Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-53058 (GCVE-0-2026-53058)
Vulnerability from cvelistv5 – Published: 2026-06-24 16:30 – Updated: 2026-06-24 16:30| Vendor | Product | Version | |
|---|---|---|---|
| Linux | Linux |
Affected:
c932ced6b58524eeb948ff252f6512cd6bcb9d9f , < 5302015daf26ef6b48e067f2b86c9482ac19e015
(git)
Affected: c932ced6b58524eeb948ff252f6512cd6bcb9d9f , < a3611554e599d1a24b45fd8415bacb72ce861e4b (git) Affected: c932ced6b58524eeb948ff252f6512cd6bcb9d9f , < cf2ac2cac8b319f89b3a3851ca0c5ffb6a549575 (git) Affected: c932ced6b58524eeb948ff252f6512cd6bcb9d9f , < 1af3b42e08a957e53bab8e1897393fe0a27d9fbf (git) Affected: c932ced6b58524eeb948ff252f6512cd6bcb9d9f , < 43d6508ddbf9fb974fbc359a033154f78c9d4c8b (git) |
|
| Linux | Linux |
Affected:
6.6
Unaffected: 0 , < 6.6 (semver) Unaffected: 6.6.141 , ≤ 6.6.* (semver) Unaffected: 6.12.91 , ≤ 6.12.* (semver) Unaffected: 6.18.33 , ≤ 6.18.* (semver) Unaffected: 7.0.10 , ≤ 7.0.* (semver) Unaffected: 7.1 , ≤ * (original_commit_for_fix) |
{
"containers": {
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Linux",
"programFiles": [
"drivers/gpu/drm/bridge/cadence/cdns-mhdp8546-core.c",
"drivers/gpu/drm/bridge/cadence/cdns-mhdp8546-core.h",
"drivers/gpu/drm/bridge/cadence/cdns-mhdp8546-hdcp.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"lessThan": "5302015daf26ef6b48e067f2b86c9482ac19e015",
"status": "affected",
"version": "c932ced6b58524eeb948ff252f6512cd6bcb9d9f",
"versionType": "git"
},
{
"lessThan": "a3611554e599d1a24b45fd8415bacb72ce861e4b",
"status": "affected",
"version": "c932ced6b58524eeb948ff252f6512cd6bcb9d9f",
"versionType": "git"
},
{
"lessThan": "cf2ac2cac8b319f89b3a3851ca0c5ffb6a549575",
"status": "affected",
"version": "c932ced6b58524eeb948ff252f6512cd6bcb9d9f",
"versionType": "git"
},
{
"lessThan": "1af3b42e08a957e53bab8e1897393fe0a27d9fbf",
"status": "affected",
"version": "c932ced6b58524eeb948ff252f6512cd6bcb9d9f",
"versionType": "git"
},
{
"lessThan": "43d6508ddbf9fb974fbc359a033154f78c9d4c8b",
"status": "affected",
"version": "c932ced6b58524eeb948ff252f6512cd6bcb9d9f",
"versionType": "git"
}
]
},
{
"defaultStatus": "affected",
"product": "Linux",
"programFiles": [
"drivers/gpu/drm/bridge/cadence/cdns-mhdp8546-core.c",
"drivers/gpu/drm/bridge/cadence/cdns-mhdp8546-core.h",
"drivers/gpu/drm/bridge/cadence/cdns-mhdp8546-hdcp.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"status": "affected",
"version": "6.6"
},
{
"lessThan": "6.6",
"status": "unaffected",
"version": "0",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"version": "6.6.141",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.12.*",
"status": "unaffected",
"version": "6.12.91",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.18.*",
"status": "unaffected",
"version": "6.18.33",
"versionType": "semver"
},
{
"lessThanOrEqual": "7.0.*",
"status": "unaffected",
"version": "7.0.10",
"versionType": "semver"
},
{
"lessThanOrEqual": "*",
"status": "unaffected",
"version": "7.1",
"versionType": "original_commit_for_fix"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.6.141",
"versionStartIncluding": "6.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.12.91",
"versionStartIncluding": "6.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.18.33",
"versionStartIncluding": "6.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "7.0.10",
"versionStartIncluding": "6.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "7.1",
"versionStartIncluding": "6.6",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable()\n\nIn case if we get errors in cdns_mhdp_link_up() or cdns_mhdp_reg_read()\nin atomic_enable, we will go to cdns_mhdp_modeset_retry_fn() and will hit\nNULL pointer while trying to access the mutex. We need the connector to\nbe set before that. Unlike in legacy cases with flag\n!DRM_BRIDGE_ATTACH_NO_CONNECTOR, we do not have connector initialised\nin bridge_attach(), so add the mhdp-\u003econnector_ptr in device structure\nto handle both cases with DRM_BRIDGE_ATTACH_NO_CONNECTOR and\n!DRM_BRIDGE_ATTACH_NO_CONNECTOR, set it in atomic_enable() earlier to\navoid possible NULL pointer dereference in recovery paths like\nmodeset_retry_fn() with the DRM_BRIDGE_ATTACH_NO_CONNECTOR flag set."
