Aggregator

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 5.15.88/6.1.6. Affected by this issue is the function ssam_request_sync_free of the component surface. The manipulation leads to Privilege Escalation. This vulnerability is handled as CVE-2022-48880. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 4.19.269/5.4.228/5.10.163/5.15.88/6.1.6. Affected by this vulnerability is an unknown functionality of the component efi. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2022-48879. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 6.1.7. Affected is the function extent_tree of the component f2fs. The manipulation leads to denial of service. This vulnerability is traded as CVE-2022-48877. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.6. It has been rated as critical. This issue affects the function kzalloc of the component ice. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2022-48886. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.6. It has been declared as critical. This vulnerability affects the function pci_get_domain_bus_and_slot. The manipulation leads to improper update of reference count. This vulnerability was named CVE-2022-48881. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.6. It has been classified as critical. This affects the function ice_gnss_tty_write. The manipulation leads to memory leak. This vulnerability is uniquely identified as CVE-2022-48885. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.6 and classified as problematic. Affected by this issue is the function channel_stats of the component mlx5e. The manipulation leads to out-of-bounds read. This vulnerability is handled as CVE-2022-48883. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.1.6 and classified as problematic. Affected by this vulnerability is the function drivers/gpu/drm/drm_buddy.c:278! of the component AMD GPU. The manipulation leads to Privilege Escalation. This vulnerability is known as CVE-2023-52912. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

迪士尼宣布撤回受争议的强制仲裁动议。一名有乳制品和坚果过敏症的医生在佛罗里达迪士尼之泉的 Raglan Road Irish Pub 就餐后因急性过敏反应去世，她在就餐前曾与服务员反复确认过敏原问题，而服务员在与厨师交谈后告诉他们食物不含过敏原。她的丈夫 Jeffrey Piccolo 随后对迪士尼提起了诉讼寻求赔偿 5 万美元。迪士尼的律师根据 Disney+ 的相关条款寻求驳回诉讼，Piccolo 曾试用过 Disney+，其中的条款包括通过仲裁解决与迪士尼公司的所有纠纷。迪士尼的这一做法引发了广泛争议。迪士尼的发言人表示该公司努力将人性作为最优先考虑因素，鉴于本案的特殊性，它决定放弃仲裁要求。

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.1.6. Affected is the function destroy_pinned_context of the component drm. The manipulation leads to allocation of resources. This vulnerability is traded as CVE-2022-48893. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.1.6. This issue affects some unknown processing of the component msm. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2023-52911. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Linux Kernel up to 5.15.88/6.1.6. This vulnerability affects the function __alloc_and_insert_iova_range of the component iommu. The manipulation of the argument The leads to allocation of resources. This vulnerability was named CVE-2023-52910. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Linux Kernel up to 6.1.6. This affects the function nfsd4_open. The manipulation leads to state issue. This vulnerability is uniquely identified as CVE-2023-52909. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.6. It has been rated as critical. Affected by this issue is some unknown functionality of the component AMD GPU. The manipulation leads to null pointer dereference. This vulnerability is handled as CVE-2023-52908. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.6. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component octeontx2-pf. The manipulation leads to allocation of resources. This vulnerability is known as CVE-2023-52905. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.7. It has been classified as critical. Affected is an unknown function of the component poll. The manipulation leads to buffer overflow. This vulnerability is traded as CVE-2023-52895. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.6 and classified as critical. This issue affects the function storvsc_queuecommand. The manipulation leads to memory leak. The identification of this vulnerability is CVE-2022-48890. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.1.6 and classified as critical. This vulnerability affects unknown code of the component arm-smmu. The manipulation leads to null pointer dereference. This vulnerability was named CVE-2022-48895. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.1.7. This affects the function gsmi_get_variable of the component EFI Variable Handler. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2023-52893. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.1.6. Affected by this issue is the function platform_device_id of the file sof_nau8825.c. The manipulation leads to incorrect calculation of buffer size. This vulnerability is handled as CVE-2022-48889. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.