90509 matches found
The vulnerability of the iavf_init_get_resources() function in the drivers/net/ethernet/intel/iavf/iavf_main.c file of the Intel Ethernet network adapter driver for the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the iavfinitgetresources function in the drivers/net/ethernet/intel/iavf/iavfmain.c file of the Intel Ethernet network adapter driver for the Linux operating system is related to the assignment of pointers. Exploiting this vulnerability could allow an attacker to compromise t...
The vulnerabilities of the functions srpt_refresh_port() and srpt_cm_req_recv() in the drivers/infiniband/ulp/srpt/ib_srpt.c module of the server and client driver for the Linux operating system’s RTRS kernel, which allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerabilities of the functions srptrefreshport and srptcmreqrecv in the drivers/infiniband/ulp/srpt/ibsrpt.c module of the server and client driver for the Linux operating system are related to the reutilization of previously released memory. Exploiting these vulnerabilities could allow an...
The vulnerability of the ntfs_read_mft() function in the fs/ntfs3/inode.c module of the NTFS file system in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the ntfsreadmft function in the fs/ntfs3/inode.c module of the NTFS file system in the Linux operating system is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...
The vulnerability of Firefox browsers, Firefox ESR, and Thunderbird email clients, Thunderbird ESR, is related to the execution of operations outside of the buffer in memory, allowing an attacker to execute arbitrary code.
The vulnerability in browsers Firefox, Firefox ESR, and email clients Thunderbird, Thunderbird ESR, is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the sco_recv_frame() function in the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the scorecvframe function in the Linux operating system is related to a violation of the count of links to pages displayed in memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected informati...
The vulnerability of the dpcm_get_be() function in the sound module/soc/soc-pcm.c file in Linux’s SoC-based operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the dpcmgetbe function in the sound/soc/soc-pcm.c module of the Linux operating system’s sound support library is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...
The vulnerability of the cm3605_probe() function in the drivers/iio/light/cm3605.c file of the Linux kernel’s sensor driver module allows a hacker to cause a service failure.
The vulnerability of the cm3605probe function in the drivers/iio/light/cm3605.c file of the Linux kernel’s sensor driver module is related to a memory leak. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability in the amdgpu_cs_vm_handling() function of the drivers/gpu/drm/amd/amdgpu/amdgpu_cs.c driver of the Direct Rendering Infrastructure (DRI) AMD GPU kernel for the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the amdgpucsvmhandling function in the drivers/gpu/drm/amd/amdgpu/amdgpucs.c file of the Direct Rendering Infrastructure DRI AMD GPU kernel for the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an...
The vulnerabilities of the functions get_phb_number() and pcibios_alloc_controller() in the arch/powerpc/kernel/pci-common.c module, which are part of the PowerPC platform support in the Linux operating system, allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerabilities of the functions getphbnumber and pcibiosalloccontroller in the arch/powerpc/kernel/pci-common.c module, which are part of the PowerPC platform support in the Linux operating system, are related to synchronization errors when using shared resources. Exploiting these...
The vulnerability of the s3fb_set_par() function in the drivers/video/fbdev/s3fb.c driver for kernel-based frame buffer devices in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the s3fbsetpar function in the drivers/video/fbdev/s3fb.c driver for kernel-based frame buffer devices in the Linux operating system is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker t...
The vulnerability of the ntfs_update_mftmirr() function in the fs/ntfs3/fsntfs.c module of the NTFS file system in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the ntfsupdatemftmirr function in the fs/ntfs3/fsntfs.c module of the NTFS 3 file system in the Linux operating system is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...
The vulnerability of the vdpasim_blk_dev_add() function in the drivers/vdpa/vdpa_sim/vdpa_sim_blk.c module of the vDPA device driver in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the vdpasimblkdevadd function in the drivers/vdpa/vdpasim/vdpasimblk.c module of the vDPA device driver in the Linux operating system is related to the pointer manipulation. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, an...
The vulnerability of the bgmac_dma_tx_add() function in the drivers/net/ethernet/broadcom/bgmac.c module of the Ethernet network adapter driver from Broadcom’s Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the bgmacdmatxadd function in the drivers/net/ethernet/broadcom/bgmac.c file of the Broadcom Ethernet network adapter driver for the Linux operating system is related to a buffer overflow based on a stack. Exploiting this vulnerability could allow an attacker to compromise th...
