90604 matches found
The vulnerability of the panfrost_ioctl_create_bo() function in the drivers/gpu/drm/panfrost/panfrost_drv.c driver for the Direct Rendering Infrastructure (DRI) component of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the panfrostioctlcreatebo function in the drivers/gpu/drm/panfrost/panfrostdrv.c driver for the Direct Rendering Infrastructure DRI component of the Linux operating system is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker...
The vulnerability of the mcp_smbus_write() function in the drivers/hid/hid-mcp2221.c module of the user interface subsystem driver for Linux operating systems allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the mcpsmbuswrite function in the drivers/hid/hid-mcp2221.c module of the Linux kernel’s input device subsystem driver relates to the copying of buffers without checking the size of the input data a classic buffer overflow attack. Exploiting this vulnerability could allow an...
The vulnerability of the bpf_timer CancelAndFree() function in the kernel/bpf/helpers.c module, which supports the BPF interpreter for the Linux operating system’s kernel, allows a hacker to trigger a service failure.
The vulnerability of the bpftimer CancelAndFree function in the kernel/bpf/helpers.c file, which is part of the Linux operating system’s BPF interpreter support, stems from the lack of a check on the returned value. Exploiting this vulnerability could allow an attacker to trigger a service failur...
The vulnerability of the v1/fetch-links interface of the software platform for creating user interfaces based on Language Models (LLMs) like Flowise allows a attacker to perform an SSRF attack.
The vulnerability of the v1/fetch-links interface of the software platform for creating user interfaces based on Language Models LLMs from Flowise is related to insufficient validation of requests at the server-side. Exploiting this vulnerability could allow a malicious actor to perform an SSRF...
The vulnerability of the TrueConf Server software method allows for remote triggering of a service failure by deleting any arbitrary file.
The vulnerability of the TrueConf Server software lies in errors related to the mechanism for handling relative paths to the directory. Exploiting this vulnerability could allow an attacker to cause a service failure by deleting any arbitrary file...
The vulnerability of the function rtw89_core_mlsr_switch() in the driver/net/wireless/realtek/rtw89/core.c file of the wireless adapter driver for the Realtek kernel in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the rtw89coremlsrswitch function in the drivers/net/wireless/realtek/rtw89/core.c file of the Realtek wireless adapter driver for the Linux operating system is related to buffer overflow attacks. Exploiting this vulnerability can allow an attacker to cause a system failure...
The vulnerability of the iiodebugfs_write_reg() function in the drivers/iio/industrialio-core.c file of various types of embedded sensors in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the iiodebugfswritereg function in the drivers/iio/industrialio-core.c file of various types of embedded sensors in the Linux operating system is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the ath11k_mac_op_set_bitrate_mask() function in the drivers/net/wireless/ath/ath11k/mac.c module of the Atheros/Qualcomm wireless adapter driver for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the ath11kmacopsetbitratemask function in the drivers/net/wireless/ath/ath11k/mac.c module of the Atheros/Qualcomm wireless adapter driver for the Linux operating system is related to synchronization errors. Exploiting this vulnerability can allow an attacker to cause a servi...
The vulnerability of the tas2563_save_calibration() function in the sound/hda/codecs/side-codecs/tas2781_hda_i2c.c module of the Linux kernel’s audio subsystem allows a hacker to trigger a service failure.
The vulnerability of the tas2563savecalibration function in the sound/hda/codecs/side-codecs/tas2781hdai2c.c module of the Linux kernel’s audio subsystem is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a system...
The vulnerability of the `dc_destruct()` function in the `drivers/gpu/drm/amd/display/dc/core/dc.c` file of the Direct Rendering Infrastructure (DRI) driver for AMD graphics cards in Linux operating systems allows a malicious actor to cause a system failure.
The vulnerability of the dcdestruct function in the drivers/gpu/drm/amd/display/dc/core/dc.c file of the Direct Rendering Infrastructure DRI driver for AMD graphics cards in Linux operating systems is related to the assignment of pointers. Exploiting this vulnerability could allow an attacker to...
The vulnerability of the format_show() function in the arch/powerpc/kernel/secvar-sysfs.c module, which is part of the PowerPC platform support for the Linux operating system, allows a hacker to trigger a service failure.
