Intel Chipset Firmware Advisory - Lenovo Support US

No description provided...

CVE-2024-36877

Micro-Star International Z-series motherboards Z590, Z490, and Z790 and B-series motherboards B760, B560, B660, and B460 with firmware 7D25v14, 7D25v17 to 7D25v19, and 7D25v1A to 7D25v1H was discovered to contain a write-what-where condition in the in the SW handler for SMI 0xE3. Motherboard's wi...

CVE-2024-36877

Micro-Star International Z-series motherboards Z590, Z490, and Z790 and B-series motherboards B760, B560, B660, and B460 with firmware 7D25v14, 7D25v17 to 7D25v19, and 7D25v1A to 7D25v1H was discovered to contain a write-what-where condition in the in the SW handler for SMI 0xE3. Motherboard's wi...

PT-2024-6666

Name of the Vulnerable Software and Affected Versions: Qualcomm Multiple Chipsets affected versions not specified Description: The issue is related to a use-after-free vulnerability in the Digital Signal Processor DSP service of Qualcomm chipsets, which can lead to memory corruption while...

kernel: EDAC/thunderx: Incorrect buffer size in drivers/edac/thunderx_edac.c

A flaw was found in the Linux Kernel. An improper buffer size is provided to the strncat function, which may result in an out-of-bounds write, leading to memory corruption or a denial of service...

Intel Chipset Device Software May 2024 Security Update

Intel has informed HP of a potential security vulnerability in some Intel® Chipset Device Software, which might allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability. HP has...

SUSE CVE-2024-38586

In the Linux kernel, the following vulnerability has been resolved: r8169: Fix possible ring buffer corruption on fragmented Tx packets. An issue was found on the RTL8125b when transmitting small fragmented packets, whereby invalid entries were inserted into the transmit ring buffer, subsequently...

UBUNTU-CVE-2024-38563

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: fix potential memory leakage when reading chip temperature Without this commit, reading chip temperature will cause memory leakage...

UBUNTU-CVE-2024-38586

In the Linux kernel, the following vulnerability has been resolved: r8169: Fix possible ring buffer corruption on fragmented Tx packets. An issue was found on the RTL8125b when transmitting small fragmented packets, whereby invalid entries were inserted into the transmit ring buffer, subsequently...

Driving forward in Android drivers

Posted by Seth Jenkins, Google Project Zero Introduction Android's open-source ecosystem has led to an incredible diversity of manufacturers and vendors developing software that runs on a broad variety of hardware. This hardware requires supporting drivers, meaning that many different codebases...

CVE-2024-21814

Uncontrolled search path for some IntelR Chipset Device Software before version 10.1.19444.8378 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2024-21814

Uncontrolled search path for some IntelR Chipset Device Software before version 10.1.19444.8378 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2023-42668

Incorrect default permissions in some onboard video driver software before version 1.14 for IntelR Server Boards based on IntelR 62X Chipset may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2023-42668

Incorrect default permissions in some onboard video driver software before version 1.14 for IntelR Server Boards based on IntelR 62X Chipset may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2023-42668

Incorrect default permissions in some onboard video driver software before version 1.14 for IntelR Server Boards based on IntelR 62X Chipset may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2023-42668

CVE-2023-42668 describes an “Incorrect default permissions” issue in onboard video driver software for Intel® Server Boards based on the Intel® 62X chipset, before version 1.14, potentially allowing an authenticated user to escalate privileges via local access. The CVSSv3.1 vector is AV:L/AC:H/PR...

CVE-2024-21814

Uncontrolled search path for some IntelR Chipset Device Software before version 10.1.19444.8378 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2024-21814

Uncontrolled search path for some IntelR Chipset Device Software before version 10.1.19444.8378 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2024-21814

CVE-2024-21814 affects Intel Chipset Device Software prior to 10.1.19444.8378. Root cause: an uncontrolled search path element that could let an authenticated local user escalate privileges. Impact: local privilege escalation is possible as described in Intel’s advisory INTEL-SA-01032 and corrobo...

Intel Chipset Device Software 安全漏洞

Intel Chipset Device Software is a chipset firmware update utility from Intel Corporation USA. A security vulnerability previously existed in Intel Chipset Device Software version 10.1.19444.8378, which stemmed from an uncontrolled search path issue. It could allow an authenticated user to perfor...