The vulnerability in the `intel_context_migrate_copy()` function of the `drivers/gpu/drm/i915/gt/intel_migrate.c` driver file of the Direct Rendering Infrastructure (DRI) kernel of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the intelcontextmigratecopy function in the drivers/gpu/drm/i915/gt/intelmigrate.c file of the Direct Rendering Infrastructure DRI driver in the Linux operating system is related to memory writing beyond the bounds of the allocated buffer. Exploiting this vulnerability could...
The vulnerabilities of the functions xp_init_dma_info() and xp_dma_map() in the net/xdp/xsk_buff_pool.c module of the Linux operating system allow attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerabilities of the functions xpinitdmainfo and xpdmamap in the net/xdp/xskbuffpool.c module of the Linux kernel are related to improper initialization. Exploiting these vulnerabilities can allow attackers to compromise the confidentiality, integrity, and accessibility of the protected...
The vulnerability of the topology_name_read() function in the sound/soc/intel/avs/pcm.c module of the Linux operating system’s SoC audio support module allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the topologynameread function in the sound/soc/intel/avs/pcm.c file, which is part of the Linux operating system’s audio support for SoC cores, stems from the copying of buffers without checking the size of the input data a classic buffer overflow attack. Exploiting this...
The vulnerability of the io_queue_iowq() function in the io_uring/io_uring.c module, an interface for asynchronous input/output in the Linux kernel, allows a attacker to cause a service failure.
The vulnerability of the ioqueueiowq function in the iouring/iouring.c module, a component of the Linux kernel’s asynchronous input/output interface, is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the pdata_quirks_init_clocks() function in the arch/arm/mach-omap2/pdata-quirks.c module, which is part of the ARM platform support for the Linux operating system, allows a hacker to trigger a service failure.
The vulnerability of the pdataquirksinitclocks function in the arch/arm/mach-omap2/pdata-quirks.c module, which is part of the ARM platform support for the Linux operating system, is related to errors during the update of the reference counter. Exploiting this vulnerability could allow an attacke...
The vulnerability of the oop4_sram_init() function in the arch/arm/mach-omap2/omap4-common.c file, which is part of the Linux operating system’s platform support module for ARM cores, allows a hacker to cause a service failure.
The vulnerability of the op4sraminit function in the arch/arm/mach-omap2/omap4-common.c file, which is part of the Linux operating system’s ARM platform support module, is related to errors during link time. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the Git-based software platform for collaborative code development on GitLab EE/CE involves incorrect input of configuration data, allowing an attacker to trigger a service failure.
The vulnerability of the Git-based software platform for collaborative code development in GitLab EE/CE relates to incorrect input of configuration data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures...
The vulnerabilities of the functions idpf_decfg_netdev() and idpf_init_task() in the driver module drivers/net/ethernet/intel/idpf/idpf_lib.c of the Intel Ethernet network adapter support driver for the Linux operating system allow a malicious actor to cause a service failure.
The vulnerabilities of the functions idpfdecfgnetdev and idpfinittask in the driver module drivers/net/ethernet/intel/idpf/idpflib.c of the Intel Ethernet network adapter support driver in the Linux operating system are related to the lack of code checks for function return values. Exploiting the...
The vulnerability of the `bnxt_start_xmit()` function in the `drivers/net/ethernet/broadcom/bnxt/bnxt.c` file of the Broadcom Ethernet network adapter driver for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the bnxtstartxmit function in the drivers/net/ethernet/broadcom/bnxt/bnxt.c file of the Broadcom Ethernet network adapter driver for the Linux operating system is related to memory writing beyond the bounds of the allocated buffer. Exploiting this vulnerability could allow an...
The vulnerability of the fsi_spi_transfer_data() function in the drivers/spi/spi-fsi.c module of the Linux kernel’s SPI device support driver allows a attacker to cause a service failure.
The vulnerability of the fsispitransferdata function in the drivers/spi/spi-fsi.c module of the Linux kernel’s SPI device support driver is related to state management errors. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability of the clone_fs_devices() function in the fs/btrfs/volumes.c module of the Linux file system’s kernel allows a attacker to cause a service failure.
