Lucene search
K

47 matches found

Cvelist
Cvelist
added 2025/12/09 12:0 a.m.26 views

CVE-2023-53788 ALSA: hda/ca0132: fixup buffer overrun at tuning_ctl_set()

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/ca0132: fixup buffer overrun at tuningctlset tuningctlset might have buffer overrun at X if it didn't break from loop by matching A. static int tuningctlset... for i = 0; i TUNINGCTLSCOUNT; i++ A if nid ==...

0.00177EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/11/12 12:0 a.m.1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990875)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990875 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check numvalidsets before accessing readerwmsets WHY & HOW numvalidsets needs to...

7.8CVSS6.1AI score0.00263EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/06/21 6:3 a.m.15 views

CVE-2025-38068

In the Linux kernel, the following vulnerability has been resolved: crypto: lzo - Fix compression buffer overrun Unlike the decompression code, the compression code in LZO never checked for output overruns. It instead assumes that the caller always provides enough buffer space, disregarding the...

5.5CVSS7.7AI score0.00154EPSS
Exploits0References4
NVD
NVD
added 2025/06/18 10:15 a.m.5 views

CVE-2025-38068

In the Linux kernel, the following vulnerability has been resolved: crypto: lzo - Fix compression buffer overrun Unlike the decompression code, the compression code in LZO never checked for output overruns. It instead assumes that the caller always provides enough buffer space, disregarding the...

7.8CVSS0.00154EPSS
Exploits0References7
CVE
CVE
added 2025/06/18 9:33 a.m.92 views

CVE-2025-38068

CVE-2025-38068: In the Linux kernel, the crypto/lzo path fixed a compression buffer overrun by adding a safe compression interface that checks the end of the output buffer before each write and using it in crypto/lzo. This corrects a prior assumption that the caller always provided sufficient buf...

7.8CVSS6.9AI score0.00154EPSS
Exploits0References7Affected Software1
OpenVAS
OpenVAS
added 2025/05/26 12:0 a.m.5 views

Fedora: Security Advisory (FEDORA-2024-c83b7dcae0)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References3
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.3 views

kernel: drm/amd/display: Increase array size of dummy_boolean

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Increase array size of dummyboolean WHY dml2coresharedmodesupport and dmlcoremodesupport access the third element of dummyboolean, i.e. hwdebug5 = &s-dummyboolean2, when dummyboolean has size of 2. Any assignment...

5.5CVSS6.8AI score0.00206EPSS
Exploits0References5
CVE
CVE
added 2025/02/27 8:0 p.m.135 views

CVE-2025-21804

CVE-2025-21804 affects the Linux kernel in the PCI subsystem for rcar-ep. The root cause is an incorrect variable used when calling devm_request_mem_region(), where a stack-allocated string temporarily stored a dynamic resource name and was passed as a macro argument, causing undefined behavior. ...

5.5CVSS6.3AI score0.00189EPSS
Exploits0References9Affected Software1
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.2 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check the pipe offset before setting vblank. The size of pipectx is MAXPIPES; therefore, its index must be checked before accessing the array. This fix addresses an OVERRUN issue reported by Coverity...

7.8CVSS6.1AI score0.00263EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/09/28 2:52 a.m.9 views

SUSE CVE-2024-46815

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check numvalidsets before accessing readerwmsets WHY & HOW numvalidsets needs to be checked to avoid a negative index when accessing readerwmsetsnumvalidsets - 1. This fixes an OVERRUN issue reported by Coverity...

7.8CVSS6.5AI score0.00263EPSS
Exploits0References35
OSV
OSV
added 2024/09/27 1:15 p.m.4 views

UBUNTU-CVE-2024-46818

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check gpioid before used as array index WHY & HOW GPIOIDUNKNOWN -1 is not a valid value for array index and therefore should be checked in advance. This fixes 5 OVERRUN issues reported by Coverity...

