1040 matches found
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: Firmware: csdsp: Prevent buffer overflows when processing V2 algorithm headers. It is necessary to ensure that all fields of a V2 algorithm header fit within the available firmware data buffer. The wmfw V2 format introduced...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: Firmware: csdsp: Fixed out-of-bounds memory read access in KUnit tests wmfw info KASAN reported an out-of-bounds access – csdspmockwmfwaddinfo, because the length of the source string was rounded up to the allocation size...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: Firmware: csdsp: Use strnlen on name fields in V1 wmfw files. Use strnlen instead of strlen for the algorithm and coefficient name string arrays in V1 wmfw files. In V1 wmfw files, the name is a NUL-terminated string stored in a...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Firmware: csdsp: Fixed an out-of-bounds memory read access in KUnit tests ctlcache. KASAN reported an out-of-bounds access: csdspctlcacheinitmultipleoffsets. The code used mockcoefftemplate.lengthbytes 4 bytes for register value...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: x86/MCE: Always save the CS register in cases of AMD Zen IF Poison errors. The Instruction Fetch IF units on current AMD Zen-based systems do not guarantee a synchronous MC for poison consumption errors. Therefore,...
SUSE CVE-2026-46220
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/sdma4: replace BUGON with WARNON in fence emission sdmav40ringemitfence contains two BUGONaddr & 0x3 assertions that verify fence writeback addresses are dword-aligned. These assertions can be reached from unprivileged...
CVE-2026-46148
CVE-2026-46148 concerns the Linux kernel’s microchip-core-qspi driver where the built-in chip select could be driven active when multiple devices share the QSPI controller, potentially conflicting with GPIO-based CS. The provided records confirm a concrete fix: the driver now controls chip select...
SUSE CVE-2026-45979
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: clean up the amdgpucsparserbos In low memory conditions, kmalloc can fail. In such conditions unlock the mutex for a clean exit. We do not need to amdgpubolistput as it's been handled in the amdgpucsparserfini...
EUVD-2026-32263
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: clean up the amdgpucsparserbos In low memory conditions, kmalloc can fail. In such conditions unlock the mutex for a clean exit. We do not need to amdgpubolistput as it's been handled in the amdgpucsparserfini...
CVE-2026-45979
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: clean up the amdgpucsparserbos In low memory conditions, kmalloc can fail. In such conditions unlock the mutex for a clean exit. We do not need to amdgpubolistput as it's been handled in the amdgpucsparserfini...
CVE-2026-45979 drm/amdgpu: clean up the amdgpu_cs_parser_bos
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: clean up the amdgpucsparserbos In low memory conditions, kmalloc can fail. In such conditions unlock the mutex for a clean exit. We do not need to amdgpubolistput as it's been handled in the amdgpucsparserfini...
CVE-2026-45979
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: clean up the amdgpucsparserbos In low memory conditions, kmalloc can fail. In such conditions unlock the mutex for a clean exit. We do not need to amdgpubolistput as it's been handled in the amdgpucsparserfini...
CVE-2026-45979
CVE-2026-45979 affects the Linux kernel amdgpu driver. The issue arises in drm/amdgpu: clean up the amdgpu_cs_parser_bos where, under low memory conditions, kmalloc can fail and the mutex may not be unlocked, leading to resource contention. The patch/fix exits cleanly by unlocking the mutex, and ...
PT-2026-34158
Vulnerability in the PeopleSoft Enterprise CS Student Records product of Oracle PeopleSoft component: Research Tracking. The supported version that is affected is 9.2. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise ...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005630)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005630 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Fix integer overflow in radeoncsparserinit The type of size is unsigned, if size is...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005658)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005658 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Fix integer overflow in radeoncsparserinit The type of size is unsigned, if size is...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005414)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005414 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Fix integer overflow in radeoncsparserinit The type of size is unsigned, if size is...
Azure Linux 3.0 Security Update: kernel (CVE-2024-42238)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42238 advisory. - In the Linux kernel, the following vulnerability has been resolved: firmware: csdsp: Return error if block...
Capstone doesn't check Skipdata length, leading to cs_insn.bytes heap buffer overflow
...
ROS-20260113-7374
A vulnerability in the amdgpucspass1 function in the drivers/gpu/drm/amd/amdgpu/amdgpucs.c module of the Linux kernel is related to the re-release of previously freed memory. Exploitation of the vulnerability may allow an attacker to affect confidentiality, integrity and availability of protected...