Lucene search
K

495 matches found

UbuntuCve
UbuntuCve
added 2024/05/20 10:15 a.m.27 views

CVE-2024-35995

In the Linux kernel, the following vulnerability has been resolved: ACPI: CPPC: Use accesswidth over bitwidth for system memory accesses To align with ACPI 6.3+, since bitwidth can be any 8-bit value, it cannot be depended on to be always on a clean 8b boundary. This was uncovered on the Cobalt 1...

5.5CVSS6.4AI score0.0021EPSS
Exploits0References9
OSV
OSV
added 2024/05/20 9:47 a.m.19 views

CVE-2024-35995 ACPI: CPPC: Use access_width over bit_width for system memory accesses

In the Linux kernel, the following vulnerability has been resolved: ACPI: CPPC: Use accesswidth over bitwidth for system memory accesses To align with ACPI 6.3+, since bitwidth can be any 8-bit value, it cannot be depended on to be always on a clean 8b boundary. This was uncovered on the Cobalt 1...

5.5CVSS6.1AI score0.0021EPSS
Exploits0References10
Cvelist
Cvelist
added 2024/05/20 9:47 a.m.20 views

CVE-2024-35995 ACPI: CPPC: Use access_width over bit_width for system memory accesses

In the Linux kernel, the following vulnerability has been resolved: ACPI: CPPC: Use accesswidth over bitwidth for system memory accesses To align with ACPI 6.3+, since bitwidth can be any 8-bit value, it cannot be depended on to be always on a clean 8b boundary. This was uncovered on the Cobalt 1...

6.7AI score0.0021EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2024/05/20 9:47 a.m.22 views

CVE-2024-35995

In the Linux kernel, the following vulnerability has been resolved: ACPI: CPPC: Use accesswidth over bitwidth for system memory accesses To align with ACPI 6.3+, since bitwidth can be any 8-bit value, it cannot be depended on to be always on a clean 8b boundary. This was uncovered on the Cobalt 1...

5.5CVSS7.4AI score0.0021EPSS
Exploits0
CVE
CVE
added 2024/05/20 9:47 a.m.202 views

CVE-2024-35995

CVE-2024-35995 describes a Linux kernel issue where the ACPI CPPC code misread system memory by relying on bit_width, risking incorrect memory access. The fix switches to using access_width for size calculation and reads/writes using an offset and width, with a fallback to bit_width if access_wid...

5.5CVSS6.9AI score0.0021EPSS
Exploits0References7Affected Software1
RedhatCVE
RedhatCVE
added 2024/04/04 12:33 a.m.21 views

CVE-2024-26761

In the Linux kernel, the following vulnerability has been resolved: cxl/pci: Fix disabling memory if DVSEC CXL Range does not match a CFMWS window The Linux CXL subsystem is built on the assumption that HPA == SPA. That is, the host physical address HPA the HDM decoder registers are programmed wi...

4.4CVSS6.6AI score0.00236EPSS
Exploits0References4
NVD
NVD
added 2024/04/01 3:15 p.m.20 views

CVE-2024-21453

Transient DOS while decoding message of size that exceeds the available system memory...

7.5CVSS7.6AI score0.00367EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/01 3:6 p.m.36 views

CVE-2024-21453 Improper Input Validation in Automotive Telematics

Transient DOS while decoding message of size that exceeds the available system memory...

7.5CVSS7.8AI score0.00367EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/01 3:6 p.m.14 views

CVE-2024-21453 Improper Input Validation in Automotive Telematics

Transient DOS while decoding message of size that exceeds the available system memory...

7.5CVSS7.6AI score0.00367EPSS
Exploits0References1
CVE
CVE
added 2024/04/01 3:6 p.m.83 views

CVE-2024-21453

CVE-2024-21453: Affects Qualcomm chipsets; a vulnerability in the message decoding path where decoding a message larger than available system memory can cause a transient Denial of Service. The entry cites a network-based attack vector with no user interaction and high impact on availability. Pub...

