EUVD-2026-32836

In the Linux kernel, the following vulnerability has been resolved: drm/gem: Fix inconsistent plane dimension calculation in drmgemfbinitwithfuncs drmgemfbinitwithfuncs computes sub-sampled plane dimensions using plain integer division: unsigned int width = modecmd-width / i ? info-hsub : 1;...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: drm/fbdev-dma: Added shadow buffering for deferred I/O. DMA areas are not necessarily backed by struct page, so we cannot rely on it for deferred I/O. Allocate a shadow buffer for drivers that require deferred I/O and use it a...

EUVD-2025-22692

Malicious code in bioql PyPI...

Oracle Linux 8 : kernel (ELSA-2025-15785)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-15785 advisory. - net/sched: ets: use old 'nbands' while purging unused classes Ivan Vecera RHEL-107541 CVE-2025-38350 - netsched: schets: implement lockless etsdump...

Oracle Linux 9 : kernel (ELSA-2025-15661)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-15661 advisory. - posix-cpu-timers: fix race between handleposixcputimers and posixcputimerdel CKI Backport Bot RHEL-112780 CVE-2025-38352 - drm/framebuffer: Acquire...

CVE-2025-38673

In the Linux kernel, the following vulnerability has been resolved: Revert "drm/gem-framebuffer: Use dmabuf from GEM object instance" This reverts commit cce16fcd7446dcff7480cd9d2b6417075ed81065. The dmabuf field in struct drmgemobject is not stable over the object instance's lifetime. The field...

SUSE CVE-2025-38449

In the Linux kernel, the following vulnerability has been resolved: drm/gem: Acquire references on GEM handles for framebuffers A GEM handle can be released while the GEM buffer object is attached to a DRM framebuffer. This leads to the release of the dma-buf backing the buffer object, if any. 1...

CVE-2025-38449

In the Linux kernel, the following vulnerability has been resolved: drm/gem: Acquire references on GEM handles for framebuffers A GEM handle can be released while the GEM buffer object is attached to a DRM framebuffer. This leads to the release of the dma-buf backing the buffer object, if any. 1...

CVE-2025-38449

CVE-2025-38449 affects the Linux kernel DRM/GEM subsystem. The issue arises when a GEM handle is released while the GEM buffer object remains attached to a DRM framebuffer, which can lead to releasing the dma-buf backing the buffer. Subsequent mode-setting operations may trigger a segmentation fa...

CVE-2025-38449

In the Linux kernel, the following vulnerability has been resolved: drm/gem: Acquire references on GEM handles for framebuffers A GEM handle can be released while the GEM buffer object is attached to a DRM framebuffer. This leads to the release of the dma-buf backing the buffer object, if any. 1...

UBUNTU-CVE-2022-50221

In the Linux kernel, the following vulnerability has been resolved: drm/fb-helper: Fix out-of-bounds access Clip memory range to screen-buffer size to avoid out-of-bounds access in fbdev deferred I/O's damage handling. Fbdev's deferred I/O can only track pages. From the range of pages, the damage...

DEBIAN-CVE-2024-58091

In the Linux kernel, the following vulnerability has been resolved: drm/fbdev-dma: Add shadow buffering for deferred I/O DMA areas are not necessarily backed by struct page, so we cannot rely on it for deferred I/O. Allocate a shadow buffer for drivers that require deferred I/O and use it as...

SUSE CVE-2024-50037

In the Linux kernel, the following vulnerability has been resolved: drm/fbdev-dma: Only cleanup deferred I/O if necessary Commit 5a498d4d06d6 "drm/fbdev-dma: Only install deferred I/O if necessary" initializes deferred I/O only if it is used. drmfbdevdmafbdestroy however calls fbdeferrediocleanup...

UBUNTU-CVE-2024-50037

In the Linux kernel, the following vulnerability has been resolved: drm/fbdev-dma: Only cleanup deferred I/O if necessary Commit 5a498d4d06d6 "drm/fbdev-dma: Only install deferred I/O if necessary" initializes deferred I/O only if it is used. drmfbdevdmafbdestroy however calls fbdeferrediocleanup...

DEBIAN-CVE-2024-41094

In the Linux kernel, the following vulnerability has been resolved: drm/fbdev-dma: Only set smemstart is enable per module option Only export struct fbinfo.fix.smemstart if that is required by the user and the memory does not come from vmalloc. Setting struct fbinfo.fix.smemstart breaks systems...