21761 matches found
vsock: Fix transport_{g2h,h2g} TOCTOU
...
JasPer Image Color Space Conversion jas_image.c jas_image_chclrspc null pointer dereference
...
Timing sidechannel for P-256 on ppc64le in crypto/internal/nistec
...
rpmsg: virtio: Free driver_override when rpmsg_remove()
...
thermal: core: Free tzp copy along with the thermal zone
...
mtd: spinand: fix memory leak of ECC engine conf
...
NFSD: Limit the number of concurrent async COPY operations
...
Das U-Boot 2022.01 has a Buffer Overflow, a different issue than CVE-2022-30552.
...
Squid: denial of service in http digest authentication
...
In Perl before 5.38.2, S_parse_uniprop_string in regcomp.c can write to unallocated space because a property name associated with a \p{...} regular expression construct is mishandled. The earliest affected version is 5.30.0.
...
net: drop UFO packets in udp_rcv_segment()
...
i2c: lpi2c: Avoid calling clk_get_rate during transfer
...
lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage.
...
md/raid1: Fix stack memory use after return in raid1_reshape
...
Squid: dos against http and https
...
f2fs: fix to avoid out-of-boundary access in devs.path
...
drm/amdgpu: Fix possible NULL dereference in amdgpu_ras_query_error_status_helper()
...
net: usb: lan78xx: fix WARN in __netif_napi_del_locked on disconnect
...
CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS.
...
urllib3 does not control redirects in browsers and Node.js
...
smb: client: fix potential UAF in cifs_stats_proc_show()
...
MathJax version prior to version 2.7.4 contains a Cross Site Scripting (XSS) vulnerability
...
A Segmentation Fault issue discovered in in ieee_segment function in outieee.c in nasm 2.14.03 and 2.15 allows remote attackers to cause a denial of service via crafted assembly file.
...
scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths
...
vsock: Do not allow binding to VMADDR_PORT_ANY
...
net/sched: Abort __tc_modify_qdisc if parent class does not exist
...
i2c: qup: jump out of the loop in case of timeout
...
lib: objagg: Fix general protection fault
...
squashfs: harden sanity check in squashfs_read_xattr_id_table
...
Incorrect results returned from Rows.Scan in database/sql
...
mtk-sd: Prevent memory corruption from DMA map failure
...
can: netlink: can_changelink(): fix NULL pointer deref of struct can_priv::do_set_mode
...
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an nc_input_packet call.
...
Rustls: rustls network-reachable panic in `acceptor::accept`
...
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Thread Pooling). Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).
...
virtio-net: ensure the received length does not exceed allocated size
...
An issue was discovered in the tokio crate before 1.8.1 for Rust. Upon a JoinHandle::abort, a Task may be dropped in the wrong thread.
...
smb: client: fix potential UAF in cifs_dump_full_key()
...
wifi: mac80211: reject TDLS operations when station is not associated
...
Unexpected paths returned from LookPath in os/exec
...
A memory corruption issue was found in DPDK versions 17.05 and above
...
webpack-dev-server users' source code may be stolen when they access a malicious web site with non-Chromium based browser
...
During the worker lifecycle, a use-after-free condition could have occured, which could have led to a potentially exploitable crash. This vulnerability affects Firefox < 115.0.2, Firefox ESR < 115.0.2, and Thunderbird < 115.0.1.
...
In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attributeIn Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute
...
Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.
...
serial: sc16is7xx: convert from _raw_ to _noinc_ regmap functions for FIFO
...
gfs2: No more self recovery
...
fs: export anon_inode_make_secure_inode() and fix secretmem LSM bypass
...
Stack exhaustion in all Parse functions in go/parser
...
SMM IDT Privilege Escalation Vulnerability
...