Lucene search
K

1043 matches found

Tenable Nessus
Tenable Nessus
added 2026/07/02 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-53330

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: Fix out-of-bounds read in dpgeteqauxrdinterval Why & How The auxrdinterval array in struct dclttprcaps is declared with MAXREPEATERCNT - 1 7...

6AI score0.00166EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/07/02 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-53329

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: Use kreallocarray in dalvectorreserve Why & How dalvectorreserve computes the allocation size as capacity vector-structsize using uint32t...

6.3AI score0.00195EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/07/01 7:52 p.m.5 views

CVE-2026-53329

A flaw was found in the Linux kernel's drm/amd/display component. The dalvectorreserve function calculates memory allocation size using 32-bit arithmetic, which can lead to an integer overflow. This overflow causes a smaller memory buffer to be allocated than intended, resulting in a heap overflo...

6.3AI score0.00195EPSS
Exploits0References4
NVD
NVD
added 2026/07/01 2:16 p.m.6 views

CVE-2026-53329

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Use kreallocarray in dalvectorreserve Why & How dalvectorreserve computes the allocation size as "capacity vector-structsize" using uint32t arithmetic, which can silently wrap to a small value on overflow. This...

0.00195EPSS
Exploits0References8
CVE
CVE
added 2026/07/01 1:32 p.m.15 views

CVE-2026-53330

The CVE-2026-53330 entry documents a Linux kernel issue in drm/amd/display where an out-of-bounds read could occur in dp_get_eq_aux_rd_interval() when processing LTTPR repeaters. The aux_rd_interval array in struct dc_lttpr_caps was sized to MAX_REPEATER_CNT-1 (7), but an offset up to MAX_REPEATE...

5.8AI score0.00166EPSS
Exploits0References3
EUVD
EUVD
added 2026/07/01 1:32 p.m.7 views

EUVD-2026-40963

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Use kreallocarray in dalvectorreserve Why & How dalvectorreserve computes the allocation size as "capacity vector-structsize" using uint32t arithmetic, which can silently wrap to a small value on overflow. This...

6AI score0.00195EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/07/01 1:32 p.m.6 views

CVE-2026-53329

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Use kreallocarray in dalvectorreserve Why & How dalvectorreserve computes the allocation size as "capacity vector-structsize" using uint32t arithmetic, which can silently wrap to a small value on overflow. This...

6AI score0.00195EPSS
Exploits0References9Affected Software1
CVE
CVE
added 2026/07/01 1:32 p.m.13 views

CVE-2026-53329

The CVE affects the Linux kernel’s drm/amd/display path, specifically dal_vector_reserve(). The allocation size is computed as capacity * vector->struct_size using uint32_t arithmetic, which can overflow and yield a smaller buffer, causing heap overflows on subsequent vector appends. The fix r...

6AI score0.00195EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/07/01 1:32 p.m.32 views

CVE-2026-53329 drm/amd/display: Use krealloc_array() in dal_vector_reserve()

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Use kreallocarray in dalvectorreserve Why & How dalvectorreserve computes the allocation size as "capacity vector-structsize" using uint32t arithmetic, which can silently wrap to a small value on overflow. This...

0.00195EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/06/29 10:8 a.m.10 views

CVE-2026-53285

A flaw was found in the Linux kernel's drm/amd/display component. When the dcn32enablephantomplane function attempts to allocate memory using kvzalloc within a floating-point unit FPU enabled region where software interrupts softirqs are disabled, it can trigger an error. This can lead to a kerne...

5.5CVSS5.8AI score0.00107EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/29 9:37 a.m.6 views

CVE-2026-53313

A flaw was found in the Linux kernel's drm/amd/display module. This vulnerability allows for a denial of service DoS due to a NULL pointer dereference. Specifically, the dcdmubsrvlogdiagnosticdata and dcdmubsrvenabledpiatrace functions do not correctly handle a NULL dcdmubsrv pointer before...

5.5CVSS5.7AI score0.001EPSS
Exploits0References4
OSV
OSV
added 2026/06/29 12:0 a.m.7 views

ALSA-2026:30848 Important: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: drm/amd/display: Do not skip unrelated mode changes in DSC validation CVE-2026-31488 kernel: ipv6: icmp: clear skb2-cb in ip6errgenicmpv6unreach CVE-2026-43038 kernel: netfilter: flowtabl...

9.8CVSS6.4AI score0.00465EPSS
Exploits0References18
SUSE CVE
SUSE CVE
added 2026/06/28 1:8 a.m.7 views

SUSE CVE-2026-53313

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid NULL dereference in dcdmubsrv error paths In dcdmubsrvlogdiagnosticdata and dcdmubsrvenabledpiatrace. Both functions check: if !dcdmubsrv || !dcdmubsrv-dmub and then call DCLOGERROR inside that block...

5.8AI score0.001EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-53136

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: Clamp VBIOS HDMI retimer register count to array size Why & How The VBIOS integrated info tables v111 and v21 contain HdmiRegNum and Hdmi6GRegN...

7.8CVSS5.9AI score0.00129EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-53285

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: Wrap DCN32 phantom-plane allocation in DCRUNWITHPREEMPTIONENABLED Why dcn32validatebandwidth wraps dcn32internalvalidatebw with...

5.5CVSS6AI score0.00107EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-53135

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: Fix NULL deref and buffer over-read in SDP debugfs Why & How dpsdpmessagedebugfswrite dereferences connector-base.state-crtc without checking f...

5.5CVSS6.2AI score0.00122EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-53137

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: Clamp HDMI HDCP2 rxidlist read to buffer size Why & How During HDCP 2.x repeater authentication over HDMI, the driver reads the sink's RxStatus...

7.8CVSS6.2AI score0.00143EPSS
Exploits0References2
OSV
OSV
added 2026/06/26 8:17 p.m.3 views

DEBIAN-CVE-2026-53313

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid NULL dereference in dcdmubsrv error paths In dcdmubsrvlogdiagnosticdata and dcdmubsrvenabledpiatrace. Both functions check: if !dcdmubsrv || !dcdmubsrv-dmub and then call DCLOGERROR inside that block...

5.5CVSS5.7AI score0.001EPSS
Exploits0References1
OSV
OSV
added 2026/06/26 8:17 p.m.4 views

UBUNTU-CVE-2026-53313

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid NULL dereference in dcdmubsrv error paths In dcdmubsrvlogdiagnosticdata and dcdmubsrvenabledpiatrace. Both functions check: if !dcdmubsrv || !dcdmubsrv-dmub and then call DCLOGERROR inside that block...

5.5CVSS5.7AI score0.001EPSS
Exploits0References5
OSV
OSV
added 2026/06/26 8:17 p.m.3 views

UBUNTU-CVE-2026-53285

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Wrap DCN32 phantom-plane allocation in DCRUNWITHPREEMPTIONENABLED Why dcn32validatebandwidth wraps dcn32internalvalidatebw with DCFPSTART/DCFPEND. In x86 non-RT, DCFPSTART takes fpregslock, which disables local...

5.5CVSS5.7AI score0.00107EPSS
Exploits0References5
Rows per page
Query Builder