USN-8413-1: Cyborg vulnerabilities

It was discovered that Cyborg did not properly enforce project ownership in the Accelerator Request ARQ API. An authenticated user could possibly use this issue to delete ARQs bound to other projects' instances, resulting in a cross-tenant denial of service. CVE-2026-40214 It was discovered that...

MINI-FPG8-Q2JQ-7FWR

Bulletin has no description...

CVE-2022-50623 fpga: prevent integer overflow in dfl_feature_ioctl_set_irq()

In the Linux kernel, the following vulnerability has been resolved: fpga: prevent integer overflow in dflfeatureioctlsetirq The "hdr.count sizeofs32" multiplication can overflow on 32 bit systems leading to memory corruption. Use arraysize to fix that...

PT-2025-46427

Name of the Vulnerable Software and Affected Versions Intel oneAPI DPC++C++ Compiler FPGA Support Package versions prior to 2025.0.1 Description An uncontrolled search path issue exists in the FPGA Support Package for the Intel oneAPI DPC++C++ Compiler software. This issue, occurring within Ring ...

CVE-2025-54520

Improper Protection Against Voltage and Clock Glitches in FPGA devices, could allow an attacker with physical access to undervolt the platform resulting in a loss of confidentiality...

Undervoltage-based Static Side-channel Attacks (“Chypnosis”) on FPGAs

Summary This document describes a potential attack technique against FPGA devices that leverages side-channel analysis SCA techniques to physically extract register and memory content from the device. In applications following best practices for security, critical data, such as decryption keys, i...

SUSE CVE-2025-38274

In the Linux kernel, the following vulnerability has been resolved: fpga: fix potential null pointer deref in fpgamgrtestimgloadsgt fpgamgrtestimgloadsgt allocates memory for sgt using kunitkzalloc however it does not check if the allocation failed. It then passes sgt to sgalloctable, which passe...

DEBIAN-CVE-2025-38274

In the Linux kernel, the following vulnerability has been resolved: fpga: fix potential null pointer deref in fpgamgrtestimgloadsgt fpgamgrtestimgloadsgt allocates memory for sgt using kunitkzalloc however it does not check if the allocation failed. It then passes sgt to sgalloctable, which passe...

ML-Enhanced AES Anomaly Detection for Real-Time Embedded Security

Advanced Encryption Standard AES is a widely adopted cryptographic algorithm, yet its practical implementations remain susceptible to side-channel and fault injection attacks. In this work, we propose a comprehensive framework that enhances AES-128 encryption security through controlled anomaly...

An Efficient Hardware Implementation of Elliptic Curve Point Multiplication over $GF(2^M)$ on FPGA

Elliptic Curve Cryptography ECC is widely accepted for ensuring secure data exchange between resource-limited IoT devices. The National Institute of Standards and Technology NIST recommended implementation, such as B-163, is particularly well-suited for Internet of Things IoT applications. Here,...

A Unified Hardware Accelerator for Fast Fourier Transform and Number Theoretic Transform

The Number Theoretic Transform NTT is an indispensable tool for computing efficient polynomial multiplications in post-quantum lattice-based cryptography. It has strong resemblance with the Fast Fourier Transform FFT, which is the most widely used algorithm in digital signal processing. In this...

The vulnerability of the Linux operating system’s FPGA kernel component, which allows a hacker to trigger a service failure

The vulnerability of the Linux operating system’s FPGA kernel component is related to the dereferencing of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the fpga_mgr_register() function in the Documentation/driver-api/fpga/fpga-mgr.rst section of the Linux operating system’s kernel allows a attacker to cause a service failure.

The vulnerability of the fpgamgrregister function in the Documentation/driver-api/fpga/fpga-mgr.rst section of the Linux kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

Vulnerability of the development, debugging, and optimization tools for FPGA applications. The Intel oneAPI DPC++/C++ compiler’s support package is vulnerable due to an uncontrolled search path element, allowing attackers to exploit this vulnerability to gain enhanced privileges.

The vulnerability of the FPGA Support Package for the Intel oneAPI DPC++/C++ Compiler relates to an uncontrolled element in the search process. Exploiting this vulnerability can allow attackers to enhance their privileges...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from waiting for fifo occupancy to fall below a threshold in an FPGA could result in a soft CPU lockup...

Intel FPGA Security Vulnerability

Intel FPGA products is a series of applications from Intel Corporation USA. A security vulnerability exists in Intel Field Programmable Gate Array FPGA. An attacker exploiting this vulnerability could result in the disclosure of information...

Rockwell Automation Allen-Bradley Stratix 5950 Improper Access Control (CVE-2019-1649)

A vulnerability in the logic that handles access control to one of the hardware components in Cisco's proprietary Secure Boot implementation could allow an authenticated, local attacker to write a modified firmware image to the component. This vulnerability affects multiple Cisco products that...

CVE-2023-2993

A valid, authenticated user with limited privileges may be able to use specifically crafted web management server API calls to execute a limited number of commands on SMM v1, SMM v2, and FPC that the user does not normally have sufficient privileges to execute...

CVE-2023-2992

An unauthenticated denial of service vulnerability exists in the SMM v1, SMM v2, and FPC management web server which can be triggered under crafted conditions. Rebooting SMM or FPC will restore access to the management web server...

Intel FPGAs Pro Edition Software 代码问题漏洞

Intel FPGAs Pro Edition Software is a software development kit from Intel Corporation that provides comprehensive support for FPGA Field-Programmable Gate Array developers. A security vulnerability exists in Intel FPGAs Pro Edition Software. An attacker could exploit the vulnerability to escalate...