Lucene search
+L

106 matches found

AlmaLinux
AlmaLinux
added 2026/01/26 12:0 a.m.17 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Bluetooth: hcievent: call disconnect callback before deleting conn CVE-2023-53673 kernel: ASoC: Intel: bytcrrt5640: Fix invalid quirk input mapping CVE-2025-40154 kernel: Linux kernel:...

7.8CVSS6.6AI score0.00319EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2026/01/25 3:15 p.m.7 views

CVE-2026-23008

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix KMS with 3D on HW version 10 HW version 10 does not have GB Surfaces so there is no backing buffer for surface backed FBs. This would result in a nullptr dereference and crash the driver causing a black screen...

5.5CVSS5.9AI score0.00135EPSS
Exploits0References4
EUVD
EUVD
added 2026/01/25 2:36 p.m.9 views

EUVD-2026-4625

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix KMS with 3D on HW version 10 HW version 10 does not have GB Surfaces so there is no backing buffer for surface backed FBs. This would result in a nullptr dereference and crash the driver causing a black screen...

5.5AI score0.00135EPSS
Exploits0References3
OSV
OSV
added 2026/01/24 9:6 a.m.10 views

RLSA-2026:0793 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: drm/xe: Make dma-fences compliant with the safe access rules CVE-2025-38703 kernel: smb: client: let recvdone verify dataoffset, datalength and remainingdatalength CVE-2025-39933 kernel:...

7.8CVSS5.5AI score0.00319EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/01/24 12:0 a.m.8 views

RockyLinux 9 : kernel (RLSA-2026:0793)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:0793 advisory. kernel: drm/xe: Make dma-fences compliant with the safe access rules CVE-2025-38703 kernel: smb: client: let recvdone verify dataoffset, datalength and...

7.8CVSS5.6AI score0.00319EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2026/01/21 10:12 a.m.4 views

kernel: drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Validate command header size against SVGACMDMAXDATASIZE This data originates from userspace and is used in buffer offset calculations which could potentially overflow causing an out-of-bounds access...

5.9AI score0.00319EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/12/10 12:38 a.m.7 views

SUSE CVE-2022-50667

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix memory leak in vmwmksstataddioctl If the copy of the description string from userspace fails, then the page for the instance descriptor doesn't get freed before returning -EFAULT, which leads to a memleak...

5.5CVSS6.4AI score0.00208EPSS
Exploits0References5
NVD
NVD
added 2025/12/09 4:17 p.m.5 views

CVE-2022-50667

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix memory leak in vmwmksstataddioctl If the copy of the description string from userspace fails, then the page for the instance descriptor doesn't get freed before returning -EFAULT, which leads to a memleak...

0.00208EPSS
Exploits0References4
OSV
OSV
added 2025/12/09 4:17 p.m.3 views

DEBIAN-CVE-2022-50667

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix memory leak in vmwmksstataddioctl If the copy of the description string from userspace fails, then the page for the instance descriptor doesn't get freed before returning -EFAULT, which leads to a memleak...

5.1AI score0.00208EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/12/09 1:29 a.m.7 views

CVE-2022-50667

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix memory leak in vmwmksstataddioctl If the copy of the description string from userspace fails, then the page for the instance descriptor doesn't get freed before returning -EFAULT, which leads to a memleak...

5.1AI score0.00208EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/12/08 9:1 a.m.5 views

drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE

...

7.3CVSS7AI score0.00319EPSS
Exploits0
CVE
CVE
added 2025/12/06 9:51 p.m.91 views

CVE-2025-40277

Mode C: Vulnerability: CVE-2025-40277 affects the Linux kernel, specifically drm/vmwgfx. Root cause: insufficient validation of the command header size against SVGA_CMD_MAX_DATASIZE, allowing an input originating from userspace to influence buffer offset calculations and potentially cause an out-...

6.6AI score0.00319EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/12/06 12:0 a.m.7 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from drm vmwgfx not validating command header sizes, which could result in a buffer overflow...

6.5AI score0.00319EPSS
Exploits0References11
Microsoft CVE
Microsoft CVE
added 2025/11/13 9:1 a.m.4 views

drm/vmwgfx: Fix Use-after-free in validation

...

4.7CVSS7AI score0.00193EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/11/13 12:24 a.m.5 views

SUSE CVE-2025-40111

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix Use-after-free in validation Nodes stored in the validation duplicates hashtable come from an arena allocator that is cleared at the end of vmwexecbufprocess. All nodes are expected to be cleared in...

4.7CVSS6.5AI score0.00193EPSS
Exploits0References20
Cvelist
Cvelist
added 2025/11/12 1:7 a.m.9 views

CVE-2025-40111 drm/vmwgfx: Fix Use-after-free in validation

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix Use-after-free in validation Nodes stored in the validation duplicates hashtable come from an arena allocator that is cleared at the end of vmwexecbufprocess. All nodes are expected to be cleared in...

0.00193EPSS
Exploits0References8
CVE
CVE
added 2025/11/12 1:7 a.m.40 views

CVE-2025-40110

The CVE-2025-40110 entry concerns the Linux kernel: for the DRM/vmwgfx component, a null-pointer dereference in the cursor snooper was fixed. The patch adds a validation that the actual surface resource exists before using the cursor snooper, addressing a scenario where SVGA3D_INVALID_ID could be...

6.1AI score0.00188EPSS
Exploits0References7
OSV
OSV
added 2025/10/01 12:15 p.m.6 views

UBUNTU-CVE-2022-50440

In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Validate the box size for the snooped cursor Invalid userspace dma surface copies could potentially overflow the memcpy from the surface to the snooped image leading to crashes. To fix it the dimensions of the copybox...

5.5CVSS5.9AI score0.00149EPSS
Exploits0References12
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.9 views

The vulnerability of DRM/VMWGFX components in Linux kernel allows a perpetrator to trigger a service failure.

The vulnerability of DRM/VMWGFX components in Linux operating systems is related to incorrect calculations in their functions. Exploiting this vulnerability can allow a perpetrator to cause service failures...

5.5CVSS6.6AI score0.00209EPSS
Exploits0References11Affected Software5
SUSE Linux
SUSE Linux
added 2025/03/11 1:41 p.m.2 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-36280: Fixed out-of-bounds memory access vulnerability found in vmwgfx driver bsc1203332. CVE-2022-48742: rtnetlink: make sure to refresh masterdev/mops in...

8.8CVSS8.4AI score0.02033EPSS
Exploits0References370
Rows per page
Query Builder