Lucene search
K

27 matches found

OSV
OSV
added 3 days ago2 views

UBUNTU-CVE-2026-53331

In the Linux kernel, the following vulnerability has been resolved: slimbus: qcom-ngd-ctrl: Avoid ABBA on txlock/ctrl-lock During the SSR/PDR down notification the txlock is taken with the intent to provide synchronization with active DMA transfers. But during this period qcomslimngddown is...

5.8AI score0.00172EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2026/01/09 10:9 a.m.5 views

CVE-2019-20175

An issue was discovered in idedmacb in hw/ide/core.c in QEMU 2.4.0 through 4.2.0. The guest system can crash the QEMU process in the host system via a special SCSIIOCTLSENDCOMMAND. It hits an assertion that implies that the size of successful DMA transfers there must be a multiple of 512 the size...

7.5CVSS6.5AI score0.03355EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.1 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989197)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989197 advisory. In the Linux kernel, the following vulnerability has been resolved: spi: bcm2835: bcm2835spihandleerr: fix NULL pointer deref for non DMA transfers In case a IRQ bas...

5.5CVSS5.7AI score0.00245EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986766)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986766 advisory. In the Linux kernel, the following vulnerability has been resolved: spi: bcm2835: bcm2835spihandleerr: fix NULL pointer deref for non DMA transfers In case a IRQ bas...

5.5CVSS5.7AI score0.00245EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-54663

Malicious code in bioql PyPI...

5.5CVSS6AI score0.00245EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 1:18 a.m.10 views

CVE-2022-30283

In UsbCoreDxe, tampering with the contents of the USB working buffer using DMA while certain USB transactions are in process leads to a TOCTOU problem that could be used by an attacker to cause SMRAM corruption and escalation of privileges The UsbCoreDxe module creates a working buffer for USB...

7.5CVSS7.5AI score0.00135EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2022-49569

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: spi: bcm2835: bcm2835spihandleerr: fix NULL pointer deref for non DMA transfers In case a IR...

5.5CVSS6.2AI score0.00245EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/28 5:30 a.m.7 views

CVE-2022-49569

In the Linux kernel, the following vulnerability has been resolved: spi: bcm2835: bcm2835spihandleerr: fix NULL pointer deref for non DMA transfers In case a IRQ based transfer times out the bcm2835spihandleerr function is called. Since commit 1513ceee70f2 "spi: bcm2835: Drop dmapending flag" the...

5.5CVSS6.8AI score0.00245EPSS
Exploits0References4
NVD
NVD
added 2025/02/26 7:1 a.m.9 views

CVE-2022-49569

In the Linux kernel, the following vulnerability has been resolved: spi: bcm2835: bcm2835spihandleerr: fix NULL pointer deref for non DMA transfers In case a IRQ based transfer times out the bcm2835spihandleerr function is called. Since commit 1513ceee70f2 "spi: bcm2835: Drop dmapending flag" the...

5.5CVSS0.00245EPSS
Exploits0References5
CVE
CVE
added 2025/02/26 2:23 a.m.101 views

CVE-2022-49569

CVE-2022-49569 affects the bcm2835 SPI driver in the Linux kernel. When an IRQ-based transfer times out, bcm2835_spi_handle_err() could dereference ctlr->dma_tx/ctlr->dma_rx if DMA pointers are not set, due to the removal of the dma_pending flag. A fix was implemented to check that ctlr-&gt...

5.5CVSS6.5AI score0.00245EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2025/02/26 2:23 a.m.8 views

CVE-2022-49569

In the Linux kernel, the following vulnerability has been resolved: spi: bcm2835: bcm2835spihandleerr: fix NULL pointer deref for non DMA transfers In case a IRQ based transfer times out the bcm2835spihandleerr function is called. Since commit 1513ceee70f2 "spi: bcm2835: Drop dmapending flag" the...

5.5CVSS5.5AI score0.00245EPSS
Exploits0
OSV
OSV
added 2024/04/12 11:7 a.m.2 views

OESA-2024-1421 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: QEMU before 8.2.0 has an integer underflow, and resultant buffer overflow, via a TI command when an expected non-DMA transfer length is less than the length of the available FIFO data. Th...

8.8CVSS7.1AI score0.01397EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2024/03/18 1:22 p.m.42 views

CVE-2023-52611

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: sdio: Honor the host maxreqsize in the RX path Lukas reports skboverpanic errors on his Banana Pi BPI-CM4 which comes with an Amlogic A311D G12B SoC and a RTL8822CS SDIO wifi/Bluetooth combo card. The error he observ...

4.4CVSS6.9AI score0.00224EPSS
Exploits0References4
NVD
NVD
added 2024/03/18 11:15 a.m.14 views

CVE-2023-52611

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: sdio: Honor the host maxreqsize in the RX path Lukas reports skboverpanic errors on his Banana Pi BPI-CM4 which comes with an Amlogic A311D G12B SoC and a RTL8822CS SDIO wifi/Bluetooth combo card. The error he observ...

5.5CVSS7.6AI score0.00224EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/03/18 11:15 a.m.25 views

CVE-2023-52611

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: sdio: Honor the host maxreqsize in the RX path Lukas reports skboverpanic errors on his Banana Pi BPI-CM4 which comes with an Amlogic A311D G12B SoC and a RTL8822CS SDIO wifi/Bluetooth combo card. The error he observ...

5.5CVSS6.2AI score0.00224EPSS
Exploits0References13
Cvelist
Cvelist
added 2024/03/18 10:7 a.m.34 views

CVE-2023-52611 wifi: rtw88: sdio: Honor the host max_req_size in the RX path

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: sdio: Honor the host maxreqsize in the RX path Lukas reports skboverpanic errors on his Banana Pi BPI-CM4 which comes with an Amlogic A311D G12B SoC and a RTL8822CS SDIO wifi/Bluetooth combo card. The error he observ...

7.8AI score0.00224EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/03/18 10:7 a.m.28 views

CVE-2023-52611 wifi: rtw88: sdio: Honor the host max_req_size in the RX path

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: sdio: Honor the host maxreqsize in the RX path Lukas reports skboverpanic errors on his Banana Pi BPI-CM4 which comes with an Amlogic A311D G12B SoC and a RTL8822CS SDIO wifi/Bluetooth combo card. The error he observ...

7AI score0.00224EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2024/03/18 10:7 a.m.26 views

CVE-2023-52611

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: sdio: Honor the host maxreqsize in the RX path Lukas reports skboverpanic errors on his Banana Pi BPI-CM4 which comes with an Amlogic A311D G12B SoC and a RTL8822CS SDIO wifi/Bluetooth combo card. The error he observ...

5.5CVSS6AI score0.00224EPSS
Exploits0
CVE
CVE
added 2024/03/18 10:7 a.m.90 views

CVE-2023-52611

CVE-2023-52611 (Linux kernel, wifi: rtw88 SDIO): Fixes address skb_over_panic by ensuring the driver can receive more than 1536 bytes from the SDIO card. Root causes include an Amlogic A311D (G12B) SDIO controller hardware bug (DMA transfers blocked; uses SRAM up to 1536 bytes) and rtw88 not spli...

5.5CVSS6.8AI score0.00224EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2022/11/15 9:15 p.m.22 views

CVE-2022-30283

In UsbCoreDxe, tampering with the contents of the USB working buffer using DMA while certain USB transactions are in process leads to a TOCTOU problem that could be used by an attacker to cause SMRAM corruption and escalation of privileges The UsbCoreDxe module creates a working buffer for USB...

7.5CVSS0.00135EPSS
Exploits0References2
Rows per page
Query Builder