40 matches found
CVE-2022-20155
In ipucorejqsmsgtransportkernelwritesync of ipu-core-jqs-msg-transport.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
SUSE CVE-2024-56680
In the Linux kernel, the following vulnerability has been resolved: media: intel/ipu6: do not handle interrupts when device is disabled Some IPU6 devices have shared interrupts. We need to handle properly case when interrupt is triggered from other device on shared irq line and IPU6 itself...
UBUNTU-CVE-2024-56680
In the Linux kernel, the following vulnerability has been resolved: media: intel/ipu6: do not handle interrupts when device is disabled Some IPU6 devices have shared interrupts. We need to handle properly case when interrupt is triggered from other device on shared irq line and IPU6 itself...
The vulnerability of the imx component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the imx component of the Linux operating system’s kernel is related to a memory leak in the ipucscscalerrelease function. Exploiting this vulnerability can allow an attacker to cause a service failure...
Intel 2024.2 IPU - BIOS May 2024 Security Update
Intel has informed HP of potential security vulnerabilities in some Intel® Processors, which might allow information disclosure and/or denial of service. Intel is releasing microcode updates to mitigate the potential vulnerabilities. Intel has released updates to mitigate the potential...
CVE-2023-52682
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to wait on block writeback for postread case If inode is compressed, but not encrypted, it missed to call f2fswaitonblockwriteback to wait for GCed page writeback in IPU write path. Thread A GC-Thread - f2fsgc -...
CVE-2023-52682
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to wait on block writeback for postread case If inode is compressed, but not encrypted, it missed to call f2fswaitonblockwriteback to wait for GCed page writeback in IPU write path. Thread A GC-Thread - f2fsgc -...
CVE-2023-52682 f2fs: fix to wait on block writeback for post_read case
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to wait on block writeback for postread case If inode is compressed, but not encrypted, it missed to call f2fswaitonblockwriteback to wait for GCed page writeback in IPU write path. Thread A GC-Thread - f2fsgc -...
CVE-2023-52682
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to wait on block writeback for postread case If inode is compressed, but not encrypted, it missed to call f2fswaitonblockwriteback to wait for GCed page writeback in IPU write path. Thread A GC-Thread - f2fsgc -...
Intel 2024.1 IPU - Chipset Software March 2024 Security Update
Intel has informed HP of potential security vulnerabilities in the Intel® Converged Security Management Engine CSME installer and Intel® Local Manageability Service software which may allow escalation of privilege or information disclosure. Intel is releasing updates to mitigate these potential...
Intel 2024.1 IPU - BIOS March 2024 Security Updates
Intel has informed HP of potential security vulnerabilities identified in some Intel® Processors and/or BIOS Firmware for some Intel® Processors which may allow escalation of privilege, denial of service, or information disclosure. Intel is releasing firmware updates to mitigate this potential...
Intel 2023.3 IPU – Chipset Firmware August 2023 Security Update
Intel has informed HP of potential vulnerabilities identified in the Intel® Converged Security Management Engine CSME, Active Management Technology AMT, and Intel® Standard Manageability software that might allow escalation of privilege or denial of service. Intel is releasing updates to mitigate...
Intel 2023.1 IPU – BIOS February 2023 Security Updates
Intel has informed HP of potential vulnerabilities identified in some Intel® Processors with Intel® Software Guard Extensions SGX that might allow information disclosure and potential vulnerabilities in the BIOS firmware and Intel® Trusted Execution Technology TXT Secure Initialization SINIT...
Intel 2022.3 IPU - Chipset Firmware November 2022 Security Update
Intel has informed HP of potential security vulnerabilities in some Intel® Chipset Firmware in Intel® Converged Security and Manageability Engine CSME, Intel® Active Management Technology AMT, and Intel® Standard Manageability, which might allow escalation of privilege or denial of service. Intel...
CVE-2022-20155
In ipucorejqsmsgtransportkernelwritesync of ipu-core-jqs-msg-transport.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
Race condition
In ipucorejqsmsgtransportkernelwritesync of ipu-core-jqs-msg-transport.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
Intel 2021.2 IPU – BIOS November 2021 Security Updates
Intel has informed HP of potential security vulnerabilities identified in some Intel® Processors which may allow escalation of privilege. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Intel has released updates to mitigate the potential vulnerabilities. HP has...
drm graphics drivers -- Local privilege escalation and denial of service
Intel reports: As part of IPU 2019.2, INTEL-SA-00242 advises that insufficient access control may allow an authenticated user to potentially enable escalation of privilege via local access. INTEL-SA-00260 advises that insufficient access control may allow an authenticated user to potentially enab...
Tuning Capacity Tips for SecureSphere Database Activity Monitoring
You have Imperva SecureSphere Database Activity Monitoring DAM up and running. You’ve deployed the system and configured your business audit policies. So, what’s next? In a previous post I discussed the capacity management challenges of database monitoring solutions, in this post I’ll elaborate o...
ipu.org XSS vulnerability
Vulnerable URL: http://www.ipu.org/parline-e/ElectoralSystem.asp?LANG=ENG"SUBREGION=S11=1&Submit1;=Launch+query Details: Description| Value ---|--- Patched:| Yes, at 24.11.2017 Latest check for patch:| 24.11.2017 12:36 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa...