Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: fbdev: The issue was fixed by correcting fbsetvar to prevent a null-ptr dereference in fbvideomodetovar. If fbaddvideomode in fbsetvar fails to allocate memory for fbvideomode, it may lead to a null-ptr dereference in...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: fbmon: prevented division by zero in fbvideomodefromvideomode. The expression htotal vtotal can have a zero value during overflow. It is necessary to prevent division by zero, as seen in fbvartovideomode. This issue was identifie...

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: fbmem: Do not delete the mode that is still in use The execution of fbdeletevideomode is not based on the result of the previous fbconmodedeleted. As a result, the mode is directly deleted, regardless of whether it is still in us...

Siemens SIMATIC S7-1500 NULL Pointer Dereference(CVE-2025-38215)

In the Linux kernel, the following vulnerability has been resolved: fbdev: Fix doregisterframebuffer to prevent null-ptr-deref in fbvideomodetovar If fbaddvideomode in doregisterframebuffer fails to allocate memory for fbvideomode, it will later lead to a null-ptr dereference in fbvideomodetovar,...

Siemens SIMATIC S7-1500 NULL Pointer Dereference(CVE-2025-38214)

In the Linux kernel, the following vulnerability has been resolved: fbdev: Fix fbsetvar to prevent null-ptr-deref in fbvideomodetovar If fbaddvideomode in fbsetvar fails to allocate memory for fbvideomode, later it may lead to a null-ptr dereference in fbvideomodetovar, as the fbinfo is registere...

Azure Linux 3.0 Security Update: kernel (CVE-2025-38215)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38215 advisory. - In the Linux kernel, the following vulnerability has been resolved: fbdev: Fix doregisterframebuffer to...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990274)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990274 advisory. In the Linux kernel, the following vulnerability has been resolved: fbmon: prevent division by zero in fbvideomodefromvideomode The expression htotal vtotal can have...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989848)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989848 advisory. In the Linux kernel, the following vulnerability has been resolved: fbmon: prevent division by zero in fbvideomodefromvideomode The expression htotal vtotal can have...

Siemens SIMATIC Devices Divide By Zero (CVE-2024-35922)

fbmon: prevent division by zero in fbvideomodefromvideomode This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503551; scriptversion"1.2";...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986607)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986607 advisory. In the Linux kernel, the following vulnerability has been resolved: fbmon: prevent division by zero in fbvideomodefromvideomode The expression htotal vtotal can have...

EUVD-2025-25571

Malicious code in bioql PyPI...

fbdev: imxfb: Check fb_add_videomode to prevent null-ptr-deref

...

AZL-66605 CVE-2025-38630 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: fbdev: imxfb: Check fbaddvideomode to prevent null-ptr-deref fbaddvideomode can fail with -ENOMEM when its internal kmalloc cannot allocate a struct fbmodelist. If that happens, the modelist stays empty but the driver continues t...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from imxfb not checking the fbaddvideomode return value, which could result in a null pointer dereference...

fbdev: Fix fb_set_var to prevent null-ptr-deref in fb_videomode_to_var

...

DEBIAN-CVE-2025-38215

In the Linux kernel, the following vulnerability has been resolved: fbdev: Fix doregisterframebuffer to prevent null-ptr-deref in fbvideomodetovar If fbaddvideomode in doregisterframebuffer fails to allocate memory for fbvideomode, it will later lead to a null-ptr dereference in fbvideomodetovar,...

UBUNTU-CVE-2025-38214

In the Linux kernel, the following vulnerability has been resolved: fbdev: Fix fbsetvar to prevent null-ptr-deref in fbvideomodetovar If fbaddvideomode in fbsetvar fails to allocate memory for fbvideomode, later it may lead to a null-ptr dereference in fbvideomodetovar, as the fbinfo is registere...

PT-2025-27989

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.10.226 Description: A null pointer dereference issue was found in the Linux kernel's fbdev subsystem. The issue occurs when fb add videomode fails to allocate memory for fb videomode, leading to a null pointer...

PT-2025-27990

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.10.226 Description: A null pointer dereference issue was found in the Linux kernel's fbdev subsystem. The issue occurs when fb add videomode fails to allocate memory for fb videomode, leading to a null pointer...

PT-2025-34392

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The fb add videomode function may fail to allocate memory, resulting in an empty modelist but allowing the driver to continue registration. This can lead to a potential null-pointer...