Lucene search
K

16 matches found

AstraLinux
AstraLinux
added 2025/11/01 10:54 a.m.3 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: media: venus: Added a check for the packet size after reading from shared memory. A check was added to ensure that the packet size does not exceed the number of available words after reading the packet header from shared memory...

7.1CVSS6.2AI score0.00152EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2025/09/07 8:3 a.m.3 views

media: venus: Add a check for packet size after reading from shared memory

...

7.1CVSS6.8AI score0.00152EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/07 8:2 a.m.4 views

media: venus: protect against spurious interrupts during probe

...

5.5CVSS6.8AI score0.00149EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/09/06 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-39709

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: venus: protect against spurious interrupts during probe Make sure the interrupt handler is initialized before the interrupt is registered. If the IRQ is...

5.5CVSS6.5AI score0.00149EPSS
Exploits0References2
NVD
NVD
added 2025/09/05 6:15 p.m.3 views

CVE-2025-39709

In the Linux kernel, the following vulnerability has been resolved: media: venus: protect against spurious interrupts during probe Make sure the interrupt handler is initialized before the interrupt is registered. If the IRQ is registered before hficreate, it's possible that an interrupt fires...

5.5CVSS0.00149EPSS
Exploits0References11
OSV
OSV
added 2025/09/05 6:15 p.m.9 views

DEBIAN-CVE-2025-39709

In the Linux kernel, the following vulnerability has been resolved: media: venus: protect against spurious interrupts during probe Make sure the interrupt handler is initialized before the interrupt is registered. If the IRQ is registered before hficreate, it's possible that an interrupt fires...

5.5CVSS5.3AI score0.00149EPSS
Exploits0References1
OSV
OSV
added 2025/09/05 5:21 p.m.2 views

CVE-2025-39710 media: venus: Add a check for packet size after reading from shared memory

In the Linux kernel, the following vulnerability has been resolved: media: venus: Add a check for packet size after reading from shared memory Add a check to ensure that the packet size does not exceed the number of available words after reading the packet header from shared memory. This ensures...

7.1CVSS6.1AI score0.00152EPSS
Exploits0References13
OSV
OSV
added 2025/09/04 4:15 p.m.7 views

UBUNTU-CVE-2025-38679

In the Linux kernel, the following vulnerability has been resolved: media: venus: Fix OOB read due to missing payload bound check Currently, The eventseqchanged handler processes a variable number of properties sent by the firmware. The number of properties is indicated by the firmware and used t...

7.1CVSS6.7AI score0.00149EPSS
Exploits0References25
OSV
OSV
added 2024/10/01 9:22 p.m.12 views

CLSA-2024-1727817758 Fix of 74 CVEs

CVE-url: https://ubuntu.com/security/CVE-2024-26752 - l2tp: pass correct message length to ip6appenddata CVE-url: https://ubuntu.com/security/CVE-2021-47188 - scsi: ufs: core: Improve SCSI abort handling CVE-url: https://ubuntu.com/security/CVE-2024-26677 - rxrpc: Fix delayed ACKs to not set the...

8.4CVSS6.8AI score0.00317EPSS
Exploits1References1
OSV
OSV
added 2024/10/01 9:12 p.m.9 views

CLSA-2024-1727817133 Fix of 74 CVEs

CVE-url: https://ubuntu.com/security/CVE-2024-26752 - l2tp: pass correct message length to ip6appenddata CVE-url: https://ubuntu.com/security/CVE-2021-47188 - scsi: ufs: core: Improve SCSI abort handling CVE-url: https://ubuntu.com/security/CVE-2024-26677 - rxrpc: Fix delayed ACKs to not set the...

8.4CVSS6.8AI score0.00317EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2024/08/17 9:9 a.m.12 views

CVE-2024-42313

In the Linux kernel, the following vulnerability has been resolved: media: venus: fix use after free in vdecclose There appears to be a possible use after free with vdecclose. The firmware will add buffer release work to the work queue through HFI callbacks as a normal part of decoding. Randomly...

7.8CVSS5.8AI score0.00228EPSS
Exploits0
OSV
OSV
added 2024/08/17 9:9 a.m.10 views

CVE-2024-42313 media: venus: fix use after free in vdec_close

In the Linux kernel, the following vulnerability has been resolved: media: venus: fix use after free in vdecclose There appears to be a possible use after free with vdecclose. The firmware will add buffer release work to the work queue through HFI callbacks as a normal part of decoding. Randomly...

7.8CVSS6.3AI score0.00228EPSS
Exploits0References13
OSV
OSV
added 2024/02/28 9:15 a.m.9 views

CVE-2021-47043

In the Linux kernel, the following vulnerability has been resolved: media: venus: core: Fix some resource leaks in the error path of 'venusprobe' If an error occurs after a successful 'oficcget' call, it must be undone. Use 'devmoficcget' instead of 'oficcget' to avoid the leak. Update the remove...

5.5CVSS6.6AI score
Exploits0References4
OSV
OSV
added 2024/02/28 9:15 a.m.7 views

DEBIAN-CVE-2021-47043

In the Linux kernel, the following vulnerability has been resolved: media: venus: core: Fix some resource leaks in the error path of 'venusprobe' If an error occurs after a successful 'oficcget' call, it must be undone. Use 'devmoficcget' instead of 'oficcget' to avoid the leak. Update the remove...

5.5CVSS4.9AI score0.00239EPSS
Exploits0References1
Prion
Prion
added 2024/02/28 9:15 a.m.34 views

Spoofing

In the Linux kernel, the following vulnerability has been resolved: media: venus: core: Fix some resource leaks in the error path of 'venusprobe' If an error occurs after a successful 'oficcget' call, it must be undone. Use 'devmoficcget' instead of 'oficcget' to avoid the leak. Update the remove...

6.6AI score0.00239EPSS
Exploits0References4
OSV
OSV
added 2022/06/28 6:22 p.m.11 views

GSD-2022-1002828 media: venus: hfi: avoid null dereference in deinit

media: venus: hfi: avoid null dereference in deinit This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.3 by commit...

7.2AI score
Exploits0
Rows per page
Query Builder