15 matches found
ROS-20260113-7374
A vulnerability in the amdgpucspass1 function in the drivers/gpu/drm/amd/amdgpu/amdgpucs.c module of the Linux kernel is related to the re-release of previously freed memory. Exploitation of the vulnerability may allow an attacker to affect confidentiality, integrity and availability of protected...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix possible UAF in amdgpucspass1 Since the gangsize check is outside of chunk parsing loop, we need to reset i before we free the chunk data. Suggested by Ye Zhang @VAR10CK of Baidu Security...
SUSE CVE-2023-53707
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix integer overflow in amdgpucspass1 The type of size is unsigned int, if size is 0x40000000, there will be an integer overflow, size will be zero after size = sizeofuint32t, will cause uninitialized memory to be...
CVE-2023-53707
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix integer overflow in amdgpucspass1 The type of size is unsigned int, if size is 0x40000000, there will be an integer overflow, size will be zero after size = sizeofuint32t, will cause uninitialized memory to be...
DEBIAN-CVE-2023-53707
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix integer overflow in amdgpucspass1 The type of size is unsigned int, if size is 0x40000000, there will be an integer overflow, size will be zero after size = sizeofuint32t, will cause uninitialized memory to be...
CVE-2023-53707 drm/amdgpu: Fix integer overflow in amdgpu_cs_pass1
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix integer overflow in amdgpucspass1 The type of size is unsigned int, if size is 0x40000000, there will be an integer overflow, size will be zero after size = sizeofuint32t, will cause uninitialized memory to be...
CVE-2023-53707 drm/amdgpu: Fix integer overflow in amdgpu_cs_pass1
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix integer overflow in amdgpucspass1 The type of size is unsigned int, if size is 0x40000000, there will be an integer overflow, size will be zero after size = sizeofuint32t, will cause uninitialized memory to be...
Malicious code in @zalastax/nolb-pass1 (npm)
The package @zalastax/nolb-pass1 was found to contain malicious code...
MAL-2025-43348 Malicious code in @zalastax/nolb-pass1 (npm)
The package @zalastax/nolb-pass1 was found to contain malicious code...
UBUNTU-CVE-2023-52921
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix possible UAF in amdgpucspass1 Since the gangsize check is outside of chunk parsing loop, we need to reset i before we free the chunk data. Suggested by Ye Zhang @VAR10CK of Baidu Security...
PT-2023-9832
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to a possible use-after-free UAF vulnerability in the amdgpu cs pass1 function. This vulnerability may allow an attacker to impact the confidentiality, integrity, an...
CVE-2023-38378
The web interface on the RIGOL MSO5000 digital oscilloscope with firmware 00.01.03.00.03 allows remote attackers to execute arbitrary code via shell metacharacters in pass1 to the webcontrol changepwd.cgi application...
CVE-2023-38378
The web interface on the RIGOL MSO5000 digital oscilloscope with firmware 00.01.03.00.03 allows remote attackers to execute arbitrary code via shell metacharacters in pass1 to the webcontrol changepwd.cgi application...
CVE-2023-38378
The web interface on the RIGOL MSO5000 digital oscilloscope with firmware 00.01.03.00.03 allows remote attackers to execute arbitrary code via shell metacharacters in pass1 to the webcontrol changepwd.cgi application...
RIGOL MSO5000 操作系统命令注入漏洞
The RIGOL MSO5000 is an oscilloscope from China's Puyuan Jingdian RIGOL Company. A security vulnerability exists in the RIGOL MSO5000 version 00.01.03.00.03, which originates from the execution of arbitrary code via the Webcontrol changepwd.cgi application via shell metacharacters in pass1...