The vulnerability of the clonefsdevices function in the fs/btrfs/volumes.c module of the Linux kernel’s filesystem is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the Google Chrome browser’s Media component, which allows a hacker to execute arbitrary code.
The vulnerability of the Google Chrome browser’s Media component is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
The vulnerability of the WebML component in the Google Chrome browser allows a hacker to gain unauthorized access to protected information.
The vulnerability of the WebML component in Google Chrome browser is related to buffer overflow in dynamic memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...
The vulnerability in the via_sd_probe() function of the drivers/mmc/host/via-sdmmc.c module of the MMC/SD/SDIO card driver for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the viasdprobe function in the drivers/mmc/host/via-sdmmc.c file of the MMC/SD/SDIO card driver for the Linux operating system is related to the lack of checking the return value. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of Firefox browsers, Firefox ESR, and Thunderbird email clients, Thunderbird ESR, is related to writing beyond the buffer limit, allowing an attacker to execute arbitrary code.
The vulnerability of Firefox browsers, Firefox ESR, and Thunderbird email clients, Thunderbird ESR, is related to writing beyond the buffer limit. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the ksmbd component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the ksmbd component in the Linux operating system’s kernel is related to improper handling of the absence of a specific element. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the Telnet service in the microprogramming software of Tenda AX12 wireless routers allows a hacker to enhance their privileges and gain full control over the device.
The vulnerability of the Telnet service provided by the microprogramming software of the Tenda AX12 wireless routers lies in the use of strictly encrypted authentication data. Exploiting this vulnerability allows a malicious actor to enhance their privileges and gain full control over the device...
The vulnerability in the `meson_drv_probe()` function of the drivers/gpu/drm/meson/meson_drv.c driver module of the Direct Rendering Infrastructure (DRI) kernel of the Linux operating system allows a malicious actor to cause a service failure.
The vulnerability of the mesondrvprobe function in the drivers/gpu/drm/meson/mesondrv.c driver module of the Direct Rendering Infrastructure DRI infrastructure of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability can allow an...
The vulnerability of the xhci_alloc_stream_info() function in the drivers/usb/host/xhci-mem.c module of the Linux operating system’s USB device driver allows a hacker to cause a service failure.
The vulnerability of the xhciallocstreaminfo function in the drivers/usb/host/xhci-mem.c module of the Linux device driver for USB devices is related to the failure to release resources after their useful period has ended. Exploiting this vulnerability could allow an attacker to cause service...
The vulnerabilities of the functions sti_dvo_connector_mode_valid() (drivers/gpu/drm/sti/sti_dvo.c), sti_hda_connector_mode_valid() (drivers/gpu/drm/sti/sti_hda.c), and sti_hdmi_connector_mode_valid() (drivers/gpu/drm/sti/sti_hdmi.c) in the Linux kernel’s Direct Rendering Infrastructure (DRI) driver libraries allow a hacker to cause a service failure.
The vulnerabilities of the functions stidvoconnectormodevalid drivers/gpu/drm/sti/stidvo.c, stihdaconnectormodevalid drivers/gpu/drm/sti/stihda.c, and stihdmiconnectormodevalid drivers/gpu/drm/sti/stihdmi.c in the Linux kernel’s Direct Rendering Infrastructure DRI driver libraries are related to...
The vulnerability of the hugetlbfs_parse_param() function in the fs/hugetlbfs/inode.c file of the Linux kernel file system allows a attacker to cause a service failure.
The vulnerability of the hugetlbfsparseparam function in the fs/hugetlbfs/inode.c file of the Linux kernel file system is related to the pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the ext4_rename() function in the fs/ext4/namei.c module of the Ext4 file system in the Linux operating system allows a attacker to cause a service failure.
The vulnerability of the ext4rename function in the fs/ext4/namei.c file of the Ext4 file system in the Linux operating system is related to the distribution of resources without any restrictions or regulations. Exploiting this vulnerability could allow a attacker to cause service failures...
The vulnerability of the Git-based software platform for collaborative code development in GitLab EE involves a lack of authentication, which allows attackers to disclose protected information.
The vulnerability of the Git-based software platform for collaborative code development in GitLab EE is related to the lack of authentication. Exploiting this vulnerability can allow a malicious actor, operating remotely, to expose the protected information...
