Ubuntu 22.04 LTS : Linux kernel (Intel IoTG) vulnerabilities (USN-6795-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6795-1 advisory. Zheng Wang discovered that the Broadcom FullMAC WLAN driver in the Linux kernel contained a race condition during device removal, leading to a use-...

[SECURITY] Fedora 40 Update: loupe-46.2-2.fc40

An image viewer application written with GTK 4, Libadwaita and Rust. Features: - Fast GPU accelerated image rendering with tiled rendering for SVGs - Extendable and sandboxed expect SVG image decoding - Support for more than 15 image formats by default - Extensive support for touchpad and...

SUSE CVE-2021-47446

In the Linux kernel, the following vulnerability has been resolved: drm/msm/a4xx: fix error handling in a4xxgpuinit This code returns 1 on error instead of a negative error. It leads to an Oops in the caller. A second problem is that the check for "if ret != -ENODATA" cannot be true because "ret"...

SUSE CVE-2021-47447

In the Linux kernel, the following vulnerability has been resolved: drm/msm/a3xx: fix error handling in a3xxgpuinit These error paths returned 1 on failure, instead of a negative error code. This would lead to an Oops in the caller. A second problem is that the check for "if ret != -ENODATA" did...

UBUNTU-CVE-2021-47535

In the Linux kernel, the following vulnerability has been resolved: drm/msm/a6xx: Allocate enough space for GMU registers In commit 142639a52a01 "drm/msm/a6xx: fix crashstate capture for A650" we changed a6xxgetgmuregisters to read 3 sets of registers. Unfortunately, we didn't change the memory...

CVE-2024-33223

An issue in the component IOMap64.sys of ASUSTeK Computer Inc ASUS GPU TweakII v1.4.5.2 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests...

CVE-2024-33223

CVE-2024-33223 affects ASUS GPU TweakII v1.4.5.2; the issue lies in the IOMap64.sys component, enabling attackers to escalate privileges and execute arbitrary code by sending crafted IOCTL requests. Mitigation from PT-Security recommends disabling IOMap64.sys until a patch is available. Documenta...

DEBIAN-CVE-2021-47447

In the Linux kernel, the following vulnerability has been resolved: drm/msm/a3xx: fix error handling in a3xxgpuinit These error paths returned 1 on failure, instead of a negative error code. This would lead to an Oops in the caller. A second problem is that the check for "if ret != -ENODATA" did...

UBUNTU-CVE-2021-47447

In the Linux kernel, the following vulnerability has been resolved: drm/msm/a3xx: fix error handling in a3xxgpuinit These error paths returned 1 on failure, instead of a negative error code. This would lead to an Oops in the caller. A second problem is that the check for "if ret != -ENODATA" did...

UBUNTU-CVE-2021-47446

In the Linux kernel, the following vulnerability has been resolved: drm/msm/a4xx: fix error handling in a4xxgpuinit This code returns 1 on error instead of a negative error. It leads to an Oops in the caller. A second problem is that the check for "if ret != -ENODATA" cannot be true because "ret"...

ASUS GPUTweak II 安全漏洞

ASUS GPUTweak II is a driver from Asus China Inc. It is used to drive more FPS. A security vulnerability exists in ASUS GPUTweak II version v1.4.5.2, which stems from a security flaw in the component IOMap64.sys. The vulnerability can be exploited by an attacker to elevate privileges and execute...

PT-2024-7972 · Asus · Asus Gputweak Ii

Name of the Vulnerable Software and Affected Versions: ASUS GPU TweakII version 1.4.5.2 Description: The issue is related to the component IOMap64.sys of ASUS GPU TweakII, which allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests. This is due to...

DEBIAN-CVE-2021-47421

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: handle the case of pcichanneliofrozen only in amdgpupciresume In current code, when a PCI error state pcichannelionormal is detectd, it will report PCIERSRESULTCANRECOVER status to PCI driver, and PCI driver will...

DEBIAN-CVE-2021-47410

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: fix svmmigratefini warning Device manager releases device-specific resources when a driver disconnects from a device, devmmemunmappages and devmreleasememregion calls in svmmigratefini are redundant. It causes below...

CVE-2024-35931

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Skip do PCI error slot reset during RAS recovery Why: The PCI error slot reset maybe triggered after inject ue to UMC multi times, this caused system hang. 557.371857 amdgpu 0000:af:00.0: amdgpu: GPU reset succeeded,...

DEBIAN-CVE-2024-35931

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Skip do PCI error slot reset during RAS recovery Why: The PCI error slot reset maybe triggered after inject ue to UMC multi times, this caused system hang. 557.371857 amdgpu 0000:af:00.0: amdgpu: GPU reset succeeded,...

AZL-67749 CVE-2024-35931 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Skip do PCI error slot reset during RAS recovery Why: The PCI error slot reset maybe triggered after inject ue to UMC multi times, this caused system hang. 557.371857 amdgpu 0000:af:00.0: amdgpu: GPU reset succeeded,...

UBUNTU-CVE-2024-35931

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Skip do PCI error slot reset during RAS recovery Why: The PCI error slot reset maybe triggered after inject ue to UMC multi times, this caused system hang. 557.371857 amdgpu 0000:af:00.0: amdgpu: GPU reset succeeded,...

CVE-2024-35931 drm/amdgpu: Skip do PCI error slot reset during RAS recovery

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Skip do PCI error slot reset during RAS recovery Why: The PCI error slot reset maybe triggered after inject ue to UMC multi times, this caused system hang. 557.371857 amdgpu 0000:af:00.0: amdgpu: GPU reset succeeded,...

CVE-2024-27411

A flaw was found in the nouveau module in the Linux kernel. In multi-GPU setups, a system-wide rendering freeze can occur when suspending/resuming the system because some resources are released in the wrong place, resulting in a denial of service...