Fedora 40 : linux-firmware (2025-3110d5f423)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-3110d5f423 advisory. Update to upstream 20250311: amdgpu: many firmware updates qcom: Update gpu firmwares for qcs8300 chipset add firmware for qat420xx devices amdgpu:...

The vulnerability of the INF-file utility for Intel chipset and circuit boards, known as the Intel Chipset INF Utility (previously called Intel Chipset Device Software or Intel Chipset Software Installation Utility), is related to an uncontrolled search path element. This allows a malicious user to gain elevated privileges.

The vulnerability of the INF-file utility for Intel chipset and circuit boards is related to an uncontrolled search path element. Exploiting this vulnerability can allow a hacker to gain increased privileges...

Qualcomm Chipsets 资源管理错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A resource management error vulnerability exists in Qualcomm Chipsets, which originates from memory corruption during voice activation when sound model parameters are loaded from HLOS and the received sound model list is...

Qualcomm Chipsets 资源管理错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A resource management error vulnerability exists in Qualcomm Chipsets that stems from memory corruption when processing Glink linux commands...

The vulnerability of the microprogramming software for Intel Server Platform Services (SPS) chipsets like Intel C740, related to insufficient validation of input data, allows a perpetrator to trigger a service failure.

The vulnerability of the microprogramming software in Intel Server Platform Services SPS chipsets of the Intel C740 is related to insufficient testing of input data. Exploiting this vulnerability can allow attackers to cause service failures...

UBUNTU-CVE-2022-49121

In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fix tag leaks on error In pm8001chipsetdevstatereq, pm8001chipfwflashupdatereq, pm80xxchipphyctlreq and pm8001chipregdevreq add missing calls to pm8001tagfree to free the allocated tag when pm8001mpibuildcmd fails...

Hitachi Energy MACH PS700

SUMMARY Hitachi Energy is aware of a vulnerability in third party component Intel Chipset Device Software, that affects MACH PS700 v2 product versions listed in this document. Authenticated malicious clients successfully exploiting this vulnerability could escalate the privilege to cause...

2025.1 IPU - Intel® Chipset Firmware Advisory

Summary: Potential security vulnerabilities in Intel® Converged Security and Manageability Engine CSME, Intel® Active Management Technology AMT, and Intel® Standard Manageability firmware may allow information disclosure, denial of service, or escalation of privilege. Intel is releasing updates t...

CVE-2024-36291

Uncontrolled search path for some IntelR Chipset Software Installation Utility before version 10.1.19867.8574 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2024-36291

Uncontrolled search path for some IntelR Chipset Software Installation Utility before version 10.1.19867.8574 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2024-36291

Uncontrolled search path for some IntelR Chipset Software Installation Utility before version 10.1.19867.8574 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2024-36291

The CVE-2024-36291 issue affects Intel’s Chipset Software Installation Utility (CSIU) prior to version 10.1.19867.8574. It is described as an Uncontrolled search path, potentially enabling local privilege escalation for an authenticated user. The Intel advisory and related sources confirm the aff...

CVE-2024-36291

Uncontrolled search path for some IntelR Chipset Software Installation Utility before version 10.1.19867.8574 may allow an authenticated user to potentially enable escalation of privilege via local access...

Intel Chipset Software Installation Utility 代码问题漏洞

Intel Chipset Software Installation Utility is a chipset software installation utility from Intel Corporation USA. A code issue vulnerability exists in versions prior to Intel Chipset Software Installation Utility 10.1.19867.8574, which stems from the presence of an uncontrolled search path that...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: drm/gma500: fixed the null pointer dereferencing in cdvintellvdsgetmodes. In cdvintellvdsgetmodes, the return value of drmmodeduplicate is assigned to mode. This can lead to a NULL pointer dereferencing in case of a failure with...

Intel® Chipset Software Installation Utility Advisory

Summary: A potential security vulnerability in some Intel® Chipset Software Installation Utility may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2024-36291 Description: Uncontrolled search path for...

Intel Chipset Software Installation Utility Advisory - Lenovo Support US

No description provided...

Intel Chipset Software Installation Utility Advisory - Lenovo Support US

No description provided...

2025.1 IPU - Intel Chipset Firmware Advisory - Lenovo Support US

No description provided...

Exploit for CVE-2024-35106

NEXTU FLETA Wifi6 Router DOS, Potential RCE POC This document...