27 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: Media: Iris: Gen1 – Destroy internal buffers after the firmware release. After the firmware releases, the driver did not destroy the internal buffers. This led to stale allocations that were no longer used, especially during...
CVE-2026-43142
A flaw was found in the Linux kernel's media: iris: gen1 driver. This vulnerability occurs because the driver fails to destroy internal buffers after the firmware releases them. This oversight leads to stale memory allocations, particularly when display resolutions change and new buffers are...
CVE-2026-43142
In the Linux kernel, the following vulnerability has been resolved: media: iris: gen1: Destroy internal buffers after FW releases After the firmware releases internal buffers, the driver was not destroying them. This left stale allocations that were no longer used, especially across resolution...
CVE-2026-43142
In the Linux kernel, the following vulnerability has been resolved: media: iris: gen1: Destroy internal buffers after FW releases After the firmware releases internal buffers, the driver was not destroying them. This left stale allocations that were no longer used, especially across resolution...
PT-2026-37482
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description In the iris driver for gen1, internal buffers were not destroyed after being released by the firmware. This led to stale allocations that remained unused, particularly during resolution...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the iris gen1 driver failing to destroy the internal buffer after it is released by the firmware,...
CVE-2026-3670 Freedom Factory dGEN1 com.dgen.alarm improper authorization
A vulnerability was detected in Freedom Factory dGEN1 up to 20260221. Affected is an unknown function of the component com.dgen.alarm. Performing a manipulation results in improper authorization. The attack requires a local approach. The exploit is now public and may be used. The vendor was...
SUSE CVE-2025-21831
In the Linux kernel, the following vulnerability has been resolved: PCI: Avoid putting some root ports into D3 on TUXEDO Sirius Gen1 commit 9d26d3a8f1b0 "PCI: Put PCIe ports into D3 during suspend" sets the policy that all PCIe ports are allowed to use D3. When the system is suspended if the port...
CVE-2025-21831
In the Linux kernel, the following vulnerability has been resolved: PCI: Avoid putting some root ports into D3 on TUXEDO Sirius Gen1 commit 9d26d3a8f1b0 "PCI: Put PCIe ports into D3 during suspend" sets the policy that all PCIe ports are allowed to use D3. When the system is suspended if the port...
CVE-2025-21831
CVE-2025-21831 covers a Linux kernel PCI issue: on some TUXEDO Sirius Gen1 systems, a BIOS-specific wakeup failure caused suspend-time root-port D3hot entry. Root cause is a policy change from commit 9d26d3a8f1b0 that allowed all PCIe ports to enter D3, which could hang on resume for the affected...
CVE-2025-21831 PCI: Avoid putting some root ports into D3 on TUXEDO Sirius Gen1
In the Linux kernel, the following vulnerability has been resolved: PCI: Avoid putting some root ports into D3 on TUXEDO Sirius Gen1 commit 9d26d3a8f1b0 "PCI: Put PCIe ports into D3 during suspend" sets the policy that all PCIe ports are allowed to use D3. When the system is suspended if the port...
CVE-2025-21831 PCI: Avoid putting some root ports into D3 on TUXEDO Sirius Gen1
In the Linux kernel, the following vulnerability has been resolved: PCI: Avoid putting some root ports into D3 on TUXEDO Sirius Gen1 commit 9d26d3a8f1b0 "PCI: Put PCIe ports into D3 during suspend" sets the policy that all PCIe ports are allowed to use D3. When the system is suspended if the port...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from avoiding placing certain root ports in a D3 state on the TUXEDO Sirius Gen1...
CVE-2023-0248
An attacker with physical access to the Kantech Gen1 ioSmart card reader with firmware version prior to 1.07.02 in certain circumstances can recover the reader's communication memory between the card and reader...
CVE-2023-0248 Kantech Gen1 ioSmart card reader
An attacker with physical access to the Kantech Gen1 ioSmart card reader with firmware version prior to 1.07.02 in certain circumstances can recover the reader's communication memory between the card and reader...
CVE-2023-0248 Kantech Gen1 ioSmart card reader
An attacker with physical access to the Kantech Gen1 ioSmart card reader with firmware version prior to 1.07.02 in certain circumstances can recover the reader's communication memory between the card and reader...
CVE-2023-0248
CVE-2023-0248 affects Kantech Gen1 ioSmart card reader firmware versions prior to 1.7.02. The vulnerability allows an attacker with physical access to recover the reader’s communication memory between the card and reader in certain circumstances. Reported CVSS v3.1 base scores include a 7.5 HIGH ...
PT-2023-16111 · Kantech · Kantech Gen1 Iosmart Card Reader
Name of the Vulnerable Software and Affected Versions: Kantech Gen1 ioSmart card reader versions prior to 1.07.02 Description: An attacker with physical access to the Kantech Gen1 ioSmart card reader in certain circumstances can recover the reader's communication memory between the card and reade...
Qualcomm 芯片 代码问题漏洞
A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way of miniaturizing circuits including primarily semiconductor devices, but also passive components, etc., and from time to time manufactured on the surface of semiconductor wafers. A code issue vulnerability exists in multiple Qualcomm...
PT-2021-19251 · Siemens +1 · Simotics Connect 400 +12
Name of the Vulnerable Software and Affected Versions: Capital Embedded AR Classic 431-422 versions all Capital Embedded AR Classic R20-11 versions all prior to V2303 PLUSCONTROL 1st Gen versions all SIMOTICS CONNECT 400 versions all prior to V0.5.0.0 SIMOTICS CONNECT 400 versions all prior to...