22107 matches found
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
...
Microsoft Office Visio Remote Code Execution Vulnerability
...
Microsoft Edge (Chromium-based) Spoofing Vulnerability
...
Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
...
In the vrrp_ipsets_handler handler (fglobal_parser.c) of keepalived through 2.3.1 an integer overflow can occur. NOTE: this CVE Record might not be worthwhile because an empty ipset name must be configured by the user.
...
Dynamics 365 Business Central Elevation of Privilege Vulnerability
Improper authorization in Dynamics 365 Business Central resulted in a vulnerability that allows an authenticated attacker to elevate privileges over a network...
GroupMe Elevation of Privilege Vulnerability
An improper access control vulnerability in GroupMe allows an a unauthenticated attacker to elevate privileges over a network...
An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an integer overflow for m_groupSize on 32-bit platforms (where UINT_MAX equals SIZE_MAX).
...
An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms (where UINT_MAX equals SIZE_MAX).
...
External DNS requests from 'internal' networks could lead to data exfiltration
...
An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XML_ParseBuffer.
...
Chromium: CVE-2024-8639 Use after free in Autofill
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2024-8638 Type Confusion in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2024-8637 Use after free in Media Router
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2024-8636 Heap buffer overflow in Skia
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
CVE-2022-40898
...
Chromium: CVE-2024-8198 Heap buffer overflow in Skia
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2024-8194 Type Confusion in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2024-7970 Out of bounds write in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2024-8362 Use after free in WebAudio
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
xen-netfront: Add missing skb_mark_for_recycle
...
wifi: wilc1000: fix RCU usage in connect path
...
xen/evtchn: avoid WARN() when unbinding an event channel
...
virtio: packed: fix unmap leak for indirect desc table
...
libbpf: Use OPTS_SET() macro in bpf_xdp_query()
...
net: phy: fix phy_get_internal_delay accessing an empty array
...
nfp: flower: handle acti_netdevs allocation failure
...
f2fs: fix to remove unnecessary f2fs_bug_on() to avoid panic
...
spi: spi-mt65xx: Fix NULL pointer access in interrupt handler
...
clk: Get runtime PM before walking tree during disable_unused
...
net: ethernet: mtk_eth_soc: fix PPE hanging issue
...
clk: mediatek: mt7622-apmixedsys: Fix an error handling path in clk_mt8135_apmixed_probe()
...
media: imx: csc/scaler: fix v4l2_ctrl_handler memory leak
...
media: go7007: fix a memleak in go7007_load_encoder
...
thermal/drivers/mediatek/lvts_thermal: Fix a memory leak in an error handling path
...
octeontx2-af: Use separate handlers for interrupts
...
clk: Get runtime PM before walking tree for clk_summary
...
interconnect: Don't access req_list while it's being manipulated
...
mm/memory-failure: fix deadlock when hugetlb_optimize_vmemmap is enabled
...
gfs2: Fix potential glock use-after-free on unmount
...
Libarchive before 3.7.4 allows name out-of-bounds access when a ZIP archive has an empty-name file and mac-ext is enabled. This occurs in slurp_central_directory in archive_read_support_format_zip.c.
...
ASoC: SOF: amd: Fix memory leak in amd_sof_acp_probe()
...
Bluetooth: L2CAP: Fix div-by-zero in l2cap_le_flowctl_init()
...
drm/vmwgfx: fix a memleak in vmw_gmrid_man_get_node
...
io_uring/af_unix: disable sending io_uring over sockets
...
NTB: fix possible name leak in ntb_register_device()
...
drm/vkms: Avoid reading beyond LUT array
...
media: nxp: imx8-isi: Check whether crossbar pad is non-NULL before access
...
Bluetooth: btusb: mediatek: Fix double free of skb in coredump
...
media: tc358743: register v4l2 async device only after successful setup
...