Vulnerabilities > Use of Uninitialized Resource
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-21 | CVE-2024-38381 | Use of Uninitialized Resource vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: nfc: nci: Fix uninit-value in nci_rx_work syzbot reported the following uninit-value access issue [1] nci_rx_work() parses received packet from ndev->rx_q. | 7.1 |
| 2024-06-19 | CVE-2021-47597 | Use of Uninitialized Resource vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: inet_diag: fix kernel-infoleak for UDP sockets KMSAN reported a kernel-infoleak [1], that can exploited by unpriv users. After analysis it turned out UDP was not initializing r->idiag_expires. | 5.5 |
| 2024-06-19 | CVE-2024-38538 | Use of Uninitialized Resource vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: net: bridge: xmit: make sure we have at least eth header len bytes syzbot triggered an uninit value[1] error in bridge device's xmit path by sending a short (less than ETH_HLEN bytes) skb. | 7.1 |
| 2024-06-14 | CVE-2024-36503 | Use of Uninitialized Resource vulnerability in Huawei Emui and Harmonyos Memory management vulnerability in the Gralloc module Impact: Successful exploitation of this vulnerability will affect availability. | 5.5 |
| 2024-06-13 | CVE-2024-29780 | Use of Uninitialized Resource vulnerability in Google Android In hwbcc_ns_deprivilege of trusty/user/base/lib/hwbcc/client/hwbcc.c, there is a possible uninitialized stack data disclosure due to uninitialized data. | 5.5 |
| 2024-06-13 | CVE-2024-29785 | Use of Uninitialized Resource vulnerability in Google Android In aur_get_state of aurora.c, there is a possible information disclosure due to uninitialized data. | 5.5 |
| 2024-06-13 | CVE-2024-32906 | Use of Uninitialized Resource vulnerability in Google Android In AcvpOnMessage of avcp.cpp, there is a possible EOP due to uninitialized data. | 7.8 |
| 2024-06-13 | CVE-2024-32910 | Use of Uninitialized Resource vulnerability in Google Android In handle_msg_shm_map_req of trusty/user/base/lib/spi/srv/tipc/tipc.c, there is a possible stack data disclosure due to uninitialized data. | 5.5 |
| 2024-05-01 | CVE-2024-27022 | Use of Uninitialized Resource vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: fork: defer linking file vma until vma is fully initialized Thorvald reported a WARNING [1]. | 7.8 |
| 2024-04-28 | CVE-2022-48654 | Use of Uninitialized Resource vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find() nf_osf_find() incorrectly returns true on mismatch, this leads to copying uninitialized memory area in nft_osf which can be used to leak stale kernel stack data to userspace. | 5.5 |