Lucene search
K

420 matches found

Cvelist
Cvelist
added 2025/12/24 1:6 p.m.26 views

CVE-2023-54101 driver: soc: xilinx: use _safe loop iterator to avoid a use after free

In the Linux kernel, the following vulnerability has been resolved: driver: soc: xilinx: use safe loop iterator to avoid a use after free The hashforeachpossible loop dereferences "evedata" to get the next item on the list. However the loop frees evedata so it leads to a use after free. Use...

0.00175EPSS
Exploits0References4
CVE
CVE
added 2025/12/24 1:6 p.m.15 views

CVE-2023-54101

The CVE CVE-2023-54101 affects the Linux kernel driver: soc: xilinx, where a use-after-free could occur in a hash loop. The fix replaces hash_for_each_possible() with hash_for_each_possible_safe() to avoid dereferencing freed eve_data. The provided documents confirm the root cause and the safe-lo...

6.1AI score0.00175EPSS
Exploits0References4
OSV
OSV
added 2025/12/24 1:6 p.m.6 views

CVE-2023-54101 driver: soc: xilinx: use _safe loop iterator to avoid a use after free

In the Linux kernel, the following vulnerability has been resolved: driver: soc: xilinx: use safe loop iterator to avoid a use after free The hashforeachpossible loop dereferences "evedata" to get the next item on the list. However the loop frees evedata so it leads to a use after free. Use...

6.4AI score0.00175EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.5 views

PT-2025-53178

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the driver subsystem, specifically in the soc/xilinx component. A use-after-free condition exists due to the improper handling of a hash table...

6.4AI score0.00175EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/12/22 12:0 a.m.5 views

Ubuntu: Security Advisory (USN-7931-4)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.2AI score0.00232EPSS
Exploits0References2
OSV
OSV
added 2025/12/19 5:38 p.m.6 views

OPENSUSE-SU-2025:20172-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2022-50253: bpf: make sure skb-len != 0 when redirecting to a tunneling device bsc1249912. - CVE-2025-37916: pdscore: remove write-after-free of clientid bsc1243474. -...

7.8CVSS6.8AI score0.00236EPSS
Exploits1References219
OSV
OSV
added 2025/12/19 4:46 p.m.4 views

SUSE-SU-2026:20012-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2022-50253: bpf: make sure skb-len != 0 when redirecting to a tunneling device bsc1249912. - CVE-2025-37916: pdscore: remove write-after-free of clientid bsc1243474. -...

7.8CVSS6.7AI score0.00236EPSS
Exploits1References220
OpenVAS
OpenVAS
added 2025/12/16 12:0 a.m.1 views

Ubuntu: Security Advisory (USN-7889-7)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.2AI score0.00202EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/12/04 12:0 a.m.7 views

Ubuntu: Security Advisory (USN-7861-5)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.6AI score0.01345EPSS
Exploits8References4
RedhatCVE
RedhatCVE
added 2025/12/02 7:22 a.m.4 views

CVE-2025-52539

A buffer overflow with Xilinx Run Time Environment may allow a local attacker to read or corrupt data from the advanced extensible interface AXI, potentially resulting in loss of confidentiality, integrity, and/or availability...

7.3CVSS6.9AI score0.00111EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/02 7:22 a.m.5 views

CVE-2025-0003

Inadequate lock protection within Xilinx Run time may allow a local attacker to trigger a Use-After-Free condition potentially resulting in loss of confidentiality or availability...

7.3CVSS6.5AI score0.00079EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/02 6:3 a.m.8 views

CVE-2025-0007

Insufficient validation within Xilinx Run Time framework could allow a local attacker to escalate privileges from user space to kernel space, potentially compromising confidentiality, integrity, and/or availability...

5.7CVSS6.7AI score0.00092EPSS
Exploits0References1
CNVD
CNVD
added 2025/11/27 12:0 a.m.5 views

AMD Xilinx Run Time Elevation of Privilege Vulnerability

AMD Xilinx Run Time is a standardized runtime environment developed by AMD for Xilinx FPGAs that provides a unified software interface to optimize FPGA arithmetic. An elevation of privilege vulnerability exists in AMD Xilinx Run Time that stems from insufficient authentication and can be exploite...

5.7CVSS7.3AI score0.00092EPSS
Exploits0References1
CNVD
CNVD
added 2025/11/27 12:0 a.m.5 views

AMD Xilinx Run Time Lockout Insufficient Protection Vulnerability

AMD Xilinx Run Time is a standardized runtime environment developed by AMD for Xilinx FPGAs that provides a unified software interface to optimize FPGA arithmetic. AMD Xilinx Run Time suffers from a locking protection deficiency vulnerability that can be exploited by an attacker to cause reuse...

7.3CVSS6.9AI score0.00079EPSS
Exploits0References1
CNVD
CNVD
added 2025/11/27 12:0 a.m.4 views

AMD Xilinx Run Time Buffer Overflow Vulnerability

AMD Xilinx Run Time is a standardized runtime environment developed by AMD for Xilinx FPGAs that provides a unified software interface to optimize FPGA arithmetic. A buffer overflow vulnerability exists in AMD Xilinx Run Time, which can be exploited by an attacker to cause the reading or corrupti...

7.3CVSS7.4AI score0.00111EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/24 9:31 p.m.5 views

EUVD-2025-198995

Insufficient validation within Xilinx Run Time framework could allow a local attacker to escalate privileges from user space to kernel space, potentially compromising confidentiality, integrity, and/or availability...

5.7CVSS6.2AI score0.00092EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/24 9:31 p.m.5 views

EUVD-2025-199002

Inadequate lock protection within Xilinx Run time may allow a local attacker to trigger a Use-After-Free condition potentially resulting in loss of confidentiality or availability...

7.3CVSS6.1AI score0.00079EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/24 9:30 p.m.4 views

EUVD-2025-198987

A buffer overflow with Xilinx Run Time Environment may allow a local attacker to read or corrupt data from the advanced extensible interface AXI, potentially resulting in loss of confidentiality, integrity, and/or availability...

7.3CVSS6.5AI score0.00111EPSS
Exploits0References2
NVD
NVD
added 2025/11/24 9:16 p.m.5 views

CVE-2025-0007

Insufficient validation within Xilinx Run Time framework could allow a local attacker to escalate privileges from user space to kernel space, potentially compromising confidentiality, integrity, and/or availability...

5.7CVSS0.00092EPSS
Exploits0References1
NVD
NVD
added 2025/11/24 9:16 p.m.6 views

CVE-2025-0003

Inadequate lock protection within Xilinx Run time may allow a local attacker to trigger a Use-After-Free condition potentially resulting in loss of confidentiality or availability...

7.3CVSS0.00079EPSS
Exploits0References1
Rows per page
Query Builder