Lucene search
K

22 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-53138

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: Bound VBIOS record-chain walk loops Why & How All record-chain walk loops in biosparser.c and biosparser2.c use for;; and only terminate on a...

7.1CVSS5.9AI score0.00176EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/26 7:34 a.m.5 views

CVE-2026-53138

A flaw was found in the Linux kernel's AMD display drm/amd/display driver. A malformed VBIOS image can cause unbounded processing loops, leading to an out-of-bounds read. This could result in information disclosure or a system crash...

7.1CVSS5.8AI score0.00176EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/25 9:31 a.m.5 views

EUVD-2026-39343

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Bound VBIOS record-chain walk loops Why & How All record-chain walk loops in biosparser.c and biosparser2.c use for;; and only terminate on a 0xFF recordtype sentinel or zero recordsize. A malformed VBIOS image...

5.7AI score0.00176EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/25 9:31 a.m.4 views

EUVD-2026-39341

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Clamp VBIOS HDMI retimer register count to array size Why & How The VBIOS integrated info tables v111 and v21 contain HdmiRegNum and Hdmi6GRegNum fields that are used as loop bounds when copying retimer I2C...

5.7AI score0.00172EPSS
Exploits0References8
NVD
NVD
added 2026/06/25 9:16 a.m.6 views

CVE-2026-53138

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Bound VBIOS record-chain walk loops Why & How All record-chain walk loops in biosparser.c and biosparser2.c use for;; and only terminate on a 0xFF recordtype sentinel or zero recordsize. A malformed VBIOS image...

7.1CVSS0.00176EPSS
Exploits0References8
NVD
NVD
added 2026/06/25 9:16 a.m.7 views

CVE-2026-53136

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Clamp VBIOS HDMI retimer register count to array size Why & How The VBIOS integrated info tables v111 and v21 contain HdmiRegNum and Hdmi6GRegNum fields that are used as loop bounds when copying retimer I2C...

7.8CVSS0.00172EPSS
Exploits0References7
CVE
CVE
added 2026/06/25 8:38 a.m.11 views

CVE-2026-53138

The CVE-2026-53138 issue affects the Linux kernel’s drm/amd/display driver. A malformed VBIOS image can cause unbounded record-chain walk loops in bios_parser.c and bios_parser2.c due to for(;;) loops that terminate only on a 0xFF sentinel or zero record_size. This can lead to a large number of i...

7.1CVSS5.7AI score0.00176EPSS
Exploits0References8Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/25 8:38 a.m.5 views

CVE-2026-53136

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Clamp VBIOS HDMI retimer register count to array size Why & How The VBIOS integrated info tables v111 and v21 contain HdmiRegNum and Hdmi6GRegNum fields that are used as loop bounds when copying retimer I2C...

5.8AI score0.00172EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2026/06/25 8:38 a.m.9 views

CVE-2026-53136

The CVE-2026-53136 issue affects the Linux kernel in the DRM AMD display driver. It arises from VBIOS info fields HdmiRegNum and Hdmi6GRegNum being used as loop bounds to copy retimer I2C settings into fixed-size arrays without validation, enabling an out-of-bounds heap write during driver probe....

7.8CVSS5.7AI score0.00172EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/06/25 8:38 a.m.29 views

CVE-2026-53136 drm/amd/display: Clamp VBIOS HDMI retimer register count to array size

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Clamp VBIOS HDMI retimer register count to array size Why & How The VBIOS integrated info tables v111 and v21 contain HdmiRegNum and Hdmi6GRegNum fields that are used as loop bounds when copying retimer I2C...

0.00172EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2025-26738

Malicious code in bioql PyPI...

4.2CVSS6.5AI score0.00112EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/09/04 12:0 a.m.6 views

PT-2025-35950

Name of the Vulnerable Software and Affected Versions: NVIDIA HGX and DGX affected versions not specified Description: NVIDIA HGX and DGX systems are susceptible to a misconfiguration in the VBIOS that could allow an attacker to establish an unsafe debug access level. Exploitation of this issue m...

4.2CVSS6.1AI score0.00112EPSS
Exploits0References4
Nvidia
Nvidia
added 2025/09/02 12:0 a.m.11 views

Security Bulletin: NVIDIA HGX and DGX VBIOS and LS10 - September 2025

NVIDIA has released a software update for NVIDIA® DGX and HGX vBIOS and LS10 to address the security issues described below. To protect your system, download and install the latest update from the NVIDIA Developer Tools page. Go to NVIDIA Product Security. Details This section provides a summary ...

4.2CVSS6.6AI score0.00112EPSS
Exploits0Affected Software4
OSV
OSV
added 2025/03/11 7:15 a.m.2 views

DEBIAN-CVE-2025-2173

A vulnerability was found in libzvbi up to 0.2.43. It has been classified as problematic. Affected is the function vbistrndupiconvucs2 of the file src/conv.c. The manipulation of the argument srclength leads to uninitialized pointer. It is possible to launch the attack remotely. The exploit has...

7.5CVSS5.3AI score0.00563EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/05 12:0 a.m.3 views

NVIDIA Hopper HGX 8-GPU 安全漏洞

The NVIDIA Hopper HGX 8-GPU is a high-performance computing HGX architecture GPU module from NVIDIA, USA. It is used for computing tasks such as deep learning and large-scale data processing. A security vulnerability exists in the NVIDIA Hopper HGX 8-GPU, which stems from a vulnerability in the G...

6.8CVSS6.5AI score0.00497EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2024/05/03 2:9 a.m.9 views

SUSE CVE-2024-26938

In the Linux kernel, the following vulnerability has been resolved: drm/i915/bios: Tolerate devdata==NULL in intelbiosencodersupportsdpdualmode If we have no VBT, or the VBT didn't declare the encoder in question, we won't have the 'devdata' for the encoder. Instead of oopsing just bail early. We...

3.3CVSS6.4AI score0.00222EPSS
Exploits0References16
OSV
OSV
added 2024/05/01 6:15 a.m.1 views

DEBIAN-CVE-2024-26938

In the Linux kernel, the following vulnerability has been resolved: drm/i915/bios: Tolerate devdata==NULL in intelbiosencodersupportsdpdualmode If we have no VBT, or the VBT didn't declare the encoder in question, we won't have the 'devdata' for the encoder. Instead of oopsing just bail early. We...

5.5CVSS5.8AI score0.00222EPSS
Exploits0References1
OSV
OSV
added 2024/05/01 6:15 a.m.3 views

UBUNTU-CVE-2024-26938

In the Linux kernel, the following vulnerability has been resolved: drm/i915/bios: Tolerate devdata==NULL in intelbiosencodersupportsdpdualmode If we have no VBT, or the VBT didn't declare the encoder in question, we won't have the 'devdata' for the encoder. Instead of oopsing just bail early. We...

5.5CVSS6.2AI score0.00222EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2024/04/30 12:0 a.m.11 views

PT-2024-21586

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to the Linux kernel, specifically in the drm/i915/bios component. It involves tolerating devdata==NULL in the intel bios encoder supports dp dual mode function. If...

5.5CVSS5.5AI score0.00222EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2016/06/13 5:33 p.m.20 views

qemu: incorrect banked access bounds checking in vga module

An out-of-bounds read/write access flaw was found in the way QEMU's VGA emulation with VESA BIOS Extensions VBE support performed read/write operations using I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host's QEMU...

8.8CVSS7.7AI score0.00916EPSS
Exploits0References4
Rows per page
Query Builder