Lucene search
K

865 matches found

SUSE CVE
SUSE CVE
added 2024/05/03 2:9 a.m.3 views

SUSE CVE-2024-27028

In the Linux kernel, the following vulnerability has been resolved: spi: spi-mt65xx: Fix NULL pointer access in interrupt handler The TX buffer in spitransfer can be a NULL pointer, so the interrupt handler may end up writing to the invalid memory and cause crashes. Add a check to trans-txbuf...

5.5CVSS6.7AI score0.01176EPSS
Exploits0References16
RedHat Linux
RedHat Linux
added 2024/04/30 9:57 a.m.3 views

kernel: hwmon: (coretemp) fix pci device refcount leak in nv1a_ram_new()

A counting logic flaw exists in the Linux kernel. When cigetdomainbusandslot is called, it returns a pci device with refcount incremented. When finishing it, the caller must decrement the reference count by calling pcidevput, leading to the loss of confidentiality of the system...

5.5CVSS6.9AI score0.00235EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/04/19 12:0 a.m.6 views

PT-2024-5604 · Dell · Dell Peripheral Manager

Name of the Vulnerable Software and Affected Versions: Dell Peripheral Manager versions prior to 1.7.6 Description: The issue is related to an uncontrolled search path element in the software. This could allow an attacker to potentially exploit the vulnerability through preloading malicious DLL o...

7.8CVSS8.2AI score0.00199EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/04/17 12:0 a.m.5 views

PT-2024-3511 · Amd · Amdpspp2Cmboxv2

Name of the Vulnerable Software and Affected Versions: AmdPspP2CmboxV2 affected versions not specified Description: The issue is related to an exposed SMI handler in AmdPspP2CmboxV2, which can be leveraged to bypass protections put in place by previous UEFI phases, allowing direct access to the S...

7.8CVSS7.8AI score0.00115EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/04/15 11:20 p.m.2 views

SUSE CVE-2021-47195

In the Linux kernel, the following vulnerability has been resolved: spi: fix use-after-free of the addlock mutex Commit 6098475d4cb4 "spi: Fix deadlock when adding SPI controllers on SPI buses" introduced a per-controller mutex. But mutexunlock of said lock is called after the controller is alrea...

5.5CVSS6.2AI score0.00219EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2024/04/11 2:31 a.m.4 views

SUSE CVE-2024-26738

In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/iommu: DLPAR add doesn't completely initialize pcicontroller When a PCI device is dynamically added, the kernel oopses with a NULL pointer dereference: BUG: Kernel NULL pointer dereference on read at 0x00000030...

5.5CVSS6.3AI score0.00239EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/04/11 2:30 a.m.10 views

SUSE CVE-2024-27437

In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Disable auto-enable of exclusive INTx IRQ Currently for devices requiring masking at the irqchip for INTx, ie. devices without DisINTx support, the IRQ is enabled in requestirq and subsequently disabled as necessary to...

4.4CVSS6.4AI score0.0024EPSS
Exploits0References16
ATTACKERKB
ATTACKERKB
added 2024/04/10 7:15 p.m.6 views

CVE-2021-47195

In the Linux kernel, the following vulnerability has been resolved: spi: fix use-after-free of the addlock mutex Commit 6098475d4cb4 "spi: Fix deadlock when adding SPI controllers on SPI buses" introduced a per-controller mutex. But mutexunlock of said lock is called after the controller is alrea...

5.5CVSS5.8AI score0.00219EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2024/03/25 9:15 a.m.1 views

UBUNTU-CVE-2021-47147

In the Linux kernel, the following vulnerability has been resolved: ptp: ocp: Fix a resource leak in an error handling path If an error occurs after a successful 'pciioremapbar' call, it must be undone by a corresponding 'pciiounmap' call, as already done in the remove function...

6.2CVSS5.9AI score0.00202EPSS
Exploits0References4
OSV
OSV
added 2024/03/20 11:15 a.m.4 views

ALPINE-CVE-2023-46839

PCI devices can make use of a functionality called phantom functions, that when enabled allows the device to generate requests using the IDs of functions that are otherwise unpopulated. This allows a device to extend the number of outstanding requests. Such phantom functions need an IOMMU context...

