π¨ CVE-2021-45480
An issue was discovered in the Linux kernel before 5.15.11. There is a memory leak in the __rds_conn_create() function in net/rds/connection.c in a certain combination of circumstances.
π@cveNotify
An issue was discovered in the Linux kernel before 5.15.11. There is a memory leak in the __rds_conn_create() function in net/rds/connection.c in a certain combination of circumstances.
π@cveNotify
π¨ CVE-2021-45483
In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::Frame::page, a different vulnerability than CVE-2021-30889.
π@cveNotify
In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::Frame::page, a different vulnerability than CVE-2021-30889.
π@cveNotify
GitHub
security_advisories/webkitgtk-2.32.3 at master Β· ChijinZ/security_advisories
A repository for archiving my vulnerability discoveries. - security_advisories/webkitgtk-2.32.3 at master Β· ChijinZ/security_advisories
π¨ CVE-2021-45482
In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::ContainerNode::firstChild, a different vulnerability than CVE-2021-30889.
π@cveNotify
In WebKitGTK before 2.32.4, there is a use-after-free in WebCore::ContainerNode::firstChild, a different vulnerability than CVE-2021-30889.
π@cveNotify
GitHub
security_advisories/webkitgtk-2.32.3 at master Β· ChijinZ/security_advisories
A repository for archiving my vulnerability discoveries. - security_advisories/webkitgtk-2.32.3 at master Β· ChijinZ/security_advisories
π¨ CVE-2021-45481
In WebKitGTK before 2.32.4, there is incorrect memory allocation in WebCore::ImageBufferCairoImageSurfaceBackend::create, leading to a segmentation violation and application crash, a different vulnerability than CVE-2021-30889.
π@cveNotify
In WebKitGTK before 2.32.4, there is incorrect memory allocation in WebCore::ImageBufferCairoImageSurfaceBackend::create, leading to a segmentation violation and application crash, a different vulnerability than CVE-2021-30889.
π@cveNotify
GitHub
security_advisories/webkitgtk-2.32.3 at master Β· ChijinZ/security_advisories
A repository for archiving my vulnerability discoveries. - security_advisories/webkitgtk-2.32.3 at master Β· ChijinZ/security_advisories
π¨ CVE-2021-45489
In NetBSD through 9.2, the IPv6 Flow Label generation algorithm employs a weak cryptographic PRNG.
π@cveNotify
In NetBSD through 9.2, the IPv6 Flow Label generation algorithm employs a weak cryptographic PRNG.
π@cveNotify
π¨ CVE-2021-45488
In NetBSD through 9.2, there is an information leak in the TCP ISN (ISS) generation algorithm.
π@cveNotify
In NetBSD through 9.2, there is an information leak in the TCP ISN (ISS) generation algorithm.
π@cveNotify
π¨ CVE-2021-45487
In NetBSD through 9.2, the IPv4 ID generation algorithm does not use appropriate cryptographic measures.
π@cveNotify
In NetBSD through 9.2, the IPv4 ID generation algorithm does not use appropriate cryptographic measures.
π@cveNotify
π¨ CVE-2021-45486
In the IPv4 implementation in the Linux kernel before 5.12.4, net/ipv4/route.c has an information leak because the hash table is very small.
π@cveNotify
In the IPv4 implementation in the Linux kernel before 5.12.4, net/ipv4/route.c has an information leak because the hash table is very small.
π@cveNotify
π¨ CVE-2021-45485
In the IPv6 implementation in the Linux kernel before 5.13.3, net/ipv6/output_core.c has an information leak because of certain use of a hash table which, although big, doesn't properly consider that IPv6-based attackers can typically choose among many IPv6 source addresses.
π@cveNotify
In the IPv6 implementation in the Linux kernel before 5.13.3, net/ipv6/output_core.c has an information leak because of certain use of a hash table which, although big, doesn't properly consider that IPv6-based attackers can typically choose among many IPv6 source addresses.
π@cveNotify
π¨ CVE-2021-45484
In NetBSD through 9.2, the IPv6 fragment ID generation algorithm employs a weak cryptographic PRNG.
π@cveNotify
In NetBSD through 9.2, the IPv6 fragment ID generation algorithm employs a weak cryptographic PRNG.
π@cveNotify
π¨ CVE-2021-45469
In __f2fs_setxattr in fs/f2fs/xattr.c in the Linux kernel through 5.15.11, there is an out-of-bounds memory access when an inode has an invalid last xattr entry.
π@cveNotify
In __f2fs_setxattr in fs/f2fs/xattr.c in the Linux kernel through 5.15.11, there is an out-of-bounds memory access when an inode has an invalid last xattr entry.
