90509 matches found
The vulnerability of the jbd2_journal_dirtymetadata() function in the fs/jbd2/transaction.c file of the Linux kernel’s file system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the jbd2journaldirtymetadata function in the fs/jbd2/transaction.c module of the Linux kernel file system is related to the copying of buffers without checking the size of the input data a classic buffer overflow attack. Exploiting this vulnerability could allow an attacker t...
The vulnerability of the dx_probe() function in the fs/ext4/namei.c module of the Ext4 file system in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the dxprobe function in the fs/ext4/namei.c module of the Ext4 file system in the Linux operating system is related to the lack of code to verify the return value of this function. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...
The vulnerabilities of the functions list_version_get_needed() and __list_versions() in the drivers/md/dm-ioctl.c file of the Linux operating system’s RAID and LVM device driver module allow a hacker to cause a service failure.
The vulnerability of the listversiongetneeded and listversions functions in the drivers/md/dm-ioctl.c driver for multiple device drivers RAID and LVM in the Linux kernel is related to the distribution of resources without any restrictions or regulation. Exploiting this vulnerability could allow a...
The vulnerability of the diUnmount() function in the fs/jfs/jfs_imap.c module of the Linux file system’s JFS kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the diUnmount function in the fs/jfs/jfsimap.c module of the Linux file system is related to the repeated release of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected...
The vulnerability of software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B lies in their inadequate authentication procedures. This allows attackers to bypass existing security mechanisms and gain unauthorized access to protected information.
The vulnerabilities of the software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B are related to deficiencies in authentication procedures. Exploiting these vulnerabilities can allow attackers to bypass existing security...
The vulnerability of the Intel Trust Domain Extensions (TDX) microprogramming software for Intel processors allows attackers to enhance their privileges.
The vulnerability of the Intel Trust Domain Extensions TDX microprogramming software for Intel processors is related to synchronization errors when using common resources. Exploiting this vulnerability can allow attackers to increase their privileges...
The vulnerability of software platforms for developing and managing online stores like Magento Open Source, Adobe Commerce, and Adobe Commerce B2B lies in their lack of authentication mechanisms, which allow attackers to circumvent security restrictions.
The vulnerabilities of the software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B are related to deficiencies in authentication mechanisms. Exploiting these vulnerabilities can allow attackers to bypass security restriction...
The vulnerability of software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B lies in insufficient validation of requests on the server side. This allows attackers to read arbitrary files.
The vulnerability of software platforms for developing and managing online stores like Magento Open Source, Adobe Commerce, and Adobe Commerce B2B is related to insufficient validation of requests at the server side. Exploiting this vulnerability allows a malicious actor to read arbitrary files...
The vulnerability of Fortinet FortiWeb network firewalls, related to buffer overflow in the stack, allows attackers to bypass the stack and ASLR protections and execute arbitrary code.
The vulnerability of Fortinet FortiWeb web applications’ network firewalls is related to buffer overflows in the stack. Exploiting this vulnerability allows a malicious actor to bypass the stack and ASLR protections and execute arbitrary code using specially crafted HTTP requests...
The vulnerabilities of the functions rxe_qp_init_misc() and rxe_qp_init_req() in the driver module drivers/infiniband/sw/rxe/rxe_qp.c of the Linux operating system’s InfiniBand driver allow a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerabilities of the functions rxeqpinitmisc and rxeqpinitreq in the driver module drivers/infiniband/sw/rxe/rxeqp.c of the Linux operating system’s InfiniBand driver are related to improper initialization. Exploiting these vulnerabilities could allow an attacker to compromise the...
The vulnerability of the CUPS Filters printing package lies in the possibility of a write-off operation going beyond the buffer boundaries in memory, allowing an attacker to cause a service failure.
The vulnerability of the CUPS Filters printing package relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the add_slc() function in the telnetd server of the inetutils network programming package allows a hacker to execute arbitrary code.
The vulnerability of the addslc function in the telnetd server of the inetutils network programming package involves copying buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending a specially crafted package...
