Lucene search
K

101 matches found

OSV
OSV
added 2025/06/18 11:1 a.m.6 views

CVE-2022-50015 ASoC: SOF: Intel: hda-ipc: Do not process IPC reply before firmware boot

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Intel: hda-ipc: Do not process IPC reply before firmware boot It is not yet clear, but it is possible to create a firmware so broken that it will send a reply message before a FWREADY message it is not yet clear if...

5.5CVSS5.8AI score0.00175EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/05/27 12:0 a.m.8 views

SUSE SLED15: xen / xen-devel / xen-doc-html / xen-libs / xen-libs-32bit / etc (SUSE-SU-2025:01703-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:01703-1 advisory. Update to Xen 4.18.5: Security fixes: - CVE-2024-28956: Fixed Intel CPU Indirect Target Selection ITS...

5.7CVSS6.9AI score0.00371EPSS
Exploits0References6
NVD
NVD
added 2025/05/16 3:15 p.m.9 views

CVE-2025-4478

A flaw was found in the FreeRDP used by Anaconda's remote install feature, where a crafted RDP packet could trigger a segmentation fault. This issue causes the service to crash and remain defunct, resulting in a denial of service. It occurs pre-boot and is likely due to a NULL pointer dereference...

6.5CVSS0.00416EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/03/15 6:12 a.m.10 views

CVE-2025-21866

In the Linux kernel, the following vulnerability has been resolved: powerpc/code-patching: Fix KASAN hit by not flagging text patching area as VMALLOC Erhard reported the following KASAN hit while booting his PowerMac G4 with a KASAN-enabled kernel 6.13-rc6: BUG: KASAN: vmalloc-out-of-bounds in...

4.4CVSS6.4AI score0.00209EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-21818

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: x86/xen: fix xenhypercallhvm to not clobber %rbx xenhypercallhvm, which is used when running...

6.9AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.16 views

Linux Distros Unpatched Vulnerability : CVE-2022-2347

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There exists an unchecked length field in UBoot. The U-Boot DFU implementation does not bound the length field in USB DFU download setup packets, and it does no...

7.7CVSS7AI score0.00581EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2024-36944

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: Reapply drm/qxl: simplify qxlfencewait This reverts commit...

5.5CVSS5.6AI score0.00164EPSS
Exploits0References3
OSV
OSV
added 2025/02/19 7:15 p.m.17 views

CVE-2025-0624

A flaw was found in grub2. During the network boot process, when trying to search for the configuration file, grub copies data from a user controlled environment variable into an internal buffer using the grubstrcpy function. During this step, it fails to consider the environment variable length...

7.6CVSS8AI score0.01373EPSS
Exploits0References20
CVE
CVE
added 2025/02/19 6:23 p.m.238 views

CVE-2025-0624

CVE-2025-0624 affects grub2; a network-boot configuration search copies data from a user-controlled environment variable into an internal buffer using grub_strcpy without accounting for the environment variable length, causing an out-of-bounds write. This can enable remote code execution within t...

7.6CVSS8AI score0.01373EPSS
Exploits0References20
RedhatCVE
RedhatCVE
added 2025/02/18 7:24 p.m.27 views

CVE-2025-0624

A flaw was found in grub2. During the network boot process, when trying to search for the configuration file, grub copies data from a user controlled environment variable into an internal buffer using the grubstrcpy function. During this step, it fails to consider the environment variable length...

7.6CVSS7.6AI score0.01373EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/01/07 7:57 a.m.14 views

CVE-2024-47398 Liteos_a has an out-of-bounds write vulnerability

in OpenHarmony v4.1.2 and prior versions allow a local attacker cause the device is unable to boot up through out-of-bounds write...

8.8CVSS0.00158EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/07 7:57 a.m.10 views

CVE-2024-47398 Liteos_a has an out-of-bounds write vulnerability

in OpenHarmony v4.1.2 and prior versions allow a local attacker cause the device is unable to boot up through out-of-bounds write...