5.3CVSS6.9AI score0.00805EPSS
Exploits0References1
OSV
OSV
added 2024/03/20 11:15 a.m.7 views

UBUNTU-CVE-2023-46839

PCI devices can make use of a functionality called phantom functions, that when enabled allows the device to generate requests using the IDs of functions that are otherwise unpopulated. This allows a device to extend the number of outstanding requests. Such phantom functions need an IOMMU context...

5.3CVSS5.8AI score0.00805EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/03/20 12:0 a.m.5 views

Xen Security Vulnerabilities

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. A security vulnerability exists in Xen...

5.3CVSS6.5AI score0.00805EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/03/12 12:0 a.m.6 views

PT-2024-3418

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a potential use-after-free in the fsl lpspi probe function in the Linux kernel's SPI driver. This function allocates and disposes of memory manually using spi...

5.5CVSS5.5AI score0.00216EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/03/11 12:0 a.m.6 views

The vulnerability of the VFIO PCI kernel driver of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the VFIO PCI kernel driver for the Linux operating system is related to errors in the calculation of pointers in the functions hisiaccvfresumewrite and hisiaccvfsaveread in the drivers/vfio/pci/hisilicon/hisiaccvfiopci.c module. Exploiting this vulnerability can allow a remot...

7.8CVSS6.5AI score0.00222EPSS
Exploits0References20Affected Software1
CVE
CVE
added 2024/03/04 1:8 p.m.58 views

CVE-2024-22452

CVE-2024-22452 affects Dell Display and Peripheral Manager for macOS prior to version 1.3. The issue is an improper access control flaw that could let a low-privilege user modify files in the installation folder to execute arbitrary code and escalate privileges. Reports from Red Hat, NVD, and PT-...

7.8CVSS7.3AI score0.00235EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/03/04 12:0 a.m.2 views

Dell Display Manager and Dell Peripheral Manager Permission License and Access Control Issues Vulnerability

Dell Peripheral Manager and Dell Display Manager are both products of Dell, Inc.Dell Peripheral Manager is a software application that provides on-screen instructions on how to pair other devices with your computer via Bluetooth. Dell Peripheral Manager is a software application that provides...

7.8CVSS6.8AI score0.00235EPSS
Exploits0References2
Prion
Prion
added 2024/03/02 10:15 p.m.14 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: spi: sun6i: reduce DMA RX transfer width to single byte Through empirical testing it has been determined that sometimes RX SPI transfers with DMA enabled return corrupted data. This is down to single or even multiple bytes lost...

7.2AI score0.00805EPSS
Exploits0References4
OSV
OSV
added 2024/03/02 10:15 p.m.1 views

UBUNTU-CVE-2023-52511

In the Linux kernel, the following vulnerability has been resolved: spi: sun6i: reduce DMA RX transfer width to single byte Through empirical testing it has been determined that sometimes RX SPI transfers with DMA enabled return corrupted data. This is down to single or even multiple bytes lost...

5.3CVSS6.1AI score0.00805EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/03/02 9:52 p.m.19 views

CVE-2023-52511 spi: sun6i: reduce DMA RX transfer width to single byte

In the Linux kernel, the following vulnerability has been resolved: spi: sun6i: reduce DMA RX transfer width to single byte Through empirical testing it has been determined that sometimes RX SPI transfers with DMA enabled return corrupted data. This is down to single or even multiple bytes lost...

6.6AI score0.00805EPSS
Exploits0References4
OSV
OSV
added 2024/03/02 9:52 p.m.7 views

CVE-2023-52511 spi: sun6i: reduce DMA RX transfer width to single byte

In the Linux kernel, the following vulnerability has been resolved: spi: sun6i: reduce DMA RX transfer width to single byte Through empirical testing it has been determined that sometimes RX SPI transfers with DMA enabled return corrupted data. This is down to single or even multiple bytes lost...

5.3CVSS5.6AI score0.00805EPSS
Exploits0References7
Rows per page
Query Builder