Lucene search
K

140 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-53140

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/v3d: Fix vaddr leak when indirect CSD has zeroed workgroups v3drewritecsdjobwgcountsfromindirect maps both the indirect buffer and the workgroup buffer and ...

6.2AI score0.00168EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-53139

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/v3d: Skip CSD when it has zeroed workgroups A compute shader dispatch encodes its workgroup counts in the CFG0..CFG2 registers. Kicking off a dispatch with ...

6.1AI score0.00166EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/26 9:48 a.m.6 views

CVE-2026-53139

A flaw was found in the Linux kernel's graphics driver for Broadcom V3D VideoCore V GPUs. This vulnerability occurs when a compute shader dispatch CSD is initiated with zero workgroup counts, which the hardware could misinterpret as a very large number. This misinterpretation could lead to...

5.8AI score0.00166EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/25 9:31 a.m.5 views

EUVD-2026-39344

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Skip CSD when it has zeroed workgroups A compute shader dispatch encodes its workgroup counts in the CFG0..CFG2 registers. Kicking off a dispatch with a zero count in any of the three dimensions is invalid. First, the...

6AI score0.00166EPSS
Exploits0References4
NVD
NVD
added 2026/06/25 9:16 a.m.6 views

CVE-2026-53139

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Skip CSD when it has zeroed workgroups A compute shader dispatch encodes its workgroup counts in the CFG0..CFG2 registers. Kicking off a dispatch with a zero count in any of the three dimensions is invalid. First, the...

0.00166EPSS
Exploits0References7
NVD
NVD
added 2026/06/25 9:16 a.m.6 views

CVE-2026-53141

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Fix global performance monitor reference counting In the SETGLOBAL ioctl, v3dperfmonfind bumps the reference count on the perfmon it returns, but v3dperfmonsetglobalioctl and v3dperfmondelete fail to release that referen...

0.00166EPSS
Exploits0References3
OSV
OSV
added 2026/06/25 9:16 a.m.3 views

UBUNTU-CVE-2026-53141

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Fix global performance monitor reference counting In the SETGLOBAL ioctl, v3dperfmonfind bumps the reference count on the perfmon it returns, but v3dperfmonsetglobalioctl and v3dperfmondelete fail to release that referen...

4.8CVSS5.8AI score0.00166EPSS
Exploits0References6
CVE
CVE
added 2026/06/25 8:38 a.m.8 views

CVE-2026-53141

The CVE-2026-53141 issue affects the Linux kernel DRM v3d global performance monitor reference counting. In SET_GLOBAL, v3d_perfmon_find() bumps the perfmon’s reference count, but v3d_perfmon_set_global_ioctl() and v3d_perfmon_delete() fail to release that reference on several paths, causing leak...

5.8AI score0.00166EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/25 8:38 a.m.5 views

EUVD-2026-39232

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Fix global performance monitor reference counting In the SETGLOBAL ioctl, v3dperfmonfind bumps the reference count on the perfmon it returns, but v3dperfmonsetglobalioctl and v3dperfmondelete fail to release that referen...

5.8AI score0.00166EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/06/25 8:38 a.m.4 views

CVE-2026-53141

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Fix global performance monitor reference counting In the SETGLOBAL ioctl, v3dperfmonfind bumps the reference count on the perfmon it returns, but v3dperfmonsetglobalioctl and v3dperfmondelete fail to release that referen...

5.7AI score0.00166EPSS
Exploits0
CVE
CVE
added 2026/06/25 8:38 a.m.9 views

CVE-2026-53140

The CVE-2026-53140 issue affects the Linux kernel’s DRM v3d code. A vaddr leak occurred in v3d_rewrite_csd_job_wg_counts_from_indirect() when the indirect CSD workgroup counts read as zero, causing an early bailout that skipped releasing the vaddr mappings for both the indirect buffer and the wor...

6AI score0.00168EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/06/25 8:38 a.m.3 views

CVE-2026-53140

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Fix vaddr leak when indirect CSD has zeroed workgroups v3drewritecsdjobwgcountsfromindirect maps both the indirect buffer and the workgroup buffer and is expected to release them before returning. When any of the workgro...

5.8AI score0.00168EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/25 8:38 a.m.4 views

CVE-2026-53139

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Skip CSD when it has zeroed workgroups A compute shader dispatch encodes its workgroup counts in the CFG0..CFG2 registers. Kicking off a dispatch with a zero count in any of the three dimensions is invalid. First, the...

5.8AI score0.00166EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Fixed the issue of null pointer dereferencing of the pointer perfmon. In the unlikely event that the pointer perfmon is null, the WARNON return path occurs after the pointer has already been dereferenced. This issue was...

5.5CVSS6.2AI score0.00252EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Add a step to move a job to the pending list if the reset operation was skipped. When a CL/CSD job times out, we check whether the GPU has made any progress since the last timeout. If so, instead of resetting the hardwar...

5.5CVSS6.1AI score0.00149EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/08 6:24 p.m.10 views

CVE-2026-46314

A flaw was found in the Linux kernel's drm/v3d component. A local user can exploit this vulnerability by crafting a self-referential multisync extension with zero synchronization counts. This bypasses existing guards, leading to an infinite loop within the kernel. The consequence is a Denial of...

5.5AI score0.00157EPSS
Exploits0References4
NVD
NVD
added 2026/06/08 5:16 p.m.13 views

CVE-2026-46314

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Reject empty multisync extension to prevent infinite loop v3dgetextensions walks a userspace-provided singly-linked list of ioctl extensions without any bound on the chain length. A local user can craft a self-referentia...

0.00157EPSS
Exploits0References4
OSV
OSV
added 2026/06/08 5:16 p.m.5 views

UBUNTU-CVE-2026-46314

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Reject empty multisync extension to prevent infinite loop v3dgetextensions walks a userspace-provided singly-linked list of ioctl extensions without any bound on the chain length. A local user can craft a self-referentia...

6.8CVSS5.4AI score0.00157EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/08 3:50 p.m.34 views

CVE-2026-46314 drm/v3d: Reject empty multisync extension to prevent infinite loop

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Reject empty multisync extension to prevent infinite loop v3dgetextensions walks a userspace-provided singly-linked list of ioctl extensions without any bound on the chain length. A local user can craft a self-referentia...

0.00157EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/06/08 3:50 p.m.6 views

CVE-2026-46314

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Reject empty multisync extension to prevent infinite loop v3dgetextensions walks a userspace-provided singly-linked list of ioctl extensions without any bound on the chain length. A local user can craft a self-referentia...

5.4AI score0.00157EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder