Show filters
782 Total Results
Displaying 11-20 of 782
Sort by:
Attacker Value
Unknown

CVE-2025-0373

Disclosure Date: January 30, 2025 (last updated January 30, 2025)
On 64-bit systems, the implementation of VOP_VPTOFH() in the cd9660, tarfs and ext2fs filesystems overflows the destination FID buffer by 4 bytes, a stack buffer overflow. A NFS server that exports a cd9660, tarfs, or ext2fs file system can be made to panic by mounting and accessing the export with an NFS client. Further exploitation (e.g., bypassing file permission checking or remote kernel code execution) is potentially possible, though this has not been demonstrated. In particular, release kernels are compiled with stack protection enabled, and some instances of the overflow are caught by this mechanism, causing a panic.
0
0
Attacker Value
Unknown

CVE-2024-11149

Disclosure Date: December 06, 2024 (last updated December 21, 2024)
In OpenBSD 7.4 before errata 014, vmm(4) did not restore GDTR limits properly on Intel (VMX) CPUs.
0
0
Attacker Value
Unknown

CVE-2024-11148

Disclosure Date: December 05, 2024 (last updated December 21, 2024)
In OpenBSD 7.4 before errata 006 and OpenBSD 7.3 before errata 020, httpd(8) is vulnerable to a NULL dereference when handling a malformed fastcgi request.
0
0
Attacker Value
Unknown

CVE-2024-10933

Disclosure Date: December 05, 2024 (last updated December 21, 2024)
In OpenBSD 7.5 before errata 009 and OpenBSD 7.4 before errata 022, exclude any '/' in readdir name validation to avoid unexpected directory traversal on untrusted file systems.
0
0
Attacker Value
Unknown

CVE-2024-10934

Disclosure Date: November 15, 2024 (last updated November 16, 2024)
In OpenBSD 7.5 before errata 008 and OpenBSD 7.4 before errata 021, avoid possible mbuf double free in NFS client and server implementation, do not use uninitialized variable in error handling of NFS server.
0
0
Attacker Value
Unknown

CVE-2024-51566

Disclosure Date: November 12, 2024 (last updated November 13, 2024)
The NVMe driver queue processing is vulernable to guest-induced infinite loops.
0
0
Attacker Value
Unknown

CVE-2024-51565

Disclosure Date: November 12, 2024 (last updated November 13, 2024)
The hda driver is vulnerable to a buffer over-read from a guest-controlled value.
0
0
Attacker Value
Unknown

CVE-2024-51564

Disclosure Date: November 12, 2024 (last updated November 13, 2024)
A guest can trigger an infinite loop in the hda audio driver.
0
0
Attacker Value
Unknown

CVE-2024-51563

Disclosure Date: November 12, 2024 (last updated November 13, 2024)
The virtio_vq_recordon function is subject to a time-of-check to time-of-use (TOCTOU) race condition.
0
0
Attacker Value
Unknown

CVE-2024-51562

Disclosure Date: November 12, 2024 (last updated November 13, 2024)
The NVMe driver function nvme_opc_get_log_page is vulnerable to a buffer over-read from a guest-controlled value.
0
0
View More Topics  < Previous  Next >