6686 matches found
[SECURITY] Fedora 40 Update: webkitgtk-2.46.5-1.fc40
WebKitGTK is the port of the WebKit web rendering engine to the GTK platform...
Fedora 40 : webkitgtk (2024-03a1955920)
The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-03a1955920 advisory. Update to 2.46.5: Fix several crashes and rendering issues. CVE-2024-54479, CVE-2024-54502, CVE-2024-54508, CVE-2024-54505 Tenable has extracted the...
PT-2025-30754
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's DRM/MSM/GPU subsystem that can lead to a crash when throttling the GPU immediately during boot. This occurs when the GPU is already hot during boot an...
PT-2026-2899
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A missing NULL pointer check exists in the drm/msm/dpu module, specifically related to the pingpong interface. The check is generally present in dpu encoder phys wb setup ctl, but is...
PT-2025-30863
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability exists in the Linux kernel related to GEM Graphics Execution Manager handles and framebuffers. A GEM handle can be released while still attached to a DRM Direct Rendering...
DEBIAN-CVE-2024-56538
In the Linux kernel, the following vulnerability has been resolved: drm: zynqmpkms: Unplug DRM device before removal Prevent userspace accesses to the DRM device from causing use-after-frees by unplugging the device before we remove it. This causes any further userspace accesses to result in an...
OESA-2024-2602 poppler security update
is a PDF rendering library. Security Fixes: libpoppler.so in Poppler through 24.12.0 has an out-of-bounds read vulnerability within the JBIG2Bitmap::combine function in JBIG2Stream.cc.CVE-2024-56378...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a null pointer dereference issue in the drm/amd/display module pipectx-planestate...
The vulnerability of DRM/MSM components in the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of the DRM/MSM components in the Linux operating system is related to the assignment of the NULL pointer in the msmioctlgemsubmit function. Exploiting this vulnerability can allow a hacker to trigger a service failure...
[SECURITY] Fedora 41 Update: webkitgtk-2.46.5-1.fc41
WebKitGTK is the port of the WebKit web rendering engine to the GTK platform...
CVE-2024-55601
Hugo is a static site generator. Starting in version 0.123.0 and prior to version 0.139.4, some HTML attributes in Markdown in the internal templates listed below not escaped in internal render hooks. Those whoa re impacted are Hugo users who do not trust their Markdown content files and are usin...
Hugo 跨站脚本漏洞
Hugo is a Go-based framework for rapid static site generation from the Gohugoio community. A cross-site scripting vulnerability exists in Hugo versions prior to 0.123.0 through 0.139.4, which stems from improperly escaping HTML attributes in certain Markdown in internal rendering hooks...
[SECURITY] Fedora 40 Update: webkitgtk-2.46.4-1.fc40
WebKitGTK is the port of the WebKit web rendering engine to the GTK platform...
The vulnerabilities of DRM/MSM/A6XX components in Linux kernel, which allow a hacker to trigger a service failure
The vulnerability of DRM/MSM/A6XX components in the Linux operating system is related to reading data outside of the allowed range. Exploiting this vulnerability can allow a hacker to cause service failures...
The vulnerability of DRM/VMWGFX components in Linux operating systems allows a perpetrator to trigger a service failure.
The vulnerability of DRM/VMWGFX components in Linux operating systems is related to the operation of writing data beyond the buffer in memory within the vmweventfenceactioncreate function. Exploiting this vulnerability can allow an attacker to cause a service failure...
Fedora 40 : webkitgtk (2024-4014fa4ecc)
The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-4014fa4ecc advisory. Improve memory consumption and performance of Canvas getImageData. Fix preserve-3D intersection rendering. Fix video dimensions since GStreamer...
Fedora: Security Advisory (FEDORA-2024-4014fa4ecc)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2024-11479
A HTML Injection vulnerability was identified in Issuetrak version 17.1 that could be triggered by an authenticated user. HTML markup could be added to comments of tickets, which when submitted will render in the emails sent to all users on that ticket...
CVE-2024-11479
CVE-2024-11479 concerns Issuetrak 17.1. An authenticated user can inject HTML into ticket comments, which is then rendered in emails sent to all users on that ticket. The affected component is the comment handling in tickets; the root cause is HTML injection in comments. Publicly stated impact is...
The vulnerability of DRM/QXL components in Linux kernel allows a hacker to trigger a service failure.
The vulnerability of DRM/QXL components in Linux operating systems is related to improper locking of resources. Exploiting this vulnerability can allow a perpetrator to cause service failures...