90509 matches found
The vulnerability of the dsa_switch_teardown() function in the net/dsa/dsa2.c module exposes the security of processors with a distributed kernel architecture in Linux, allowing attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the dsaswitchteardown function in the net/dsa/dsa2.c module, which supports Linux kernel with distributed architecture switches, is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality...
The vulnerability of the mlx5_init_one_light() function in the drivers/net/ethernet/mellanox/mlx5/core/main.c source code of the Mellanox Ethernet adapter support driver for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the mlx5initonelight function in the drivers/net/ethernet/mellanox/mlx5/core/main.c source code of the Mellanox Ethernet adapter support driver for the Linux operating system is related to improper control of resource identifiers “resource injection”. Exploiting this...
The vulnerability of the nested_svm_vmexit() function in the arch/x86/kvm/svm/nested.c module of the virtualization subsystem on the Linux operating system’s x86 kernel allows a attacker to cause a service failure.
The vulnerability of the nestedsvmvmexit function in the arch/x86/kvm/svm/nested.c module of the virtualization subsystem on the Linux x86 kernel platform is related to the improper elimination of certain elements in the data sent to the client. Exploiting this vulnerability can allow an attacker...
The vulnerability of the `bond_ethtool_get_ts_info()` function in the `drivers/net/bonding/bond_main.c` file of the Linux kernel’s network device driver module allows a hacker to induce a service failure.
The vulnerability of the bondethtoolgettsinfo function in the drivers/net/bonding/bondmain.c file of the Linux kernel’s network device driver module is related to a buffer overflow based on a stack. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability of the ipcm_init_sk() function in the include/net/ip.h module of the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the ipcminitsk function in the include/net/ip.h module of the Linux operating system involves the disclosure of confidential information. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the genpdremove() function in the drivers/base/power/domain.c file of the Linux kernel driver for support of bus devices allows a hacker to cause a service failure.
The vulnerability of the genpdremove function in the drivers/base/power/domain.c file of the Linux kernel’s bus support driver module is related to a buffer overflow based on a stack. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability in the `fake_get_pages()` function of the `drivers/gpu/drm/i915/selftests/i915_gem_gtt.c` file, a driver for the Direct Rendering Infrastructure (DRI) of the Linux operating system, allows a hacker to induce a service failure.
The vulnerability of the fakegetpages function in the drivers/gpu/drm/i915/selftests/i915gemgtt.c file of the Direct Rendering Infrastructure DRI driver for the Linux operating system is related to improper memory release. Exploiting this vulnerability could allow an attacker to cause a system...
The vulnerability of the test_firmware_init() function in the lib/test_firmware.c module of the Linux kernel allows a hacker to cause a system failure.
The vulnerability of the testfirmwareinit function in the lib/testfirmware.c module of the Linux kernel is related to improper memory release. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability of the devm_clk_notifier_register() function in the drivers/clk/clk.c module of the timer driver for Samsung Exynos CPUs with Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the devmclknotifierregister function in the drivers/clk/clk.c module of the Samsung Exynos CPU driver for Linux operating systems is related to improper memory release. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability of the `init_bios_attributes()` function in the drivers/platform/x86/dell/dell-wmi-sysman/sysman.c driver for X86 kernel-based Linux devices allows a hacker to cause a service failure.
The vulnerability of the initbiosattributes function in the drivers/platform/x86/dell/dell-wmi-sysman/sysman.c file of the Linux kernel device driver for X86 processors is related to errors during link update. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the hda_component_manager_init() function in the sound/hda/codecs/side-codecs/hda_component.c file of the Linux kernel sound subsystem allows a attacker to cause a service failure.
The vulnerability of the hdacomponentmanagerinit function in the sound/hda/codecs/side-codecs/hdacomponent.c file of the Linux kernel sound subsystem is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the cxl_feature_info() function in the drivers/cxl/core/features.c module of the CXL device driver framework for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the cxlfeatureinfo function in the drivers/cxl/core/features.c module of the CXL device driver framework for the Linux operating system is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the fscache_perform_lookup() function in the fs/fscache/cookie.c module of the Linux kernel’s file system allows a hacker to cause a service failure.