The vulnerability of the `security_read_state_kernel()` function in the `security/selinux/ss/services.c` module of the Linux kernel’s security subsystem allows a attacker to trigger a service failure.
The vulnerability of the securityreadstatekernel function in the security/selinux/ss/services.c module of the Linux kernel’s security subsystem is related to improper memory release memory leak. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the `iris_hfi_gen2_handle_system_error()` function in the `drivers/media/platform/qcom/iris/iris_hfi_gen2_response.c` driver for multimedia devices in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the irishfigen2handlesystemerror function in the drivers/media/platform/qcom/iris/irishfigen2response.c driver for multimedia devices in the Linux operating system is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service...
The vulnerability of the k230_pinctrl_probe() function in the drivers/pinctrl/pinctrl-k230.c driver module of the Linux operating system’s GPIO controller driver allows a hacker to cause a service failure.
The vulnerability of the k230pinctrlprobe function in the drivers/pinctrl/pinctrl-k230.c driver for Linux kernel’s PINCTRL output controllers relates to access to an uninitialized pointer. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerabilities of the functions smb_send_parent_lease_break_noti() and smb_lazy_parent_lease_break_close() in the fs/smb/server/oplock.c module of the SMB server support module for Linux operating systems allow a hacker to trigger a service failure.
The vulnerabilities of the functions smbsendparentleasebreaknoti and smblazyparentleasebreakclose in the fs/smb/server/oplock.c module of the SMB server support module of the Linux operating system are related to errors during link counters updates. Exploiting these vulnerabilities can allow an...
The vulnerability of the `__sev_platform_init_locked()` function in the drivers/crypto/ccp/sev-dev.c file of the Linux kernel cryptographic accelerator driver allows a attacker to cause a service failure.
The vulnerability of the sevplatforminitlocked function in the drivers/crypto/ccp/sev-dev.c file of the Linux kernel cryptographic accelerator driver module involves access to an uninitialized pointer. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability of the sca3300_trigger_handler() function in the drivers/iio/accel/sca3300.c module of various types of embedded sensors in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the sca3300triggerhandler function in the drivers/iio/accel/sca3300.c module of various types of embedded sensors in the Linux operating system is related to access to an uninitialized pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the amdgpu_dpm_force_performance_level() function in the drivers/gpu/drm/amd/pm/amdgpu_dpm.c file of the Direct Rendering Infrastructure (DRI) driver for AMD graphics cards in Linux operating systems allows a hacker to cause a service failure.
The vulnerability of the amdgpudpmforceperformancelevel function in the drivers/gpu/drm/amd/pm/amdgpudpm.c file of the Direct Rendering Infrastructure DRI support driver for AMD graphics cards in Linux operating systems is related to pointer manipulation. Exploiting this vulnerability could allow...
The vulnerability of the sienna_cichlid_set_ppt_funcs() function in the drivers/gpu/drm/amd/pm/swsmu/smu11/sienna_cichlid_ppt.c driver of the Direct Rendering Infrastructure (DRI) video card for Linux kernel allows a attacker to cause a system failure.
The vulnerability of the siennacichlidsetpptfuncs function in the drivers/gpu/drm/amd/pm/swsmu/smu11/siennacichlidppt.c driver of the Direct Rendering Infrastructure DRI for AMD graphics cards in Linux operating systems is related to improper memory release mechanisms memory leaks. Exploiting thi...
The vulnerability of the md_stop() function in the drivers/md/md.c module of the multi-device (RAID and LVM) Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the mdstop function in the drivers/md/md.c module of the Linux device driver suite, which handles multiple devices such as RAID and LVM, is related to code errors. Exploiting this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and...
