PT-2026-37509

In the Linux kernel, the following vulnerability has been resolved: drm/buddy: Prevent BUG ON by validating rounded allocation When DRM BUDDY CONTIGUOUS ALLOCATION is set, the requested size is rounded up to the next power-of-two via roundup pow of two. Similarly, for non-contiguous allocations...

In grub2 versions before 2.06 the grub memory allocator doesn't check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations which can be further used to cause possible integrity confidentiality and availability impacts during the boot process.

...

AZL-6456 CVE-2020-14308 affecting package grub2 for versions less than 2.06~rc1-7

In grub2 versions before 2.06 the grub memory allocator doesn't check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations which can be further used to cause possible integrity, confidentiality and availability impacts...

UBUNTU-CVE-2020-12761

modules/loaders/loaderico.c in imlib2 1.6.0 has an integer overflow with resultant invalid memory allocations and out-of-bounds reads via an icon with many colors in its color map...