CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: fbdev/ep93xx-fb: Do not assign to struct fbinfo.dev. Do not assign the Linux device to struct fbinfo.dev. The call to registerframebuffer initializes the field to the fbdev device. Drivers should not override its value. This fix...

5.5CVSS5.8AI score0.00021EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: fbdev: Fixed doregisterframebuffer to prevent null-ptr-deref in fbvideomodetovar. If fbaddvideomode in doregisterframebuffer fails to allocate memory for fbvideomode, it will later lead to a null-ptr dereference in...

5.5CVSS6.3AI score0.00079EPSS

Exploits0References2

Tenable Nessus•added 2026/02/16 12:0 a.m.•3 views

Siemens SIMATIC S7-1500 Out-of-bounds Write (CVE-2025-38702)

In the Linux kernel, the following vulnerability has been resolved: fbdev: fix potential buffer overflow in doregisterframebuffer The current implementation may lead to buffer overflow when: 1. Unregistration creates NULL gaps in registeredfb 2. All array slots become occupied despite...

7.8CVSS5.5AI score0.0002EPSS

Exploits0References2

Tenable Nessus•added 2025/12/30 12:0 a.m.•5 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992621)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992621 advisory. In the Linux kernel, the following vulnerability has been resolved: fbdev/ep93xx-fb: Do not assign to struct fbinfo.dev Do not assing the Linux device to struct...

5.5CVSS5.9AI score0.00021EPSS

Exploits0References4

RedHat Linux•added 2025/11/11 8:21 a.m.•1 views

kernel: fbdev: hyperv_fb: Allow graceful removal of framebuffer

In the Linux kernel, the following vulnerability has been resolved: fbdev: hypervfb: Allow graceful removal of framebuffer When a Hyper-V framebuffer device is unbind, hypervfb driver tries to release the framebuffer forcefully. If this framebuffer is in use it produce the following WARN and henc...

5.5CVSS5.7AI score0.00026EPSS

Exploits0References5

Tenable Nessus•added 2025/09/20 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2023-53314

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fbdev/ep93xx-fb: Do not assign to struct fbinfo.dev Do not assing the Linux device to struct fbinfo.dev. The call to registerframebuffer initializes the field t...

5.5CVSS6.1AI score0.00021EPSS

Exploits0References2

SUSE CVE•added 2025/09/16 11:29 p.m.•1 views

SUSE CVE-2023-53314

In the Linux kernel, the following vulnerability has been resolved: fbdev/ep93xx-fb: Do not assign to struct fbinfo.dev Do not assing the Linux device to struct fbinfo.dev. The call to registerframebuffer initializes the field to the fbdev device. Drivers should not override its value. Fixes a bu...

3.3CVSS6.5AI score0.00021EPSS

Exploits0References19

OSV•added 2025/09/16 5:15 p.m.•6 views

DEBIAN-CVE-2023-53314

5.5CVSS5.3AI score0.00021EPSS

Exploits0References1

NVD•added 2025/09/16 5:15 p.m.•4 views

CVE-2023-53314

5.5CVSS0.00021EPSS

Exploits0References8

OSV•added 2025/09/16 5:15 p.m.•1 views

UBUNTU-CVE-2023-53314

5.5CVSS5.9AI score0.00021EPSS

Exploits0References11

CVE•added 2025/09/16 4:11 p.m.•11 views

CVE-2023-53314

CVE-2023-53314 affects the Linux kernel fbdev/ep93xx-fb driver. The vulnerability stems from assigning the Linux device to struct fb_info.dev; register_framebuffer() already initializes this field, and drivers must not override it. The bug could cause a leak by incorrectly decreasing the hardware...

5.5CVSS6.1AI score0.00021EPSS

Exploits0References8Affected Software1

Microsoft CVE•added 2025/09/06 8:8 a.m.•2 views

fbdev: fix potential buffer overflow in do_register_framebuffer()

...

7.8CVSS6.8AI score0.0002EPSS

Exploits0

CVE•added 2025/09/04 3:32 p.m.•19 views

CVE-2025-38702

The CVE-2025-38702 entry concerns the Linux kernel fbdev subsystem. The issue is a potential buffer overflow in do_register_framebuffer() when unregistration creates NULL gaps in registered_fb[], when all slots become occupied despite num_registered_fb

7.8CVSS6.3AI score0.0002EPSS

Exploits0References9Affected Software1

OSV•added 2025/08/22 4:0 p.m.•3 views

CVE-2025-38630 fbdev: imxfb: Check fb_add_videomode to prevent null-ptr-deref

In the Linux kernel, the following vulnerability has been resolved: fbdev: imxfb: Check fbaddvideomode to prevent null-ptr-deref fbaddvideomode can fail with -ENOMEM when its internal kmalloc cannot allocate a struct fbmodelist. If that happens, the modelist stays empty but the driver continues t...

5.5CVSS5.9AI score0.00025EPSS

Exploits0References13

Microsoft CVE•added 2025/08/07 7:0 a.m.•2 views

fbdev: Fix do_register_framebuffer to prevent null-ptr-deref in fb_videomode_to_var

...

5.5CVSS7AI score0.00079EPSS

Exploits0

OSV•added 2025/07/04 2:15 p.m.•1 views

AZL-72772 CVE-2025-38215 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: fbdev: Fix doregisterframebuffer to prevent null-ptr-deref in fbvideomodetovar If fbaddvideomode in doregisterframebuffer fails to allocate memory for fbvideomode, it will later lead to a null-ptr dereference in fbvideomodetovar,...

5.5CVSS5.6AI score0.00079EPSS

Exploits0References1

OSV•added 2025/07/04 2:15 p.m.•1 views

DEBIAN-CVE-2025-38215

5.5CVSS5.5AI score0.00079EPSS

Exploits0References1

SUSE CVE•added 2025/04/02 8:57 a.m.•1 views

SUSE CVE-2025-21976

2.3CVSS7.7AI score0.00026EPSS

Exploits0References5

OSV•added 2025/04/01 4:15 p.m.•1 views

AZL-69506 CVE-2025-21976 affecting package kernel 5.15.200.1-1