11 matches found
Allocation of Resources Without Limits or Throttling
Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the ring-buffers in Buffer API. An attacker can cause the system to drop legitimate events from other containers or the same container by flooding the event source, leading to los...
CVE-2026-31890
Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF. Prior to 0.50.1, in a situation where the ring-buffer of a gadget is – incidentally or maliciously – already full, the gadget will silently drop events. Th...
CVE-2026-31890
Inspektor Gadget (eBPF-based data collection framework for Kubernetes/Linux) contains a DoS vulnerability prior to 0.50.1. When the gadget’s ring-buffer (hard-coded to 256KB) is full, the transfer mechanism via ring-buffers can fail to enqueue events and silently drop them; similarly, a gadget_re...
kernel: drm/i915: mark requests for GuC virtual engines to avoid use-after-free
A use-after-free vulnerability was found in the Linux kernel Intel i915 graphics driver's GuC virtual engine request handling. A local user with access to GPU rendering can create requests on GuC virtual engines and trap references via syncfile or dmabuf, causing fence release operations to acces...
Linux Distros Unpatched Vulnerability : CVE-2024-46709
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix prime with external buffers Make sure that for external buffers mapping goes...
DEBIAN-CVE-2024-46709
In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix prime with external buffers Make sure that for external buffers mapping goes through the dmabuf interface instead of trying to access pages directly. External buffers might not provide direct access to...
UBUNTU-CVE-2024-46709
In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix prime with external buffers Make sure that for external buffers mapping goes through the dmabuf interface instead of trying to access pages directly. External buffers might not provide direct access to...
SUSE CVE-2015-7179
The VertexBufferInterface::reserveVertexSpace function in libGLES in ANGLE, as used in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 on Windows, incorrectly allocates memory for shader attribute arrays, which allows remote attackers to execute arbitrary code or cause a denial of...
Design/Logic Flaw
An issue was discovered on Samsung mobile devices with software through 2016-05-27 Exynos AP chipsets. A local graphics user can cause a Kernel Crash via the fb0DECON frame buffer interface. The Samsung ID is SVE-2016-7011 October 2016...
CVE-2016-11035
CVE-2016-11035 affects Samsung mobile devices with Exynos AP chipsets; a local user can trigger a kernel crash via the fb0(DECON) frame buffer interface. Connected sources reiterate this description, but no further technical details (affected versions, root cause specifics, exploit information, o...
Mozila ANGLE libGLES 'VertexBufferInterface::reserveVertexSpace' function buffer overflow vulnerability
Mozilla Firefox is an open source web browser.Google ANGLE is a graphics layer engine from Google Inc. A buffer overflow vulnerability in the 'VertexBufferInterface::reserveVertexSpace' function in libGLES of ANGLE used by Mozilla Firefox allows remote attackers to exploit specially crafted OpenG...