The vulnerability of the fscacheperformlookup function in the fs/fscache/cookie.c module of the Linux kernel’s file system support module is related to state management errors. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the build_insn() function in the arch/loongarch/net/bpf_jit.c module of the LoongArch architecture support for the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the buildinsn function in the arch/loongarch/net/bpfjit.c module of the LoongArch architecture support for the Linux operating system is related to the lack of checking the return value. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the amd_rp_pme_resume() function in the arch/x86/pci/fixup.c module, which is part of the Linux operating system’s platform support for x86 kernels, allows a hacker to trigger a service failure.
The vulnerability of the amdrppmeresume function in the arch/x86/pci/fixup.c module of the Linux operating system’s platform involves an infinite wait loop for resources. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the create_log_context() function in the drivers/md/dm-log.c file of the support for multiple device types (RAID and LVM) in the Linux kernel allows a attacker to cause a service failure.
The vulnerability of the createlogcontext function in the drivers/md/dm-log.c file of the support for multiple device types RAID and LVM in the Linux kernel is related to insufficient data authentication checks. Exploiting this vulnerability could allow an attacker to cause service failures...
The vulnerability of the io_get_ext_arg_reg() function in the io_uring module of the Linux kernel’s asynchronous input/output interface allows a attacker to cause a service failure.
The vulnerability of the iogetextargreg function in the iouring module of the Linux kernel’s asynchronous input/output interface is related to improper memory release. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the afs_getattr() function in the fs/afs/inode.c file of the Andrew File System kernel for Linux operating systems allows a hacker to cause a service failure.
The vulnerability of the afsgetattr function in the fs/afs/inode.c file of the Andrew File System kernel for Linux operating systems is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the in6_dump_addrs() function in the net/ipv6/addrconf.c module of the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the in6dumpaddrs function in the net/ipv6/addrconf.c module of the Linux operating system is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability in the function irisdestroy_internal_buffers() of the drivers/media/platform/qcom/iris/iris_buffer.c driver for multimedia devices in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the irisdestroyinternalbuffers function in the drivers/media/platform/qcom/iris/irisbuffer.c file, a driver for multimedia devices in the Linux kernel, is related to improper memory release. Exploiting this vulnerability could allow an attacker to cause service failures...
The vulnerability of the tpm_read_log_acpi() function in the drivers/char/tpm/eventlog/acpi.c file of the Linux operating system’s TPM-based character device driver allows a attacker to cause a service failure.
The vulnerability of the tpmreadlogacpi function in the drivers/char/tpm/eventlog/acpi.c file of the Linux operating system’s TPM-enabled character device driver is related to improper memory release. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the do_csum() function in the arch/arm64/lib/csum.c module, which is part of the ARM 64-bit kernel support for the Linux operating system, allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the docsum function in the arch/arm64/lib/csum.c module, which is part of the ARM 64-bit kernel support for the Linux operating system, involves reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...
The vulnerability of the lpfc_update_cmf_cmpl() function in the drivers/scsi/lpfc/lpfc_scsi.c module of the Linux operating system’s SCSI device support driver allows a attacker to cause a service failure.
The vulnerability of the lpfcupdatecmfcmpl function in the drivers/scsi/lpfc/lpfcscsi.c file of the Linux SCSI device support driver is related to a buffer overflow based on a stack. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability of the elf_validity_check() function in the kernel/module.c module of the Linux operating system allows a attacker to access protected information or cause a service failure.
The vulnerability of the elfvaliditycheck function in the kernel/module.c module of the Linux operating system is related to the execution of operations outside of memory buffers. Exploitation of this vulnerability could allow an attacker to access protected information or cause service failures...
The vulnerability of the dwmac4_map_mtl_dma() function in the drivers/net/ethernet/stmicro/stmmac/dwmac4_core.c file of the Ethernet adapter support driver from STMicroelectronics’ Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the dwmac4mapmtldma function in the drivers/net/ethernet/stmicro/stmmac/dwmac4core.c file of the Ethernet driver module from STMicroelectronics’ operating system Linux is related to the occurrence of operations outside the buffer boundaries in memory. Exploiting this...