The vulnerability of the s390 kernel component of the Linux operating system, which allows a hacker to trigger a service failure
The vulnerability of the s390 kernel component of the Linux operating system is related to the use of insufficiently random values. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the DRM/AMD/display components in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the DRM/amd/display components in the Linux operating system is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Linux operating system’s kernel crash component, which allows a hacker to trigger a service failure
The vulnerability of the Linux operating system’s kernel crash component is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the sched_ext component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the schedext component in the Linux operating system’s kernel is related to errors during thread blocking. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the drm/xe/guc component in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the drm/xe/guc component in the Linux operating system is related to an uncontrolled consumption of resources. Exploiting this vulnerability could allow a perpetrator to cause service failures...
The vulnerability of the ice component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the ice component in the Linux operating system’s kernel is related to memory initialization errors. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the console-based graphic editor ImageMagick, related to uncontrolled recursion, allows a hacker to trigger a service failure.
The vulnerability of the console-based graphic editor ImageMagick is related to uncontrolled recursion. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the f2fs_free_dic() function in the fs/f2fs/compress.c module of the F2FS file system in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the f2fsfreedic function in the fs/f2fs/compress.c module of the F2FS file system in the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability in the driver drivers/clk/spacemit/ccu_mix.h of the Samsung Exynos CPU driver for Linux operating systems allows a hacker to cause a system failure.
The vulnerability in the drivers/clk/spacemit/ccumix.h module of the Samsung Exynos CPU driver for Linux operating systems is related to improper initialization of resources. Exploiting this vulnerability can allow an attacker to cause system failures...
The vulnerability of the test_range{n}_rand{m}() functions in the security/landlock/id.c subsystem of the Linux operating system allows a attacker to cause a service failure.
The vulnerability of the testrangenrandm functions in the security/landlock/id.c subsystem of the Linux operating system’s kernel is related to insufficient input validation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerabilities of the functions copy_verifier_state() and do_check() in the kernel/bpf/verifier.c module support the BPF interpreter of the Linux operating system. These vulnerabilities allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the functions copyverifierstate and docheck in the kernel/bpf/verifier.c module related to the BPF interpreter support in the Linux operating system’s kernel is associated with state management errors. Exploiting this vulnerability could allow an attacker to compromise the...
The vulnerability of the msm_ioctl_gem_submit() function in the drivers/gpu/drm/msm/msm_gem_submit.c file of the DRI support driver for the Linux operating system allows a attacker to cause a service failure.
The vulnerability of the msmioctlgemsubmit function in the drivers/gpu/drm/msm/msmgemsubmit.c module of the Direct Rendering Infrastructure DRI driver for the Linux operating system is related to integer overflow or cyclic shift vulnerabilities. Exploiting this vulnerability can allow an attacker...
The vulnerability of the acpi_ns_walk_namespace() function in the drivers/acpi/acpica/nswalk.c driver for the ACPI driver (an extended configuration and power management interface) in the Linux kernel allows a malicious actor to cause a service failure.
The vulnerability of the acpinswalknamespace function in the drivers/acpi/acpica/nswalk.c driver of the ACPI driver an extended configuration and power management interface of the Linux kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a...
The vulnerability of the CUPS Filters printing package and the Libcupsfilters library for printing servers allows a attacker to cause a service failure.
The vulnerability of the CUPS Filters printing package and the Libcupsfilters printing library is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the DRM/Mediatek kernel components in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the DRM/Mediatek kernel components in the Linux operating system is related to insufficient blocking mechanisms. Exploiting this vulnerability could allow a hacker to trigger a service failure...
The vulnerability of the bpf component in the Linux operating system’s kernel allows a hacker to gain access to confidential data and also cause a service failure.
The vulnerability of the bpf component in the Linux operating system’s kernel is related to reading data beyond the allowed buffer limits. Exploiting this vulnerability can allow an attacker to access confidential data and also cause service interruptions...
The vulnerability of the erofs component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the erofs component in the Linux operating system’s kernel is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the nilfs2 component in the Linux operating system’s kernel, which allows a hacker to cause a service failure
The vulnerability of the nilfs2 component in the Linux operating system’s kernel is related to insufficient blocking mechanisms. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the io_uring/zctx component in the Linux operating system’s kernel allows a hacker to gain access to confidential data.
