90509 matches found
The vulnerability of the copy_process() function in the kernel/fork.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the copyprocess function in the kernel/fork.c module of the Linux operating system is related to the distribution of resources without any restrictions or regulations. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...
The vulnerability of the mpi3mr_get_all_tgt_info() function in the drivers/scsi/mpi3mr/mpi3mr_app.c file of the Linux operating system’s SCSI device driver module allows a hacker to cause a service failure.
The vulnerability of the mpi3mrgetalltgtinfo function in the drivers/scsi/mpi3mr/mpi3mrapp.c file of the Linux SCSI device driver module is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the nfs4_ff_alloc_deviceid_node() function in the fs/nfs/flexfilelayout/flexfilelayoutdev.c module, which is part of the NFS client support in Linux kernel, allows a hacker to cause a service failure.
The vulnerability of the nfs4ffallocdeviceidnode function in the fs/nfs/flexfilelayout/flexfilelayoutdev.c module, which is part of the NFS client support in Linux operating systems, is related to improper memory release. Exploiting this vulnerability could allow a remote attacker to cause servic...
The vulnerability of the kvm_eiointcdestroy() function in the arch/loongarch/kvm/intc/eiointc.c module of the LoongArch architecture support module for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the kvmeiointcdestroy function in the arch/loongarch/kvm/intc/eiointc.c module of the LoongArch support module for the Linux operating system is related to improper memory release. Exploiting this vulnerability may allow a remote attacker to cause service interruptions...
The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers allows attackers to execute arbitrary code.
The vulnerability of JavaScript script handlers in Google Chrome and Microsoft Edge browsers is related to deficiencies in access control in isolated environments. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially created HTML page...
The vulnerability of the ANGLE library in Google Chrome and Microsoft Edge browsers allows a hacker to induce a service failure.
The vulnerability of the ANGLE library in Google Chrome and Microsoft Edge is related to overflowing buffers in dynamic memory. Exploiting this vulnerability can allow a malicious actor to cause service interruptions through a specially crafted HTML page...
The vulnerability of the cifs_create() function in the fs/cifs/dir.c module of the Linux kernel file system allows a hacker to cause a service failure.
The vulnerability of the cifscreate function in the fs/cifs/dir.c module of the Linux kernel file system is related to improper memory release. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the bridge_platform_create() function in the arch/mips/sgi-ip27/ip27-xtalk.c module, which supports the MIPS architecture of the Linux operating system, allows a attacker to cause a service failure.
The vulnerability of the bridgeplatformcreate function in the arch/mips/sgi-ip27/ip27-xtalk.c module, which is part of the Linux operating system’s MIPS architecture support, is related to improper memory release. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the __cld_pipe_inprogress_downcall() function in the fs/nfsd/nfs4recover.c module, which supports the Network File System in Linux kernels, allows a attacker to cause a service failure.
The vulnerability of the cldpipeinprogressdowncall function in the fs/nfsd/nfs4recover.c module, which is part of the NFS network file system support in Linux kernels, is related to improper memory release. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the crb_acpi_add() function in the drivers/char/tpm/tpm_crb.c file of the Linux operating system’s alphabetic device driver module allows a attacker to cause a service failure.
The vulnerability of the crbacpiadd function in the drivers/char/tpm/tpmcrb.c file of the Linux operating system’s alphabetic device driver suite is related to improper memory release. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the p9_tag_alloc() function in the net/9p/client.c module of the 9P protocol implementation in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the p9tagalloc function in the net/9p/client.c module of the 9P protocol implementation in the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity...
The vulnerability of the mgmt_init_hdev() function in the net/bluetooth/mgmt.c module of the Linux kernel’s Bluetooth subsystem allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the mgmtinithdev function in the net/bluetooth/mgmt.c module of the Linux kernel’s Bluetooth subsystem is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and...
The vulnerability of the WebRTC component in Google Chrome and Microsoft Edge browsers allows a hacker to induce a service failure.
The vulnerability of the WebRTC component in Google Chrome and Microsoft Edge relates to the possibility of using memory after it is freed. Exploiting this vulnerability could allow a remote attacker to cause a service failure through a specially created HTML page...
