CVE-2024-27381

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsisendactionframeut, there is no input validation check on len coming from userspace, which can lead to a heap over-read...

CVE-2024-27376

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsinansubscribegetnlparams, there is no input validation check on halreq-rxmatchfilterlen coming from userspace, which can lead to a heap overwrite...

CVE-2024-27382

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsisendactionframe, there is no input validation check on len coming from userspace, which can lead to a heap over-read...

CVE-2024-27373

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsinanconfiggetnlparams, there is no input validation check on discattr-meshidlen coming from userspace, which can lead to a heap overwrite...

CVE-2024-27377

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsinangetsecurityinfonl, there is no input validation check on secinfo-keyinfo.body.pmkinfo.pmklen coming from userspace, which can lead to a heap overwrite...

CVE-2024-27380

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsisetdelayedwakeuptype, there is no input validation check on a length of ioctlargs-argsi coming from userspace, which can lead to a heap over-read...

CVE-2024-27371

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsinanfollowupgetnlparams, there is no input validation check on halreq-servicespecificinfolen coming from userspace, which can lead to a heap overwrite...

CVE-2024-27379

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsinansubscribegetnlparams, there is no input validation check on halreq-numintfaddrpresent coming from userspace, which can lead to a heap overwrite...

CVE-2024-27375

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsinanfollowupgetnlparams, there is no input validation check on halreq-sdeaservicespecificinfolen coming from userspace, which can lead to a heap overwrite...

CVE-2024-32503

An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 850, Exynos 1080, Exynos 2100, Exynos 1280, Exynos 1380, Exynos 1330, Exynos W920, Exynos W930. The mobile processor lacks proper memory deallocation checking, which can result in a UAF Use-After-Free vulnerability...

Exposure of Data Element to Wrong Session

Overview Affected versions of this package are vulnerable to Exposure of Data Element to Wrong Session due to the shared instance used in field injection without a CDI scope. An attacker can manipulate request data, impersonate users, or access sensitive information by exploiting the leakage of...

SUSE CVE-2024-37020

Sequence of processor instructions leads to unexpected behavior in the IntelR DSA V1.0 for some IntelR XeonR Processors may allow an authenticated user to potentially enable denial of service via local access...

SUSE CVE-2024-57951

In the Linux kernel, the following vulnerability has been resolved: hrtimers: Handle CPU state correctly on hotplug Consider a scenario where a CPU transitions from CPUHPONLINE to halfway through a CPU hotunplug down to CPUHPHRTIMERSPREPARE, and then back to CPUHPONLINE: Since hrtimerspreparecpu...

CVE-2024-46922

An issue was discovered in Samsung Mobile Processor Exynos 1480 and 2400. The absence of a null check leads to a Denial of Service at amdgpucsparserbos in the Xclipse Driver...

CVE-2024-46923

An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. The absence of a null check leads to a Denial of Service at amdgpucsibfill in the Xclipse Driver...

CVE-2024-37020

Sequence of processor instructions leads to unexpected behavior in the IntelR DSA V1.0 for some IntelR XeonR Processors may allow an authenticated user to potentially enable denial of service via local access...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not properly handling CPU state during CPU hot-plugging. An attacker exploiting this vulnerability could cau...

PT-2025-6694 · Samsung · Exynos +1

Name of the Vulnerable Software and Affected Versions: Samsung Mobile Processor Exynos versions 1480 through 2400 Description: The issue is related to the absence of a null check, which leads to a Denial of Service at amdgpu cs parser bos in the Xclipse Driver. This problem can cause a service...

CVE-2024-46922

An issue was discovered in Samsung Mobile Processor Exynos 1480 and 2400. The absence of a null check leads to a Denial of Service at amdgpucsparserbos in the Xclipse Driver...

CVE-2024-46923

An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. The absence of a null check leads to a Denial of Service at amdgpucsibfill in the Xclipse Driver...