33 matches found
fbdev: rivafb: fix divide error in nv3_arb()
...
EUVD-2026-12907
In the Linux kernel, the following vulnerability has been resolved: fbdev: rivafb: fix divide error in nv3arb A userspace program can trigger the RIVA NV3 arbitration code by calling the FBIOPUTVSCREENINFO ioctl on /dev/fb. When doing so, the driver recomputes FIFO arbitration parameters in nv3ar...
CVE-2026-23266
CVE-2026-23266 : In the Linux kernel fbdev rivafb driver, nv3_arb() can divide by state->mclk_khz (derived from PRAMDAC MCLK PLL) if an attacker exposes a zero value, causing a divide error and kernel crash. The fix adds a zero-check for state->mclk_khz before division. Affected: fbdev/riva...
CVE-2026-23266
In the Linux kernel, the following vulnerability has been resolved: fbdev: rivafb: fix divide error in nv3arb A userspace program can trigger the RIVA NV3 arbitration code by calling the FBIOPUTVSCREENINFO ioctl on /dev/fb. When doing so, the driver recomputes FIFO arbitration parameters in nv3ar...
MAL-2024-6670 Malicious code in arb-spider (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in arb-spider (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
@arb-protocol/core (>=2.0.0-alpha.1 <=2.0.0-alpha.6), @arb-protocol/jupiter-adapter (>=2.0.0-alpha.5 <=2.0.0-alpha.6) +18 more potentially affected by CVE-2024-30253 via @solana/web3.js (=1.69.0)
@solana/web3.js NPM version =1.69.0 is affected by a known vulnerability. The following packages have a transitive dependency on @solana/web3.js and may be impacted: - @arb-protocol/core =2.0.0-alpha.1, =2.0.0-alpha.5, =2.0.0-alpha.1, =0.0.0, =1.0.0, =1.0.0, =1.0.0, =0.1.1, =0.1.8, =1.0.63, =1.0....
arb-facades.fr Cross Site Scripting vulnerability OBB-3481347
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
[WP-H5] L1Migrator.sol#migrateETH() dose not send bridgeMinter's ETH to L2 causing ETH get frozen in the contract
Handle WatchPug Vulnerability details Per the arb-bridge-eth code: all msg.value will deposited to callValueRefundAddress on L2 uint256 seqNum = inbox.createRetryableTicketvalue: l1CallValue target, l2CallValue, maxSubmissionCost, from, from, maxGas, gasPriceBid, data ; At L308-L309, ETH held by...
CVE-2020-8336
Lenovo implemented Intel CSME Anti-rollback ARB protections on some ThinkPad models to prevent roll back of CSME Firmware in flash...
CVE-2020-8336
Lenovo implemented Intel CSME Anti-rollback ARB protections on some ThinkPad models to prevent roll back of CSME Firmware in flash...
CVE-2020-8336
CVE-2020-8336 affects Lenovo ThinkPad models where Intel CSME Anti-rollback ARB protections were implemented to prevent rollback of CSME firmware in flash. The Connected documents indicate this is a firmware/boot- firmware protection mechanism, not a software vulnerability in user-space, and the ...
Multi-vendor BIOS Security Vulnerabilities (June 2020) - Lenovo Support US
No description provided...
arb-ls.com XSS vulnerability
Open Bug Bounty ID: OBB-454313 Description| Value ---|--- Affected Website:| arb-ls.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...
DEBIAN-CVE-2008-5378
arb-kill in arb 0.0.20071207.1 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/arbpids temporary file...
CVE-2008-5378
arb-kill in arb 0.0.20071207.1 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/arbpids temporary file...
Arbitrary file deletion
arb-kill in arb 0.0.20071207.1 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/arbpids temporary file...
CVE-2008-5378
arb-kill in arb 0.0.20071207.1 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/arbpids temporary file...
CVE-2008-5378
arb-kill in arb 0.0.20071207.1 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/arbpids temporary file...
CVE-2008-5378
CVE-2008-5378 : The arb-kill utility (arb 0.0.20071207.1) is vulnerable to a local privilege escalation via a symlink attack on a /tmp/arb_pids__ file, allowing a local user to overwrite arbitrary files. The issue is rooted in unsafe handling of the temporary file used by arb, enabling a symlink ...