The vulnerability of the Google Chrome browser’s CSS component, which allows a hacker to trigger a service failure
The vulnerability of the Google Chrome browser’s CSS component is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow a malicious actor to cause a service failure through a specially created HTML page...
The vulnerability of the stmmac_adjust_time() function in the drivers/net/ethernet/stmicro/stmmac/stmmac_ptp.c file of the Ethernet adapter support driver from STMicroelectronics’ operating system Linux allows a hacker to cause a service failure.
The vulnerability of the stmmacadjusttime function in the drivers/net/ethernet/stmicro/stmmac/stmmacptp.c file of the Ethernet adapter support driver from STMicroelectronics’ operating system Linux is related to improper locking of resources. Exploiting this vulnerability could allow an attacker ...
The vulnerability of the pcf50633_adc_async_read() function in the drivers/mfd/pcf50633-adc.c module of the control device multifunctional devices driver for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the pcf50633adcasyncread function in the drivers/mfd/pcf50633-adc.c module of the Linux kernel’s multifunctional device controller driver relates to the lack of checking for the return value. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability of the `sdma_v4_0_hw_fini()` function in the driver/gpu/drm/amd/amdgpu/sdma_v4_0.c source code of the Direct Rendering Infrastructure (DRI) driver for AMD GPU cores in the Linux operating system allows a attacker to cause a service failure.
The vulnerability of the sdmav40hwfini function in the driver/gpu/drm/amd/amdgpu/sdmav40.c file of the Direct Rendering Infrastructure DRI AMD GPU kernel for the Linux operating system is related to the improper shutdown or release of resources. Exploiting this vulnerability can allow an attacker...
The vulnerability of the imx8mp_clocks_probe() function in the drivers/clk/imx/clk-imx8mp.c file of the Linux operating system’s Samsung Exynos processor controller driver allows a hacker to cause a service failure.
The vulnerability of the imx8mpclocksprobe function in the drivers/clk/imx/clk-imx8mp.c file of the Linux operating system’s Samsung Exynos processor controller driver is related to improper memory release. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability in the `float_to_int()` function of the drivers/hid/amd-sfh-hid/sfh1_1/amd_sfh_desc.c file of the Linux kernel subsystem for user interface devices’ driver, which allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the floattoint function in the drivers/hid/amd-sfh-hid/sfh11/amdsfhdesc.c file of the Linux kernel subsystem for user interface devices’ driver lies in the handling of buffer overflows. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...
The vulnerability of the function iwl_dbgfs_fw_info_seq_next() in the driver module drivers/net/wireless/intel/iwlwifi/fw/debugfs.c of the Intel wireless communication adapter driver for the Linux operating system, which allows a hacker to cause a service failure.
The vulnerability of the function iwldbgfsfwinfoseqnext in the driver module drivers/net/wireless/intel/iwlwifi/fw/debugfs.c of the Intel wireless networking driver for the Linux operating system is related to the failure to release resources after their useful life has ended. Exploiting this...
The vulnerability of Google Chrome’s WebGL component, which allows a hacker to trigger a service failure
The vulnerability of Google Chrome’s WebGL component relates to reading data beyond the permitted range of memory. Exploiting this vulnerability could allow a malicious actor to cause a service failure through a specially crafted HTML page...
The vulnerability of the sctpGenerateIftsn() function in the net/sctp/streamInterleave.c module of the Linux kernel allows a hacker to trigger a service failure.
The vulnerability of the sctpGenerateIftsn function in the net/sctp/streamInterleave.c module of the Linux kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the dccp_error() function in the net/netfilter/nf_conntrack_proto_dccp.c module of the netfilter component in the Linux operating system allows a attacker to cause a service failure.
The vulnerability of the dccperror function in the net/netfilter/nfconntrackprotodccp.c module of the netfilter component in the Linux operating system is related to buffer overflow based on a stack. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability in the _rtw_join_timeout_handler() function of the drivers/staging/rtl8723bs/core/rtw_mlme.c module allows a hacker to trigger a service failure. This vulnerability enables a hacker to exploit additional devices in the Linux operating system’s kernel support.