7.8CVSS6.2AI score0.00269EPSS
Exploits0References26
OSV
OSV
added 2024/09/18 7:15 a.m.2 views

UBUNTU-CVE-2024-46726

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Ensure index calculation will not overflow WHY & HOW Make sure vmid0p72idx, vnom0p8idx and vmax0p9idx calculation will never overflow and exceess array size. This fixes 3 OVERRUN and 1 INTEGEROVERFLOW issues...

5.5CVSS6.5AI score0.0023EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2024/08/06 1:59 a.m.2 views

SUSE CVE-2024-42117

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: ASSERT when failing to find index by plane/stream id WHY finddispcfgidxbyplaneid and finddispcfgidxbystreamid returns an array index and they return -1 when not found; however, -1 is not a valid index number. HOW...

3.3CVSS7.8AI score0.00233EPSS
Exploits0References10
OSV
OSV
added 2024/07/30 8:15 a.m.2 views

DEBIAN-CVE-2024-42117

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: ASSERT when failing to find index by plane/stream id WHY finddispcfgidxbyplaneid and finddispcfgidxbystreamid returns an array index and they return -1 when not found; however, -1 is not a valid index number. HOW...

7.8CVSS5.3AI score0.00233EPSS
Exploits0References1
OSV
OSV
added 2024/07/30 8:15 a.m.1 views

UBUNTU-CVE-2024-42117

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: ASSERT when failing to find index by plane/stream id WHY finddispcfgidxbyplaneid and finddispcfgidxbystreamid returns an array index and they return -1 when not found; however, -1 is not a valid index number. HOW...

7.8CVSS5.7AI score0.00233EPSS
Exploits0References15
OSV
OSV
added 2024/07/30 8:15 a.m.1 views

UBUNTU-CVE-2024-42119

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skip finding free audio for unknown engineid WHY ENGINEIDUNKNOWN = -1 and can not be used as an array index. Plus, it also means it is uninitialized and does not need free audio. HOW Skip and return NULL. This...

7.8CVSS6.2AI score0.00281EPSS
Exploits0References33
NVD
NVD
added 2024/07/29 3:15 p.m.27 views

CVE-2024-41038

In the Linux kernel, the following vulnerability has been resolved: firmware: csdsp: Prevent buffer overrun when processing V2 alg headers Check that all fields of a V2 algorithm header fit into the available firmware data buffer. The wmfw V2 format introduced variable-length strings in the...

5.5CVSS0.00274EPSS
Exploits0References5
OSV
OSV
added 2023/10/26 7:54 a.m.9 views

CLSA-2023-1698306895 Fix of 7 CVEs

CVE-2023-0597 // CVE-url: https://ubuntu.com/security/CVE-2023-0597 - x86/kasan: Map shadow for percpu pages on demand - x86/mm: Recompute physical address for every page of per-CPU CEA mapping - x86/mm: Populate KASAN shadow for entire per-CPU range of CPU entry area - x86/mm: Do not shuffle CPU...

7.8CVSS6.8AI score0.00454EPSS
Exploits0References1
OSV
OSV
added 2022/11/15 4:8 p.m.5 views

SUSE-SU-2022:3999-1 Security update for systemd

This update for systemd fixes the following issues: - CVE-2022-3821: Fixed buffer overrun in formattimespan function bsc1204968. - Import commit 0cd50eedcc0692c1f907b24424215f8db7d3b428 0469b9f2bc pstore: do not try to load all known pstore modules ad05f54439 pstore: Run after modules are loaded...

5.5CVSS5.8AI score0.00412EPSS
Exploits1References4
OSV
OSV
added 2022/07/06 11:35 a.m.7 views

SUSE-SU-2022:2298-1 Security update for liblouis

This update for liblouis fixes the following issues: - CVE-2022-26981: fix buffer overrun in compilePassOpcode bsc1197085. - CVE-2022-31783: prevent an invalid memory write in compileRule bsc1200120...

7.8CVSS6.5AI score0.01451EPSS
Exploits2References5
Rows per page
Query Builder