CVE-2024-26648

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix variable deferencing before NULL check in edpsetupreplay In edpsetupreplay, 'struct dc dc' & 'struct dmubreplay replay' was dereferenced before the pointer 'link' & 'replay' NULL check. Fixes the below:...

UBUNTU-CVE-2024-26648

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix variable deferencing before NULL check in edpsetupreplay In edpsetupreplay, 'struct dc dc' & 'struct dmubreplay replay' was dereferenced before the pointer 'link' & 'replay' NULL check. Fixes the below:...

CVE-2024-26648

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix variable deferencing before NULL check in edpsetupreplay In edpsetupreplay, 'struct dc dc' & 'struct dmubreplay replay' was dereferenced before the pointer 'link' & 'replay' NULL check. Fixes the below:...

CVE-2024-26648 drm/amd/display: Fix variable deferencing before NULL check in edp_setup_replay()

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix variable deferencing before NULL check in edpsetupreplay In edpsetupreplay, 'struct dc dc' & 'struct dmubreplay replay' was dereferenced before the pointer 'link' & 'replay' NULL check. Fixes the below:...

CVE-2024-26648 drm/amd/display: Fix variable deferencing before NULL check in edp_setup_replay()

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix variable deferencing before NULL check in edpsetupreplay In edpsetupreplay, 'struct dc dc' & 'struct dmubreplay replay' was dereferenced before the pointer 'link' & 'replay' NULL check. Fixes the below:...

CVE-2024-26648

CVE-2024-26648 affects the Linux kernel’s drm/amd/display path (AMDGPU) where in edp_setup_replay() a dereference of “struct dc *dc” and “struct dmub_replay *replay” occurred before validating NULL pointers for “link” and the replay, leading to a potential crash. The fix updates the AMD display c...

CVE-2024-29199

CVE-2024-29199 affects Nautobot, where multiple URL endpoints were accessible to unauthenticated users due to default EXEMPT_VIEW_PERMISSIONS behavior. The root cause is improper access control exposing data unless permissions are explicitly granted. The vulnerability is mitigated by fixes in Nau...

GHSA-R6VW-8V8R-PMP4 Server Side Template Injection (SSTI)

Summary Due to the unrestricted access to twig extension class from grav context, an attacker can redefine config variable. As a result, attacker can bypass previous patch. Details The twig context has a function declared called getFunction. php public function getFunction$name if...

CVE-2024-1848

Heap-based Buffer Overflow, Memory Corruption, Out-Of-Bounds Read, Out-Of-Bounds Write, Stack-based Buffer Overflow, Type Confusion, Uninitialized Variable, Use-After-Free vulnerabilities exist in the file reading procedure in SOLIDWORKS Desktop on Release SOLIDWORKS 2024. These vulnerabilities...

PT-2024-18359 · Dassault Systèmes · Solidworks Desktop

Name of the Vulnerable Software and Affected Versions: SOLIDWORKS Desktop version 2024 Description: Heap-based Buffer Overflow, Memory Corruption, Out-Of-Bounds Read, Out-Of-Bounds Write, Stack-based Buffer Overflow, Type Confusion, Uninitialized Variable, Use-After-Free vulnerabilities exist in...

EulerOS Virtualization 2.11.1 : grub2 (EulerOS-SA-2024-1399)

According to the versions of the grub2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an attacker to present a specially...

EulerOS Virtualization 2.11.0 : shim (EulerOS-SA-2024-1449)

According to the versions of the shim package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in Shim when an error happened while creating a new ESL variable. If Shim fails to create the new variable, it trie...

GeoServer log file path traversal vulnerability

Impact This vulnerability requires GeoServer Administrator with access to the admin console to misconfigured the Global Settings for log file location to an arbitrary location. This can be used to read files via the admin console GeoServer Logs page. It is also possible to leverage RCE or cause...

edk2: Function GetEfiGlobalVariable2() return value not checked in DxeImageVerificationHandler()

REJECTED CVE A secure boot bypass vulnerability was found in EDK2 due to the lack of proper return value checks in the GetEfiGlobalVariable2 function. The API may fail if functions like AllocatePool or gRT-GetVariable fail. Without verifying the return value, an attacker could cause the API to...

Insecure Variable Substitution

github.com/go-vela/server is vulnerable to Insecure Variable Substitution. This vulnerability is due to the use of variable substitution combined with insensitive fields such as parameters, image, and entrypoint in Vela pipelines. The vulnerability allows an attacker to bypass log masking and...

Insecure Variable Substitution

github.com/go-vela/types is vulnerable to Insecure Variable Substitution. The vulnerability arises due to the unexpected behavior of variable substitution combined with insensitive fields like parameters, image, and entrypoint. This allows for bypassing log masking and exposing secrets without...

Insecure Variable Substitution

github.com/go-vela/cli is vulnerable to Insecure Variable Substitution. The vulnerability arises due to the unexpected behavior of variable substitution combined with insensitive fields like parameters, image, and entrypoint. This allows for bypassing log masking and exposing secrets without usin...

CVE-2021-47135 mt76: mt7921: fix possible AOOB issue in mt7921_mcu_tx_rate_report

In the Linux kernel, the following vulnerability has been resolved: mt76: mt7921: fix possible AOOB issue in mt7921mcutxratereport Fix possible array out of bound access in mt7921mcutxratereport. Remove unnecessary varibable in mt7921mcutxratereport...

CLI for Vela Insecure Variable Substitution

Impact Vela pipelines can use variable substitution combined with insensitive fields like parameters, image and entrypoint to inject secrets into a plugin/image and — by using common substitution string manipulation — can bypass log masking and expose secrets without the use of the commands block...

GHSA-4JHJ-3GV3-C3GR CLI for Vela Insecure Variable Substitution

Impact Vela pipelines can use variable substitution combined with insensitive fields like parameters, image and entrypoint to inject secrets into a plugin/image and — by using common substitution string manipulation — can bypass log masking and expose secrets without the use of the commands block...