103 matches found
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992758)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992758 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null check for toppipetoprogram in commitplanesforstream This commit address...
📄 Adobe DNG SDK Missing Validation Out-Of-Bounds Read
An out of bounds read vulnerability exists in Adobe DNG SDK versions prior to 1.7.1.2410 due to improper handling of raw images containing exactly two color planes fSrcPlanes = 2. The flaw occurs during image rendering when the SDK assumes a four-plane layout and reads memory beyond the allocated...
📄 Adobe DNG SDK Missing Validation Heap Buffer Overflow
A heap buffer overflow vulnerability exists in Adobe's DNG SDK versions 1.7.1 and below due to improper handling of raw images with two color planes fSrcPlanes = 2...
CVE-2025-68196
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Cache streams targeting link when performing LT automation WHY Last LT automation update can cause crash by referencing currentstate and calling into dcupdateplanesandstream which may clobber currentstate. HOW...
[SECURITY] Fedora 41 Update: kubernetes1.34-1.34.2-1.fc41
Production-Grade Container Scheduling and Management. Installs kubelet, the kubernetes agent on each machine in a cluster. The kubernetes-client sub-package, containing kubectl, is recommended but not strictly required. The kubernetes-client sub-package should be installed on control plane machin...
[SECURITY] Fedora 43 Update: kubernetes1.34-1.34.2-1.fc43
Production-Grade Container Scheduling and Management. Installs kubelet, the kubernetes agent on each machine in a cluster. The kubernetes-client sub-package, containing kubectl, is recommended but not strictly required. The kubernetes-client sub-package should be installed on control plane machin...
[SECURITY] Fedora 43 Update: kubernetes1.31-1.31.14-1.fc43
Production-Grade Container Scheduling and Management. Installs kubelet, the kubernetes agent on each machine in a cluster. The kubernetes-client sub-package, containing kubectl, is recommended but not strictly required. The kubernetes-client sub-package should be installed on control plane machin...
[SECURITY] Fedora 42 Update: kubernetes1.31-1.31.14-1.fc42
Production-Grade Container Scheduling and Management. Installs kubelet, the kubernetes agent on each machine in a cluster. The kubernetes-client sub-package, containing kubectl, is recommended but not strictly required. The kubernetes-client sub-package should be installed on control plane machin...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990836)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990836 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null check for toppipetoprogram in commitplanesforstream This commit address...
kernel: drm/gem: Acquire references on GEM handles for framebuffers
In the Linux kernel, the following vulnerability has been resolved: drm/gem: Acquire references on GEM handles for framebuffers A GEM handle can be released while the GEM buffer object is attached to a DRM framebuffer. This leads to the release of the dma-buf backing the buffer object, if any. 1...
[SECURITY] Fedora 41 Update: kubernetes1.33-1.33.4-1.fc41
Production-Grade Container Scheduling and Management. Installs kubelet, the kubernetes agent on each machine in a cluster. The kubernetes-client sub-package, containing kubectl, is recommended but not strictly required. The kubernetes-client sub-package should be installed on control plane machin...
Programmable Data Planes for Network Security
The emergence of programmable data planes, and particularly switches supporting the P4 language, has transformed network security by enabling customized, line-rate packet processing. These switches, originally intended for flexible forwarding, now play a broader role: detecting and mitigating...
The vulnerability of the `commit_planes_for_stream()` function in the drivers/gpu/drm/amd/display/dc/core/dc.c kernel of the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the commitplanesforstream function in the drivers/gpu/drm/amd/display/dc/core/dc.c file of the Linux kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the restore_planes_and_stream_state() function in the drivers/gpu/drm/amd/display/dc/core/dc.c kernel of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the restoreplanesandstreamstate function in the drivers/gpu/drm/amd/display/dc/core/dc.c kernel of the Linux operating system is related to the repeated release of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skips inactive planes within ModeSupportAndSystemConfiguration. Reason Coverity reported a memory issue involving illegal access attempts. How The inactive planes are skipped...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: A null check was added for toppipetoprogram in the commitplanesforstream function. This fix addresses a null pointer dereferencing issue in the commitplanesforstream function at line 4140. The issue could occur...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Handling of a null streamstatus in the planeschangedforexistingstream function. This commit adds a null check for streamstatus in the function planeschangedforexistingstream. Previously, the code assumed that...
Astra Linux - уязвимость в linux
In the Linux kernel, the following vulnerability has been resolved: drm/amd/amdgpu: fix refcount leak Why the gem object rfb-base.obj0 is get according to numplanes in amdgpufbcreate, but is not put according to numplanes How put rfb-base.obj0 in amdgpufbdevdestroy according to numplanes...
UBUNTU-CVE-2024-57918
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix page fault due to max surface definition mismatch DC driver is using two different values to define the maximum number of surfaces: MAXSURFACES and MAXSURFACENUM. Consolidate MAXSURFACES as the unique...
PT-2025-30863
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability exists in the Linux kernel related to GEM Graphics Execution Manager handles and framebuffers. A GEM handle can be released while still attached to a DRM Direct Rendering...