CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 5 days ago•2 views

UBUNTU-CVE-2026-53206

In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add bounds check for firmware runtime memory Validate that the firmware runtime memory specified in the image header is properly aligned and sized to hold the firmware image. This prevents errors during memory...

5.7AI score0.00162EPSS

Exploits0References5

OSV•added 5 days ago•2 views

UBUNTU-CVE-2026-53202

In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix signed integer truncation in IPC receive Fix potential buffer overflow where firmware-supplied datasize is cast to signed int before being used in mint. Large unsigned values = 0x80000000 become negative, causing...

7.8CVSS6AI score0.00152EPSS

Exploits0References7

CVE•added 5 days ago•9 views

CVE-2026-53205

The CVE-2026-53205 issue is in the Linux kernel Intel Versatile Processing Unit (IVPU) accelerator driver (accel/ivpu). It stems from insufficient validation of read/write indices in the firmware log buffer, allowing potential out-of-bounds access if firmware supplies invalid indices. Affected sy...

7.1CVSS6AI score0.00131EPSS

Debian CVE•added 5 days ago•4 views

CVE-2026-53206

5.6AI score0.00162EPSS

EUVD•added 5 days ago•3 views

EUVD-2026-39294

In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add buffer overflow check in MS getinfoioctl Add validation that the info size returned from the metric stream info query is not exceeded when checked against the allocated buffer size. If the firmware returns a size...

6AI score0.00144EPSS

Debian CVE•added 5 days ago•4 views

CVE-2026-53203

7.1CVSS5.9AI score0.00144EPSS

Debian CVE•added 5 days ago•5 views

CVE-2026-53202

7.8CVSS6AI score0.00152EPSS

Cvelist•added 5 days ago•25 views

CVE-2026-53202 accel/ivpu: Fix signed integer truncation in IPC receive

7.8CVSS0.00152EPSS

RedhatCVE•added 2026/05/21 3:29 p.m.•14 views

CVE-2026-43498

A flaw was found in the Linux kernel's accel/ivpu module. This vulnerability allows for the re-exporting of imported Graphics Execution Manager GEM buffers. When these buffers are re-exported, it leads to a loss of their original flag settings, which can result in incorrect device access and...

7.8CVSS5.8AI score0.00113EPSS

CVE•added 2026/05/21 12:17 p.m.•13 views

CVE-2026-43498

CVE-2026-43498 is a Linux kernel issue in the accel/ivpu path. The vulnerability stems from the ability to re-export imported GEM buffers; a fix adds a custom prime_handle_to_fd callback that checks if the GEM object is imported and returns -EOPNOTSUPP in that case. Under re-export scenarios, buf...

7.8CVSS5.9AI score0.00113EPSS

Exploits0References2Affected Software1

Cvelist•added 2025/12/24 12:9 p.m.•28 views

CVE-2025-68749 accel/ivpu: Fix race condition when unbinding BOs

In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix race condition when unbinding BOs Fix 'Memory manager not clean during takedown' warning that occurs when ivpugembofree removes the BO from the BOs list before it gets unmapped. Then fileprivunbind triggers a...

0.00086EPSS

NVD•added 2025/12/24 11:16 a.m.•3 views

CVE-2025-68730

In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix page fault in ivpubounbindallbosfromcontext Don't add BO to the vdev-bolist in ivpugemcreateobject. When failure happens inside drmgemshmemcreate, the BO is not fully created and ivpugembofree callback will not be...

0.00155EPSS

UbuntuCve•added 2025/12/24 11:16 a.m.•2 views

CVE-2025-68730

5.7AI score0.00155EPSS

Exploits0References10

Tenable Nessus•added 2025/12/24 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-68749

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - accel/ivpu: Fix race condition when unbinding BOs Fix 'Memory manager not clean during takedown' warning that occurs when ivpugembofree removes the BO from the...

4.7CVSS5.8AI score0.00086EPSS

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2024-52569

Malicious code in bioql PyPI...

7.3AI score0.0017EPSS

Exploits0References2

Cvelist•added 2025/10/01 7:42 a.m.•6 views

CVE-2025-39896 accel/ivpu: Prevent recovery work from being queued during device removal

In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Prevent recovery work from being queued during device removal Use disableworksync instead of cancelworksync in ivpudevfini to ensure that no new recovery work items can be queued after device removal has started...

0.00137EPSS

Tenable Nessus•added 2025/08/15 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-37848

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix PM related deadlocks in MS IOCTLs Prevent runtime resume/suspend while MS...

5.5CVSS6.2AI score0.00167EPSS

OSV•added 2025/05/20 4:15 p.m.•2 views

UBUNTU-CVE-2025-37907

In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix locking order in ivpujobsubmit Fix deadlock in job submission and abort handling. When a thread aborts currently executing jobs due to a fault, it first locks the global lock protecting submittedjobs 1. After the...

5.5CVSS6.2AI score0.00119EPSS

Exploits0References12

Debian CVE•added 2025/01/11 12:35 p.m.•7 views

CVE-2024-54193

In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix WARN in ivpuipcsendreceiveinternal Move pmruntimesetactive to ivpupminit so when ivpuipcsendreceiveinternal is executed before ivpupmenable it already has correct runtime state, even if last resume was not...

5.5CVSS5.6AI score0.00172EPSS