6680 matches found
The vulnerability of DRM/MSM components in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of DRM/SMM components in the Linux operating system is related to the dereferencing of the NULL pointer. Exploiting this vulnerability can allow an attacker to trigger a service failure...
GitLab Enterprise Edition和GitLab Community Edition 跨站脚本漏洞
GitLab Enterprise Edition EE and GitLab Community Edition CE are both products of GitLab, Inc. GitLab Enterprise Edition is a content management system. GitLab Enterprise Edition is a content management system. A cross-site scripting vulnerability exists in GitLab Enterprise Edition and GitLab...
Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues: CVE-2024-44192: Fixed unexpected process crash due to processing maliciously crafted web content bsc1239863 CVE-2024-54467: Fixed data exilfration cross-origin due to a cookie management issue via a malicious website bsc1239864 Other fixes: ...
Enabling WPF Rendering for Citrix HDX on Multi-Session VDAs
Overview Windows Presentation Foundation WPF applications can leverage GPU acceleration in Citrix Virtual Apps and Desktops CVAD environments running Windows Multi-session OS. By enabling WPF rendering on the server’s GPU, this reduces CPU load and improves graphics performance for WPF...
CVE-2025-1558
Mattermost Mobile Apps versions =2.25.0 fail to properly validate GIF images prior to rendering which allows a malicious user to cause the Android application to crash via message containing a maliciously crafted GIF...
The vulnerabilities of the functions oppdrm_init() and opngem_deinit() in the DRM driver (drivers/gpu/drm/omapdrm/omap_drv.c) of the Linux kernel allow a hacker to cause a service failure.
The vulnerability of the functions oppdrminit and opngemdeinit in the DRM driver drivers/gpu/drm/omapdrm/omapdrv.c of the Linux kernel is related to the use of pointers. Exploiting this vulnerability could allow an attacker to cause a service failure...
[SECURITY] Fedora 40 Update: kitty-0.40.0-2.fc40
Offloads rendering to the GPU for lower system load and buttery smooth scrolling. Uses threaded rendering to minimize input latency. - Supports all modern terminal features: graphics images, unicode, true-col or, OpenType ligatures, mouse protocol, focus tracking, bracketed paste and several new...
[SECURITY] Fedora 42 Update: webkitgtk-2.48.0-1.fc42
WebKitGTK is the port of the WebKit web rendering engine to the GTK platform...
The vulnerability of the resource_log_pipe_topology_update() function in the drivers/gpu/drm/amd/display/dc/core/dc_resource.c file of the DRI support driver for AMD graphics cards in Linux operating systems allows a malicious actor to cause a service failure.
The vulnerability of the resourcelogpipetopologyupdate function in the drivers/gpu/drm/amd/display/dc/core/dcresource.c file, a driver for AMD Direct Rendering Infrastructure DRI graphics cards in Linux operating systems, relates to pointer manipulation. Exploiting this vulnerability could allow ...
The vulnerability of the dcn20_get_dcc_compression_cap() function in the drivers/gpu/drm/amd/display/dc/resource/dcn20/dcn20_resource.c driver module allows a malicious actor to trigger a service failure. This vulnerability exists in the Linux operating system’s AMD GPU Direct Rendering Infrastructure (DRI) support driver.
The vulnerability of the dcn20getdcccompressioncap function in the drivers/gpu/drm/amd/display/dc/resource/dcn20/dcn20resource.c driver is related to the assignment of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the `nvkm_client_new()` function in the `drivers/gpu/drm/nouveau/nvkm/core/client.c` file of the Nouveau driver module allows a hacker to cause a service failure. This vulnerability relates to the Direct Rendering Infrastructure (DRI) support in NVIDIA’s Linux kernel-based graphics drivers.
The vulnerability of the nvkmclientnew function in the drivers/gpu/drm/nouveau/nvkm/core/client.c file of the Nouveau driver, a driver for supporting Direct Rendering Infrastructure DRI in NVIDIA graphics cards and Linux operating systems, is related to improper resource locking. Exploiting this...
The vulnerability of the dcn10_log_color_state() function in the drivers/gpu/drm/amd/display/dc/hwss/dcn10/dcn10_hwseq.c driver module allows a hacker to cause a service failure. This vulnerability is related to the Direct Rendering Infrastructure (DRI) support in AMD graphics cards for Linux operating systems.
The vulnerability of the dcn10logcolorstate function in the drivers/gpu/drm/amd/display/dc/hwss/dcn10/dcn10hwseq.c driver module relates to the assignment of pointers. Exploiting this vulnerability could allow an attacker to cause a service failure...
GHSA-6MF6-7J75-2M6F AgentScope stored cross-site scripting (XSS) vulnerability
A stored cross-site scripting XSS vulnerability exists in modelscope/agentscope, as of the latest commit 21161fe on the main branch. The vulnerability occurs in the view for inspecting detailed run information, where a user-controllable string run ID is appended and rendered as HTML. This allows ...
CVE-2024-8556
A stored cross-site scripting XSS vulnerability exists in modelscope/agentscope, as of the latest commit 21161fe on the main branch. The vulnerability occurs in the view for inspecting detailed run information, where a user-controllable string run ID is appended and rendered as HTML. This allows ...
CVE-2024-8101
A stored cross-site scripting XSS vulnerability exists in the Text Explorer component of aimhubio/aim version 3.23.0. The vulnerability arises due to the use of dangerouslySetInnerHTML without proper sanitization, allowing arbitrary JavaScript execution when rendering tracked texts. This can be...
CVE-2024-8101
CVE-2024-8101 affects aimhubio/aim v3.23.0, specifically the Text Explorer component. The issue is a stored XSS due to dangerouslySetInnerHTML being used without proper sanitization, enabling arbitrary JavaScript execution when rendering tracked texts (during the training process). Connected sour...
The vulnerability of the amdgpu_dm_fini() function in the drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c driver module allows a hacker to cause a service failure in Linux-based AMD graphics cards that support Direct Rendering Infrastructure (DRI).
The vulnerability of the amdgpudmfini function in the drivers/gpu/drm/amd/display/amdgpudm/amdgpudm.c driver module is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
Important: Red Hat Security Advisory: webkit2gtk3 security update
An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.4 Telecommunications Update Service. Red Hat Product Security has rated this update ...
Important: Red Hat Security Advisory: webkit2gtk3 security update
An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...
Apple SceneKit Out-Of-Bounds Read Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple SceneKit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the renderi...