9778 matches found
USN-7379-1 linux, linux-aws, linux-azure, linux-gcp, linux-hwe-6.11, linux-oracle, linux-realtime vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S390 architecture; - x86...
CVE-2025-21880
Linux kernel CVE-2025-21880 affects the DRM XE userptr flow (drm/xe/userptr), specifically xe_vm_userptr_pin and EFAULT handling from hmm_range_fault(). The issue arose when EFAULT was treated as non-fatal, which could leave the userptr VMA on the rebind list during preempt_rebind_work_func(), le...
CVE-2025-21880 drm/xe/userptr: fix EFAULT handling
In the Linux kernel, the following vulnerability has been resolved: drm/xe/userptr: fix EFAULT handling Currently we treat EFAULT from hmmrangefault as a non-fatal error when called from xevmuserptrpin with the idea that we want to avoid killing the entire vm and chucking an error, under the...
Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues: CVE-2024-44192: Fixed unexpected process crash due to processing maliciously crafted web content bsc1239863 CVE-2024-54467: Fixed data exilfration cross-origin due to a cookie management issue via a malicious website bsc1239864 Other fixes: ...
CVE-2025-0835
Software installed and run as a non-privileged user may conduct improper GPU system calls to corrupt kernel heap memory...
CVE-2025-0478
Software installed and run as a non-privileged user may conduct improper GPU system calls to issue reads and writes to arbitrary physical memory pages. Under certain circumstances this exploit could be used to corrupt data pages not allocated by the GPU driver but memory pages in use by the kerne...
Enabling WPF Rendering for Citrix HDX on Multi-Session VDAs
Overview Windows Presentation Foundation WPF applications can leverage GPU acceleration in Citrix Virtual Apps and Desktops CVAD environments running Windows Multi-session OS. By enabling WPF rendering on the server’s GPU, this reduces CPU load and improves graphics performance for WPF...
CVE-2025-0478
Software installed and run as a non-privileged user may conduct improper GPU system calls to issue reads and writes to arbitrary physical memory pages. Under certain circumstances this exploit could be used to corrupt data pages not allocated by the GPU driver but memory pages in use by the kerne...
CVE-2025-0835
Software installed and run as a non-privileged user may conduct improper GPU system calls to corrupt kernel heap memory...
CVE-2025-0835 GPU DDK - _WrapExtMemReleasePages called twice if _FlushUMVirtualRange fails
Software installed and run as a non-privileged user may conduct improper GPU system calls to corrupt kernel heap memory...
CVE-2025-0835
CVE-2025-0835 involves an improper GPU system call in the Imagination Technologies PowerVR-GPU driver that can lead to kernel heap memory corruption when a non-privileged user invokes GPU operations. The issue is labeled as a local vulnerability (attack vector: LOCAL) with low privileges required...
CVE-2025-0835 GPU DDK - _WrapExtMemReleasePages called twice if _FlushUMVirtualRange fails
Software installed and run as a non-privileged user may conduct improper GPU system calls to corrupt kernel heap memory...
CVE-2025-0478
CVE-2025-0478 describes a local vulnerability in GPUs where software running as a non-privileged user can trigger improper GPU system calls that read/write arbitrary physical memory pages. The impact, as stated in Red Hat/NVD descriptions, is potential corruption of memory pages not owned by the ...
CVE-2025-0478 GPU DDK - PMMETA_PROTECT PMR can be exported as dma-buf file / GEM object
Software installed and run as a non-privileged user may conduct improper GPU system calls to issue reads and writes to arbitrary physical memory pages. Under certain circumstances this exploit could be used to corrupt data pages not allocated by the GPU driver but memory pages in use by the kerne...
CVE-2025-0478 GPU DDK - PMMETA_PROTECT PMR can be exported as dma-buf file / GEM object
Software installed and run as a non-privileged user may conduct improper GPU system calls to issue reads and writes to arbitrary physical memory pages. Under certain circumstances this exploit could be used to corrupt data pages not allocated by the GPU driver but memory pages in use by the kerne...
The vulnerability of the cm3_helper_translate_curve_to_degamma_hw_format() function in the drivers/gpu/drm/amd/display/dc/dcn30/dcn30_cm_common.c file of the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the cm3helpertranslatecurvetodegammahwformat function in the drivers/gpu/drm/amd/display/dc/dcn30/dcn30cmcommon.c file of the Linux kernel is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...
[SECURITY] Fedora 40 Update: kitty-0.40.0-2.fc40
Offloads rendering to the GPU for lower system load and buttery smooth scrolling. Uses threaded rendering to minimize input latency. - Supports all modern terminal features: graphics images, unicode, true-col or, OpenType ligatures, mouse protocol, focus tracking, bracketed paste and several new...
The vulnerability of the xe_devcoredump_read() function in the drivers/gpu/drm/xe/xe_devcoredump.c kernel module of the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the xedevcoredumpread function in the drivers/gpu/drm/xe/xedevcoredump.c kernel module of the Linux operating system is related to the assignment of pointers. Exploiting this vulnerability can allow an attacker to cause a service failure...
Vulnerability of the function ta_if_invoke_debugfs_write() in the drivers/gpu/drm/amd/amdgpu/amdgpu_psp_ta.c file of the Linux kernel, allowing a hacker to trigger a service failure
The vulnerability of the taifinvokedebugfswrite function in the drivers/gpu/drm/amd/amdgpu/amdgpupspta.c file of the Linux kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
MGASA-2025-0104 Updated chromium-browser-stable packages fix security vulnerabilities
High CVE-2025-1920: Type Confusion in V8. High CVE-2025-2135: Type Confusion in V8. Medium CVE-2025-2136: Use after free in Inspector. Medium CVE-2025-2137: Out of bounds read in V8...