The vulnerability of the io_uring_show_fdinfo() function in the io_uring/fdinfo.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the iouringshowfdinfo function in the iouring/fdinfo.c module of the Linux kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the...
The vulnerability of the btrfs_validate_super() function in the fs/btrfs/disk-io.c file of the Linux kernel’s file system allows a hacker to trigger a service failure.
The vulnerability of the btrfsvalidatesuper function in the fs/btrfs/disk-io.c file of the btrfs file system in Linux kernel is related to incorrect handling of error situations. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the msm_parse_deps() function in the drivers/gpu/drm/msm/msm_gem_submit.c file of the Direct Rendering Infrastructure (DRI) driver for the Linux operating system allows a attacker to cause a service failure.
The vulnerability of the msmparsedeps function in the drivers/gpu/drm/msm/msmgemsubmit.c file of the Direct Rendering Infrastructure DRI driver for the Linux operating system is related to improper handling of error situations. Exploiting this vulnerability may allow an attacker to cause a servic...
The vulnerability of the hclge_misc_irq_init() function in the drivers/net/ethernet/hisilicon/hns3/hns3pf/hclge_main.c file of the Ethernet adapter support driver for the Linux operating system allows a attacker to cause a service failure.
The vulnerability of the hclgemiscirqinit function in the drivers/net/ethernet/hisilicon/hns3/hns3pf/hclgemain.c file of the Ethernet adapter support driver for the Linux operating system is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an...
The vulnerability of the dw9714_probe() function in the drivers/media/i2c/dw9714.c file of the Linux kernel’s multimedia device support driver allows a attacker to cause a service failure.
The vulnerability of the dw9714probe function in the drivers/media/i2c/dw9714.c file of the Linux multimedia device support driver module is related to incorrect data processing. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of Google Chrome’s WebAudio component, which allows a hacker to disclose confidential information
The vulnerability of Google Chrome’s WebAudio component is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow a remote attacker to disclose confidential information...
The vulnerability of the `osdmap_apply_incremental()` function in the `net/ceph/osdmap.c` module of the Linux operating system allows a attacker to compromise the integrity of protected information or cause service failures.
The vulnerability of the osdmapapplyincremental function in the net/ceph/osdmap.c module of the Linux kernel is related to an uncontrolled, exploitable condition. Exploiting this vulnerability could allow a remote attacker to compromise the integrity of protected information or cause service...
The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine allows attackers to execute arbitrary code.
The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine is related to type mixing errors. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the `ib_del_sub_device_and_put()` function in the `drivers/infiniband/core/device.c` file of the Linux operating system’s InfiniBand driver module allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the ibdelsubdeviceandput function in the drivers/infiniband/core/device.c file of the Linux operating system’s InfiniBand driver is related to errors during link counters updates. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...
The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine allows attackers to execute arbitrary code.
The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine is related to deficiencies in access control in isolated environments. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine allows attackers to execute arbitrary code.
The vulnerability of the JavaScript script handler in Google Chrome’s V8 engine is related to deficiencies in access control in isolated environments. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the ocelot_set_aggr_pgids() function in the drivers/net/ethernet/mscc/ocelot.c file of the Microsemi network adapter driver for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the ocelotsetaggrpgids function in the drivers/net/ethernet/mscc/ocelot.c file of the Microsemi network adapter driver for the Linux operating system is related to the assignment of pointers. Exploiting this vulnerability could allow a remote attacker to cause a service failu...
The vulnerability of the TrueConf Server software lies in the lack of mechanisms to neutralize elements related to CSV files, allowing attackers to gain access and modify any arbitrary files.
The vulnerability of the TrueConf Server software is related to the lack of mechanisms for neutralizing elements in CSV files. Exploiting this vulnerability allows a malicious actor to gain access and modify any file at will...
The vulnerability of the Create/Edit Conference function in the TrueConf Server software allows a hacker to gain access to authentication data.
The vulnerability of the “Create/Edit Conference” function in the TrueConf Server software is related to the lack of measures taken to protect the structure of the web page during the processing of the “meetingRoom” parameter. Exploiting this vulnerability can allow a malicious actor, operating...