The vulnerability of the amdgpu_amdkfd_gpuvm_import_dmabuf() function in the drivers/gpu/drm/amd/amdgpu/amdkfd_gpuvm.c driver module of the Direct Rendering Infrastructure (DRI) for AMD GPU cores in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the amdgpuamdkfdgpuvmimportdmabuf function in the drivers/gpu/drm/amd/amdgpu/amdgpuamdkfdgpuvm.c file of the Direct Rendering Infrastructure DRI driver for AMD GPU cores in the Linux operating system is related to improper memory release. Exploiting this vulnerability can all...
The vulnerability of the _samsung_clk_register_pll() function in the drivers/clk/samsung/clk-pll.c file of the Samsung Exynos CPU frequency controller driver for Linux operating systems allows a hacker to cause a system failure.
The vulnerability of the samsungclkregisterpll function in the drivers/clk/samsung/clk-pll.c file of the Samsung Exynos CPU frequency controller driver in the Linux operating system is related to improper memory release. Exploiting this vulnerability could allow an attacker to cause a system...
The vulnerability of the ppr_notifier() function in the drivers/iommu/amd/iommu_v2.c file of the Linux operating system’s IOMMU driver allows a hacker to trigger a service failure.
The vulnerability of the pprnotifier function in the drivers/iommu/amd/iommuv2.c file of the Linux IOMMU driver module is related to errors during link generation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the sdma_clean() function in the drivers/infiniband/hw/hfi1/sdma.c module of the Linux operating system’s kernel driver allows a malicious actor to cause a service failure.
The vulnerability of the sdmaclean function in the drivers/infiniband/hw/hfi1/sdma.c module of the Linux operating system’s InfiniBand support driver is related to incorrect initialization of resources. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the decrypt_internal() function in the net/tls/tls_sw.c module of the TLS protocol implementation in Linux kernel allows a attacker to access protected information or cause service failure.
The vulnerability of the decryptinternal function in the net/tls/tlssw.c module of the TLS protocol implementation in Linux’s kernel involves a lack of checking for the return value. Exploiting this vulnerability could allow an attacker to access protected information or cause service failures...
The vulnerability of the mlx5_esw_vport_disable() function in the drivers/net/ethernet/mellanox/mlx5/core/eswitch.c file of the Mellanox Ethernet network adapter driver for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the mlx5eswvportdisable function in the drivers/net/ethernet/mellanox/mlx5/core/eswitch.c file of the Mellanox Ethernet network adapter driver for the Linux operating system is related to improper initialization. Exploiting this vulnerability could allow an attacker to cause ...
The vulnerability of the mcp2221_hid_unregister() function in the driver module/hid/hid-mcp2221.c code of the Linux kernel’s input device subsystem allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the mcp2221hidunregister function in the driver module/hid/hid-mcp2221.c of the Linux kernel’s input device subsystem relates to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, a...
The vulnerability of the fake_init() function in the drivers/staging/vme_user/vme_fake.c module allows a hacker to trigger a service failure in the Linux operating system’s kernel-based additional devices.
The vulnerability of the fakeinit function in the drivers/staging/vmeuser/vmefake.c module, which supports additional devices in the Linux operating system’s kernel, is related to the pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the mt7921_acpi_read() function in the drivers/net/wireless/mediatek/mt76/mt7921/acpi_sar.c file of the Mediatek wireless adapter driver for the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the mt7921acpiread function in the drivers/net/wireless/mediatek/mt76/mt7921/acpisar.c file of the Mediatek wireless adapter driver driver for the Linux operating system is related to the swapping of pointers. Exploiting this vulnerability could allow an attacker to compromis...
The vulnerability of the fbcon_do_set_font() function in the drivers/video/fbdev/core/fbcon.c driver for kernel-based frame buffer devices in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the fbcondosetfont function in the drivers/video/fbdev/core/fbcon.c driver for kernel-based graphics buffer devices in the Linux operating system is related to improper memory release. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...
