DEBIAN-CVE-2025-40322

In the Linux kernel, the following vulnerability has been resolved: fbdev: bitblit: bound-check glyph index in bitputcs bitputcsaligned/unaligned derived the glyph pointer from the character value masked by 0xff/0x1ff, which may exceed the actual font's glyph count and read past the end of the...

CVE-2025-40304

In the Linux kernel, the following vulnerability has been resolved: fbdev: Add bounds checking in bitputcs to fix vmalloc-out-of-bounds Add bounds checking to prevent writes past framebuffer boundaries when rendering text near screen edges. Return early if the Y position is off-screen and clip...

CVE-2025-40322

In the Linux kernel, the following vulnerability has been resolved: fbdev: bitblit: bound-check glyph index in bitputcs bitputcsaligned/unaligned derived the glyph pointer from the character value masked by 0xff/0x1ff, which may exceed the actual font's glyph count and read past the end of the...

CVE-2025-40304 fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds

In the Linux kernel, the following vulnerability has been resolved: fbdev: Add bounds checking in bitputcs to fix vmalloc-out-of-bounds Add bounds checking to prevent writes past framebuffer boundaries when rendering text near screen edges. Return early if the Y position is off-screen and clip...

Linux Distros Unpatched Vulnerability : CVE-2025-40304

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fbdev: Add bounds checking in bitputcs to fix vmalloc-out-of-bounds Add bounds checking to prevent writes past framebuffer boundaries when rendering text near...

Linux Distros Unpatched Vulnerability : CVE-2025-40322

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fbdev: bitblit: bound-check glyph index in bitputcs bitputcsaligned/unaligned derived the glyph pointer from the character value masked by 0xff/0x1ff, which may...

PT-2026-26126

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.18.0-rc1+ Description The Linux kernel contains a flaw within the RIVA NV3 arbitration code. A userspace program can trigger this code by calling the FBIOPUT VSCREENINFO ioctl on /dev/fb. The driver recalculate...

Siemens SIMATIC S7-1500 Divide By Zero (CVE-2024-26777)

In the Linux kernel, the following vulnerability has been resolved: fbdev: sis: Error out if pixclock equals zero This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990854)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990854 advisory. In the Linux kernel, the following vulnerability has been resolved: fbdev: sisfb: Fix strbuf array overflow The values of the variables xres and yres are placed in...

EulerOS 2.0 SP12 : kernel (EulerOS-SA-2025-2330)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : tracing: Add downwritetraceeventsem when adding trace eventCVE-2025-38539 tipc: fix null-ptr-deref when acquiring remote ip of ethernet...

kernel: fbdev: hyperv_fb: Allow graceful removal of framebuffer

In the Linux kernel, the following vulnerability has been resolved: fbdev: hypervfb: Allow graceful removal of framebuffer When a Hyper-V framebuffer device is unbind, hypervfb driver tries to release the framebuffer forcefully. If this framebuffer is in use it produce the following WARN and henc...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990623)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990623 advisory. In the Linux kernel, the following vulnerability has been resolved: fbdev: savage: Handle err return when savagefbcheckvar failed The commit 04e5eac8f3abfbdev: savag...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990481)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990481 advisory. In the Linux kernel, the following vulnerability has been resolved: fbdev: imsttfb: fix a resource leak in probe I've re-written the error handling but the bug is th...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990209)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990209 advisory. In the Linux kernel, the following vulnerability has been resolved: fbdev: savage: Handle err return when savagefbcheckvar failed The commit 04e5eac8f3abfbdev: savag...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988774)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988774 advisory. In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: fix error handling code in ufxusbprobe The current error handling code in...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990077)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990077 advisory. In the Linux kernel, the following vulnerability has been resolved: fbdev: savage: Handle err return when savagefbcheckvar failed The commit 04e5eac8f3abfbdev: savag...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-989912)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989912 advisory. In the Linux kernel, the following vulnerability has been resolved: video: fbdev: sm712fb: Fix crash in smtcfbwrite When the sm712fb driver writes three bytes to the...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: fbdev: Fixed an out-of-bounds write in fastimageblit. This issue occurs when a user-space program calls ioctl FBIOPUTCON2FBMAP by passing the console number and the frame buffer number. Ideally, this maps the console to the frame...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: fbdev: imxfb: Check fbaddvideomode to prevent nullptrderef. The fbaddvideomode function may fail with -ENOMEM if its internal kmalloc function cannot allocate a struct fbmodelist. In such cases, the modelist remains empty, but th...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: fbdev: Fixed doregisterframebuffer to prevent null-ptr-deref in fbvideomodetovar. If fbaddvideomode in doregisterframebuffer fails to allocate memory for fbvideomode, it will later lead to a null-ptr dereference in...