6307 matches found
EUVD-2025-209645
An issue was discovered in MM in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. Incorrect handling of 5G NR NAS registration accept messages leads to a...
CVE-2025-47407
Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level...
CVE-2026-24082
CVE-2026-24082 concerns a memory corruption (use-after-free) issue in an Automotive GPU, triggered when copying data from a freed source during a performance counter deselect operation. The connected records specify a memory corruption vulnerability with CVSSv3.1 base score 7.8 (HIGH), attack vec...
CVE-2025-47407
CVE-2025-47407 describes a memory corruption in the DSP service during process creation caused by an allocation failure at the kernel level, linked to a TOCTOU race condition. Connected records identify a kernel-level allocation failure as the underlying trigger and the DSP service as the affecte...
EUVD-2025-209632
Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level...
CVE-2025-47407 Time-of-check Time-of-use (TOCTOU) Race Condition in DSP Service
Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level...
CVE-2025-47407
Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level...
Qualcomm Chipsets 安全漏洞
Qualcomm Chipsets are a series of chipset developed by Qualcomm Incorporation. There is a security vulnerability in Qualcomm Chipsets, which stems from the failure to allocate resources at the kernel level, resulting in the creation of processes on the digital signal processor, potentially leadin...
PT-2026-36843
Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level...
PT-2026-36986
Name of the Vulnerable Software and Affected Versions Net::IMAP affected versions not specified Description Net::IMAP::ResponseReader exhibits quadratic time complexity when processing large responses containing numerous string literals. A hostile server can send specially crafted responses that...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: remoteproc: core: Release rproc-cleantable after rprocattach fails When rproc-state = RPROCDETACHED is attached to remote processor through rprocattach, if rprochandleresources returns failure, then the clean table should be...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15
In the Linux kernel, the following vulnerabilities have been resolved: cpufreq: scpi: Fixed a nullptrderef in scpicpufreqgetrate. The cpufreqcpugetraw function may return NULL when the target CPU is not present in the policy-cpus mask. The scpicpufreqgetrate function does not check for this case,...
Astra Linux - уязвимость в intel-microcode
Incorrect behavior order for some IntelR Core™ Ultra Processors may allow an unauthenticated user to potentially enable information disclosure via physical access...
Astra Linux - уязвимость в linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: A fix was added for dividing by zero in setupdscconfig. When sliceheight is 0, dividing by sliceheight in the calculation of the number of slices will result in a division by zero, causing the driver to crash. Th...
Astra Linux - уязвимость в linux
In intelpmudrainpebsnhm in arch/x86/events/intel/ds.c of the Linux kernel, up to version 5.11.8 on some Haswell CPUs, user-space applications such as perf-fuzzer can cause a system crash due to improper handling of the PEBS status in a PEBS record, also known as CID-d88d05a9e0b6...
Astra Linux - уязвимость в zabbix
The Zabbix server is vulnerable to a Denial-of-Service DoS vulnerability due to uncontrolled resource exhaustion. An attacker can send specially crafted requests to the server, causing the server to allocate an excessive amount of memory and perform CPU-intensive decompression operations. This...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15
In the Linux kernel, the following vulnerabilities have been resolved: hrtimers: Properly handle CPU state during hotplug events. Consider a scenario where a CPU transitions from CPUHPONLINE to CPUHPHRTIMERSPREPARE after a CPU is unplugged, and then back to CPUHPONLINE again. Since the...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Added a lock to protect the encoder context list. A lock was added for the ctxlist to prevent accessing a NULL pointer within the 'vpuencipihandler' function when the ctxlist is deleted due to an unexpect...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerability has been resolved: thermal: intel: hfi: Add syscore callbacks for system-wide PM The kernel allocates a memory buffer and provides its location to the hardware, which uses it to update the HFI table. This allocation occurs during boot and remains...
Astra Linux - уязвимость в intel-microcode
Improper conditions check in some IntelR XeonR processor memory controller configurations when using IntelR SGX may allow a privileged user to potentially enable escalation of privilege via local access...