The vulnerability of the ocelot_stats_deinit() function in the drivers/net/ethernet/mscc/ocelot_stats.c module of the Microsemi network adapter driver for the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the ocelotstatsdeinit function in the drivers/net/ethernet/mscc/ocelotstats.c module of the Microsemi network adapter driver for the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to...
The vulnerability of the error_state_read() function in the drivers/gpu/drm/i915/i915_sysfs.c file of the driver module allows a attacker to cause a service failure.
The vulnerability of the errorstateread function in the drivers/gpu/drm/i915/i915sysfs.c driver, a part of the Linux kernel’s Direct Rendering Infrastructure DRI support module, relates to the occurrence of operations outside the memory buffer boundaries. Exploiting this vulnerability could allow...
The vulnerability of the be_cmd_read_port_transceiver_data() function in the drivers/net/ethernet/emulex/benet/be_cmds.c module of the Linux kernel’s Ethernet adapter support driver allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the becmdreadporttransceiverdata function in the drivers/net/ethernet/emulex/benet/becmds.c file, a driver for supporting Ethernet network adapters in the Linux operating system, stems from the copying of buffers without checking the size of the input data a classic buffer...
The vulnerability in the nvidia_setup_i2c_bus() function of the drivers/video/fbdev/nvidia/nv_i2c.c driver module allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information within the Linux operating system’s kernel video buffer device.
The vulnerability of the nvidiasetupi2cbus function in the drivers/video/fbdev/nvidia/nvi2c.c driver module relates to the copying of buffers without checking the size of the input data a classic buffer overflow attack. Exploiting this vulnerability could allow an attacker to compromise the...
The vulnerability of the Digital Credentials API component in browsers Google Chrome and Microsoft Edge allows a perpetrator to trigger a service failure.
The vulnerability of the Digital Credentials API for Google Chrome and Microsoft Edge browsers relates to the possibility of using memory after it is freed. Exploiting this vulnerability could allow a malicious actor to cause a service failure through a specially created HTML page...
The vulnerability of the ANGLE library in Google Chrome and Microsoft Edge browsers allows a hacker to induce a service failure.
The vulnerability of the ANGLE library in Google Chrome and Microsoft Edge is related to overflowing buffers in dynamic memory. Exploiting this vulnerability can allow a malicious actor to cause service interruptions through a specially crafted HTML page...
The vulnerability of NextCloud Mail’s email client, which stems from the lack of protective measures for the website structure, allows attackers to execute arbitrary code.
The vulnerability of the NextCloud Mail email client relates to the lack of security measures for the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability of the ingress controller in the Kubernetes cluster ingress-nginx, related to unlimited resource allocation, allows a attacker to cause a service failure.
The vulnerability of the ingress controller in the Kubernetes cluster ingress-nginx is related to unlimited resource allocation. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...
The vulnerability of the Wireshark traffic analyzer relates to writing beyond the buffer boundaries in memory, allowing a hacker to execute arbitrary code.
The vulnerability of the Wireshark traffic analyzer relates to writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the OpenSearch software package, related to unregulated recursion, allows a hacker to trigger a service failure.
The vulnerability of the OpenSearch software package is related to an uncontrolled recursion. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause service failures...
The vulnerability of the MP4Box packaging module of the GPAC multimedia platform, related to the execution of operations beyond the buffer boundaries in memory, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the MP4Box packaging module of the GPAC multimedia platform is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...
The vulnerability of the mongo-c-driver library, related to the pointer dereferencing when its validity period has expired, allows attackers to trigger a service failure.
The vulnerability of the mongo-c-driver library lies in the dereferencing of a pointer with an expired lifetime. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the wcurl command-line utility arises from incorrect restrictions on the path name to the restricted access catalog, allowing an intruder to gain unauthorized access to protected information.
The vulnerability of the wcurl command-line utility is related to an incorrect limitation on the path name to the restricted-access directory. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...
The vulnerability of the libxml2 library, related to uncontrolled resource consumption, allows attackers to cause service failures.
The vulnerability of the libxml2 library is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a attacker to cause a service failure...
The vulnerability of the libxml2 library, related to uncontrolled recursion, allows attackers to trigger a service failure.
The vulnerability of the libxml2 library is related to uncontrolled recursion. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause service failures...