Wincor Nixdorf wnBios64.sys 安全漏洞

Wincor Nixdorf wnBios64.sys is a kernel driver developed by the German company Wincor Nixdorf. The version wnBios64.sys 1.2.0.0 contains a security vulnerability. This vulnerability stems from the lack of boundary checks in the IOCTL handler of code 0x80102058. It may lead to stack buffer...

PT-2026-23482

Name of the Vulnerable Software and Affected Versions Wincor Nixdorf wnBios64.sys version 1.2.0.0 Description A stack buffer overflow exists in the wnBios64.sys kernel driver within the IOCTL handler for code 0x80102058. The issue is due to a lack of bounds checking on the user-controlled Options...

EUVD-2026-9408

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

DEBIAN-CVE-2026-23236

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

AZL-78632 CVE-2026-23236 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

CVE-2026-23236 fbdev: smscufx: properly copy ioctl memory to kernelspace

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

CVE-2026-23236 fbdev: smscufx: properly copy ioctl memory to kernelspace

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

CVE-2026-23236

Technical details about CVE-2026-23236 are not publicly provided in the supplied documents; advisories reference kernel fixes but do not specify affected components, versions, or impact. Monitor for updates.

CVE-2025-47375

Memory corruption while handling different IOCTL calls from the user-space simultaneously...

PT-2026-22922

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The UFX IOCTL REPORT DAMAGE ioctl does not correctly copy data from user space to kernel space. Instead, it directly references the memory, which can lead to issues if invalid data is...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005655)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005655 advisory. In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Use kzalloc for sev ioctl interfaces to prevent kernel data leak For some sev ioctl...

kernel: Linux kernel: Denial of Service in ATM CLIP module via infinite recursion

A flaw was found in the Linux kernel's Asynchronous Transfer Mode ATM Classical IP CLIP module. A local user can trigger an infinite recursive call in the clippush function by repeatedly calling the ioctlATMARPMKIP system call. This vulnerability occurs when the socket is closed, leading to stack...

kernel: Linux kernel: Memory corruption in Squashfs due to incorrect block size calculation

A flaw was found in the Linux kernel's Squashfs filesystem. A local attacker can exploit this vulnerability by simultaneously mounting a Squashfs filesystem and issuing a specific input/output control ioctl command. This can lead to an incorrect block size calculation, causing a shift-out-of-boun...

CVE-2025-47386

Memory Corruption while invoking IOCTL calls when concurrent access to shared buffer occurs...

CVE-2025-47386

CVE-2025-47386 affects automotive audio (per CVE listing) with memory corruption arising during IOCTL handling under concurrent access to a shared buffer. The connected CVE record notes a Use After Free root cause. Exploitation details are not provided in the available documents. No explicit reme...

CVE-2025-47381

CVE-2025-47381 corresponds to a memory corruption issue that occurs while processing IOCTL calls when there is concurrent access to a shared buffer. The CVSS 3.1 vector indicates a HIGH impact on confidentiality, integrity, and availability, with LOCAL attack vector, LOW attack complexity, LOW pr...

CVE-2025-47381 Use After Free in Automotive Audio

Memory Corruption while processing IOCTL calls when concurrent access to shared buffer occurs...

CVE-2025-47377

Memory Corruption when accessing a buffer after it has been freed while processing IOCTL calls...

CVE-2025-47377 Use After Free in Automotive Audio

Memory Corruption when accessing a buffer after it has been freed while processing IOCTL calls...

CVE-2025-47376

CVE-2025-47376 describes memory corruption during concurrent access to a shared buffer in IOCTL handling. The CVE entries reference a use-after-free context noted in the CVE List entry (‘Use After Free in Automotive Audio’). The NVD summary repeats memory corruption during IOCTL concurrency. CVSS...