Lucene search
K

102 matches found

RedhatCVE
RedhatCVE
added 4 days ago5 views

CVE-2026-53283

A flaw was found in the Linux kernel's AMD IOMMU Input/Output Memory Management Unit driver. A local attacker or a specially configured PCI device could trigger an out-of-bounds read in the rlookupamdiommu function. This vulnerability occurs when a PCI device's Bus Device Function BDF is not...

5.5CVSS5.8AI score0.00166EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 5 days ago6 views

SUSE CVE-2026-53283

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Bounds-check devid in rlookupamdiommu iommudeviceregister walks every device on the PCI bus via busforeachdev and calls amdiommuprobedevice for each. The inlined checkdevice path computes the device's sbdf, calls...

5.8AI score0.00166EPSS
Exploits0References3
NVD
NVD
added last week9 views

CVE-2026-53283

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Bounds-check devid in rlookupamdiommu iommudeviceregister walks every device on the PCI bus via busforeachdev and calls amdiommuprobedevice for each. The inlined checkdevice path computes the device's sbdf, calls...

0.00166EPSS
Exploits0References3
OSV
OSV
added last week2 views

UBUNTU-CVE-2026-53283

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Bounds-check devid in rlookupamdiommu iommudeviceregister walks every device on the PCI bus via busforeachdev and calls amdiommuprobedevice for each. The inlined checkdevice path computes the device's sbdf, calls...

5.8AI score0.00166EPSS
Exploits0References6
CVE
CVE
added last week7 views

CVE-2026-53283

CVE-2026-53283 covers a bounds-check failure in the Linux kernel AMD IOMMU path. The issue arises in __rlookup_amd_iommu(): rlookup_table[devid] is indexed without an internal bounds check, and iommu_device_register() iterates all PCI devices, calling amd_iommu_probe_device() for each. If a devic...

5.8AI score0.00166EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added last week7 views

CVE-2026-53053

A flaw was found in the Linux kernel's IOMMU Input/Output Memory Management Unit AMD driver. The clonealias function incorrectly uses the device ID devid when handling alias devices. This can lead to the propagation of wrong or stale Device Table Entry DTE entries to alias devices, potentially...

8.8CVSS5.8AI score0.00128EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/06/24 4:29 p.m.26 views

CVE-2026-53053 iommu/amd: Fix clone_alias() to use the original device's devid

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Fix clonealias to use the original device's devid Currently clonealias assumes first argument pdev is always the original device pointer. This function is called by pciforeachdmaalias which based on topology decides to...

8.8CVSS0.00128EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Fixed a potential out-of-bounds read in iommummioshow. In iommummiowrite, the offset provided by the user is validated using the check: iommu-dbgmmiooffset iommu-mmiophysend - 4. This assumes a 4-byte access. However,...

5.7AI score0.00155EPSS
Exploits0References2
OSV
OSV
added 2026/06/05 6:24 p.m.8 views

OPENSUSE-SU-2026:20912-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2023-20585: iommu/amd: Use maximum Event log buffer size when SNP is enabled on Family 0x19 bsc1243603. - CVE-2026-3150: bcache: fix cacheddev.sbbio use-after-free and...

9.8CVSS6.9AI score0.005EPSS
Exploits6References83
OSV
OSV
added 2026/06/05 5:10 p.m.3 views

SUSE-SU-2026:22087-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2023-20585: iommu/amd: Use maximum Event log buffer size when SNP is enabled on Family 0x19 bsc1243603. - CVE-2026-3150: bcache: fix cacheddev.sbbio use-after-free and...

9.8CVSS7.1AI score0.005EPSS
Exploits6References84
SUSE CVE
SUSE CVE
added 2026/05/09 2:40 a.m.7 views

SUSE CVE-2026-43220

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: serialize sequence allocation under concurrent TLB invalidations With concurrent TLB invalidations, completion wait randomly gets timed out because cmdsemval was incremented outside the IOMMU spinlock, allowing...

5.7AI score0.00127EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/05/07 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-43220

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iommu/amd: serialize sequence allocation under concurrent TLB invalidations With concurrent TLB invalidations, completion wait randomly gets timed out because...

5.5CVSS6AI score0.00127EPSS
Exploits1References2
EUVD
EUVD
added 2026/05/06 12:30 p.m.7 views

EUVD-2026-27816

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: move waitonsem out of spinlock With iommu.strict=1, the existing completion wait path can cause soft lockups under stressed environment, as waitonsem busy-waits under the spinlock with interrupts disabled. Move the...

5.8AI score0.0034EPSS
Exploits0References6
EUVD
EUVD
added 2026/05/06 12:30 p.m.11 views

EUVD-2026-27780

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: serialize sequence allocation under concurrent TLB invalidations With concurrent TLB invalidations, completion wait randomly gets timed out because cmdsemval was incremented outside the IOMMU spinlock, allowing...

5.7AI score0.00127EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2026/05/06 11:28 a.m.9 views

CVE-2026-43253

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: move waitonsem out of spinlock With iommu.strict=1, the existing completion wait path can cause soft lockups under stressed environment, as waitonsem busy-waits under the spinlock with interrupts disabled. Move the...

7.5CVSS5.7AI score0.0034EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.8 views

PT-2026-37593

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description When iommu.strict is set to 1, the completion wait path can cause soft lockups in stressed environments. This occurs because the wait on sem function busy-waits while holding a spinlock...

7.5CVSS5.5AI score0.0034EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the AMD IOMMU driver’s use of the waitonsem function within a spinlock, potentially leading to a...

7.5CVSS5.8AI score0.0034EPSS
Exploits0References1
Oracle linux
Oracle linux
added 2026/05/01 12:0 a.m.10 views

Unbreakable Enterprise kernel security update: Copy Fail

5.15.0-319.201.4.4 - crypto: algifaead - Fix minimum RX size check for decryption Herbert Xu Orabug: 39291961 - crypto: afalg - Fix page reassignment overflow in afalgpulltsgl Herbert Xu Orabug: 39291961 - crypto: authencesn - Fix src offset when decrypting in-place Herbert Xu Orabug: 39291961 -...

7.8CVSS6.1AI score0.96267EPSS
Exploits228
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.9 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010907)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010907 advisory. In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Add a length limitation for the ivrsacpihid command-line parameter The 'acpiid' buffer...

6.5AI score0.00206EPSS
Exploits0References4
OSV
OSV
added 2026/01/05 10:15 a.m.3 views

UBUNTU-CVE-2025-68760

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Fix potential out-of-bounds read in iommummioshow In iommummiowrite, it validates the user-provided offset with the check: iommu-dbgmmiooffset iommu-mmiophysend - 4. This assumes a 4-byte access. However, the...

5.7AI score0.00155EPSS
Exploits0References12
Rows per page
Query Builder