Lucene search
+L

1558 matches found

CVE
CVE
added 2026/05/13 3:8 p.m.29 views

CVE-2026-43476

CVE-2026-43476 affects the Linux kernel’s IIO sensor driver for SPS30 (iio: chemical: sps30_i2c). The root cause is a faulty buffer size calculation in sps30_i2c_read_meas() where sizeof(num) yields sizeof(size_t) (8 bytes on 64-bit) instead of the intended 4-byte __be32 element size; the fix use...

7.8CVSS5.9AI score0.00121EPSS
Exploits0References7Affected Software1
SUSE CVE
SUSE CVE
added 2026/05/13 3:35 a.m.11 views

SUSE CVE-2026-43312

In the Linux kernel, the following vulnerability has been resolved: media: i2c: ov5647: Initialize subdev before controls In ov5647initcontrols we call v4l2getsubdevdata, but it is initialized by v4l2i2csubdevinit in the probe, which currently happens after initcontrols. This can result in a...

5.8AI score0.00123EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.11 views

PT-2026-40683

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the sps30 i2c read meas function within the iio: chemical: sps30 i2c component. The sizeofnum expression incorrectly evaluates to the size of size t 8 bytes on 64-bit...

7.8CVSS5.9AI score0.00121EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2026/05/11 2:13 p.m.48 views

SUSE CVE-2026-43380

In the Linux kernel, the following vulnerability has been resolved: hwmon: pmbus/q54sj108a2 fix stack overflow in debugfs read The q54sj108a2debugfsread function suffers from a stack buffer overflow due to incorrect arguments passed to bin2hex. The function currently passes 'data' as the...

7.8CVSS6AI score0.00143EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2026/05/11 12:12 p.m.23 views

USN-8200-3: Linux kernel (Raspberry Pi) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - Cryptographic API; - GPU drivers; - I2C subsystem; - Network traffic control; CVE-2022-49046,...

7.8CVSS5.9AI score0.00255EPSS
Exploits0
NVD
NVD
added 2026/05/08 3:16 p.m.20 views

CVE-2026-43457

In the Linux kernel, the following vulnerability has been resolved: mctp: i2c: fix skb memory leak in receive path When 'midev-allowrx' is false, the newly allocated skb isn't consumed by netifrx, it needs to free the skb directly...

5.5CVSS0.00114EPSS
Exploits0References6
OSV
OSV
added 2026/05/08 2:22 p.m.6 views

CVE-2026-43457 mctp: i2c: fix skb memory leak in receive path

In the Linux kernel, the following vulnerability has been resolved: mctp: i2c: fix skb memory leak in receive path When 'midev-allowrx' is false, the newly allocated skb isn't consumed by netifrx, it needs to free the skb directly...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2026/05/08 2:16 p.m.11 views

CVE-2026-43312

In the Linux kernel, the following vulnerability has been resolved: media: i2c: ov5647: Initialize subdev before controls In ov5647initcontrols we call v4l2getsubdevdata, but it is initialized by v4l2i2csubdevinit in the probe, which currently happens after initcontrols. This can result in a...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References17
OSV
OSV
added 2026/05/08 2:16 p.m.18 views

UBUNTU-CVE-2026-43312

In the Linux kernel, the following vulnerability has been resolved: media: i2c: ov5647: Initialize subdev before controls In ov5647initcontrols we call v4l2getsubdevdata, but it is initialized by v4l2i2csubdevinit in the probe, which currently happens after initcontrols. This can result in a...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References18
Cvelist
Cvelist
added 2026/05/08 1:11 p.m.35 views

CVE-2026-43312 media: i2c: ov5647: Initialize subdev before controls

In the Linux kernel, the following vulnerability has been resolved: media: i2c: ov5647: Initialize subdev before controls In ov5647initcontrols we call v4l2getsubdevdata, but it is initialized by v4l2i2csubdevinit in the probe, which currently happens after initcontrols. This can result in a...

