332 matches found
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: drm/i915/gt: Handling cleanup of partially initialized engines If we abort the driver initialization during the process of engine discovery, some engines will be fully initialized while others will not. Those incompletely...
Astra Linux – Vulnerability in Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: drm/i915/gem: The i915gemcontext link is now moved under ref protection. i915perf assumes that it can use the i915gemcontext reference to protect its i915-gem.contexts.list iteration. However, this requires that we do not remo...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: drm/amdkfd: Fixed error handling in kfdprocessdeviceinitvm It is necessary to only destroy the ibmem and let the process cleanup worker free the outstanding BOs. Reset the pointer in the pdd-qpd structure to avoid NULL pointer...
EUVD-2026-35758
Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally...
CVE-2026-40403
Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to execute code locally...
CVE-2026-34347
Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...
EUVD-2026-29593
Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...
PT-2026-40217
Name of the Vulnerable Software and Affected Versions Windows Win32K - GRFX affected versions not specified Description A heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to execute code locally. This issue can potentially be used to escape a virtual machine...
KB5087420: Windows 11 version 23H2 Security Update (May 2026)
The remote Windows host is missing security update 5087420. It is, therefore, affected by multiple vulnerabilities - Heap-based buffer overflow in Microsoft Windows DNS allows an unauthorized attacker to execute code over a network. CVE-2026-41096 - Use after free in Windows Hyper-V allows an...
EUVD-2026-28674
In the Linux kernel, the following vulnerability has been resolved: drm/i915: Fix potential overflow of shmem scatterlist length When a scatterlists table of a GEM shmem object of size 4 GB or more is populated with pages allocated from a folio, unsigned int .length attribute of a scatterlist may...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: drm: Do not allow userspace to trigger kernel warnings in drmgemchangehandleioctl Since GEM bo handles are of type u32 in the uapi, and the internal implementation uses idralloc, which uses integer ranges. Passing a new handle th...
PT-2026-36420
In the Linux kernel, the following vulnerability has been resolved: drm/xe/xe pagefault: Disallow writes to read-only VMAs The page fault handler should reject write/atomic access to read only VMAs. Add code to handle this in xe pagefault service after the VMA lookup. v2: - Apply max line length...
CVE-2026-33104
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...
Microsoft Graphics Kernel Competitive Conditions Issue Vulnerability
Microsoft Graphics Kernel is a kernel-mode graphics driver subsystem from Microsoft. A security vulnerability exists in Microsoft Graphics Kernel. An attacker could exploit the vulnerability to gain elevated privileges...
CVE-2026-20836
Concurrent execution using shared resource with improper synchronization 'race condition' in Graphics Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-20814
Concurrent execution using shared resource with improper synchronization 'race condition' in Graphics Kernel allows an authorized attacker to elevate privileges locally...
CVE-2025-71130
In the Linux kernel, the following vulnerability has been resolved: drm/i915/gem: Zero-initialize the eb.vma array in i915gemdoexecbuffer Initialize the eb.vma array with values of 0 when the eb structure is first set up. In particular, this sets the eb-vmai.vma pointers to NULL, simplifying...
CVE-2026-20836
Concurrent execution using shared resource with improper synchronization 'race condition' in Graphics Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-20836
Concurrent execution using shared resource with improper synchronization 'race condition' in Graphics Kernel allows an authorized attacker to elevate privileges locally...
CVE-2026-20814
Concurrent execution using shared resource with improper synchronization 'race condition' in Graphics Kernel allows an authorized attacker to elevate privileges locally...