845 matches found
CVE-2024-47943 Improper signature verification of firmware upgrade files
The firmware upgrade function in the admin web interface of the Rittal IoT Interface & CMC III Processing Unit devices checks if the patch files are signed before executing the containing run.sh script. The signing process is kind of an HMAC with a long string as key which is hard-coded in the...
PT-2024-32905 · Rittal · Iot Interface & Cmc Iii Processing Unit
Name of the Vulnerable Software and Affected Versions: Rittal IoT Interface & CMC III Processing Unit affected versions not specified Description: The firmware upgrade function in the admin web interface of the Rittal IoT Interface & CMC III Processing Unit devices checks if the patch files are...
Rittal IoT Interface & CMC III Processing Unit 安全漏洞
The Rittal IoT Interface & CMC III Processing Unit is a key component of Rittal Germany's Smart Networking of Sensors for monitoring physical environmental conditions. A security vulnerability exists in Rittal IoT Interface & CMC III Processing Unit versions prior to 6.21.00.2, which stems from a...
Rittal IoT Interface & CMC III Processing Unit 安全漏洞
The Rittal IoT Interface & CMC III Processing Unit is a key component of Rittal Germany's Smart Networking of Sensors for monitoring physical environmental conditions. A security vulnerability exists in the Rittal IoT Interface & CMC III Processing Unit prior to version 6.21.00.2, which originate...
drm/msm/dpu: cleanup FB if dpu_format_populate_layout fails
...
arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry
...
Apache Commons IO 资源管理错误漏洞
Apache Commons IO is an application of the Apache USA Foundation. It provides a help to develop IO functionality. A resource management error vulnerability exists in Apache Commons IO version 2.0 up to and including 2.14.0, which stems from uncontrolled CPU resource consumption...
USN-7022-2 linux-raspi vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - Modular ISDN driver; - MMC subsystem; - SCSI drivers; - F2FS file system; - GFS2 file system; -...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a failure to perform proper checks when obtaining the CPU corresponding to an ACPI ID...
Apple visionOS 安全漏洞
Apple visionOS is an operating system for AR glasses from Apple USA. A security vulnerability exists in Apple visionOS version 2, which stems from an application that may be able to read sensitive data from GPU memory...
DEBIAN-CVE-2024-45015
In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: move dpuencoder's connector assignment to atomicenable For cases where the crtc's connectorschanged was set without enable/active getting toggled , there is an atomicenable call followed by an atomicdisable but witho...
DEBIAN-CVE-2024-43890
In the Linux kernel, the following vulnerability has been resolved: tracing: Fix overflow in getfreeelt "tracingmap-nextelt" in getfreeelt is at risk of overflowing. Once it overflows, new elements can still be inserted into the tracingmap even though the maximum number of elements maxelts has be...
AMD Uninitialized GPU Register Access Advisory - Lenovo Support US
No description provided...
PT-2024-25072 · Qualcomm · 205 Mobile Platform Firmware +86
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: Memory corruption can occur when an arbitrary user-space app gains kernel-level privilege to modify DDR memory by corrupting the GPU page table. Recommendations: At the moment, ther...
cifar-10-model (=7.4.0), clip-jax (>=0.0.1 <=0.0.4) +9 more potentially affected by CVE-2023-33976 via tensorflow-cpu (>=1.15.0 <=2.11.1)
tensorflow-cpu PYPI version =1.15.0, =0.0.1, =0.2.3, =0.0.5, =1.0.0, =1.8.2, =0.1.3, =0.3.0.dev221212, =0.7.0, =0.7.5 Source cves: CVE-2023-33976 Source advisory: OSV:GHSA-GJH7-XX4R-X345...
Linux kernel security vulnerabilities
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a memory leak in the cpufreq:amd-pstate component during CPU EPP exit...
CLSA-2024-1719568839 Update of linux-firmware
Update AMD CPU microcode to 2024-01-16: - Update AMD CPU microcode for processor family 19h: sig 0x00a00f11, sig 0x00a00f12;...
DEBIAN-CVE-2024-38622
In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: Add callback function pointer check before its call In dpucoreirqcallbackhandler callback function pointer is compared to NULL, but then callback function is unconditionally called by this pointer. Fix this bug by...
PT-2024-30693
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue concerns handling an invalid decoder vsi in the vpu dec init function to ensure the decoder vsi is valid for future use. This is related to the media: mediatek: vcodec componen...
PT-2024-19840 · Lpac · Lpac
Name of the Vulnerable Software and Affected Versions: LPAC affected versions not specified Description: The issue involves memory corruption that occurs when creating an LPAC client, as the LPAC engine is allowed to access GPU registers. This results in a memory corruption problem...