The vulnerability of the rtwjointimeouthandler function in the drivers/staging/rtl8723bs/core/rtwmlme.c module relates to the occurrence of mutual locking. Exploiting this vulnerability could allow an attacker to trigger a service failure...
The vulnerability of the imxrt1050_clocks_probe() function in the drivers/clk/imx/clk-imxrt1050.c file of the Linux operating system’s Samsung Exynos processor controller driver allows a hacker to cause a service failure.
The vulnerability of the imxrt1050clocksprobe function in the drivers/clk/imx/clk-imxrt1050.c file of the Linux operating system’s Samsung Exynos processor controller driver is related to improper memory release. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the hisi_inno_phy_probe() function in the drivers/phy/hisilicon/phy-hisi-inno-usb2.c file of the Linux kernel’s PHY driver allows a hacker to cause a service failure.
The vulnerability of the hisiinnophyprobe function in the drivers/phy/hisilicon/phy-hisi-inno-usb2.c file of the Linux kernel’s PHY driver is related to buffer overflow attacks. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability of the `ice_get_module_eeprom()` function in the `drivers/net/ethernet/intel/ice/ice_ethtool.c` file of the Intel Ethernet network adapter driver for the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the icegetmoduleeeprom function in the drivers/net/ethernet/intel/ice/iceethtool.c file of the Intel Ethernet network adapter driver for the Linux operating system is related to the copying of buffers without checking the size of the input data a classic buffer overflow attac...
The vulnerability of PDFium’s components in browsers like Google Chrome and Microsoft Edge allows a hacker to trigger a service failure.
The vulnerability of the PDFium component in Google Chrome and Microsoft Edge is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to cause a service failure through the use of a specially created PDF file...
The vulnerability of NextCloud Mail’s email client, which stems from the lack of protective measures for the website structure, allows attackers to execute arbitrary code.
The vulnerability of the NextCloud Mail email client relates to the lack of security measures for the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
The vulnerability of the xrep_revalidate_allocbt() function in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the xreprevalidateallocbt function in the Linux operating system is related to a pointer arithmetic error. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the mt7921_mcu_parse_response() function in the drivers/net/wireless/mediatek/mt76/mt7921/mcu.c file of the Mediatek wireless communication adapter driver for the Linux operating system allows a hacker to access protected information or cause a service failure.
The vulnerability of the mt7921mcuparseresponse function in the drivers/net/wireless/mediatek/mt76/mt7921/mcu.c file of the Mediatek wireless communication adapter driver for the Linux operating system is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to...
The vulnerability of the _nfs4_discover_trunking() function in the fs/nfs/nfs4proc.c module, which is part of the NFS client support in Linux kernel, allows a attacker to cause a service failure.
The vulnerability of the nfs4discovertrunking function in the fs/nfs/nfs4proc.c module, which is part of the NFS client support in Linux kernel, involves exposing confidential information. Exploiting this vulnerability could allow an attacker to cause service failures...
The vulnerability of the OpenLDAP package, related to reading beyond the buffer in memory, allows a attacker to cause a service failure.
The vulnerability of the OpenLDAP package relates to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the Avahi service detection system in local networks, related to the lack of use of the assert() function, allows a perpetrator to trigger a service failure.
The vulnerability of the Avahi service detection system in local networks is related to the lack of use of the assert function. Exploiting this vulnerability can allow a perpetrator to cause a service failure...
The vulnerability of the Avahi service detection system in local networks, related to the lack of use of the assert() function, allows a perpetrator to trigger a service failure.
The vulnerability of the Avahi service detection system in local networks is related to the lack of use of the assert function. Exploiting this vulnerability can allow a remote attacker to cause a service failure...
The vulnerability of the construct_alloc_key() function in the security/keys/request_key.c module of the Linux kernel’s key management component allows a attacker to cause a service failure.
The vulnerability of the constructallockey function in the security/keys/requestkey.c module of the Linux kernel’s key management component is related to insufficient comparison. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the ingress controller in the Kubernetes cluster ingress-nginx, related to insufficient checking of unusual or exceptional states, allows a attacker to trigger a service failure.
The vulnerability of the ingress controller in the Kubernetes cluster ingress-nginx is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability could allow a malicious actor to cause service failures...
