Lucene search
K

756 matches found

Positive Technologies
Positive Technologies
added 2026/02/11 12:0 a.m.4 views

PT-2026-7587

A Time-of-check time-of-use TOCTOU race condition in the AMD Secure Processor ASP could allow an attacker to modify External Global Memory Interconnect Trusted Agent XGMI TA commands as they are processed potentially resulting in loss of confidentiality, integrity, or availability...

7.1CVSS5.6AI score0.00101EPSS
Exploits0References2
Amd
Amd
added 2026/02/10 12:0 a.m.10 views

AMD Graphics Driver Vulnerabilities – February 2026

CVE Details Refer to Glossary for explanation of terms CVE| CVE Description | CVSS Score ---|---|--- CVE-2024-36324| Improper input validation in the AMD Graphics Driver could allow an attacker to supply a specially crafted pointer, potentially leading to arbitrary code execution.| 8.8 High...

8.8CVSS5.8AI score0.00188EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/02/09 2:40 a.m.3 views

kernel: Linux kernel: irqchip/gic-v2m use-after-free vulnerability

A flaw was found in the Linux kernel's irqchip/gic-v2m component. This vulnerability allows a use-after-free condition via gicv2mgetfwnode being wrongly marked as init, causing it to be freed while still registered with the PCI Peripheral Component Interconnect subsystem during a PCI host bridge...

7.8CVSS5.7AI score0.00174EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/28 12:57 a.m.3 views

kernel: Linux kernel: irqchip/gic-v2m use-after-free vulnerability

A flaw was found in the Linux kernel's irqchip/gic-v2m component. This vulnerability allows a use-after-free condition via gicv2mgetfwnode being wrongly marked as init, causing it to be freed while still registered with the PCI Peripheral Component Interconnect subsystem during a PCI host bridge...

7.8CVSS5.7AI score0.00174EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/26 4:39 p.m.3 views

kernel: Linux kernel: irqchip/gic-v2m use-after-free vulnerability

A flaw was found in the Linux kernel's irqchip/gic-v2m component. This vulnerability allows a use-after-free condition via gicv2mgetfwnode being wrongly marked as init, causing it to be freed while still registered with the PCI Peripheral Component Interconnect subsystem during a PCI host bridge...

7.8CVSS5.7AI score0.00174EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/26 2:32 p.m.2 views

kernel: Linux kernel: irqchip/gic-v2m use-after-free vulnerability

A flaw was found in the Linux kernel's irqchip/gic-v2m component. This vulnerability allows a use-after-free condition via gicv2mgetfwnode being wrongly marked as init, causing it to be freed while still registered with the PCI Peripheral Component Interconnect subsystem during a PCI host bridge...

7.8CVSS5.7AI score0.00174EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.7 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-56760)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56760 advisory. - In the Linux kernel, the following vulnerability has been resolved: PCI/MSI: Handle lack of irqdomain...

5.5CVSS6.7AI score0.00202EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002109)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002109 advisory. The PCI backend driver in Xen, when running on an x86 system and using Linux 3.1.x through 4.3.x as the driver domain, allows local guest administrators to generate ...

4.4CVSS6.2AI score0.00446EPSS
Exploits0References15
Redos
Redos
added 2026/01/12 12:0 a.m.7 views

ROS-20260112-7371

A vulnerability in the kspciesetuprcappregs function of the drivers/pci/controller/dwc/pci-keystone.c module of the Linux kernel is related to pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS6.5AI score0.00225EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.5 views

PT-2026-8116

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the interconnect component related to debugfs handling. Specifically, the src node and dst node variables were not initialized before being used...

5.5CVSS6AI score0.00119EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.6 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993043)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993043 advisory. In the Linux kernel, the following vulnerability has been resolved: interconnect: fix mem leak when freeing nodes The node link array is allocated when adding links ...

5.5CVSS6.5AI score0.00166EPSS
Exploits0References4
OSV
OSV
added 2025/12/30 12:37 p.m.6 views

CVE-2023-54326 misc: pci_endpoint_test: Free IRQs before removing the device

In the Linux kernel, the following vulnerability has been resolved: misc: pciendpointtest: Free IRQs before removing the device In pciendpointtestremove, freeing the IRQs after removing the device creates a small race window for IRQs to be received with the test device memory already released,...

6.2AI score0.00176EPSS
Exploits0References10
Cvelist
Cvelist
added 2025/12/30 12:11 p.m.23 views

CVE-2023-54235 PCI/DOE: Fix destroy_work_on_stack() race

In the Linux kernel, the following vulnerability has been resolved: PCI/DOE: Fix destroyworkonstack race The following debug object splat was observed in testing: ODEBUG: free active active state 0 object: 0000000097d23782 object type: workstruct hint: doestatemachinework+0x0/0x510 WARNING: CPU: ...

0.00168EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/12/30 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not properly releasing PCI device reference counts, which could lead to a memory leak...

6.1AI score0.00204EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2025/12/30 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992614)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992614 advisory. In the Linux kernel, the following vulnerability has been resolved: ocxl: fix pci device refcount leak when calling getfunction0 getfunction0 calls...

5.5CVSS5.2AI score0.00145EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/30 12:0 a.m.4 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992537)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992537 advisory. In the Linux kernel, the following vulnerability has been resolved: interconnect: fix mem leak when freeing nodes The node link array is allocated when adding links ...

5.5CVSS6.5AI score0.00166EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/12/25 2:15 p.m.4 views

CVE-2023-54013

In the Linux kernel, the following vulnerability has been resolved: interconnect: Fix locking for runpm vs reclaim For cases where iccbwset can be called in callbaths that could deadlock against shrinker/reclaim, such as runpm resume, we need to decouple the icc locking. Introduce a new iccbwlock...

7CVSS5.8AI score0.00163EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/12/25 12:57 a.m.4 views

SUSE CVE-2023-54013

In the Linux kernel, the following vulnerability has been resolved: interconnect: Fix locking for runpm vs reclaim For cases where iccbwset can be called in callbaths that could deadlock against shrinker/reclaim, such as runpm resume, we need to decouple the icc locking. Introduce a new iccbwlock...

4.7CVSS6.5AI score0.00163EPSS
Exploits0References16
SUSE CVE
SUSE CVE
added 2025/12/25 12:55 a.m.4 views

SUSE CVE-2023-54095

In the Linux kernel, the following vulnerability has been resolved: powerpc/iommu: Fix notifiers being shared by PCI and VIO buses failiommusetup registers the failiommubusnotifier struct to both PCI and VIO buses. struct notifierblock is a linked list node, so this causes any notifiers later...

5.5CVSS6.5AI score0.00204EPSS
Exploits0References23
EUVD
EUVD
added 2025/12/24 3:30 p.m.5 views

EUVD-2023-60350

In the Linux kernel, the following vulnerability has been resolved: powerpc/iommu: Fix notifiers being shared by PCI and VIO buses failiommusetup registers the failiommubusnotifier struct to both PCI and VIO buses. struct notifierblock is a linked list node, so this causes any notifiers later...

6AI score0.00204EPSS
Exploits0References10
Rows per page
Query Builder