0.00123EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.13 views

PT-2026-38954

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the ov5647 init controls function where v4l2 get subdevdata is called before the subdevice is initialized by v4l2 i2c subdev init during the probe process. This...

5.5CVSS6.3AI score0.00123EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/05/06 11:28 a.m.12 views

CVE-2026-43246

In the Linux kernel, the following vulnerability has been resolved: media: i2c/tw9906: Fix potential memory leak in tw9906probe In one of the error paths in tw9906probe, the memory allocated in v4l2ctrlhandlerinit and v4l2ctrlnewstd is not freed. Fix that by calling v4l2ctrlhandlerfree on the...

5.5CVSS5.7AI score0.00123EPSS
Exploits0
Cvelist
Cvelist
added 2026/05/06 11:28 a.m.73 views

CVE-2026-43221 ipmi: ipmb: initialise event handler read bytes

In the Linux kernel, the following vulnerability has been resolved: ipmi: ipmb: initialise event handler read bytes IPMB doesn't use i2c reads, but the handler needs to set a value. Otherwise an i2c read will return an uninitialised value from the bus driver...

0.00128EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2026/05/06 1:41 a.m.6 views

SUSE CVE-2026-43005

In the Linux kernel, the following vulnerability has been resolved: hwmon: tps53679 Fix array access with zero-length block read i2csmbusreadblockdata can return 0, indicating a zero-length read. When this happens, tps53679identifychip accesses bufret - 1 which is buf-1, reading one byte before t...

5.9AI score0.00124EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the IPMB event handler not being initialized. This issue may cause i2c to read uninitialized valu...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References1
NVD
NVD
added 2026/05/01 3:16 p.m.7 views

CVE-2026-43005

In the Linux kernel, the following vulnerability has been resolved: hwmon: tps53679 Fix array access with zero-length block read i2csmbusreadblockdata can return 0, indicating a zero-length read. When this happens, tps53679identifychip accesses bufret - 1 which is buf-1, reading one byte before t...

7.1CVSS0.00124EPSS
Exploits0References3
CVE
CVE
added 2026/05/01 2:15 p.m.22 views

CVE-2026-43005

CVE-2026-43005 affects the Linux kernel hwmon driver for tps53679. The bug arises when i2c_smbus_read_block_data() returns 0 (zero-length read); tps53679_identify_chip() then accesses buf[ret-1] (buf[-1]), causing an out-of-bounds read. The fix changes the check from ret < 0 to ret

7.1CVSS5.9AI score0.00124EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/05/01 2:15 p.m.3 views

CVE-2026-43005 hwmon: (tps53679) Fix array access with zero-length block read

In the Linux kernel, the following vulnerability has been resolved: hwmon: tps53679 Fix array access with zero-length block read i2csmbusreadblockdata can return 0, indicating a zero-length read. When this happens, tps53679identifychip accesses bufret - 1 which is buf-1, reading one byte before t...

7.1CVSS6AI score0.00124EPSS
Exploits0References6
OSV
OSV
added 2026/05/01 12:3 p.m.13 views

CLSA-2026-1777636990 Fix of 9 CVEs

CVE-2026-31431 - crypto: scatterwalk - Backport memcpysglist CVE-2026-31431 - crypto: algifaead - use memcpysglist instead of null skcipher CVE-2026-31431 - crypto: algifaead - Revert to operating out-of-place CVE-2026-31431 - crypto: algifaead - snapshot IV for async AEAD requests CVE-2026-31431...

7.8CVSS7.3AI score0.96267EPSS
Exploits230References1
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.14 views

PT-2026-36422

In the Linux kernel, the following vulnerability has been resolved: hwmon: tps53679 Fix array access with zero-length block read i2c smbus read block data can return 0, indicating a zero-length read. When this happens, tps53679 identify chip accesses bufret - 1 which is buf-1, reading one byte...

5.9AI score0.00124EPSS
Exploits0References4
Rows per page
Query Builder