Lucene search
K

205 matches found

SUSE CVE
SUSE CVE
added 2024/06/24 11:17 p.m.1 views

SUSE CVE-2024-36477

In the Linux kernel, the following vulnerability has been resolved: tpmtisspi: Account for SPI header when allocating TPM SPI xfer buffer The TPM SPI transfer mechanism uses MAXSPIFRAMESIZE for computing the maximum transfer length and the size of the transfer buffer. As such, it does not account...

5.5CVSS6.2AI score0.0022EPSS
Exploits0References13
OSV
OSV
added 2024/06/21 12:15 p.m.6 views

AZL-42829 CVE-2024-36477 affecting package kernel for versions less than 6.6.35.1-4

In the Linux kernel, the following vulnerability has been resolved: tpmtisspi: Account for SPI header when allocating TPM SPI xfer buffer The TPM SPI transfer mechanism uses MAXSPIFRAMESIZE for computing the maximum transfer length and the size of the transfer buffer. As such, it does not account...

7.8CVSS6.3AI score0.0022EPSS
Exploits0References1
OSV
OSV
added 2024/06/21 12:15 p.m.8 views

AZL-42857 CVE-2024-36477 affecting package kernel for versions less than 5.15.160.1-1

In the Linux kernel, the following vulnerability has been resolved: tpmtisspi: Account for SPI header when allocating TPM SPI xfer buffer The TPM SPI transfer mechanism uses MAXSPIFRAMESIZE for computing the maximum transfer length and the size of the transfer buffer. As such, it does not account...

7.8CVSS6.3AI score0.0022EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/06/21 12:0 a.m.2 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the tpmtisspi module not considering SPI headers when allocating TPMSPIxfer buffers...

7.8CVSS8.8AI score0.0022EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/06/20 12:0 a.m.3 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which originates from a reference count leak in the spi:uniphier module uniphierspiprobe...

5.5CVSS6.5AI score0.00222EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/06/18 12:0 a.m.3 views

AMD Ryzen Security Breach

AMD Ryzen is a central processing unit CPU from Ultraviolet Semiconductor AMD. A security vulnerability exists in AMD Ryzen that stems from a potential issue in the SPI protection feature that could allow an attacker with kernel-mode access to bypass the native system management mode ROM protecti...

8.2CVSS6.7AI score0.00196EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/06/14 12:0 a.m.8 views

The vulnerability of the __spi_sync() function in the Linux operating system’s Serial Peripheral Interface (SPI) driver allows a hacker to trigger a service failure.

The vulnerability of the spisync function in the drivers/spi/spi.c file of the Linux System on Chip Serial Peripheral Interface SPI driver is related to the assignment of a zero pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.8AI score0.00227EPSS
Exploits0References17Affected Software4
OSV
OSV
added 2024/05/30 4:15 p.m.3 views

DEBIAN-CVE-2024-36930

In the Linux kernel, the following vulnerability has been resolved: spi: fix null pointer dereference within spisync If spisync is called with the non-empty queue and the same spimessage is then reused, the complete callback for the message remains set while the context is cleared, leading to a...

5.5CVSS6AI score0.00227EPSS
Exploits0References1
OSV
OSV
added 2024/05/30 4:15 p.m.2 views

UBUNTU-CVE-2024-36930

In the Linux kernel, the following vulnerability has been resolved: spi: fix null pointer dereference within spisync If spisync is called with the non-empty queue and the same spimessage is then reused, the complete callback for the message remains set while the context is cleared, leading to a...

5.5CVSS6.5AI score0.00227EPSS
Exploits0References12
CNNVD
CNNVD
added 2024/05/21 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a security vulnerability that stems from a vulnerability in the spi module...

4.7CVSS6.4AI score0.00181EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/05/07 2:49 a.m.2 views

SUSE CVE-2022-48696

In the Linux kernel, the following vulnerability has been resolved: regmap: spi: Reserve space for register address/padding Currently the maxrawread and maxrawwrite limits in regmapspi struct do not take into account the additional size of the transmitted register address and padding. This may...

5.5CVSS6.3AI score0.00194EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/05/03 2:9 a.m.1 views

SUSE CVE-2024-27028

In the Linux kernel, the following vulnerability has been resolved: spi: spi-mt65xx: Fix NULL pointer access in interrupt handler The TX buffer in spitransfer can be a NULL pointer, so the interrupt handler may end up writing to the invalid memory and cause crashes. Add a check to trans-txbuf...

5.5CVSS6.7AI score0.01176EPSS
Exploits0References16
Positive Technologies
Positive Technologies
added 2024/04/17 12:0 a.m.4 views

PT-2024-3511 · Amd · Amdpspp2Cmboxv2

Name of the Vulnerable Software and Affected Versions: AmdPspP2CmboxV2 affected versions not specified Description: The issue is related to an exposed SMI handler in AmdPspP2CmboxV2, which can be leveraged to bypass protections put in place by previous UEFI phases, allowing direct access to the S...

7.8CVSS7.8AI score0.00115EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/04/15 11:20 p.m.2 views

SUSE CVE-2021-47195

In the Linux kernel, the following vulnerability has been resolved: spi: fix use-after-free of the addlock mutex Commit 6098475d4cb4 "spi: Fix deadlock when adding SPI controllers on SPI buses" introduced a per-controller mutex. But mutexunlock of said lock is called after the controller is alrea...

5.5CVSS6.2AI score0.00219EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2024/04/10 7:15 p.m.5 views

CVE-2021-47195

In the Linux kernel, the following vulnerability has been resolved: spi: fix use-after-free of the addlock mutex Commit 6098475d4cb4 "spi: Fix deadlock when adding SPI controllers on SPI buses" introduced a per-controller mutex. But mutexunlock of said lock is called after the controller is alrea...

5.5CVSS5.8AI score0.00219EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2024/03/12 12:0 a.m.5 views

PT-2024-3418

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a potential use-after-free in the fsl lpspi probe function in the Linux kernel's SPI driver. This function allocates and disposes of memory manually using spi...

5.5CVSS5.5AI score0.00216EPSS
Exploits0
OSV
OSV
added 2024/03/02 10:15 p.m.1 views

UBUNTU-CVE-2023-52511

In the Linux kernel, the following vulnerability has been resolved: spi: sun6i: reduce DMA RX transfer width to single byte Through empirical testing it has been determined that sometimes RX SPI transfers with DMA enabled return corrupted data. This is down to single or even multiple bytes lost...

5.3CVSS6.1AI score0.00811EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/03/02 12:0 a.m.4 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from a DMA-enabled RX SPI transfer returning corrupted data...

5.3CVSS6AI score0.00811EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2024/01/30 8:0 a.m.5 views

In the Linux kernel before 6.5.9 there is a NULL pointer dereference in send_acknowledge in net/nfc/nci/spi.c.

...

5.5CVSS7.2AI score0.00237EPSS
Exploits0
OSV
OSV
added 2024/01/23 10:15 a.m.1 views

DEBIAN-CVE-2023-46343

In the Linux kernel before 6.5.9, there is a NULL pointer dereference in sendacknowledge in net/nfc/nci/spi.c...

5.5CVSS6.2AI score0.00237EPSS
Exploits0References1
Rows per page
Query Builder