5 matches found
CVE-2026-43368
In the Linux kernel, the following vulnerability has been resolved: drm/i915: Fix potential overflow of shmem scatterlist length When a scatterlists table of a GEM shmem object of size 4 GB or more is populated with pages allocated from a folio, unsigned int .length attribute of a scatterlist may...
SUSE CVE-2024-58074
In the Linux kernel, the following vulnerability has been resolved: drm/i915: Grab inteldisplay from the encoder to avoid potential oopsies Grab the inteldisplay from 'encoder' rather than 'state' in the encoder hooks to avoid the massive footgun that is intelsanitizeencoder, which passes NULL as...
USN-6085-1 linux-raspi vulnerabilities
It was discovered that some AMD x86-64 processors with SMT enabled could speculatively execute instructions using a return address from a sibling thread. A local attacker could possibly use this to expose sensitive information. CVE-2022-27672 Zheng Wang discovered that the Intel i915 graphics...
kernel: possible privileges escalation due to missing TLB flush
A random memory access flaw was found in the Linux kernel’s GPU i915 kernel driver functionality in the way a user may run malicious code on the GPU. This flaw allows a local user to crash the system or escalate their privileges on the system...
Kernel: drm/i915: heap writing overflow
Integer overflow in drivers/gpu/drm/i915/i915gemexecbuffer.c in the i915 driver in the Direct Rendering Manager DRM subsystem in the Linux kernel through 3.8.3, as used in Google Chrome OS before 25.0.1364.173 and other products, allows local users to cause a denial of service heap-based buffer...