}
],
"providerMetadata": {
"dateUpdated": "2026-06-24T16:30:03.463Z",
"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"shortName": "Linux"
},
"references": [
{
"url": "https://git.kernel.org/stable/c/5302015daf26ef6b48e067f2b86c9482ac19e015"
},
{
"url": "https://git.kernel.org/stable/c/a3611554e599d1a24b45fd8415bacb72ce861e4b"
},
{
"url": "https://git.kernel.org/stable/c/cf2ac2cac8b319f89b3a3851ca0c5ffb6a549575"
},
{
"url": "https://git.kernel.org/stable/c/1af3b42e08a957e53bab8e1897393fe0a27d9fbf"
},
{
"url": "https://git.kernel.org/stable/c/43d6508ddbf9fb974fbc359a033154f78c9d4c8b"
}
],
"title": "drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable()",
"x_generator": {
"engine": "bippy-1.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"assignerShortName": "Linux",
"cveId": "CVE-2026-53058",
"datePublished": "2026-06-24T16:30:03.463Z",
"dateReserved": "2026-06-09T07:44:35.381Z",
"dateUpdated": "2026-06-24T16:30:03.463Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-53058",
"date": "2026-07-16",
"epss": "0.00168",
"percentile": "0.06357"
},
"microsoft_vex": {
"current_release_date": "2026-07-09T14:43:23.000Z",
"cve": "CVE-2026-53058",
"id": "msrc_CVE-2026-53058",
"initial_release_date": "2026-06-02T00:00:00.000Z",
"product_status:fixed": "1",
"product_status:known_affected": "1",
"source": "Microsoft CSAF VEX",
"status": "final",
"title": "drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable()",
"url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2026-53058.json",
"version": "2"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-53058\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2026-06-24T17:17:18.170\",\"lastModified\":\"2026-07-14T15:26:52.267\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\ndrm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable()\\n\\nIn case if we get errors in cdns_mhdp_link_up() or cdns_mhdp_reg_read()\\nin atomic_enable, we will go to cdns_mhdp_modeset_retry_fn() and will hit\\nNULL pointer while trying to access the mutex. We need the connector to\\nbe set before that. Unlike in legacy cases with flag\\n!DRM_BRIDGE_ATTACH_NO_CONNECTOR, we do not have connector initialised\\nin bridge_attach(), so add the mhdp-\u003econnector_ptr in device structure\\nto handle both cases with DRM_BRIDGE_ATTACH_NO_CONNECTOR and\\n!DRM_BRIDGE_ATTACH_NO_CONNECTOR, set it in atomic_enable() earlier to\\navoid possible NULL pointer dereference in recovery paths like\\nmodeset_retry_fn() with the DRM_BRIDGE_ATTACH_NO_CONNECTOR flag set.\"}],\"affected\":[{\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"affectedData\":[{\"vendor\":\"Linux\",\"product\":\"Linux\",\"defaultStatus\":\"unaffected\",\"programFiles\":[\"drivers/gpu/drm/bridge/cadence/cdns-mhdp8546-core.c\",\"drivers/gpu/drm/bridge/cadence/cdns-mhdp8546-core.h\",\"drivers/gpu/drm/bridge/cadence/cdns-mhdp8546-hdcp.c\"],\"repo\":\"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\",\"versions\":[{\"version\":\"c932ced6b58524eeb948ff252f6512cd6bcb9d9f\",\"lessThan\":\"5302015daf26ef6b48e067f2b86c9482ac19e015\",\"versionType\":\"git\",\"status\":\"affected\"},{\"version\":\"c932ced6b58524eeb948ff252f6512cd6bcb9d9f\",\"lessThan\":\"a3611554e599d1a24b45fd8415bacb72ce861e4b\",\"versionType\":\"git\",\"status\":\"affected\"},{\"version\":\"c932ced6b58524eeb948ff252f6512cd6bcb9d9f\",\"lessThan\":\"cf2ac2cac8b319f89b3a3851ca0c5ffb6a549575\",\"versionType\":\"git\",\"status\":\"affected\"},{\"version\":\"c932ced6b58524eeb948ff252f6512cd6bcb9d9f\",\"lessThan\":\"1af3b42e08a957e53bab8e1897393fe0a27d9fbf\",\"versionType\":\"git\",\"status\":\"affected\"},{\"version\":\"c932ced6b58524eeb948ff252f6512cd6bcb9d9f\",\"lessThan\":\"43d6508ddbf9fb974fbc359a033154f78c9d4c8b\",\"versionType\":\"git\",\"status\":\"affected\"}]},{\"vendor\":\"Linux\",\"product\":\"Linux\",\"defaultStatus\":\"affected\",\"programFiles\":[\"drivers/gpu/drm/bridge/cadence/cdns-mhdp8546-core.c\",\"drivers/gpu/drm/bridge/cadence/cdns-mhdp8546-core.h\",\"drivers/gpu/drm/bridge/cadence/cdns-mhdp8546-hdcp.c\"],\"repo\":\"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\",\"versions\":[{\"version\":\"6.6\",\"status\":\"affected\"},{\"version\":\"0\",\"lessThan\":\"6.6\",\"versionType\":\"semver\",\"status\":\"unaffected\"},{\"version\":\"6.6.141\",\"lessThanOrEqual\":\"6.6.*\",\"versionType\":\"semver\",\"status\":\"unaffected\"},{\"version\":\"6.12.91\",\"lessThanOrEqual\":\"6.12.*\",\"versionType\":\"semver\",\"status\":\"unaffected\"},{\"version\":\"6.18.33\",\"lessThanOrEqual\":\"6.18.*\",\"versionType\":\"semver\",\"status\":\"unaffected\"},{\"version\":\"7.0.10\",\"lessThanOrEqual\":\"7.0.*\",\"versionType\":\"semver\",\"status\":\"unaffected\"},{\"version\":\"7.1\",\"lessThanOrEqual\":\"*\",\"versionType\":\"original_commit_for_fix\",\"status\":\"unaffected\"}]}]}],\"metrics\":{},\"references\":[{\"url\":\"https://git.kernel.org/stable/c/1af3b42e08a957e53bab8e1897393fe0a27d9fbf\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/43d6508ddbf9fb974fbc359a033154f78c9d4c8b\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/5302015daf26ef6b48e067f2b86c9482ac19e015\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/a3611554e599d1a24b45fd8415bacb72ce861e4b\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/cf2ac2cac8b319f89b3a3851ca0c5ffb6a549575\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}]}}",
