Lucene search
K

19 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Wifi: iwlwifi: fw – fixed a memory leak in debugfs. A memory leak occurs when reading the fwinfo file. We return NULL to indicate that there are no more data, but we do not free the status tracking object...

5.5CVSS5.8AI score0.00147EPSS
Exploits0References2
OSV
OSV
added 2026/05/12 8:19 p.m.7 views

CLSA-2026-1778617167 freeipmi: Fix of CVE-2026-33554

CVE-2026-33554: fix buffer overflows in ipmi-oem response handling for dell get-last-post-code, supermicro extra-firmware-info, and wistron read-proprietary-string subcommands...

7.5CVSS5.9AI score0.00403EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-010881)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010881 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: fw: fix memory leak in debugfs Fix a memory leak that occurs when reading the fwin...

5.5CVSS5.8AI score0.00147EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/10 12:0 a.m.3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: freeipmi (UTSA-2026-007097)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007097 advisory. ipmi-oem in FreeIPMI before 1.16.17 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface IPMI specification defines a...

7.5CVSS6.2AI score0.00403EPSS
Exploits0References4
OSV
OSV
added 2026/03/27 2:4 p.m.3 views

OESA-2026-1737 freeipmi security update

The package provides "Remote-Console" and "System Management software" based on intelligent platform management interface specification. Security Fixes: ipmi-oem in FreeIPMI before 1.16.17 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface IPMI...

7.5CVSS6.2AI score0.00403EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/24 3:30 p.m.11 views

EUVD-2026-14899

ipmi-oem in FreeIPMI before 1.16.17 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface IPMI specification defines a set of interfaces for platform management. It is implemented by a large number of hardware manufacturers to support system...

7.5CVSS6.2AI score0.00403EPSS
Exploits0References5
NVD
NVD
added 2026/03/24 3:16 p.m.3 views

CVE-2026-33554

ipmi-oem in FreeIPMI before 1.6.17 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface IPMI specification defines a set of interfaces for platform management. It is implemented by a large number of hardware manufacturers to support system managemen...

7.5CVSS0.00403EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/03/24 3:16 p.m.9 views

CVE-2026-33554

ipmi-oem in FreeIPMI before 1.16.17 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface IPMI specification defines a set of interfaces for platform management. It is implemented by a large number of hardware manufacturers to support system...

7.5CVSS6AI score0.00403EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/03/24 12:0 a.m.2 views

CVE-2026-33554

ipmi-oem in FreeIPMI before 1.6.17 has exploitable buffer overflows on response messages. The Intelligent Platform Management Interface IPMI specification defines a set of interfaces for platform management. It is implemented by a large number of hardware manufacturers to support system managemen...

7.5CVSS6AI score0.00403EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.8 views

PT-2026-27437

Name of the Vulnerable Software and Affected Versions FreeIPMI versions prior to 1.16.17 Description The Intelligent Platform Management Interface IPMI specification defines a set of interfaces for platform management and is implemented by numerous hardware manufacturers to support system...

7.5CVSS6.1AI score0.00403EPSS
Exploits0References60
Vulnrichment
Vulnrichment
added 2025/09/18 4:4 p.m.1 views

CVE-2023-53422 wifi: iwlwifi: fw: fix memory leak in debugfs

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: fw: fix memory leak in debugfs Fix a memory leak that occurs when reading the fwinfo file all the way, since we return NULL indicating no more data, but don't free the status tracking object...

6.1AI score0.00147EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/09/18 4:4 p.m.8 views

CVE-2023-53422 wifi: iwlwifi: fw: fix memory leak in debugfs

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: fw: fix memory leak in debugfs Fix a memory leak that occurs when reading the fwinfo file all the way, since we return NULL indicating no more data, but don't free the status tracking object...

0.00147EPSS
Exploits0References6
CVE
CVE
added 2025/09/18 4:4 p.m.27 views

CVE-2023-53422

Technical details about CVE-2023-53422 (affected product, root cause, impact, remediation) are not publicly provided in the supplied documents. The description mentions a memory-leak fix in wifi: iwlwifi: fw: debugfs, but contains no vendor/version/patch specifics. Monitor for updates.

5.5CVSS6.1AI score0.00147EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.7 views

Vulnerability of the get_firmware_info_v3_2() function in the drivers/gpu/drm/amd/display/dc/bios/bios_parser2.c module – A driver for supporting Direct Rendering Infrastructure (DRI) in AMD graphics cards for Linux operating systems, which allows a hacker to cause a service failure.

Vulnerability of the getfirmwareinfov32 function in the drivers/gpu/drm/amd/display/dc/bios/biosparser2.c module – The driver that supports Direct Rendering Infrastructure DRI for AMD graphics cards in Linux operating systems is vulnerable due to a NULL pointer dereferencing issue. Exploiting thi...

5.5CVSS6.4AI score0.00241EPSS
Exploits0References15Affected Software6
OSV
OSV
added 2024/12/27 2:15 p.m.1 views

DEBIAN-CVE-2024-53202

In the Linux kernel, the following vulnerability has been resolved: firmwareloader: Fix possible resource leak in fwlogfirmwareinfo The alg instance should be released under the exception path, otherwise there may be resource leak here. To mitigate this, free the alg instance with cryptofreeshash...

5.5CVSS5.6AI score0.00217EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/27 1:49 p.m.2 views

CVE-2024-53202 firmware_loader: Fix possible resource leak in fw_log_firmware_info()

In the Linux kernel, the following vulnerability has been resolved: firmwareloader: Fix possible resource leak in fwlogfirmwareinfo The alg instance should be released under the exception path, otherwise there may be resource leak here. To mitigate this, free the alg instance with cryptofreeshash...

7.7AI score0.00217EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2024/10/17 12:0 a.m.5 views

The vulnerability of the amdgpu_cgs_get_firmware_info() function in the Linux operating system allows a hacker to compromise the confidentiality and accessibility of protected information.

The vulnerability of the amdgpucgsgetfirmwareinfo function in the Linux operating system is related to reading memory beyond the bounds of the allocated buffer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and accessibility of the protected information...

7.1CVSS6.5AI score0.00253EPSS
Exploits0References28Affected Software6
RedHat Linux
RedHat Linux
added 2023/11/14 3:46 p.m.2 views

kernel: wifi: iwlwifi: fw: fix memory leak in debugfs

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: fw: fix memory leak in debugfs Fix a memory leak that occurs when reading the fwinfo file all the way, since we return NULL indicating no more data, but don't free the status tracking object...

5.5CVSS6.7AI score0.00147EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2022/09/05 4:15 a.m.4 views

CVE-2022-39828

signpFwInfo in Samsung mTower through 0.3.0 has a missing check on the return value of ECKEYsetprivatekey, leading to a denial of service...

7.5CVSS5.8AI score0.0103EPSS
Exploits1References4
Rows per page
Query Builder