Lucene search
K

387 matches found

Ubuntu
Ubuntu
added 2021/04/13 10:6 p.m.150 views

USN-4911-1: Linux kernel (OEM) vulnerabilities

It was discovered that the Nouveau GPU driver in the Linux kernel did not properly handle error conditions in some situations. A local attacker could use this to cause a denial of service system crash. CVE-2020-25639 Jan Beulich discovered that the Xen netback backend in the Linux kernel did not...

7.8CVSS6.6AI score0.00708EPSS
Exploits1
OSV
OSV
added 2021/04/13 10:6 p.m.4 views

USN-4911-1 linux-oem-5.10 vulnerabilities

It was discovered that the Nouveau GPU driver in the Linux kernel did not properly handle error conditions in some situations. A local attacker could use this to cause a denial of service system crash. CVE-2020-25639 Jan Beulich discovered that the Xen netback backend in the Linux kernel did not...

7.8CVSS6.7AI score0.00708EPSS
Exploits1References5
Mageia
Mageia
added 2021/03/22 5:17 p.m.80 views

Updated kernel packages fix security issues

This kernel update is based on upstream 5.10.25 and fixes at least the following security issues: Unprivileged BPF programs running on affected systems can bypass the protection and execute speculatively out-of-bounds loads from any location within the kernel memory. This can be abused to extract...

7.8CVSS2.1AI score0.02079EPSS
Exploits3References7
Microsoft CVE
Microsoft CVE
added 2021/03/19 7:0 a.m.10 views

An issue was discovered in the Linux kernel through 5.11.6. fastrpc_internal_invoke in drivers/misc/fastrpc.c does not prevent user applications from sending kernel RPC messages aka CID-20c40794eb85. This is a related issue to CVE-2019-2308.

...

7.8CVSS7.7AI score0.00305EPSS
Exploits0
OSV
OSV
added 2021/03/15 5:15 a.m.6 views

AZL-6535 CVE-2021-28375 affecting package kernel for versions less than 5.10.78.1-1

An issue was discovered in the Linux kernel through 5.11.6. fastrpcinternalinvoke in drivers/misc/fastrpc.c does not prevent user applications from sending kernel RPC messages, aka CID-20c40794eb85. This is a related issue to CVE-2019-2308...

7.8CVSS6.6AI score0.00305EPSS
Exploits0References1
OSV
OSV
added 2021/03/15 5:15 a.m.5 views

DEBIAN-CVE-2021-28375

An issue was discovered in the Linux kernel through 5.11.6. fastrpcinternalinvoke in drivers/misc/fastrpc.c does not prevent user applications from sending kernel RPC messages, aka CID-20c40794eb85. This is a related issue to CVE-2019-2308...

7.8CVSS6.2AI score0.00305EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/03/15 5:15 a.m.43 views

CVE-2021-28375

An issue was discovered in the Linux kernel through 5.11.6. fastrpcinternalinvoke in drivers/misc/fastrpc.c does not prevent user applications from sending kernel RPC messages, aka CID-20c40794eb85. This is a related issue to CVE-2019-2308...

7.8CVSS6.7AI score0.00305EPSS
Exploits0References8
OSV
OSV
added 2021/03/15 5:15 a.m.2 views

UBUNTU-CVE-2021-28375

An issue was discovered in the Linux kernel through 5.11.6. fastrpcinternalinvoke in drivers/misc/fastrpc.c does not prevent user applications from sending kernel RPC messages, aka CID-20c40794eb85. This is a related issue to CVE-2019-2308...

7.8CVSS6.7AI score0.00305EPSS
Exploits0References9
CNNVD
CNNVD
added 2021/03/15 12:0 a.m.1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from fastrpc.c not preventing user applications from sending kernel RPC messages. No details of the vulnerability...

7.8CVSS5.5AI score0.00305EPSS
Exploits0References22
Positive Technologies
Positive Technologies
added 2021/03/15 12:0 a.m.11 views

PT-2021-1512 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.11.6 Description: An issue was discovered in the Linux kernel where the fastrpc internal invoke function in drivers/misc/fastrpc.c does not prevent user applications from sending kernel RPC messages. This coul...

