21762 matches found
exec: don't WARN for racy path_noexec check
...
net: fix data-races around sk->sk_forward_alloc
...
drm/amd/display: Add NULL check for function pointer in dcn20_set_output_transfer_func
...
mruby nregs codegen.c scope_new heap-based overflow
...
Output of "go env" does not sanitize values in cmd/go
...
f2fs: fix KMSAN uninit-value in extent_info usage
...
ksmbd: fix overflow in dacloffset bounds check
...
drm/amd/display: Add NULL check for function pointer in dcn32_set_output_transfer_func
...
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_lookup_reply.
...
It was found that Lynx doesn't parse the authority component of the URL correctly
...
Lynx WWW client allows a remote attacker to specify command-line parameters which Lynx uses when calling external programs to handle certain protocols, e.g. telnet.
...
net/sched: act_mirred: don't override retval if we already lost the skb
...
bpf: support non-r10 register spill/fill to/from stack in precision tracking
...
drm/amd/display: fix incorrect mpc_combine array size
...
Incomplete fix for CVE-2024-1929
...
mm: revert "mm: shmem: fix data-race in shmem_getattr()"
...
Squashfs: check the inode number is not the invalid value of zero
...
Bluetooth: af_bluetooth: Fix deadlock
...
phy: realtek: usb: fix NULL deref in rtk_usb3phy_probe
...
No Limit on Number of Open Sessions / Bad Session Close Behaviour
...
bpf: Reject narrower access to pointer ctx fields
...
ksmbd: fix slab-out-of-bounds in smb_strndup_from_utf16()
...
An issue was discovered in Mbed TLS before 2.24.0 (and before 2.16.8 LTS and before 2.7.17 LTS). There is missing zeroization of plaintext buffers in mbedtls_ssl_read to erase unused application data from memory.
...
Local Root Exploit via Configuration Dictionary
...
cachefiles: Set the max subreq size for cache writes to MAX_RW_COUNT
...
Git before 2.10.5, 2.11.x before 2.11.4, 2.12.x before 2.12.5, 2.13.x before 2.13.6, and 2.14.x before 2.14.2 uses unsafe Perl scripts to support subcommands such as cvsserver, which allows attackers to execute arbitrary OS commands via shell metacharacters in a module name. The vulnerable code is reachable via git-shell even without CVS support.
...
arm64: set UXN on swapper page tables
...
net/niu: Niu requires MSIX ENTRY_DATA fields touch before entry reads
...
An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_readlink_reply.
...
workqueue: Put the pwq after detaching the rescuer from the pool
...
ASoC: sma1307: Add NULL check in sma1307_setting_loaded()
...
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
...
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with unvalidated length at nfs_readlink_reply in the "else" block after calculating the new path length.
...
sfc/siena: fix null pointer dereference in efx_hard_start_xmit
...
net: dsa: b53: do not enable EEE on bcm63xx
...
dlm: prevent NPD when writing a positive value to event_done
...
crypto: iaa - Fix nr_cpus < nr_iaa case
...
wifi: iwlwifi: don't warn when if there is a FW error
...
kasan: avoid sleepable page allocation from atomic context
...
Rust-openssl: rust-openssl use-after-free in `md::fetch` and `cipher::fetch`
...
btrfs: exit after state insertion failure at btrfs_convert_extent_bit()
...
exfat: fix out-of-bounds access of directory entries
...
block: mark GFP_NOIO around sysfs ->store()
...
Rejected reason: Maintainers have included reasons at https://gitlab.gnome.org/GNOME/libsoup/-/issues/465
...
drm/amd/display: Fix array-index-out-of-bounds in dcn35_clkmgr
...
wifi: ath12k: fix invalid access to memory
...
net: libwx: fix the using of Rx buffer DMA
...
wifi: ath11k: add srng->lock for ath11k_hal_srng_* in monitor mode
...
GNU Binutils BFD Library elf.c bfd_elf_get_str_section null pointer dereference
...
dmaengine: ti: k3-udma-glue: Drop skip_fdq argument from k3_udma_glue_reset_rx_chn
...