47 matches found
CVE-2024-47688 driver core: Fix a potential null-ptr-deref in module_add_driver()
In the Linux kernel, the following vulnerability has been resolved: driver core: Fix a potential null-ptr-deref in moduleadddriver Inject fault while probing of-fpga-region, if kasprintf fails in moduleadddriver, the second sysfsremovelink in exit path will cause null-ptr-deref as below because...
CVE-2024-36884 iommu/arm-smmu: Use the correct type in nvidia_smmu_context_fault()
In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu: Use the correct type in nvidiasmmucontextfault This was missed because of the function pointer indirection. nvidiasmmucontextfault is also installed as a irq function, and the 'void ' was changed to a struct...
CVE-2024-35785
In the Linux kernel, the following vulnerability has been resolved: tee: optee: Fix kernel panic caused by incorrect error handling The error path while failing to register devices on the TEE bus has a bug leading to kernel panic as follows: 15.398930 Unable to handle kernel paging request at...
CVE-2024-26989 arm64: hibernate: Fix level3 translation fault in swsusp_save()
In the Linux kernel, the following vulnerability has been resolved: arm64: hibernate: Fix level3 translation fault in swsuspsave On arm64 machines, swsuspsave faults if it attempts to access MEMBLOCKNOMAP memory ranges. This can be reproduced in QEMU using UEFI when booting with rodata=off...
CVE-2021-46794
Insufficient bounds checking in ASP AMD Secure Processor may allow for an out of bounds read in SMI System Management Interface mailbox checksum calculation triggering a data abort, resulting in a potential denial of service...
CVE-2021-46794
Insufficient bounds checking in ASP AMD Secure Processor may allow for an out of bounds read in SMI System Management Interface mailbox checksum calculation triggering a data abort, resulting in a potential denial of service...
CVE-2021-46749
Insufficient bounds checking in ASP AMD Secure Processor may allow for an out of bounds read in SMI System Management Interface mailbox checksum calculation triggering a data abort, resulting in a potential denial of service...
CVE-2021-46749
Insufficient bounds checking in ASP AMD Secure Processor may allow for an out of bounds read in SMI System Management Interface mailbox checksum calculation triggering a data abort, resulting in a potential denial of service...
CVE-2021-46794
CVE-2021-46794 refers to an insufficient bounds check in the AMD Secure Processor (ASP) that may allow an out-of-bounds read in the System Management Interface (SMI) mailbox checksum calculation, triggering a data abort and potentially causing denial of service. Connected documents corroborate th...
CVE-2021-46794
Insufficient bounds checking in ASP AMD Secure Processor may allow for an out of bounds read in SMI System Management Interface mailbox checksum calculation triggering a data abort, resulting in a potential denial of service...
CVE-2021-46749
CVE-2021-46749 corresponds to an out-of-bounds read vulnerability in the AMD Secure Processor (ASP) affecting the System Management Interface (SMI) mailbox checksum calculation, caused by insufficient bounds checking. The vulnerability can trigger a data abort and potentially lead to a denial of ...
CVE-2021-46749
Insufficient bounds checking in ASP AMD Secure Processor may allow for an out of bounds read in SMI System Management Interface mailbox checksum calculation triggering a data abort, resulting in a potential denial of service...
SUSE CVE-2016-9817
Xen through 4.7.x allows local ARM guest OS users to cause a denial of service host crash via vectors involving a 1 data or 2 prefetch abort with the ESREL2.EA bit set...
SUSE CVE-2021-26325
Insufficient input validation in the SNPGUESTREQUEST command may lead to a potential data abort error and a denial of service...
CVE-2021-26325
Insufficient input validation in the SNPGUESTREQUEST command may lead to a potential data abort error and a denial of service...
CVE-2021-26325
Insufficient input validation in the SNPGUESTREQUEST command may lead to a potential data abort error and a denial of service...
Input validation
Insufficient input validation in the SNPGUESTREQUEST command may lead to a potential data abort error and a denial of service...
CVE-2021-26325
CVE-2021-26325 describes insufficient input validation in the SNP_GUEST_REQUEST command, which may lead to a data abort error and a denial of service. The vulnerability is localized (attack vector: LOCAL) with low attack complexity per NVD CVSS v2/v3 data, and it can impact availability (HIGH in ...
CVE-2021-26325
Insufficient input validation in the SNPGUESTREQUEST command may lead to a potential data abort error and a denial of service...
Code injection
QSEE unload attempt on a 3rd party TEE without previously loading results in a data abort in snapdragon automobile and snapdragon mobile in versions MSM8996AU, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 712 / SD 710 ...