150 matches found
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: Avoid clobbering the kernel’s FPSIMD state with SMSTOP. On systems with SME Savage Mode Enforcement, the kernel’s FPSIMD state may be erroneously clobbered during a context switch immediately after that state is...
CVE-2022-22075
Information Disclosure in Graphics during GPU context switch...
PT-2025-27963 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved. The issue is related to the drm/msm/a7xx component, where calling the CP RESET CONTEXT STATE packet is necessary when switching...
CVE-2023-53121 tcp: tcp_make_synack() can be called from process context
In the Linux kernel, the following vulnerability has been resolved: tcp: tcpmakesynack can be called from process context tcprtxsynack now could be called in process context as explained in 0a375c822497 "tcp: tcprtxsynack can be called from process context". tcprtxsynack might call tcpmakesynack,...
PT-2025-27754
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved, specifically related to the arm64/fpsimd component. The issue occurs when a thread's kernel FPSIMD state is restored during a...
CVE-2024-56743
CVE-2024-56743 affects the Linux kernel NFS path. The issue arises from holding RCU while calling nfsd_file_put_local; the RCU hold is moved from nfs_to_nfsd_file_put_local to nfs_to_nfsd_net_put, with the rcu-protective call nfsd_serv_put being the one that requires RCU. This change addresses a ...
CVE-2024-50275
In the Linux kernel, the following vulnerability has been resolved: arm64/sve: Discard stale CPU state when handling SVE traps The logic for handling SVE traps manipulates saved FPSIMD/SVE state incorrectly, and a race with preemption can result in a task having TIFSVE set and TIFFOREIGNFPSTATE...
UBUNTU-CVE-2024-52595
lxmlhtmlclean is a project for HTML cleaning functionalities copied from lxml.html.clean. Prior to version 0.4.0, the HTML Parser in lxml does not properly handle context-switching for special HTML tags such as , and . This behavior deviates from how web browsers parse and interpret such tags...
CVE-2024-50275
The CVE (CVE-2024-50275) affects the Linux kernel on arm64 with SVE traps. A race allows stale FPSIMD/SVE state to be reused across preemption, leading to SVE traps while TIF_SVE is set and potentially incorrect live state handling. The fix detaches from the saved CPU state when not live by calli...
CVE-2024-50275 arm64/sve: Discard stale CPU state when handling SVE traps
In the Linux kernel, the following vulnerability has been resolved: arm64/sve: Discard stale CPU state when handling SVE traps The logic for handling SVE traps manipulates saved FPSIMD/SVE state incorrectly, and a race with preemption can result in a task having TIFSVE set and TIFFOREIGNFPSTATE...
CVE-2024-50275 arm64/sve: Discard stale CPU state when handling SVE traps
In the Linux kernel, the following vulnerability has been resolved: arm64/sve: Discard stale CPU state when handling SVE traps The logic for handling SVE traps manipulates saved FPSIMD/SVE state incorrectly, and a race with preemption can result in a task having TIFSVE set and TIFFOREIGNFPSTATE...
Fortinet FortiClient 安全漏洞
Fortinet FortiClient is a mobile endpoint security solution from Fortinet, Inc. The solution provides IPsec and SSL encryption, WAN optimization, endpoint compliance, and two-factor authentication when connected to a FortiGate firewall appliance. A security vulnerability exists in Fortinet...
CVE-2024-42290
Affected software: Linux kernel irqchip/imx-irqsteer on platforms such as i.MX8QM and i.MX8QXP. Issue: power-domain handling via clk_prepare could trigger a scheduling-while-atomic bug during device probing due to non-atomic runtime PM context. Root cause: runtime power management not synchronize...
DEBIAN-CVE-2024-38613
In the Linux kernel, the following vulnerability has been resolved: m68k: Fix spinlock race in kernel thread creation Context switching does take care to retain the correct lock owner across the switch from 'prev' to 'next' tasks. This does rely on interrupts remaining disabled for the entire...
UBUNTU-CVE-2024-38613
In the Linux kernel, the following vulnerability has been resolved: m68k: Fix spinlock race in kernel thread creation Context switching does take care to retain the correct lock owner across the switch from 'prev' to 'next' tasks. This does rely on interrupts remaining disabled for the entire...
SUSE CVE-2022-22075
Information Disclosure in Graphics during GPU context switch...
CVE-2022-22075
Information Disclosure in Graphics during GPU context switch...
Information disclosure
Information Disclosure in Graphics during GPU context switch...
CVE-2022-22075
CVE-2022-22075 concerns Information Disclosure in Graphics during GPU context switch, with affected component listed as Qualcomm Display. The CVE is documented in multiple sources, including NVD and Qualcomm security references, indicating a vulnerability in the graphics/GPU context switch pathwa...
CVE-2022-22075 Information Exposure in Graphics
Information Disclosure in Graphics during GPU context switch...