"redhat_vex": {
"aggregate_severity": "Low",
"current_release_date": "2026-06-28T07:44:14+00:00",
"cve": "CVE-2026-53058",
"id": "CVE-2026-53058",
"initial_release_date": "2026-06-24T00:00:00+00:00",
"product_status:known_affected": "76",
"product_status:known_not_affected": "198",
"source": "Red Hat CSAF VEX",
"status": "final",
"title": "kernel: drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable()",
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-53058.json",
"version": "3"
}
}
}
CERTFR-2026-AVI-0866
Vulnerability from certfr_avis - Published: 2026-07-10 - Updated: 2026-07-10
De multiples vulnérabilités ont été découvertes dans Microsoft Azure Linux. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Microsoft | Azure Linux | azl3 kernel 6.6.139.1-1 versions antérieures à 6.6.143.1-1 | ||
| Microsoft | Azure Linux | azl3 nginx 1.28.3-6 versions antérieures à 1.28.3-7 | ||
| Microsoft | Azure Linux | azl3 libreswan 4.15-1 versions antérieures à 4.15-2 | ||
| Microsoft | Azure Linux | azl3 libarchive 3.7.7-6 versions antérieures à 3.7.7-7 | ||
| Microsoft | Azure Linux | azl3 libtiff 4.6.0-13 versions antérieures à 4.6.0-14 |
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "azl3 kernel 6.6.139.1-1 versions ant\u00e9rieures \u00e0 6.6.143.1-1",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "azl3 nginx 1.28.3-6 versions ant\u00e9rieures \u00e0 1.28.3-7",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "azl3 libreswan 4.15-1 versions ant\u00e9rieures \u00e0 4.15-2",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "azl3 libarchive 3.7.7-6 versions ant\u00e9rieures \u00e0 3.7.7-7",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "azl3 libtiff 4.6.0-13 versions ant\u00e9rieures \u00e0 4.6.0-14",
"product": {
"name": "Azure Linux",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2026-53349",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53349"
},
{
"name": "CVE-2026-52925",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52925"
},
{
"name": "CVE-2026-52968",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52968"
},
{
"name": "CVE-2026-53061",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53061"
},
{
"name": "CVE-2026-53002",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53002"
},
{
"name": "CVE-2026-53287",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53287"
},
{
"name": "CVE-2026-53128",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53128"
},
{
"name": "CVE-2026-53066",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53066"
},
{
"name": "CVE-2026-52970",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52970"
},
{
"name": "CVE-2026-52958",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52958"
},
{
"name": "CVE-2026-52999",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52999"
},
{
"name": "CVE-2026-52989",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52989"
},
{
"name": "CVE-2026-53291",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53291"
},
{
"name": "CVE-2026-52963",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52963"
},
{
"name": "CVE-2026-52993",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52993"
},
{
"name": "CVE-2026-53071",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53071"
},
{
"name": "CVE-2026-53013",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53013"
},
{
"name": "CVE-2026-53064",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53064"
},
{
"name": "CVE-2026-53058",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53058"
},
{
"name": "CVE-2026-53094",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53094"
},
{
"name": "CVE-2026-53047",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53047"
},
{
"name": "CVE-2026-53006",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53006"
},
{
"name": "CVE-2026-14164",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-14164"
},
{
"name": "CVE-2026-52975",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52975"
},
{