9.8CVSS7AI score0.88106EPSS
Exploits195References1022
NVD
NVD
added 2021/02/22 7:15 a.m.25 views

CVE-2020-11277

Possible race condition during async fastrpc session after sending RPC message due to the fastrpc ctx gets free during async session in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile...

7.4CVSS0.00115EPSS
Exploits0References1
Prion
Prion
added 2021/02/22 7:15 a.m.17 views

Race condition

Possible race condition during async fastrpc session after sending RPC message due to the fastrpc ctx gets free during async session in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile...

6.9CVSS7.6AI score0.00115EPSS
Exploits0References1
CVE
CVE
added 2021/02/22 6:26 a.m.129 views

CVE-2020-11277

CVE-2020-11277 describes a race condition in Qualcomm/Snapdragon platforms (Compute, Industrial IoT, Mobile) during an async fastrpc session: the fastrpc context can be freed after sending an RPC, creating a potential vulnerability during async processing. The provided sources (Red Hat advisory a...

7.4CVSS7.5AI score0.00115EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2021/02/01 12:0 a.m.6 views

Qualcomm Dsp Service Resource Management Error Vulnerability

Qualcomm Dsp Service is a digital signal processor from Qualcomm Incorporated that meets the needs of mobile platforms for multimedia and modem functionality, deep embedded processing. A security vulnerability exists in Qualcomm Dsp Service that arises from the fastrpc ctx being free during an...

7.4CVSS7.1AI score0.00115EPSS
Exploits0References3
NVD
NVD
added 2020/11/12 10:15 a.m.24 views

CVE-2020-11206

Possible buffer overflow in Fastrpc while handling received parameters due to lack of validation on input parameters' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8098, MSM8998, QCM4290, QCM6125, QCS410, QCS4290, QCS610,...

7.8CVSS8AI score0.01819EPSS
Exploits1References3
Prion
Prion
added 2020/11/12 10:15 a.m.20 views

Buffer overflow

Possible buffer overflow in Fastrpc while handling received parameters due to lack of validation on input parameters' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8098, MSM8998, QCM4290, QCM6125, QCS410, QCS4290, QCS610,...

7.2CVSS8AI score0.01819EPSS
Exploits1References3
Cvelist
Cvelist
added 2020/11/12 10:0 a.m.25 views

CVE-2020-11206

Possible buffer overflow in Fastrpc while handling received parameters due to lack of validation on input parameters' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8098, MSM8998, QCM4290, QCM6125, QCS410, QCS4290, QCS610,...

8AI score0.01819EPSS
Exploits1References3
CVE
CVE
added 2020/11/12 10:0 a.m.59 views

CVE-2020-11206

CVE-2020-11206 describes a possible buffer overflow in Qualcomm’s Fastrpc when handling received parameters due to insufficient input validation. Affected devices span Snapdragon Auto, Compute, Consumer IoT, Industrial IoT, and Mobile families, including APQ8098 through SM8350P variants. Root cau...

7.8CVSS7.9AI score0.01819EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2020/11/12 12:0 a.m.6 views

PT-2020-12595 · Qualcomm · Snapdragon Auto +5

Name of the Vulnerable Software and Affected Versions: Snapdragon Auto versions APQ8098 through SM8350P Snapdragon Compute versions APQ8098 through SM8350P Snapdragon Consumer IOT versions APQ8098 through SM8350P Snapdragon Industrial IOT versions APQ8098 through SM8350P Snapdragon Mobile version...

7.8CVSS8AI score0.01819EPSS
Exploits1References5
Prion
Prion
added 2020/11/02 7:15 a.m.22 views

Race condition

u'Two threads running simultaneously from user space can lead to race condition in fastRPC driver' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wir...

4.4CVSS6.9AI score0.00139EPSS
Exploits0References2
Rows per page
Query Builder