9106 matches found
CVE-2025-2129
Mage AI 0.9.75 is associated with an insecure default initialization of a resource (insecure default authentication setup) that could enable a remote attack. Documents describe a network-vector, high attack complexity, and partial confidentiality/integrity/availability impact. The exploitability ...
CVE-2025-2129 Mage AI insecure default initialization of resource
A vulnerability was found in Mage AI 0.9.75. It has been classified as problematic. This affects an unknown part. The manipulation leads to insecure default initialization of resource. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability i...
CVE-2025-2129 Mage AI insecure default initialization of resource
A vulnerability was found in Mage AI 0.9.75. It has been classified as problematic. This affects an unknown part. The manipulation leads to insecure default initialization of resource. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability i...
Mage AI 安全漏洞
Mage AI is a Mage open source intelligent program for building, running and managing data pipelines. A security vulnerability exists in Mage AI version 0.9.75 that stems from insecure resource initialization...
Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet
...
CVE-2025-21842
CVE-2025-21842 concerns the Linux kernel amdkfd code: a destructor for GTT memory (amdgpu_amdkfd_free_gtt_mem) takes void** but may be called with a void* due to implicit casting, causing errors during execution. The issue was fixed in the kernel (as described in the Astra Linux advisory and the ...
CVE-2025-21842 amdkfd: properly free gang_ctx_bo when failed to init user queue
In the Linux kernel, the following vulnerability has been resolved: amdkfd: properly free gangctxbo when failed to init user queue The destructor of a gtt bo is declared as void amdgpuamdkfdfreegttmemstruct amdgpudevice adev, void memobj; Which takes void as the second parameter. GCC allows passi...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the amdkfd module not properly releasing gangctxbo when it fails to initialize a user queue...
DEBIAN-CVE-2024-58081
In the Linux kernel, the following vulnerability has been resolved: clk: mmp2: call pmgenpdinit only after genpd.name is set Setting the genpd's struct device's name with devsetname is happening within pmgenpdinit. If it remains NULL, things can blow up later, such as when crafting the devfs...
UBUNTU-CVE-2024-58081
In the Linux kernel, the following vulnerability has been resolved: clk: mmp2: call pmgenpdinit only after genpd.name is set Setting the genpd's struct device's name with devsetname is happening within pmgenpdinit. If it remains NULL, things can blow up later, such as when crafting the devfs...
CVE-2024-58075
In the Linux kernel, the following vulnerability has been resolved: crypto: tegra - do not transfer req when tegra init fails The tegracmacinit or tegrashainit function may return an error when memory is exhausted. It should not transfer the request when they return an error...
DEBIAN-CVE-2024-58075
In the Linux kernel, the following vulnerability has been resolved: crypto: tegra - do not transfer req when tegra init fails The tegracmacinit or tegrashainit function may return an error when memory is exhausted. It should not transfer the request when they return an error...
UBUNTU-CVE-2024-58075
In the Linux kernel, the following vulnerability has been resolved: crypto: tegra - do not transfer req when tegra init fails The tegracmacinit or tegrashainit function may return an error when memory is exhausted. It should not transfer the request when they return an error...
CVE-2024-58081 clk: mmp2: call pm_genpd_init() only after genpd.name is set
In the Linux kernel, the following vulnerability has been resolved: clk: mmp2: call pmgenpdinit only after genpd.name is set Setting the genpd's struct device's name with devsetname is happening within pmgenpdinit. If it remains NULL, things can blow up later, such as when crafting the devfs...
CVE-2024-58081
CVE-2024-58081 : In the Linux kernel, a race/ordering flaw in the power-domain (GENPD) debug path can dereference NULL if the genpd struct device name isn’t set before pm_genpd_init() runs. The issue arises when dev_set_name() for the GENPD device occurs inside pm_genpd_init(), and a NULL genpd n...
CVE-2024-58081 clk: mmp2: call pm_genpd_init() only after genpd.name is set
In the Linux kernel, the following vulnerability has been resolved: clk: mmp2: call pmgenpdinit only after genpd.name is set Setting the genpd's struct device's name with devsetname is happening within pmgenpdinit. If it remains NULL, things can blow up later, such as when crafting the devfs...
CVE-2024-58081
In the Linux kernel, the following vulnerability has been resolved: clk: mmp2: call pmgenpdinit only after genpd.name is set Setting the genpd's struct device's name with devsetname is happening within pmgenpdinit. If it remains NULL, things can blow up later, such as when crafting the devfs...
CVE-2024-58075
CVE-2024-58075: In the Linux kernel, crypto: tegra may transfer a request even when tegra_cmac_init/tegra_sha_init returns an error (e.g., memory exhaustion). A patch in kernel code fixes that the request must not be transferred on init failure. Affected: Linux kernel crypto/tegra components; imp...
CVE-2024-58075 crypto: tegra - do not transfer req when tegra init fails
In the Linux kernel, the following vulnerability has been resolved: crypto: tegra - do not transfer req when tegra init fails The tegracmacinit or tegrashainit function may return an error when memory is exhausted. It should not transfer the request when they return an error...
CVE-2024-58075 crypto: tegra - do not transfer req when tegra init fails
In the Linux kernel, the following vulnerability has been resolved: crypto: tegra - do not transfer req when tegra init fails The tegracmacinit or tegrashainit function may return an error when memory is exhausted. It should not transfer the request when they return an error...