PT-2026-50926

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the RDMA Remote Direct Memory Access component during the rereg mr process. When IB MR REREG ACCESS changes from read-only RO to read-write RW, the umem user memory mu...

CVE-2023-54058 firmware: arm_ffa: Check if ffa_driver remove is present before executing

In the Linux kernel, the following vulnerability has been resolved: firmware: armffa: Check if ffadriver remove is present before executing Currently ffadrv-remove is called unconditionally from ffadeviceremove. Since the driver registration doesn't check for it and allows it to be registered...

SUSE-SU-2025:4505-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-50253: bpf: make sure skb-len != 0 when redirecting to a tunneling device bsc1249912. - CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in...

EUVD-2024-51898

Malicious code in bioql PyPI...

drm/amd/display: Check null pointers before used

...

dmaengine: idxd: Check availability of workqueue allocated by idxd wq driver before using

...

Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506002314 fixes several issues. The following security issues were fixed: CVE-2024-53042: ipv4: iptunnel: Fix suspicious RCU usage warning in iptunnelinitflow bsc1233678. CVE-2024-53156: wifi: ath9k: add range check for connrspepid in htcconnectservice...

platform/x86: int3472: Check for adev == NULL

...

Google Pixel out-of-bounds write vulnerability (CNVD-2025-03265)

Google Pixel is a smartphone from the American company Google Google. Google Pixel suffers from an out-of-bounds write vulnerability that stems from a missing MTKWMT device driver boundary check in WMTunlockedioctl, which can be exploited by an attacker to cause a local privilege escalation...

CVE-2024-50209

...

CVE-2024-50209 RDMA/bnxt_re: Add a check for memory allocation

In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Add a check for memory allocation allocpbl can return error when memory allocation fails. Driver is not checking the status on one of the instances...

CVE-2024-46807

...

CVE-2023-52650

...

DEBIAN-CVE-2024-40945

In the Linux kernel, the following vulnerability has been resolved: iommu: Return right value in iommusvabinddevice iommusvabinddevice should return either a sva bond handle or an ERRPTR value in error cases. Existing drivers idxd and uacce only check the return value with ISERR. This could...

Huawei Honor V10 Border Crossing Read Vulnerability

Huawei Honor V10 is a smartphone product from Chinese company Huawei Huawei. An out-of-bounds read vulnerability exists in previous versions of Huawei Honor V10 10.0.0.156 C00E156R2P4, which stems from a driver that does not adequately verify incoming parameters, and can be exploited by an attack...

HP Instant Support Driver Check ActiveX buffer overflow

Buffer overflow in queryHub method...

CVE-2007-3554

Stack-based buffer overflow in the HPSDDX Class SDD ActiveX control in sdd.dll in HP Instant Support - Driver Check before 1.5.0.3 allows remote attackers to execute arbitrary code via a long argument to the queryHub function...

CVE-2007-3554

The CVE-2007-3554 entry describes a stack-based buffer overflow in the HPSDDX Class (SDD) ActiveX control (sdd.dll) used by HP Instant Support – Driver Check. A long argument to the queryHub function can allow remote code execution on affected hosts. The vulnerability affects the ActiveX control ...

CVE-2007-3554

Stack-based buffer overflow in the HPSDDX Class SDD ActiveX control in sdd.dll in HP Instant Support - Driver Check before 1.5.0.3 allows remote attackers to execute arbitrary code via a long argument to the queryHub function...

Buffer overflow in HP Instant Support Driver Check (SDD) ActiveX control

John Heasman of NGSSoftware has discovered a high risk vulnerability in the HP Instant Support Driver Check SDD ActiveX control, which is marked safe for scripting. The vulnerability affects the following version of the SDD control: HP Instant Support Driver Check versions prior to 1.5.0.3 This...