8.8CVSS6.6AI score0.00158EPSS
Exploits0References1
Oracle linux
Oracle linux
added 2024/12/19 12:0 a.m.14 views

edk2:20240524 security update

20240524-6.0.1.el95.3 - edk2-OvmfPkg-Rerun-dispatcher-after-initializing-virtio-r.patch RHEL-58631 - Resolves: RHEL-58631 Regression HTTP Boot fails to work with edk2-ovmf-20231122-6.el94.2 and greater - edk2-OvmfPkg-ArmVirtPkg-Add-a-Fallback-RNG-RH-only.patch RHEL-66230 - Resolves: RHEL-66230...

5.9CVSS7AI score0.0037EPSS
Exploits0
SUSE Linux
SUSE Linux
added 2024/11/12 4:13 p.m.1 views

Security update for xen

This update for xen fixes the following issues: Security issues fixed: CVE-2024-45818: xen: Deadlock in x86 HVM standard VGA handling bsc1232622 CVE-2024-45819: xen: libxl leaks data to PVH guests via ACPI tables bsc1232624 Non-security issue fixed: Xen host hung at boot up with repeated "XEN API...

8.2CVSS7.3AI score0.00294EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2024/11/06 3:49 a.m.7 views

SUSE CVE-2024-50108

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Disable PSR-SU on Parade 08-01 TCON too Stuart Hayhurst has found that both at bootup and fullscreen VA-API video is leading to black screens for around 1 second and kernel WARNING 1 traces when calling...

5.5CVSS7.7AI score0.00233EPSS
Exploits0References18
OSV
OSV
added 2024/10/21 8:15 p.m.2 views

UBUNTU-CVE-2022-48953

In the Linux kernel, the following vulnerability has been resolved: rtc: cmos: Fix event handler registration ordering issue Because acpiinstallfixedeventhandler enables the event automatically on success, it is incorrect to call it before the handler routine passed to it is ready to handle event...

5.5CVSS6.1AI score0.00245EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2024/09/05 2:46 a.m.4 views

SUSE CVE-2024-44981

In the Linux kernel, the following vulnerability has been resolved: workqueue: Fix UBSAN 'subtraction overflow' error in shiftandmask UBSAN reports the following 'subtraction overflow' error when booting in a virtual machine on Android: | Internal error: UBSAN: integer subtraction overflow:...

5.5CVSS8.2AI score0.00193EPSS
Exploits0References3
OSV
OSV
added 2024/08/26 11:15 a.m.2 views

UBUNTU-CVE-2024-43889

In the Linux kernel, the following vulnerability has been resolved: padata: Fix possible divide-by-0 panic in padatamthelper We are hit with a not easily reproducible divide-by-0 panic in padata.c at bootup time. 10.017908 Oops: divide error: 0000 1 PREEMPT SMP NOPTI 10.017908 CPU: 26 PID: 2627...

5.5CVSS6.2AI score0.00237EPSS
Exploits0References19
OSV
OSV
added 2024/08/22 2:15 a.m.1 views

DEBIAN-CVE-2022-48916

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix double listadd when enabling VMD in scalable mode When enabling VMD and IOMMU scalable mode, the following kernel panic call trace/kernel log is shown in Eagle Stream platform Sapphire Rapids CPU during booting: p...

5.5CVSS5.4AI score0.0021EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/11/20 12:0 a.m.2 views

PT-2023-36347 · U-Boot · U-Boot

Name of the Vulnerable Software and Affected Versions: U-boot version 2023.01 Description: The issue occurs when U-boot is upgraded to version 2023.01 on RPI 4/CM4 boards, causing it to fail to boot. The log reports finding the EFI removable media binary efi/boot/bootaa64.efi, but reading the fil...

7.2AI score
Exploits0References4
Rows per page
Query Builder