Lucene search
+L

764 matches found

nvd
nvd
added 2026/07/01 2:16 p.m.6 views

CVE-2026-53331

In the Linux kernel, the following vulnerability has been resolved: slimbus: qcom-ngd-ctrl: Avoid ABBA on txlock/ctrl-lock During the SSR/PDR down notification the txlock is taken with the intent to provide synchronization with active DMA transfers. But during this period qcomslimngddown is...

0.00172EPSS
Exploits0References7
osv
osv
added 2026/07/01 2:16 p.m.3 views

UBUNTU-CVE-2026-53331

In the Linux kernel, the following vulnerability has been resolved: slimbus: qcom-ngd-ctrl: Avoid ABBA on txlock/ctrl-lock During the SSR/PDR down notification the txlock is taken with the intent to provide synchronization with active DMA transfers. But during this period qcomslimngddown is...

5.8AI score0.00172EPSS
Exploits0References10
euvd
euvd
added 2026/07/01 1:32 p.m.8 views

EUVD-2026-40966

In the Linux kernel, the following vulnerability has been resolved: slimbus: qcom-ngd-ctrl: Register callbacks after creating the ngd When the remoteproc starts in parallel with the NGD driver being probed, or the remoteproc is already up when the PDR lookup is being registered, or in the...

5.8AI score0.00168EPSS
Exploits0References4
debiancve
debiancve
added 2026/07/01 1:32 p.m.7 views

CVE-2026-53331

In the Linux kernel, the following vulnerability has been resolved: slimbus: qcom-ngd-ctrl: Avoid ABBA on txlock/ctrl-lock During the SSR/PDR down notification the txlock is taken with the intent to provide synchronization with active DMA transfers. But during this period qcomslimngddown is...

5.8AI score0.00172EPSS
Exploits0
cve
cve
added 2026/07/01 1:32 p.m.17 views

CVE-2026-53331

The CVE-2026-53331 entry describes a Linux kernel slimbus issue in qcom-ngd-ctrl where tx_lock and slim_controller lock could be acquired in opposite orders, risking a deadlock during SSR/PDR down notification. The report explains that qcom_slim_ngd_down() → slim_report_absent() takes the slim_co...

5.8AI score0.00172EPSS
Exploits0References7
susecve
susecve
added 2026/06/27 1:54 a.m.8 views

SUSE CVE-2026-53052

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: qdsp6: topology: check widget type before accessing data Check widget type before accessing the private data, as this could a virtual widget which is no associated with a dsp graph, container and module. Accessing...

7.8CVSS5.8AI score0.00172EPSS
Exploits0References10
nessus
nessus
added 2026/06/25 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-53052

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ASoC: qcom: qdsp6: topology: check widget type before accessing data Check widget type before accessing the private data, as this could a virtual widget which i...

6.2AI score0.00172EPSS
Exploits0References2
astralinux
astralinux
added 2026/06/24 3:11 p.m.9 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qusb2: Fixed NULL pointer dereferencing during early suspends. Enabling runtime PM before attaching the QPHY instance as driver data can lead to a NULL pointer dereferencing in runtime PM callbacks that expect valid...

5.7AI score0.00168EPSS
Exploits0References2
nessus
nessus
added 2026/06/18 12:0 a.m.10 views

Siemens RUGGEDCOM RST2428P Improper Input Validation (CVE-2026-23026)

In the Linux kernel, the following vulnerability has been resolved: dmaengine: qcom: gpi: Fix memory leak in gpiperipheralconfig Fix a memory leak in gpiperipheralconfig where the original memory pointed to by gchan-config could be lost if krealloc fails. The issue occurs when: 1. gchan-config...

5.5CVSS6AI score0.00183EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/06/17 8:33 a.m.11 views

CVE-2026-46286

A flaw was found in the Linux kernel's qcom-lpg LED driver. This vulnerability, an array overflow, occurs when the driver attempts to select high-resolution values. Due to incorrect indexing, the system may read random data from memory, which could lead to information disclosure or unpredictable...

