45 matches found
Qualcomm Chipsets 缓冲区错误漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A buffer error vulnerability exists in Qualcomm Chipsets, which arises from a memory corruption caused by the buffer size being changed by FW when reading a response from FW...
DEBIAN-CVE-2023-53074
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix ttmbo calltrace warning in psphwfini The call trace occurs when the amdgpu is removed after the mode1 reset. During mode1 reset, from suspend to resume, there is no need to reinitialize the ta firmware buffer whic...
CVE-2023-53074 drm/amdgpu: fix ttm_bo calltrace warning in psp_hw_fini
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix ttmbo calltrace warning in psphwfini The call trace occurs when the amdgpu is removed after the mode1 reset. During mode1 reset, from suspend to resume, there is no need to reinitialize the ta firmware buffer whic...
PT-2025-18838
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, related to the drm/amdgpu component. The issue occurs when the amdgpu is removed after a mode1 reset, causing a call trace warning ...
Linux Distros Unpatched Vulnerability : CVE-2024-41038
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: firmware: csdsp: Prevent buffer overrun when processing V2 alg headers Check that all fields...
PT-2025-6493 · Intel · Intel(R) System Security Report/System Resources Defense
Name of the Vulnerable Software and Affected Versions: IntelR System Security Report and System Resources Defense affected versions not specified Description: The issue is related to improper buffer restrictions in some IntelR System Security Report and System Resources Defense firmware. This cou...
Important: Red Hat Security Advisory: edk2 security update
An update for edk2 is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as havi...
kernel: firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers
A vulnerability was found in the Linux kernel in the csdsp firmware involving the V2 algorithm headers and the wmfw V2 format, which introduced variable-length strings into the algorithm block header. This means the overall header length is variable and without proper checks can result in an...
PT-2024-30946 · Google · Android
Name of the Vulnerable Software and Affected Versions: Google Android affected versions not specified Description: The issue is caused by a logic error in the code, specifically in the ppmp protect mfcfw buf function of the code/drm fw.c file. This error can lead to memory corruption, resulting i...
CVE-2024-23364 Buffer Over-read in WLAN Firmware
Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the MBSSID Information Element IE of a beacon frame that is received from over-the-air OTA...
UBUNTU-CVE-2024-42313
In the Linux kernel, the following vulnerability has been resolved: media: venus: fix use after free in vdecclose There appears to be a possible use after free with vdecclose. The firmware will add buffer release work to the work queue through HFI callbacks as a normal part of decoding. Randomly...
CVE-2024-41039
CVE-2024-41039 (Linux kernel) : The vulnerability is resolved by fixing overflow checks when parsing wmfw headers in firmware handling. The patch splits the length check into three separate verifications for wmfw_header, wmfw_adsp?_sizes, and wmfw_footer, addressing cases where ADSP2 and Halo Cor...
CVE-2024-41038
CVE-2024-41038 affects the Linux kernel firmware for cs_dsp. The vulnerability is a buffer overrun risk when processing V2 algorithm headers due to the wmfw V2 format introducing variable-length strings in the header; the header length and field positions vary with string lengths. The issue is mi...
Important: Red Hat Security Advisory: edk2 security update
An update for edk2 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as havi...
Intel NUC Security Vulnerability
The Intel NUC is a small minicomputer from Intel Corporation USA. A security vulnerability exists in the Intel NUC that stems from incorrect buffer limits in the BIOS firmware. It could allow a privileged user to potentially enable privileged escalation via local access...
kernel: wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmf_c_preinit_dcmds()
In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmfcpreinitdcmds This patch fixes a stack-out-of-bounds read in brcmfmac that occurs when 'buf' that is not null-terminated is passed as an argument of strsep in...
CVE-2023-3261
The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier contains a buffer overflow vulnerability in the librta.so.0.0.0 library.Successful exploitation could cause denial of service or unexpected behavior with respect to all interactions relying on the targeted vulnerable binary...
CVE-2023-22661
Buffer overflow in some IntelR Server Board BMC firmware before version 2.90 may allow a privileged user to enable escalation of privilege via local access...
CVE-2023-22915
A buffer overflow vulnerability in the “fbwififorward.cgi” CGI program of Zyxel USG FLEX series firmware versions 4.50 through 5.35, USG FLEX 50W firmware versions 4.30 through 5.35, USG20W-VPN firmware versions 4.30 through 5.35, and VPN series firmware versions 4.30 through 5.35, which could...
PT-2022-6525 · Tp Link · Tp-Link Archer Ax21
Name of the Vulnerable Software and Affected Versions: TP-Link Archer AX21 AX1800 affected versions not specified Description: The issue is related to a buffer overflow vulnerability in the TP-Link AX1800 router's firmware, allowing remote attackers to execute arbitrary code on affected...