27 matches found
UBUNTU-CVE-2026-53331
In the Linux kernel, the following vulnerability has been resolved: slimbus: qcom-ngd-ctrl: Avoid ABBA on txlock/ctrl-lock During the SSR/PDR down notification the txlock is taken with the intent to provide synchronization with active DMA transfers. But during this period qcomslimngddown is...
CVE-2019-20175
An issue was discovered in idedmacb in hw/ide/core.c in QEMU 2.4.0 through 4.2.0. The guest system can crash the QEMU process in the host system via a special SCSIIOCTLSENDCOMMAND. It hits an assertion that implies that the size of successful DMA transfers there must be a multiple of 512 the size...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989197)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989197 advisory. In the Linux kernel, the following vulnerability has been resolved: spi: bcm2835: bcm2835spihandleerr: fix NULL pointer deref for non DMA transfers In case a IRQ bas...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986766)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986766 advisory. In the Linux kernel, the following vulnerability has been resolved: spi: bcm2835: bcm2835spihandleerr: fix NULL pointer deref for non DMA transfers In case a IRQ bas...
EUVD-2022-54663
Malicious code in bioql PyPI...
CVE-2022-30283
In UsbCoreDxe, tampering with the contents of the USB working buffer using DMA while certain USB transactions are in process leads to a TOCTOU problem that could be used by an attacker to cause SMRAM corruption and escalation of privileges The UsbCoreDxe module creates a working buffer for USB...
Linux Distros Unpatched Vulnerability : CVE-2022-49569
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: spi: bcm2835: bcm2835spihandleerr: fix NULL pointer deref for non DMA transfers In case a IR...
CVE-2022-49569
In the Linux kernel, the following vulnerability has been resolved: spi: bcm2835: bcm2835spihandleerr: fix NULL pointer deref for non DMA transfers In case a IRQ based transfer times out the bcm2835spihandleerr function is called. Since commit 1513ceee70f2 "spi: bcm2835: Drop dmapending flag" the...
CVE-2022-49569
In the Linux kernel, the following vulnerability has been resolved: spi: bcm2835: bcm2835spihandleerr: fix NULL pointer deref for non DMA transfers In case a IRQ based transfer times out the bcm2835spihandleerr function is called. Since commit 1513ceee70f2 "spi: bcm2835: Drop dmapending flag" the...
CVE-2022-49569
CVE-2022-49569 affects the bcm2835 SPI driver in the Linux kernel. When an IRQ-based transfer times out, bcm2835_spi_handle_err() could dereference ctlr->dma_tx/ctlr->dma_rx if DMA pointers are not set, due to the removal of the dma_pending flag. A fix was implemented to check that ctlr->...
CVE-2022-49569
In the Linux kernel, the following vulnerability has been resolved: spi: bcm2835: bcm2835spihandleerr: fix NULL pointer deref for non DMA transfers In case a IRQ based transfer times out the bcm2835spihandleerr function is called. Since commit 1513ceee70f2 "spi: bcm2835: Drop dmapending flag" the...
OESA-2024-1421 qemu security update
QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: QEMU before 8.2.0 has an integer underflow, and resultant buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. Th...
CVE-2023-52611
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: sdio: Honor the host maxreqsize in the RX path Lukas reports skboverpanic errors on his Banana Pi BPI-CM4 which comes with an Amlogic A311D G12B SoC and a RTL8822CS SDIO wifi/Bluetooth combo card. The error he observ...
CVE-2023-52611
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: sdio: Honor the host maxreqsize in the RX path Lukas reports skboverpanic errors on his Banana Pi BPI-CM4 which comes with an Amlogic A311D G12B SoC and a RTL8822CS SDIO wifi/Bluetooth combo card. The error he observ...
CVE-2023-52611
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: sdio: Honor the host maxreqsize in the RX path Lukas reports skboverpanic errors on his Banana Pi BPI-CM4 which comes with an Amlogic A311D G12B SoC and a RTL8822CS SDIO wifi/Bluetooth combo card. The error he observ...
CVE-2023-52611 wifi: rtw88: sdio: Honor the host max_req_size in the RX path
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: sdio: Honor the host maxreqsize in the RX path Lukas reports skboverpanic errors on his Banana Pi BPI-CM4 which comes with an Amlogic A311D G12B SoC and a RTL8822CS SDIO wifi/Bluetooth combo card. The error he observ...
CVE-2023-52611 wifi: rtw88: sdio: Honor the host max_req_size in the RX path
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: sdio: Honor the host maxreqsize in the RX path Lukas reports skboverpanic errors on his Banana Pi BPI-CM4 which comes with an Amlogic A311D G12B SoC and a RTL8822CS SDIO wifi/Bluetooth combo card. The error he observ...
CVE-2023-52611
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: sdio: Honor the host maxreqsize in the RX path Lukas reports skboverpanic errors on his Banana Pi BPI-CM4 which comes with an Amlogic A311D G12B SoC and a RTL8822CS SDIO wifi/Bluetooth combo card. The error he observ...
CVE-2023-52611
CVE-2023-52611 (Linux kernel, wifi: rtw88 SDIO): Fixes address skb_over_panic by ensuring the driver can receive more than 1536 bytes from the SDIO card. Root causes include an Amlogic A311D (G12B) SDIO controller hardware bug (DMA transfers blocked; uses SRAM up to 1536 bytes) and rtw88 not spli...
CVE-2022-30283
In UsbCoreDxe, tampering with the contents of the USB working buffer using DMA while certain USB transactions are in process leads to a TOCTOU problem that could be used by an attacker to cause SMRAM corruption and escalation of privileges The UsbCoreDxe module creates a working buffer for USB...