The vulnerability of the formatshow function in the arch/powerpc/kernel/secvar-sysfs.c module of the PowerPC platform in Linux operating systems is related to errors during the update of the reference counter. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the amdgpu_dpm_force_performance_level() function in the drivers/gpu/drm/amd/pm/amdgpu_dpm.c file of the Direct Rendering Infrastructure (DRI) driver for AMD graphics cards in Linux operating systems allows a hacker to cause a service failure.
The vulnerability of the amdgpudpmforceperformancelevel function in the drivers/gpu/drm/amd/pm/amdgpudpm.c file of the Direct Rendering Infrastructure DRI support driver for AMD graphics cards in Linux operating systems is related to pointer manipulation. Exploiting this vulnerability could allow...
The vulnerability of the vc_uniscr_alloc() function in the drivers/tty/vt/vt.c file of the virtual terminal driver for the Linux operating system allows a attacker to cause a service failure.
The vulnerability of the vcuniscralloc function in the drivers/tty/vt/vt.c file of the Linux kernel’s virtual terminal driver module is related to improper initialization. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the scx_locked_rq() function in the kernel/sched/ext.c module, which is part of the Linux kernel’s resource management subsystem, allows a hacker to trigger a service failure.
The vulnerability of the scxlockedrq function in the kernel/sched/ext.c module, which is part of the Linux kernel’s resource management subsystem, relates to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the signature-based mechanism for detecting malicious software in the ClamAV antivirus program allows a hacker to execute arbitrary code bypassing information protection mechanisms.
The vulnerability of the signature-based mechanism for detecting malicious software in the ClamAV antivirus program is related to the occurrence of interpretation conflicts when processing zip archive structures. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the iwl_op_mode_dvm_start() function in the main.c file of the drivers/net/wireless/intel/iwlwifi/dvm module of the Intel wireless networking driver for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the iwlopmodedvmstart function in the main.c file of the drivers/net/wireless/intel/iwlwifi/dvm module of the Intel wireless networking driver for the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability can allow an...
The vulnerabilities of the functions nvmetpci_epf_queue_response() and nvmetpci_epf_exec_iod_work() in the driver/nvme/target/pci-epf.c module of the Linux operating system’s NVME kernel allow a attacker to cause a service failure.
The vulnerabilities of the functions nvmetpciepfqueueresponse and nvmetpciepfexeciodwork in the drivers/nvme/target/pci-epf.c module of the NVME kernel of the Linux operating system are related to state management errors. Exploiting these vulnerabilities can allow an attacker to cause service...
The vulnerability in the capabilities_show() function of the drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dmdebugfs.c driver of the Direct Rendering Infrastructure (DRI) graphics card for the Linux operating system allows a attacker to cause a service failure.
The vulnerability in the capabilitiesshow function of the drivers/gpu/drm/amd/display/amdgpudm/amdgpudmdebugfs.c driver of the Direct Rendering Infrastructure DRI for AMD graphics cards in Linux operating systems is related to incorrect resource initialization. Exploiting this vulnerability can...
The vulnerability of the riscv_iommu_iova_to_phys() function in the drivers/iommu/riscv/iommu.c file of the Linux operating system’s IOMMU driver allows a hacker to cause a service failure.
The vulnerability of the riscviommuiovatophys function in the drivers/iommu/riscv/iommu.c file of the Linux kernel’s IOMMU driver is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability of the free_htab_elem() function in the kernel/bpf/hashtab.c module, which is part of the Linux operating system’s BPF interpreter support, allows a hacker to trigger a service failure.
The vulnerability of the freehtabelem function in the kernel/bpf/hashtab.c module, which is part of the Linux kernel’s BPF support for kernel-level instrumentation, relates to the use of uninitialized variables. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the btrfs_submit_compressed_read() function in the fs/btrfs/compression.c module of the btrfs file system in the Linux operating system allows a attacker to cause a service failure.
The vulnerability of the btrfssubmitcompressedread function in the fs/btrfs/compression.c file of the btrfs file system in the Linux kernel exposes confidential information. Exploiting this vulnerability could allow an attacker to cause service failures...
The vulnerability of the k230_pinctrl_parse_groups() function in the drivers/pinctrl/pinctrl-k230.c driver module for the PINCTRL output controllers in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the k230pinctrlparsegroups function in the drivers/pinctrl/pinctrl-k230.c driver for the PINCTRL output controllers in the Linux operating system is related to pointer aliasing. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the function alienware_wmax_wmi_init() in the Linux kernel’s module drivers/platform/x86/dell/alienware-wmi-wmax.c allows a hacker to trigger a service failure.