7.5CVSS7.6AI score0.00367EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/03/13 5:15 p.m.5 views

CVE-2024-0154

Dell PowerEdge Server BIOS and Dell Precision Rack BIOS contain an improper parameter initialization vulnerability. A local low privileged attacker could potentially exploit this vulnerability to read the contents of non-SMM stack memory...

3.3CVSS5.8AI score0.00203EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2024/03/12 4:11 p.m.40 views

CVE-2023-52489

A race condition was found on a PFN in the Linux Kernel, which can fall into the device memory region with the system memory configuration. Normal zone start and end PFNs contain the device memory PFNs as well, and the compaction triggered will try on the device memory PFNs and end up in NOP. Thi...

5.5CVSS7.1AI score0.00294EPSS
Exploits1References4
NVD
NVD
added 2024/03/11 6:15 p.m.37 views

CVE-2023-52489

In the Linux kernel, the following vulnerability has been resolved: mm/sparsemem: fix race in accessing memorysection-usage The below race is observed on a PFN which falls into the device memory region with the system memory configuration where PFN's are such that ZONENORMAL ZONEDEVICE ZONENORMAL...

4.7CVSS7.3AI score0.00294EPSS
Exploits1References7
Prion
Prion
added 2024/03/11 6:15 p.m.36 views

Null pointer dereference

In the Linux kernel, the following vulnerability has been resolved: mm/sparsemem: fix race in accessing memorysection-usage The below race is observed on a PFN which falls into the device memory region with the system memory configuration where PFN's are such that ZONENORMAL ZONEDEVICE ZONENORMAL...

7.2AI score0.00294EPSS
Exploits1References6
OSV
OSV
added 2024/03/06 10:55 a.m.18 views

BIT-ENVOY-2022-29225 Zip bomb vulnerability in Envoy

Envoy is a cloud-native high-performance proxy. In versions prior to 1.22.1 secompressors accumulate decompressed data into an intermediate buffer before overwriting the body in the decode/encodeBody. This may allow an attacker to zip bomb the decompressor by sending a small highly compressed...

7.5CVSS7.6AI score0.0144EPSS
Exploits1References3
F5 Networks
F5 Networks
added 2024/03/05 4:10 a.m.44 views

K000138814: OpenLDAP vulnerability CVE-2023-2953

Security Advisory Description A vulnerability was found in openldap. This security flaw causes a null pointer dereference in bermemallocx function. CVE-2023-2953. Impact This vulnerability may result in low system memory leading to failure in LDAP authentication. Security Advisory Status F5 Produ...

7.5CVSS6.7AI score0.01947EPSS
Exploits0Affected Software15
CNNVD
CNNVD
added 2024/02/13 12:0 a.m.6 views

AMD SEV-SNP Security Vulnerability

AMD SEV-SNP is a secure encrypted virtualization firmware from UltraMicroelectronics AMD. A single key is used to encrypt system memory. AMD SEV-SNP has a security vulnerability that stems from a code error...

4.9CVSS7.1AI score0.0046EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/02/11 4:15 a.m.3 views

CVE-2023-52427

In OpenDDS through 3.27, there is a segmentation fault for a DataWriter with a large value of resourcelimits.maxsamples. NOTE: the vendor's position is that the product is not designed to handle a maxsamples value that is too large for the amount of memory on the system...

7.5CVSS5.8AI score0.00612EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2024/02/02 12:0 a.m.14 views

The vulnerability in the PMRChangeSparseMemOSMem driver of the PowerVR GPU graphics processing unit in Android and ChromeOS operating systems allows attackers to escalate their privileges.

The vulnerability of the PMRChangeSparseMemOSMem driver in the PowerVR GPU graphics processing subsystem for Android and ChromeOS systems stems from the execution of operations outside of the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to gain increased privileg...

7.8CVSS8.1AI score0.00414EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2024/01/24 4:33 p.m.40 views

CVE-2023-51042

A use-after-free flaw was found in the Linux kernel's AMD GPU driver which may allow access to members of a synchronization structure after the structure is freed. This issue could allow a local user to crash the system or to access confidential system memory. Mitigation To mitigate this issue,...

7.8CVSS7.2AI score0.00319EPSS
Exploits0References4
Rows per page
Query Builder