CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

EUVD-2026-38915

In the Linux kernel, the following vulnerability has been resolved: efi/capsule-loader: fix incorrect sizeof in phys array reallocation The krealloc call for capinfo-phys in eficapsulesetupinfo uses sizeofphysaddrt instead of sizeofphysaddrt, which might be causing an undersized allocation. The...

6AI score0.00195EPSS

Exploits0References8

Tenable Nessus•added 2026/04/21 12:0 a.m.•6 views

Unity Linux 20.1050a Security Update: kernel (UTSA-2026-006987)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006987 advisory. In the Linux kernel, the following vulnerability has been resolved: efi/capsule-loader: fix incorrect allocation size gcc-14 notices that the allocation with...

5.5CVSS5.6AI score0.00244EPSS

Exploits0References4

ATTACKERKB•added 2026/02/04 4:8 p.m.•4 views

CVE-2026-23085

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Avoid truncating memory addresses On 32-bit machines with CONFIGARMLPAE, it is possible for lowmem allocations to be backed by addresses physical memory above the 32-bit address limit, as found while...

5.1AI score0.00123EPSS

Exploits0References8Affected Software1

OSV•added 2026/02/04 4:8 p.m.•4 views

CVE-2026-23085 irqchip/gic-v3-its: Avoid truncating memory addresses

5.5CVSS5.2AI score0.00123EPSS

Exploits0References10

RedhatCVE•added 2024/05/17 11:11 p.m.•38 views

CVE-2023-52659

A vulnerability in the Linux kernel affected the x86/mm code, specifically in the pfntokaddr macro. The issue arises when the macro does not correctly handle input as a 64-bit type, causing crashes on 64-bit platforms, especially for SEV-SNP guests, when processing addresses above the 1TB range...

5.5CVSS8.5AI score0.00219EPSS

Exploits0References4

RedhatCVE•added 2024/05/17 10:38 p.m.•21 views

CVE-2024-27413

In the Linux kernel, the following vulnerability has been resolved: efi/capsule-loader: fix incorrect allocation size gcc-14 notices that the allocation with sizeofvoid on 32-bit architectures is not enough for a 64-bit physaddrt: drivers/firmware/efi/capsule-loader.c: In function 'eficapsuleopen...

5.5CVSS6.7AI score0.00244EPSS

Exploits0References4

UbuntuCve•added 2024/05/17 1:15 p.m.•19 views

CVE-2023-52659

In the Linux kernel, the following vulnerability has been resolved: x86/mm: Ensure input to pfntokaddr is treated as a 64-bit type On 64-bit platforms, the pfntokaddr macro requires that the input value is 64 bits in order to ensure that valid address bits don't get lost when shifting that input ...

5.5CVSS6.4AI score0.00219EPSS

Exploits0References11

NVD•added 2024/05/17 12:15 p.m.•33 views

CVE-2024-27413

5.5CVSS7.7AI score0.00244EPSS

Exploits0References10

UbuntuCve•added 2024/05/17 12:15 p.m.•24 views

CVE-2024-27413

5.5CVSS6.2AI score0.00244EPSS

Exploits0References22

Cvelist•added 2024/05/17 12:8 p.m.•17 views

CVE-2023-52659 x86/mm: Ensure input to pfn_to_kaddr() is treated as a 64-bit type

7.3AI score0.00219EPSS

Exploits0References4

Debian CVE•added 2024/05/17 12:8 p.m.•17 views

CVE-2023-52659

5.5CVSS7.1AI score0.00219EPSS

Exploits0

CVE•added 2024/05/17 11:50 a.m.•144 views

CVE-2024-27413

CVE-2024-27413 is a Linux kernel vulnerability affecting the EFI capsule loader. The defect occurs in drivers/firmware/efi/capsule-loader.c during efi_capsule_open, where an allocation uses sizeof(void*) for a phys_addr_t on 32-bit builds, leading to insufficient allocation size (4 bytes vs 8). T...

5.5CVSS6.7AI score0.00244EPSS

Exploits0References10Affected Software1

Cvelist•added 2024/05/17 11:50 a.m.•23 views

CVE-2024-27413 efi/capsule-loader: fix incorrect allocation size

6.5AI score0.00244EPSS

Exploits0References8