CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

8.8CVSS8.1AI score0.06282EPSS

Astra Linux – Vulnerability in Chromium

Before version 92.0.4515.107, using free memory in GPUs with Google Chrome allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page...

Exploits12References2

7.5CVSS6.5AI score0.01686EPSS

Astra Linux – Vulnerability in ruby-loofah

Loofah is a general library for manipulating and transforming HTML/XML documents and fragments, built upon the Nokogiri framework. Loofah 2.19.1 contains a inefficient regular expression that is susceptible to excessive backtracking when attempting to sanitize certain SVG attributes. This may lea...

Exploits0References1

5.5CVSS5.3AI score0.00187EPSS

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: drm/amdkfd: Fixed error handling in kfdprocessdeviceinitvm It is necessary to only destroy the ibmem and let the process cleanup worker free the outstanding BOs. Reset the pointer in the pdd-qpd structure to avoid NULL pointer...

5.5CVSS5.7AI score0.00247EPSS

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: A NULL pointer dereference occurred in amdgpudmconnectoraddcommonmodes. In amdgpudmconnectoraddcommonmodes, amdgpudmcreatecommonmode assigns mode to mode, and mode is directly passed to drmmodeprobedadd...

Exploits0References1

5.5CVSS5.9AI score0.00301EPSS

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: drm/amdgpu: The parameters of bo mapping operations need to be clarified. The parameters of amdgpuvmbomap/replacemap/clearingmappings should be verified in a single common place...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: drm/msm: Fixed the crash that occurred during bootup when the separategpudrm modparam was set. The drmgemforeachgpuvmbo call from lookupvma accesses drmgemobj.gpuva.list, which is not initialized when the DRM driver does not...

5.4AI score0.00162EPSS

7.8CVSS7.5AI score0.00577EPSS

Astra Linux – Vulnerability in hdf5

There is an out-of-bounds read vulnerability in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially crafted GIF file can lead to code execution. An attacker can provide a malicious file to exploit this vulnerability...

Exploits1References2

7.8CVSS5.7AI score0.00216EPSS

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm/vc4: kms: The commit pointer of the HVS FIFO is cleared once the operation is completed. Commit 9ec03d7f1ed3 “drm/vc4: kms: Wait for previous FIFO users before committing” introduced a wait for the previous commit that was...

5.5CVSS5.3AI score0.0024EPSS

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid NULL dereferencing of the timing generator Why & How Check whether the assigned timing generator is NULL before accessing its functions, to prevent NULL dereferencing...

7.8CVSS6.1AI score0.00245EPSS

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Added an array index check for hdcp ddc access. Reason Coverity reports an OVERRUN warning. Do not check if the array index is valid. How Check that the msgid is valid and that the array index is valid...

5.5CVSS6.4AI score0.00241EPSS

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: drm/i915/gt: Handling cleanup of partially initialized engines If we abort the driver initialization during the process of engine discovery, some engines will be fully initialized while others will not. Those incompletely...

7.8CVSS6.3AI score0.00248EPSS

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: drm/amd/display: Check msgid before processing a transaction. WHY & HOW “HDCPMESSAGEIDINVALID -1” is not a valid msgid, nor is it a valid array index. Therefore, it needs to be checked before being used. This fix addresses 4...

AstraLinux•added 6 days ago•5 views

Astra Linux – Vulnerability in libgd2

The readheadertga function in gdtga.c within the GD Graphics Library also known as LibGD, as of 2.3.2, allows remote attackers to cause a denial of service out-of-bounds read through a crafted TGA file...

6.5CVSS6.8AI score0.01869EPSS

Exploits1References2

AstraLinux•added 6 days ago•1 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Fixed the null pointer dereferencing issue for vega10HWmogr. Checked the return value and performed null pointer handling to avoid null pointer dereferencing...

5.5CVSS6AI score0.00212EPSS

AstraLinux•added 6 days ago•5 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: fixed a memory leak in vmwgmridmangetnode When idaallocmax fails, resources allocated before should be freed, including those allocated by kmalloc and ttmresourceinit...

5.5CVSS5.8AI score0.00228EPSS

7.8CVSS6.3AI score0.00248EPSS

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: drm/i915/gem: The i915gemcontext link is now moved under ref protection. i915perf assumes that it can use the i915gemcontext reference to protect its i915-gem.contexts.list iteration. However, this requires that we do not remo...