π@cveNotify
β οΈβΉοΈβ οΈ Hi everybody! To continue providing posts and keeping this channel alive, we accept advertising on the channel.
For advertising plans contact @SirMalware β οΈβΉοΈβ οΈ
For advertising plans contact @SirMalware β οΈβΉοΈβ οΈ
CVE Notify pinned Β«β οΈβΉοΈβ οΈ Hi everybody! To continue providing posts and keeping this channel alive, we accept advertising on the channel. For advertising plans contact @SirMalware β οΈβΉοΈβ οΈΒ»
π¨ CVE-2021-41788
MediaTek microchips, as used in NETGEAR devices through 2021-12-13 and other devices, mishandle attempts at Wi-Fi authentication flooding.
π@cveNotify
MediaTek microchips, as used in NETGEAR devices through 2021-12-13 and other devices, mishandle attempts at Wi-Fi authentication flooding.
π@cveNotify
Netgear
Security Advisory for WiFi Authentication Flooding Vulnerabilities on Multiple Products, PSV-2021-0299 & PSV-2021-0301 | Answerβ¦
Associated CVE ID: CVE-2021-41788 First published: 2021-12-13 NETGEAR is aware of industry-wide WiFi authentication flooding security vulnerabilities on products containing MediaTek microchips. NETGEAR is working with MediaTek and plans to release firmwareβ¦
π¨ CVE-2021-37584
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle the WPS (Wi-Fi Protected Setup) protocol.
π@cveNotify
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle the WPS (Wi-Fi Protected Setup) protocol.
π@cveNotify
NETGEAR KB
Security Advisory for WiFi WPS and IEEE-1905 Vulnerabilities on Multiple Products, PSV-2021-0298 & PSV-2021-0300
First published: 2021-11-11 Associated CVE IDs WPS connection Vulnerabilities CVE-2021-35055, CVE-2021-37560, CVE-2021-37561, CVE-2021-37584, CVE-2021-37563, CVE-2021-32467, CVE-2021-32468, CVE-2021-32469, CVE-2021-37562 IEEE 1905 Vulnerabilities CVE-2021β¦
π¨ CVE-2021-37583
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols.
π@cveNotify
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols.
π@cveNotify
NETGEAR KB
Security Advisory for WiFi WPS and IEEE-1905 Vulnerabilities on Multiple Products, PSV-2021-0298 & PSV-2021-0300
First published: 2021-11-11 Associated CVE IDs WPS connection Vulnerabilities CVE-2021-35055, CVE-2021-37560, CVE-2021-37561, CVE-2021-37584, CVE-2021-37563, CVE-2021-32467, CVE-2021-32468, CVE-2021-32469, CVE-2021-37562 IEEE 1905 Vulnerabilities CVE-2021β¦
π¨ CVE-2021-37572
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols.
π@cveNotify
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols.
π@cveNotify
NETGEAR KB
Security Advisory for WiFi WPS and IEEE-1905 Vulnerabilities on Multiple Products, PSV-2021-0298 & PSV-2021-0300
First published: 2021-11-11 Associated CVE IDs WPS connection Vulnerabilities CVE-2021-35055, CVE-2021-37560, CVE-2021-37561, CVE-2021-37584, CVE-2021-37563, CVE-2021-32467, CVE-2021-32468, CVE-2021-32469, CVE-2021-37562 IEEE 1905 Vulnerabilities CVE-2021β¦
π¨ CVE-2021-37571
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols.
π@cveNotify
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols.
π@cveNotify
NETGEAR KB
Security Advisory for WiFi WPS and IEEE-1905 Vulnerabilities on Multiple Products, PSV-2021-0298 & PSV-2021-0300
First published: 2021-11-11 Associated CVE IDs WPS connection Vulnerabilities CVE-2021-35055, CVE-2021-37560, CVE-2021-37561, CVE-2021-37584, CVE-2021-37563, CVE-2021-32467, CVE-2021-32468, CVE-2021-32469, CVE-2021-37562 IEEE 1905 Vulnerabilities CVE-2021β¦
π¨ CVE-2021-37570
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols.
π@cveNotify
MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols.
π@cveNotify
NETGEAR KB
Security Advisory for WiFi WPS and IEEE-1905 Vulnerabilities on Multiple Products, PSV-2021-0298 & PSV-2021-0300
First published: 2021-11-11 Associated CVE IDs WPS connection Vulnerabilities CVE-2021-35055, CVE-2021-37560, CVE-2021-37561, CVE-2021-37584, CVE-2021-37563, CVE-2021-32467, CVE-2021-32468, CVE-2021-32469, CVE-2021-37562 IEEE 1905 Vulnerabilities CVE-2021β¦