrreleasetable, which results in the corruption of the instruction pointer and causes denial of service or potential code execution...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Ensure that the fwinfo is not null before using it. This resolves the warning regarding the dereference of a null return value reported by Coverity...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths When the HBA is undergoing a reset or is handling an errata event, NULL pointer dereference may cause crashes in routines such as lpfcsliflushiorings,...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: MGMT: Fixed a possible crash when calling mgmtindexremoved. If mgmtindexremoved is called while there are commands queued for cmdsync, it could lead to crashes, as shown in the following trace: 0x0000053D:...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: Media: i2c: ar0521: Use the CANsleep version of gpiodsetvalue If we use GPIO reset from the I2C port expander, we must use the CANsleep variant of GPIO functions. This was not done in the ar0521poweron/ar0521poweroff functions...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: In the net subsystem, for the dsa module, the microchip function has been updated to include a condition for scheduling the kszmibreadwork function. When the ksz module is installed or removed using the rmmod command, the kernel...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: net: encx24j600: check error in devmregmapinitencx24j600 devmregmapinit may return error which caused by like out of memory, this will results in null pointer dereference later when reading or writing register: general protection...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: ice: Fix for locking during Tx timestamp tracking cleanup The commit 4dd0d5c33c3e “ice: add lock around Tx timestamp tracker cleanup” added a lock around the Tx timestamp tracker process, which is used to clean up any remaining...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: userfaultfd: a race between writeprotect and exitmmap has been fixed. A race may occur when a process exits; its virtual memory addresses are removed by exitmmap, and at the same time, userfaultfdwriteprotect is called. This race...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: mm, slub: fixed the potential use-after-free in slabdebugfsfops. When sysfsslabadd fails, we should not call debugfsslabadd for s, because s will be freed soon. Moreover, slabdebugfsfops will use s later, leading to a...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: mm: khugepaged: skip huge page collapse for special files The read-only THP for file systems will collapse the THP for files that are opened in read-only mode and mapped with VMEXEC. The intended use case is to avoid TLB misses f...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: btrfs: fixed the re-dirty process of tree-log nodes There is a report of a transaction abort with the following script: !/bin/sh for d in sda sdb; do mkfs.btrfs -d single -m single -f /dev/$d done mount /dev/sda /mnt/test moun...
Astra Linux – Vulnerability in Linux 5.10
In ioidentitycow of iouring.c, there is a potential way to corrupt memory due to a use after free. This could lead to a local escalation of privileges, as the exploit requires system execution privileges. User interaction is not required for exploitation. Product: Android Versions: Android kernel...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
In binder.c, there is a potential way to corrupt memory due to a use after free. This could lead to a local escalation of privileges without the need for additional execution privileges. User interaction is not required for exploitation. Product: Android Versions: Android kernel Android ID:...
Astra Linux – Vulnerability in Jetty9
In Eclipse Jetty versions 9.4.0 through 9.4.46, and 10.0.0 through 10.0.9, as well as 11.0.0 through 11.0.9, the parsing of the authority segment of an http scheme URI causes the Jetty HttpURI class to incorrectly detect an invalid input as a hostname. This can lead to failures in a Proxy scenari...
Astra Linux – Vulnerability in Linux 5.10
In TBD of TBD, there is a possible way to corrupt kernel memory due to a use after free. This could lead to a local escalation of privileges without the need for additional execution privileges. User interaction is not required for exploitation. Product: Android. Versions: Android kernel. Android...
Astra Linux – Vulnerability in Rails
There is a code injection vulnerability in Active Storage version 5.2.0 and later, which could allow an attacker to execute code through imageprocessing arguments...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: scsi: scsidebug: Fixed the type of mint to avoid stack out-of-bounds situations. Changed mint to use the type “u32” instead of “int” to prevent stack out-of-bounds conditions. When mint uses the “int” type, values are...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: scsi: scsidebug: Do not call kcalloc if size argument is zero. If the size argument to kcalloc is zero, it returns ZEROSIZEPTR. Therefore, for the subsequent NULL pointer check to work on the returned pointer, kcalloc must not...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: mptcp: Fixed a deadlock issue in mptcppushpending. mptcppushPending may call mptcpFlushJoinList with a subflow socket lock held. If this call encounters mptcpSockOptSyncAll, then mptcpSockOptSync might attempt to lock the subflow...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: bpf: Fixed kernel address leakage in atomic fetch The change in commit 37086bfdc737 “bpf: Propagates stack bounds to registers in atomic operations with BPFFETCH” regarding the handling of checkmemaccess is flawed. This flaw allo...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: video: fbdev: cirrusfb: check pixclock to avoid divide by zero Perform a sanity check on the pixclock value to avoid division by zero. If the pixclock value is zero, the cirrusfb driver will round up pixclock to make the derived...
Astra Linux – Vulnerability in Composer
Composer is a dependency manager for the PHP programming language. Integrators who use Composer code to call VcsDriver::getFileContent may encounter a code injection vulnerability if the user can control the $file or $identifier arguments. This vulnerability is documented on packagist.org, where...