Windows Kernel insufficient validation of new registry key names in transacted NtRenameKey bugs.chromium.org/p/project-zero
Folgen
Project Zero Bugs
@ProjectZeroBugs
Checks for new bug reports every 10 minutes. Not affiliated with Google. Account ran by
Biografie übersetzen
code.google.com/p/google-secur…Seit Februar 2016 bei Twitter
Tweets von Project Zero Bugs
Windows Kernel multiple issues in the prepare/commit phase of a transactional registry key rename bugs.chromium.org/p/project-zero
8
13
Windows Kernel multiple issues with subkeys of transactionally renamed registry keys bugs.chromium.org/p/project-zero
15
30
Chrome: heap-buffer-overflow in base::SampleVectorBase::MoveSingleSampleToCounts bugs.chromium.org/p/project-zero
4
9
Chrome: heap-buffer-overflow in base::debug::ActivityUserData::ActivityUserData bugs.chromium.org/p/project-zero
2
9
CentOS Stream 9: missing kernel security fixes bugs.chromium.org/p/project-zero
9
12
Shannon Baseband: Intra-object overflow in NrSmPcoCodec when decoding reserved options bugs.chromium.org/p/project-zero
9
15
Shannon Baseband: Intra-object overflow in NrmmMsgCodec when decoding Service Area List bugs.chromium.org/p/project-zero
1
2
3
Shannon Baseband: Heap buffer overflow in NrmmMsgCodec when decoding Operator-defined access category definitions bugs.chromium.org/p/project-zero
2
8
Shannon Baseband: Heap buffer overflow in NrmmMsgCodec when decoding Extended emergency number list bugs.chromium.org/p/project-zero
2
12
Shannon Baseband: Heap buffer overflow in NrmmMsgCodec when decoding Emergency number list bugs.chromium.org/p/project-zero
5
21
Multiple Internet to Baseband Remote Code Execution Vulnerabilities in Exynos Modems googleprojectzero.blogspot.com/2023/03/httpsg
1
22
64
XNU: NFSSVC root check bypass; use after free due to insufficient locking in upcall worker threads bugs.chromium.org/p/project-zero
1
11
24
Android: GKI kernels contain broken non-upstream Speculative Page Faults MM code bugs.chromium.org/p/project-zero
14
36
Arm Mali CSF: kbase_kcpu_command_queue UAF in kbase_csf_kcpu_queue_enqueue() bugs.chromium.org/p/project-zero
8
32
Arm Mali: insufficient cache invalidation for non-page-aligned user buffer imports bugs.chromium.org/p/project-zero
9
49
XNU: use after free due to insufficient locking in upcall worker threads bugs.chromium.org/p/project-zero
2
15
45
Windows Kernel registry virtualization incompatible with transactions, leading to inconsistent hive state and memory corruption bugs.chromium.org/p/project-zero
6
21
Windows Kernel allows deletion of keys in virtualizable hives with KEY_READ and KEY_SET_VALUE access rights bugs.chromium.org/p/project-zero
3
13
Windows Kernel registry SID table poisoning leading to bad locking and other issues bugs.chromium.org/p/project-zero
3
15
Windows Kernel multiple issues in the key replication feature of registry virtualization bugs.chromium.org/p/project-zero
3
14
Windows Kernel use-after-free due to dangling registry link node under paged pool memory pressure bugs.chromium.org/p/project-zero
2
17
55
Android: Binder VMA management security issues bugs.chromium.org/p/project-zero
11
42
Windows Kernel memory corruption due to insufficient handling of predefined keys in registry virtualization bugs.chromium.org/p/project-zero
13
35
Exploiting null-dereferences in the Linux kernel googleprojectzero.blogspot.com/2023/01/exploi
2
35
100
Chrome: Copy-on-write check bypass in JSNativeContextSpecialization::BuildElementAccess bugs.chromium.org/p/project-zero
14
46
XNU race condition in vm_map_copy_overwrite_unaligned allows writing to read-only mappings bugs.chromium.org/p/project-zero
42
128
XNU VM copy-on-write bypass due to incorrect shadow creation logic during unaligned vm_map_copy operations bugs.chromium.org/p/project-zero
12
56
WebKit: Use-after-free of RenderMathMLToken in CSSCrossfadeValue::crossfadeChanged bugs.chromium.org/p/project-zero
13
43
libCoreEntitlements: CEContextQuery can return arbitrary entitlements bugs.chromium.org/p/project-zero
5
15
DER Entitlements: The (Brief) Return of the Psychic Paper googleprojectzero.blogspot.com/2023/01/der-en
12
19
Windows Kernel use-after-free due to bad handling of predefined keys in NtNotifyChangeMultipleKeys bugs.chromium.org/p/project-zero
12
30
Linux: khugepaged races with rmap-based zap, races with GUP-fast, and fails to call MMU notifiers bugs.chromium.org/p/project-zero
1
12
30
Arm Mali CSF: tiler heap uses KBASE_REG_NO_USER_FREE unsafely, leading to UAF bugs.chromium.org/p/project-zero
5
20
Linux >=4.10: UAF in __do_semtimedop() due to lockless check outside RCU section bugs.chromium.org/p/project-zero
1
15
50
vb2_mmap race with vb2_core_reqbufs leads to UAF bugs.chromium.org/p/project-zero
4
14
Unsafe use of follow_pfn in get_vaddr_frames leads to UAF or writes to ro-pages bugs.chromium.org/p/project-zero
16
33
crewjam/saml: Signature bypass via multiple Assertion elements bugs.chromium.org/p/project-zero
3
13
Chrome: Design flaw in Synchronous Mojo message handling introduces unexpected reentrancy and allows for multiple UAFs bugs.chromium.org/p/project-zero
28
125
Exploiting CVE-2022-42703 - Bringing back the stack attack googleprojectzero.blogspot.com/2022/12/exploi
3
41
109