CVE-2019-10545

CVE-2019-10545 is a Qualcomm/ Snapdragon GPU-related vulnerability: a null pointer dereference in the kernel due to a missing LLC support check in the GPU. Affected are Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Mobile, and Snapdragon Voice ...

CVE-2019-2217

In setCpuVulkanInUse of GpuStats.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID:...

Seeker v1.2.1 - Accurately Locate Smartphones Using Social Engineering

Concept behind Seeker is simple, just like we host phishing pages to get credentials why not host a fake page that requests your location like many popular location based websites. Read more on thewhiteh4t's Blog .Seeker Hosts a fake website on In Built PHP Server and uses Serveo to generate a li...

Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2019-089)

According to the versions of the parallels-server-bm-release / vzkernel / etc packages installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - hw: Machine Check Error on Page Size Change IFU - hw: Intel GPU blitter manipulation can allow for...

Important kernel security update: New kernel 2.6.32-042stab141.3 for Virtuozzo Containers for Linux 4.7, Server Bare Metal 5.0

This update provides a new kernel 2.6.32-042stab141.3 for Virtuozzo Containers for Linux 4.7 and Server Bare Metal 5.0 based on the RHEL 6.10 kernel 2.6.32-754.24.3.el6. The new kernel inherits security fixes. Vulnerability id: CVE-2018-12207 hw: Machine Check Error on Page Size Change IFU...

Control domain memory leak issue on Citrix Hypervisor 8.0 when GPU in use

1. Any operation on VMs start, shutdown, creating and removing snapshot etc. with GPU are extremely slow 2. Citrix Hypervisor 8.0 freezing when GPU in use...

RHEL 6 : kernel-rt (RHSA-2019:3908)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:3908 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Securi...

Important: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise MRG 2. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

CVE-2019-5688

NVIDIA NVFlash, NVUFlash Tool prior to v5.588.0 and GPUModeSwitch Tool prior to 2019-11, NVIDIA kernel mode driver nvflash.sys, nvflsh32.sys, and nvflsh64.sys contains a vulnerability in which authenticated users with administrative privileges can gain access to device memory and registers of oth...

CVE-2019-19082

Memory leaks in createresourcepool functions under drivers/gpu/drm/amd/display/dc in the Linux kernel through 5.3.11 allow attackers to cause a denial of service memory consumption. This affects the dce120createresourcepool function in drivers/gpu/drm/amd/display/dc/dce120/dce120resource.c, the...

CVE-2019-19083

Memory leaks in clocksourcecreate functions under drivers/gpu/drm/amd/display/dc in the Linux kernel before 5.3.8 allow attackers to cause a denial of service memory consumption. This affects the dce112clocksourcecreate function in drivers/gpu/drm/amd/display/dc/dce112/dce112resource.c, the...

DEBIAN-CVE-2019-19067

Four memory leaks in the acphwinit function in drivers/gpu/drm/amd/amdgpu/amdgpuacp.c in the Linux kernel before 5.3.8 allow attackers to cause a denial of service memory consumption by triggering mfdaddhotplugdevices or pmgenpdadddevice failures, aka CID-57be09c6e874. NOTE: third parties dispute...

Design/Logic Flaw

Memory leaks in createresourcepool functions under drivers/gpu/drm/amd/display/dc in the Linux kernel through 5.3.11 allow attackers to cause a denial of service memory consumption. This affects the dce120createresourcepool function in drivers/gpu/drm/amd/display/dc/dce120/dce120resource.c, the...

Design/Logic Flaw

Memory leaks in clocksourcecreate functions under drivers/gpu/drm/amd/display/dc in the Linux kernel before 5.3.8 allow attackers to cause a denial of service memory consumption. This affects the dce112clocksourcecreate function in drivers/gpu/drm/amd/display/dc/dce112/dce112resource.c, the...

CVE-2019-19083

CVE-2019-19083: In Linux kernel before 5.3.8, memory leaks in clock_source_create() under drivers/gpu/drm/amd/display/dc can cause memory exhaustion and DoS. Affects dce112_clock_source_create(), dce100_clock_source_create(), dcn10_clock_source_create(), dcn20_clock_source_create(), dce120_clock_...

CVE-2019-19067

Summary (CVE-2019-19067) Four memory leaks in the acp_hw_init() function of amdgpu/acp.c in the Linux kernel (before 5.3.8) can cause memory consumption and denial of service when mfd_add_hotplug_devices() or pm_genpd_add_device() fail. The issue is reported as exploitable by a local attacker wit...

RHEL 7 : kernel (RHSA-2019:3889)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:3889 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: hw: Intel GPU blitter manipulation can allow fo...

CentOS 6 : kernel (CESA-2019:3878)

An update for kernel is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

CentOS 7 : kernel (CESA-2019:3872)

An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20191114)

Security Fixes : - hw: Intel GPU blitter manipulation can allow for arbitrary kernel memory write CVE-2019-0155 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE pages listed in the References section. ...