7 matches found
EUVD-2014-5276
Malware in sbrugna...
SUSE CVE-2025-37819
In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v2m: Prevent use after free of gicv2mgetfwnode With ACPI in place, gicv2mgetfwnode is registered with the pci subsystem as pcimsigetfwnodecb, which may get invoked at runtime during a PCI host bridge probe. But, the...
CVE-2025-37819
CVE-2025-37819 affects the Linux kernel and relates to a use-after-free in irqchip/gic-v2m: gicv2m_get_fwnode() registered as pci_msi_get_fwnode_cb(). With ACPI, this callback can be invoked during PCI host bridge probing but is marked __init and freed prematurely, risking a crash (as per the vul...
Security update for the Linux Kernel (important)
The openSUSE Leap 42.3 kernel was updated to 4.4.85 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-14051: An integer overflow in the qla2x00sysfswriteoptromctl function in drivers/scsi/qla2xxx/qlaattr.c in the Linux kernel allowed local users to cause...
DEBIAN-CVE-2014-5388
Off-by-one error in the pciread function in the ACPI PCI hotplug interface hw/acpi/pcihp.c in QEMU allows local guest users to obtain sensitive information and have other unspecified impact related to a crafted PCI device that triggers memory corruption...
USN-2409-1: QEMU vulnerabilities
Laszlo Ersek discovered that QEMU incorrectly handled memory in the vga device. A malicious guest could possibly use this issue to read arbitrary host memory. This issue only affected Ubuntu 14.04 LTS and Ubuntu 14.10. CVE-2014-3615 Xavier Mehrenberger and Stephane Duverger discovered that QEMU...
UBUNTU-CVE-2014-5388
Off-by-one error in the pciread function in the ACPI PCI hotplug interface hw/acpi/pcihp.c in QEMU allows local guest users to obtain sensitive information and have other unspecified impact related to a crafted PCI device that triggers memory corruption...