139 matches found
kernel: drm/radeon: check bo_va->bo is non-NULL before using it
In the Linux kernel, the following vulnerability has been resolved: drm/radeon: check bova-bo is non-NULL before using it The call to radeonvmclearfreed might clear bova-bo, so we have to check it before dereferencing it...
drm/vmwgfx: Fix the lifetime of the bo cursor memory
...
kernel: drm/vmwgfx: Fix the lifetime of the bo cursor memory
A vulnerability was found in the drm/vmwgfx driver in the Linux kernel, concerning the lifetime management of the buffer object BO cursor memory. This issue occurs due to improper handling of the cursor memory's lifecycle, which could lead to use-after-free errors or crashes...
PT-2024-19856 · Qualcomm · Snapdragon +64
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves memory corruption that occurs when memory mapped in a VBO Vertex Buffer Object is not properly unmapped by the GPU SMMU System Memory...
PT-2024-19859 · Qualcomm · Snapdragon +92
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves memory corruption that occurs when mapped pages in VBO are still mapped after being reclaimed by a shrinker. This can lead to...
DEBIAN-CVE-2024-41060
In the Linux kernel, the following vulnerability has been resolved: drm/radeon: check bova-bo is non-NULL before using it The call to radeonvmclearfreed might clear bova-bo, so we have to check it before dereferencing it...
UBUNTU-CVE-2024-41060
In the Linux kernel, the following vulnerability has been resolved: drm/radeon: check bova-bo is non-NULL before using it The call to radeonvmclearfreed might clear bova-bo, so we have to check it before dereferencing it...
kernel: vmwgfx: double free within the handling of vmw_buffer_object objects
A double-free vulnerability was found in handling vmwbufferobject objects in the vmwgfx driver in the Linux kernel. This issue occurs due to the lack of validating the existence of an object prior to performing further free operations on the object, which may allow a local privileged user to...
SUSE CVE-2020-36788
In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: avoid a use-after-free when BO init fails nouveauboinit is backed by ttmboinit and ferries its return code back to the caller. On failures, ttmboinit invokes the provided destructor which should de-initialize and fre...
DEBIAN-CVE-2020-36788
In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: avoid a use-after-free when BO init fails nouveauboinit is backed by ttmboinit and ferries its return code back to the caller. On failures, ttmboinit invokes the provided destructor which should de-initialize and fre...
SUSE CVE-2024-26985
In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix bo leak in intelfbboframebufferinit Add a unreference bo in the error path, to prevent leaking a bo ref. Return 0 on success to clarify the success path. cherry picked from commit a2f3d731be3893e730417ae3190760fcaffdf...
DEBIAN-CVE-2024-26985
In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix bo leak in intelfbboframebufferinit Add a unreference bo in the error path, to prevent leaking a bo ref. Return 0 on success to clarify the success path. cherry picked from commit a2f3d731be3893e730417ae3190760fcaffdf...
UBUNTU-CVE-2024-26985
In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix bo leak in intelfbboframebufferinit Add a unreference bo in the error path, to prevent leaking a bo ref. Return 0 on success to clarify the success path. cherry picked from commit a2f3d731be3893e730417ae3190760fcaffdf...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a bo leak in intelfbboframebufferinit...
SUSE CVE-2024-26922
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate the parameters of bo mapping operations more clearly Verify the parameters of amdgpuvmbomap/replacemap/clearingmappings in one common place...
DEBIAN-CVE-2024-26922
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate the parameters of bo mapping operations more clearly Verify the parameters of amdgpuvmbomap/replacemap/clearingmappings in one common place...
kernel: drm/amdkfd: Add sync after creating vram bo
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Add sync after creating vram bo There will be data corruption on vram allocated by svm if the initialization is not complete and application is writting on the memory. Adding sync to wait for the initialization...
kernel: drm/ttm: Fix a NULL pointer dereference
In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Fix a NULL pointer dereference The LRU mechanism may look up a resource in the process of being removed from an object. The locking rules here are a bit unclear but it looks currently like res-bo assignment is protected ...
kernel: drm/ttm: Fix a NULL pointer dereference
In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Fix a NULL pointer dereference The LRU mechanism may look up a resource in the process of being removed from an object. The locking rules here are a bit unclear but it looks currently like res-bo assignment is protected ...
kernel: vmwgfx: double free within the handling of vmw_buffer_object objects
A double-free vulnerability was found in handling vmwbufferobject objects in the vmwgfx driver in the Linux kernel. This issue occurs due to the lack of validating the existence of an object prior to performing further free operations on the object, which may allow a local privileged user to...