67 matches found
CVE-2024-46804 drm/amd/display: Add array index check for hdcp ddc access
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add array index check for hdcp ddc access Why Coverity reports OVERRUN warning. Do not check if array index valid. How Check msgid valid and valid array index...
CVE-2024-46804 drm/amd/display: Add array index check for hdcp ddc access
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add array index check for hdcp ddc access Why Coverity reports OVERRUN warning. Do not check if array index valid. How Check msgid valid and valid array index...
CVE-2024-46804
CVE-2024-46804 affects the Linux kernel’s DRM/AMD display path, specifically HDCP DDC access. The vulnerability stems from an array index overrun due to not validating the index, which could lead to overrun/W earlier reports. The fix adds proper checks: validate the message id (msg_id) and ensure...
CVE-2024-44967 drm/mgag200: Bind I2C lifetime to DRM device
In the Linux kernel, the following vulnerability has been resolved: drm/mgag200: Bind I2C lifetime to DRM device Managed cleanup with devmaddactionorreset will release the I2C adapter when the underlying Linux device goes away. But the connector still refers to it, so this cleanup leaves behind a...
Error: XDDS:F26A2921 Studio Cannot Contact DDC
After a failed upgrade for StoreFront 2.5 and while repairing StoreFront, Studio lost communication to the DDC. Details Error Id: XDDS:F26A2921 Exception: Citrix.Console.Common.CitrixAggregateException One or more parallel operations failed at Citrix.Console.Common.CitrixParallel.InternalForEachT...
SUSE CVE-2023-52773
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix a NULL pointer dereference in amdgpudmi2cxfer When ddcserviceconstruct is called, it explicitly checks both the link type and whether there is something on the link which will dictate whether the pin is marke...
CVE-2024-33227
An issue in the component ddcdrv.sys of Nicomsoft WinI2C/DDC v3.7.4.0 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests...
CVE-2024-33227
An issue in the component ddcdrv.sys of Nicomsoft WinI2C/DDC v3.7.4.0 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests...
CVE-2024-33227
An issue in the component ddcdrv.sys of Nicomsoft WinI2C/DDC v3.7.4.0 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests...
CVE-2024-33227
Summary: CVE-2024-33227 affects Nicomsoft WinI2C/DDC (v3.7.4.0) via the ddcdrv.sys component. The root cause is a vulnerability in ddcdrv.sys that allows escalation of privileges and arbitrary code execution when crafted IOCTL requests are sent. The CVSS data indicates a HIGH-severity issue with ...
PT-2024-25163 · Nicomsoft · Nicomsoft Wini2C/Ddc
Name of the Vulnerable Software and Affected Versions: Nicomsoft WinI2C/DDC version 3.7.4.0 Description: An issue in the component ddcdrv.sys allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests. Recommendations: For version 3.7.4.0, consider...
Nicomsoft WinI2C/DDC 安全漏洞
Nicomsoft WinI2C/DDC is a professional tool from Nicomsoft that allows you to control display devices via the DDC/CI protocol in a Windows environment. A security vulnerability exists in Nicomsoft WinI2C/DDC version v3.7.4.0, which originates from a security flaw in the component ddcdrv.sys. The...
UBUNTU-CVE-2023-52773
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix a NULL pointer dereference in amdgpudmi2cxfer When ddcserviceconstruct is called, it explicitly checks both the link type and whether there is something on the link which will dictate whether the pin is marke...
Lunar 安全漏洞
Lunar is a tool that uses the DDC protocol to change the hardware brightness of a monitor. A security vulnerability exists in Lunar versions 6.0.2 through 6.6.0 that originates from a vulnerability that allows an attacker to perform auxiliary process injection into the Lunar application and abuse...
Lunar 资源管理错误漏洞
Lunar is a tool that uses the DDC protocol to change the hardware brightness of a monitor. A resource management error vulnerability exists in Lunar versions 6.0.2 through 6.6.0 that originates from a vulnerability that allows an attacker to perform auxiliary process injection into the Lunar...
CVE-2024-1014
Uncontrolled resource consumption vulnerability in SE-elektronic GmbH E-DDC3.3 affecting versions 03.07.03 and higher. An attacker could interrupt the availability of the administration panel by sending multiple ICMP packets...
Studio will not open with error "A working 'Storefront' service could not be found"
Storefront is installed on the DDC. After successfully upgrading both Storefront servers to CVAD 2203 CU3, Studio fails to open with the following error. After clicking on "View Details" another error appears: "A working 'Storefront' service could not be found" Error Id: XDDS:E354580F Exception:...
DDC 2203 - How to manually remove the stale DDC from Database
Old removed DDC is listed under Zones alongside the two current DDCs. "Get-BrokerController" and database table 'chbConfig.Controllers' shows working DDCs...
Configuration logging display language not localized
The default language for the Web Studio configuration logging is English. To change the language, configure the Cloud-DDC locale instead of adjusting the language settings in the web browser...
Citrix Server Idle Timer Policy does not take effect for Server VDA
Citrix Server Idle Timer Policy does not take effect for All Server VDA ConfigureServer Idle Timer Policy Interval on 2203CU1 DDC for all the Server VDA , but after reach time limit , there is no expected Idle windows pop up...