The vulnerability of the function alienwarewmaxwmiinit in the module drivers/platform/x86/dell/alienware-wmi-wmax.c of the Linux kernel is related to an infinite loop. Exploiting this vulnerability can allow a attacker to cause a service failure...
The vulnerability in the driver drivers/clk/spacemit/ccu_mix.h of the Samsung Exynos CPU driver for Linux operating systems allows a hacker to cause a system failure.
The vulnerability in the drivers/clk/spacemit/ccumix.h module of the Samsung Exynos CPU driver for Linux operating systems is related to improper initialization of resources. Exploiting this vulnerability can allow an attacker to cause system failures...
The vulnerabilities of the functions copy_verifier_state() and do_check() in the kernel/bpf/verifier.c module support the BPF interpreter of the Linux operating system. These vulnerabilities allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the functions copyverifierstate and docheck in the kernel/bpf/verifier.c module related to the BPF interpreter support in the Linux operating system’s kernel is associated with state management errors. Exploiting this vulnerability could allow an attacker to compromise the...
The vulnerability of the test_range{n}_rand{m}() functions in the security/landlock/id.c subsystem of the Linux operating system allows a attacker to cause a service failure.
The vulnerability of the testrangenrandm functions in the security/landlock/id.c subsystem of the Linux operating system’s kernel is related to insufficient input validation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the `coresight_find_activated_sysfs_sink()` function in the `drivers/hwtracing/coresight/coresight-sysfs.c` file of the Linux kernel allows a hacker to trigger a service failure.
The vulnerability of the coresightfindactivatedsysfssink function in the drivers/hwtracing/coresight/coresight-sysfs.c file of the Linux kernel is related to buffer overflow based on a stack. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the k230_pinctrl_probe() function in the drivers/pinctrl/pinctrl-k230.c driver module of the Linux operating system’s GPIO controller driver allows a hacker to cause a service failure.
The vulnerability of the k230pinctrlprobe function in the drivers/pinctrl/pinctrl-k230.c driver for Linux kernel’s PINCTRL output controllers relates to access to an uninitialized pointer. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability of the TrueConf Server software method, which allows for the execution of arbitrary code remotely
The vulnerability of the TrueConf Server software lies in errors in the mechanism for handling relative paths to the directory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability in the `drivers/net/team/team_core.c` module of the Linux operating system allows a hacker to cause a service failure.
The vulnerability in the drivers/net/team/teamcore.c module of the Linux operating system is related to insufficient locking of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the sca3300_trigger_handler() function in the drivers/iio/accel/sca3300.c module of various types of embedded sensors in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the sca3300triggerhandler function in the drivers/iio/accel/sca3300.c module of various types of embedded sensors in the Linux operating system is related to access to an uninitialized pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the send_ipi_data() function in the arch/loongarch/kvm/intc/ipi.c module, which is part of the LoongArch architecture support for the Linux operating system, allows a attacker to cause a service failure.
The vulnerability of the sendipidata function in the arch/loongarch/kvm/intc/ipi.c module, which is part of the LoongArch architecture support for the Linux operating system, relates to memory writing beyond the allocated buffer. Exploiting this vulnerability could allow an attacker to cause a...
The vulnerability of the md_stop() function in the drivers/md/md.c module of the multi-device (RAID and LVM) Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the mdstop function in the drivers/md/md.c module of the Linux device driver suite, which handles multiple devices such as RAID and LVM, is related to code errors. Exploiting this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and...
The vulnerability of the filesystems_freeze_callback() function in the fs/super.c file of the Linux kernel module allows a attacker to cause a service failure.
The vulnerability of the filesystemsfreezecallback function in the fs/super.c file of the Linux kernel module is related to the improper disabling or release of resources. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the Linux operating system’s crypto kernel component, which allows a hacker to trigger a service failure
The vulnerability of the Linux operating system’s crypto kernel component is related to the repeated release of memory. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the erofs component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the erofs component in the Linux operating system’s kernel is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the NFS component in Linux operating systems allows a hacker to trigger a service failure.
The vulnerability of the NFS component in Linux operating systems is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the seqiv_aead_encrypt() function in the crypto/seqiv.c module of the Linux kernel’s cryptographic subsystem allows a hacker to trigger a service failure.