5.5CVSS5.3AI score0.00122EPSS
Exploits0References4
nvd
nvd
added 2026/06/08 5:16 p.m.11 views

CVE-2026-46286

In the Linux kernel, the following vulnerability has been resolved: leds: qcom-lpg: Check for array overflow when selecting the high resolution When selecting the high resolution values from the array, FIELDGET is used to pull from a 3 bit register, yet the array being indexed has only 5 values i...

5.5CVSS0.00122EPSS
Exploits0References5
attackerkb
attackerkb
added 2026/06/08 3:41 p.m.7 views

CVE-2026-46286

In the Linux kernel, the following vulnerability has been resolved: leds: qcom-lpg: Check for array overflow when selecting the high resolution When selecting the high resolution values from the array, FIELDGET is used to pull from a 3 bit register, yet the array being indexed has only 5 values i...

5.4AI score0.00122EPSS
Exploits0References6
cve
cve
added 2026/06/08 3:41 p.m.26 views

CVE-2026-46286

CVE-2026-46286 describes a Linux kernel issue in leds: qcom-lpg, where selecting high-resolution values from a 5-entry array uses FIELD_GET() to pull from a 3-bit register, risking out-of-bounds reads. The referenced fix adds a bounds check before indexing, preventing overflow and potential incor...

5.5CVSS5.4AI score0.00122EPSS
Exploits0References5Affected Software1
nessus
nessus
added 2026/06/08 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-46286

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - leds: qcom-lpg: Check for array overflow when selecting the high resolution When selecting the high resolution values from the array, FIELDGET is used to pull...

5.5CVSS6.2AI score0.00122EPSS
Exploits0References2
nessus
nessus
added 2026/06/08 12:0 a.m.13 views

AlmaLinux 10 : kernel (ALSA-2026:18134)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:18134 advisory. kernel: tcpbpf: Fix the skmemuncharge logic in tcpbpfsendmsg CVE-2024-56633 kernel: KVM: x86: Load DR6 with guest value only before entering .vcpurun lo...

7.8CVSS8.1AI score0.00344EPSS
Exploits8References27
ptsecurity
ptsecurity
added 2026/06/08 12:0 a.m.11 views

PT-2026-47358

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An array overflow occurs in the qcom-lpg LED driver. The FIELD GET function retrieves a value from a 3-bit register to index an array; however, the array contains only 5 elements. This...

9.8CVSS5.4AI score0.03663EPSS
Exploits15References340
euvd
euvd
added 2026/06/03 3:49 p.m.9 views

EUVD-2026-34109

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: gfx3d: add parent to parent request map After commit d228ece36345 "clk: divider: remove roundrate in favor of determinerate" determining GFX3D clock rate crashes, because the passed parent map doesn't provide the...

5.8AI score0.00123EPSS
Exploits0References6
osv
osv
added 2026/06/03 3:49 p.m.3 views

CVE-2026-46247 clk: qcom: gfx3d: add parent to parent request map

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: gfx3d: add parent to parent request map After commit d228ece36345 "clk: divider: remove roundrate in favor of determinerate" determining GFX3D clock rate crashes, because the passed parent map doesn't provide the...

5.5CVSS5.9AI score0.00123EPSS
Exploits0References9
cnnvd
cnnvd
added 2026/06/03 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the clk qcom gfx3d module. When determining the GFX3D clock rate, the parent mapping does not...

5.5CVSS5.3AI score0.00123EPSS
Exploits0References6
nessus
nessus
added 2026/05/29 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-46143

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ASoC: qcom: q6apm-lpass-dai: Fix multiple graph opens As prepare can be called mulitple times, this can result in multiple graph opens for playback path. This...

5.5CVSS6.1AI score0.00128EPSS
Exploits0References2
Rows per page
Query Builder