Lucene search
K

33 matches found

SUSE CVE
SUSE CVE
added 2025/12/09 12:24 a.m.7 views

SUSE CVE-2025-40322

In the Linux kernel, the following vulnerability has been resolved: fbdev: bitblit: bound-check glyph index in bitputcs bitputcsaligned/unaligned derived the glyph pointer from the character value masked by 0xff/0x1ff, which may exceed the actual font's glyph count and read past the end of the...

5.3CVSS6.2AI score0.00168EPSS
Exploits0References26
EUVD
EUVD
added 2025/12/08 3:31 a.m.2 views

EUVD-2025-201623

In the Linux kernel, the following vulnerability has been resolved: fbdev: bitblit: bound-check glyph index in bitputcs bitputcsaligned/unaligned derived the glyph pointer from the character value masked by 0xff/0x1ff, which may exceed the actual font's glyph count and read past the end of the...

5.9AI score0.00168EPSS
Exploits0References9
OSV
OSV
added 2025/12/08 1:16 a.m.3 views

DEBIAN-CVE-2025-40322

In the Linux kernel, the following vulnerability has been resolved: fbdev: bitblit: bound-check glyph index in bitputcs bitputcsaligned/unaligned derived the glyph pointer from the character value masked by 0xff/0x1ff, which may exceed the actual font's glyph count and read past the end of the...

5.3AI score0.00168EPSS
Exploits0References1
OSV
OSV
added 2025/12/08 1:16 a.m.2 views

UBUNTU-CVE-2025-40322

In the Linux kernel, the following vulnerability has been resolved: fbdev: bitblit: bound-check glyph index in bitputcs bitputcsaligned/unaligned derived the glyph pointer from the character value masked by 0xff/0x1ff, which may exceed the actual font's glyph count and read past the end of the...

6.1AI score0.00168EPSS
Exploits0References36
Cvelist
Cvelist
added 2025/12/08 12:46 a.m.23 views

CVE-2025-40322 fbdev: bitblit: bound-check glyph index in bit_putcs*

In the Linux kernel, the following vulnerability has been resolved: fbdev: bitblit: bound-check glyph index in bitputcs bitputcsaligned/unaligned derived the glyph pointer from the character value masked by 0xff/0x1ff, which may exceed the actual font's glyph count and read past the end of the...

0.00168EPSS
Exploits0References8
CVE
CVE
added 2025/12/08 12:46 a.m.385 views

CVE-2025-40322

Summary (CVE-2025-40322) : In the Linux kernel framebuffer (fbdev) bitblit path, bit_putcs* computations derived a glyph pointer from the character value masked by 0xff/0x1ff, which could read past the font array end. The fix clamps the index to the actual glyph count before computing the address...

6.1AI score0.00168EPSS
Exploits0References8
OSV
OSV
added 2025/12/08 12:46 a.m.6 views

CVE-2025-40322 fbdev: bitblit: bound-check glyph index in bit_putcs*

In the Linux kernel, the following vulnerability has been resolved: fbdev: bitblit: bound-check glyph index in bitputcs bitputcsaligned/unaligned derived the glyph pointer from the character value masked by 0xff/0x1ff, which may exceed the actual font's glyph count and read past the end of the...

6.3AI score0.00168EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2025/12/08 12:46 a.m.3 views

CVE-2025-40322

In the Linux kernel, the following vulnerability has been resolved: fbdev: bitblit: bound-check glyph index in bitputcs bitputcsaligned/unaligned derived the glyph pointer from the character value masked by 0xff/0x1ff, which may exceed the actual font's glyph count and read past the end of the...

5.3AI score0.00168EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/12/08 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-40322

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fbdev: bitblit: bound-check glyph index in bitputcs bitputcsaligned/unaligned derived the glyph pointer from the character value masked by 0xff/0x1ff, which may...

6.2AI score0.00168EPSS
Exploits0References3
Gentoo Linux
Gentoo Linux
added 2017/03/28 12:0 a.m.56 views

Xen: Privilege Escalation

Background Xen is a bare-metal hypervisor. Description In CIRRUSBLTMODEMEMSYSSRC mode the bitblit copy routine cirrusbitbltcputovideo fails to check wethehr the specified memory region is safe. Impact A local attacker could potentially execute arbitrary code with privileges of Xen QEMU process on...

9.9CVSS8.7AI score0.03559EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2017/03/07 11:2 a.m.4 views

Qemu: display: cirrus: potential arbitrary code execution via cirrus_bitblt_cputovideo

Quick emulator QEMU built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds access issue. The issue could occur while copying VGA data in cirrusbitbltcputovideo. A privileged user inside guest could use this flaw to crash the QEMU process OR potentially execute...

9.9CVSS7.7AI score0.03559EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.39 views

Oracle Linux 5 : Important: / xen (ELSA-2007-0323)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2007-0323 advisory. 3.0.3-25.0.4.el5 - QEmu cirrus bitblit bounds check - CVE-2007-1320 rhbz 296271 - QEmu NE2000 overflow check - CVE-2007-1321 rhbz 296271 - Pygrub guest...

7.2CVSS8.4AI score0.00633EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2007/10/02 12:0 a.m.46 views

Important: xen security update

3.0.3-25.0.4.el5 - QEmu cirrus bitblit bounds check - CVE-2007-1320 rhbz 296271 - QEmu NE2000 overflow check - CVE-2007-1321 rhbz 296271 - Pygrub guest escape - CVE-2007-4993 rhbz 302821...

7.2CVSS1.6AI score0.00633EPSS
Exploits0
Rows per page
Query Builder