The vulnerability of the seqivaeadencrypt function in the crypto/seqiv.c module of the Linux kernel’s cryptographic subsystem is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability in the __driver_attach() function of the drivers/base/dd.c module of the Linux kernel’s device drivers allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the driverattach function in the drivers/base/dd.c file of the Linux kernel’s device driver framework is related to the occurrence of mutual locking. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...
The vulnerabilities of the functions rxrpc_init_peer() and rxrpc_create_peer() in the net/rxrpc/peer_object.c module of the Linux operating system allow a hacker to cause a service failure.
The vulnerability of the functions rxrpcinitpeer and rxrpccreatepeer in the net/rxrpc/peerobject.c module of the Linux kernel is related to an incorrect interrupt call context. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the add_slc() function in the telnetd server of the inetutils network programming package allows a hacker to execute arbitrary code.
The vulnerability of the addslc function in the telnetd server of the inetutils network programming package involves copying buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending a specially crafted package...
The vulnerability of the io_init_req() function in the io_uring/io_uring.c module of the Linux kernel’s asynchronous input/output interface allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the ioinitreq function in the iouring/iouring.c module of the Linux kernel’s asynchronous input/output interface relates to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...
The vulnerability of the `rxrpc_service_prealloc_one()` function in the `net/rxrpc/call_accept.c` module, which supports RxRPC session sockets in the Linux operating system, allows a attacker to cause a service failure.
The vulnerability of the rxrpcservicepreallocone function in the net/rxrpc/callaccept.c module, which supports RxRPC session sockets in Linux kernel, is related to the distribution of resources without any restrictions or regulations. Exploiting this vulnerability could allow an attacker to cause...
The vulnerability of the shutdown_interception() function in the arch/x86/kvm/svm/svm.c module of the virtualization subsystem on the Linux kernel-based x86 platform allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the shutdowninterception function in the arch/x86/kvm/svm/svm.c module of the virtualization subsystem on the Linux kernel-based x86 platform is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the...
The vulnerability of the msm_ioctl_gem_submit() function in the drivers/gpu/drm/msm/msm_gem_submit.c file of the DRI support driver for the Linux operating system allows a attacker to cause a service failure.
The vulnerability of the msmioctlgemsubmit function in the drivers/gpu/drm/msm/msmgemsubmit.c module of the Direct Rendering Infrastructure DRI driver for the Linux operating system is related to integer overflow or cyclic shift vulnerabilities. Exploiting this vulnerability can allow an attacker...
The vulnerability of the nfs_sysfs_link_rpc_client() function in the fs/nfs/sysfs.c module, which is part of the Linux operating system’s NFS client support mechanism, allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the nfssysfslinkrpcclient function in the fs/nfs/sysfs.c module, which is part of the NFS client support in Linux kernel, involves copying buffers without checking their size—a classic buffer overflow attack. Exploiting this vulnerability could allow an attacker to compromise...
The vulnerability of the sienna_cichlid_set_ppt_funcs() function in the drivers/gpu/drm/amd/pm/swsmu/smu11/sienna_cichlid_ppt.c driver of the Direct Rendering Infrastructure (DRI) video card for Linux kernel allows a attacker to cause a system failure.
The vulnerability of the siennacichlidsetpptfuncs function in the drivers/gpu/drm/amd/pm/swsmu/smu11/siennacichlidppt.c driver of the Direct Rendering Infrastructure DRI for AMD graphics cards in Linux operating systems is related to improper memory release mechanisms memory leaks. Exploiting thi...
The vulnerability of the TrueConf Server software method allows a perpetrator to initiate requests on behalf of the server.
The vulnerability of the TrueConf Server software lies in the insufficient protection of service data. Exploiting this vulnerability allows a malicious actor to initiate requests on behalf of the server remotely...
The vulnerability of the chuwi_hi8_init() function in the drivers/platform/x86/x86-android-tablets.c driver for X86 devices in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the chuwihi8init function in the drivers/platform/x86/x86-android-tablets.c driver for X86 devices in the Linux operating system is related to incorrect initialization of the device. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the `btrfs_get_dev_args_from_path()` function in the `fs/btrfs/volumes.c` module of the btrfs file system in the Linux kernel allows a attacker to cause a service failure.
The vulnerability of the btrfsgetdevargsfrompath function in the fs/btrfs/volumes.c module of the btrfs file system in the Linux kernel is related to improper memory release memory leak. Exploiting this vulnerability could allow an attacker to cause a system failure...