The vulnerability of the iouring/zctx component in Linux operating systems is related to improper validation of consistency in input data. Exploiting this vulnerability can allow an attacker to access confidential data...
The vulnerability of the visualization plugin for the Grafana-cubism-panel platform, which allows attackers to disclose and modify protected information.
The vulnerability of the visualization plugin for the Grafana Panel platform, which is used for monitoring and observation, relates to the lack of protective measures for the website structure. Exploiting this vulnerability can allow a malicious actor to disclose and modify protected information...
The vulnerability of the function rtw89_core_mlsr_switch() in the driver/net/wireless/realtek/rtw89/core.c file of the wireless adapter driver for the Realtek kernel in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the rtw89coremlsrswitch function in the drivers/net/wireless/realtek/rtw89/core.c file of the Realtek wireless adapter driver for the Linux operating system is related to buffer overflow attacks. Exploiting this vulnerability can allow an attacker to cause a system failure...
The vulnerability of the iwl_op_mode_dvm_start() function in the main.c file of the drivers/net/wireless/intel/iwlwifi/dvm module of the Intel wireless networking driver for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the iwlopmodedvmstart function in the main.c file of the drivers/net/wireless/intel/iwlwifi/dvm module of the Intel wireless networking driver for the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability can allow an...
The vulnerability of the ath11k_mac_op_set_bitrate_mask() function in the drivers/net/wireless/ath/ath11k/mac.c module of the Atheros/Qualcomm wireless adapter driver for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the ath11kmacopsetbitratemask function in the drivers/net/wireless/ath/ath11k/mac.c module of the Atheros/Qualcomm wireless adapter driver for the Linux operating system is related to synchronization errors. Exploiting this vulnerability can allow an attacker to cause a servi...
The vulnerability of the tas2563_save_calibration() function in the sound/hda/codecs/side-codecs/tas2781_hda_i2c.c module of the Linux kernel’s audio subsystem allows a hacker to trigger a service failure.
The vulnerability of the tas2563savecalibration function in the sound/hda/codecs/side-codecs/tas2781hdai2c.c module of the Linux kernel’s audio subsystem is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a system...
The vulnerability of the send_ipi_data() function in the arch/loongarch/kvm/intc/ipi.c module, which is part of the LoongArch architecture support for the Linux operating system, allows a attacker to cause a service failure.
The vulnerability of the sendipidata function in the arch/loongarch/kvm/intc/ipi.c module, which is part of the LoongArch architecture support for the Linux operating system, relates to memory writing beyond the allocated buffer. Exploiting this vulnerability could allow an attacker to cause a...
The vulnerability of the riscv_iommu_iova_to_phys() function in the drivers/iommu/riscv/iommu.c file of the Linux operating system’s IOMMU driver allows a hacker to cause a service failure.
The vulnerability of the riscviommuiovatophys function in the drivers/iommu/riscv/iommu.c file of the Linux kernel’s IOMMU driver is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability of the format_show() function in the arch/powerpc/kernel/secvar-sysfs.c module, which is part of the PowerPC platform support for the Linux operating system, allows a hacker to trigger a service failure.
The vulnerability of the formatshow function in the arch/powerpc/kernel/secvar-sysfs.c module of the PowerPC platform in Linux operating systems is related to errors during the update of the reference counter. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the blkcg_iolatency_done_bio() function in the block/blk-iolatency.c module, which supports the block-level kernel in the Linux operating system, allows a attacker to cause a service failure.
The vulnerability of the blkcgiolatencydonebio function in the block/blk-iolatency.c module, which supports the block-level kernel in the Linux operating system, is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the scx_locked_rq() function in the kernel/sched/ext.c module, which is part of the Linux kernel’s resource management subsystem, allows a hacker to trigger a service failure.
The vulnerability of the scxlockedrq function in the kernel/sched/ext.c module, which is part of the Linux kernel’s resource management subsystem, relates to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...