The vulnerability of the ingress controller in the Kubernetes cluster ingress-nginx, related to unlimited resource allocation, allows a attacker to cause a service failure.
The vulnerability of the ingress controller in the Kubernetes cluster ingress-nginx is related to unlimited resource allocation. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...
The vulnerabilities of the functions mlx5e_tc_esw_init() and mlx5e_tc_esw_cleanup() in the driver/net/ethernet/mellanox/mlx5/core/en_tc.c file of the Mellanox Ethernet network adapter driver for the Linux operating system, which allow a malicious actor to cause service failures.
The vulnerabilities of the functions mlx5etceswinit and mlx5etceswcleanup in the driver module drivers/net/ethernet/mellanox/mlx5/core/entc.c of the Mellanox Ethernet network adapter driver for the Linux operating system are related to pointer manipulation. Exploiting these vulnerabilities could...
The vulnerability of the dependency manager for PHP Composer arises from insufficient elimination of special elements in the request, allowing a malicious actor to execute arbitrary code.
The vulnerability of the dependency manager for PHP Composer is related to insufficient elimination of special elements in the request. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Unbound DNS server, related to the loading of external, unreliable data alongside reliable data, allows a hacker to execute arbitrary code.
The vulnerability of the Unbound DNS server relates to the loading of external, unreliable data alongside reliable data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the command-line tool for working with Wheel files is related to incorrect path name restrictions, which allows attackers to escalate their privileges or execute arbitrary code.
The vulnerability of the command-line tool for working with Wheel files is related to an incorrect limitation on the path name to the directory. Exploiting this vulnerability can allow an attacker to increase their privileges or execute arbitrary code...
The vulnerability of the Avahi service detection system in local networks, related to uncontrolled resource consumption, allows a hacker to cause a service failure.
The vulnerability of the Avahi service detection system in local networks is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a hacker to cause a service failure...
The vulnerability of the Avahi service detection system in local networks arises from insufficient entropy in resource names, allowing attackers to gain unauthorized access to protected information.
The vulnerability of the Avahi service detection system in local networks is related to insufficient entropy in resource names. Exploiting this vulnerability allows a malicious actor to gain unauthorized access to protected information by sending specially crafted HTTPS requests...
The vulnerability of the Golang programming language, related to writing beyond buffer boundaries in memory, allows attackers to execute arbitrary code.
The vulnerability of the Go programming language is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the Wireshark traffic analyzer relates to writing beyond the buffer boundaries in memory, allowing a hacker to execute arbitrary code.
The vulnerability of the Wireshark traffic analyzer relates to writing beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Wireshark traffic analyzer lies in the execution of a loop with an unavailable exit condition, allowing a hacker to cause a service failure.
The vulnerability of the Wireshark traffic analyzer relates to the execution of a loop with an unavailable exit condition. Exploiting this vulnerability can allow a hacker to cause a service failure...
The vulnerability of the cpufreqpolicyalloc() function in the drivers/cpufreq/cpufreq.c module of the Linux kernel frequency scaling driver allows a attacker to cause a system failure.
The vulnerability of the cpufreqpolicyalloc function in the drivers/cpufreq/cpufreq.c module of the Linux kernel frequency scaling driver is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...
The vulnerability of the sgl_sge_nr_set() function in the drivers/crypto/hisilicon/zip/zip_crypto.c file of the Linux kernel cryptographic accelerator driver allows a malicious actor to gain unauthorized access to protected information.
The vulnerability of the sglsgenrset function in the drivers/crypto/hisilicon/zip/zipcrypto.c file of the Linux kernel’s cryptographic accelerator driver is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow a remote attacker to gain unauthorized access to...
The vulnerability of the sev_launch_measure() function in the arch/x86/kvm/svm/sev.c module of the virtualization subsystem on the x86 kernel of the Linux operating system allows a attacker to access protected information or cause service failures.
The vulnerability of the sevlaunchmeasure function in the arch/x86/kvm/svm/sev.c module of the virtualization subsystem on the Linux operating system’s x86 kernel is related to access to an uninitialized pointer. Exploiting this vulnerability could allow an attacker to gain access to protected...