"name": "CVE-2026-53050",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53050"
},
{
"name": "CVE-2026-42055",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42055"
},
{
"name": "CVE-2026-53021",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53021"
},
{
"name": "CVE-2026-53353",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53353"
},
{
"name": "CVE-2026-53110",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53110"
},
{
"name": "CVE-2026-53329",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53329"
},
{
"name": "CVE-2026-52984",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52984"
},
{
"name": "CVE-2026-53088",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53088"
},
{
"name": "CVE-2026-12413",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-12413"
},
{
"name": "CVE-2026-53034",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53034"
},
{
"name": "CVE-2026-53111",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53111"
},
{
"name": "CVE-2026-53112",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53112"
},
{
"name": "CVE-2026-53086",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53086"
},
{
"name": "CVE-2026-52981",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52981"
},
{
"name": "CVE-2026-53060",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53060"
},
{
"name": "CVE-2026-53096",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53096"
},
{
"name": "CVE-2026-53076",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53076"
},
{
"name": "CVE-2026-52908",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52908"
},
{
"name": "CVE-2026-53035",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53035"
},
{
"name": "CVE-2026-53314",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53314"
},
{
"name": "CVE-2026-53347",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53347"
},
{
"name": "CVE-2026-53126",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53126"
},
{
"name": "CVE-2026-52985",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52985"
},
{
"name": "CVE-2026-53059",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53059"
},
{
"name": "CVE-2026-53012",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53012"
},
{
"name": "CVE-2026-53356",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53356"
},
{
"name": "CVE-2026-53073",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53073"
},
{
"name": "CVE-2026-50722",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-50722"
},
{
"name": "CVE-2026-53293",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53293"
},
{
"name": "CVE-2026-52910",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52910"
},
{
"name": "CVE-2026-53337",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53337"
},
{
"name": "CVE-2026-50721",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-50721"
},
{
"name": "CVE-2026-53289",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53289"
},
{
"name": "CVE-2026-53304",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53304"
},
{
"name": "CVE-2026-52936",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52936"
},
{
"name": "CVE-2026-53223",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53223"
},
{
"name": "CVE-2026-52998",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52998"
},
{
"name": "CVE-2026-53011",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53011"
},
{
"name": "CVE-2026-52920",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52920"
},
{
"name": "CVE-2026-53295",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53295"
},
{
"name": "CVE-2026-53269",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53269"
},
{
"name": "CVE-2026-53357",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53357"
},
{
"name": "CVE-2026-53003",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53003"
},
{
"name": "CVE-2026-53355",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53355"
},
{
"name": "CVE-2026-52986",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52986"
},
{
"name": "CVE-2026-53077",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53077"
},
{
"name": "CVE-2026-53056",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53056"
},
{
"name": "CVE-2026-53023",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53023"
},
{
"name": "CVE-2026-12912",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-12912"
},
{
"name": "CVE-2026-53063",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53063"
},
{
"name": "CVE-2026-53093",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53093"
},
{
"name": "CVE-2026-53075",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53075"
},
{
"name": "CVE-2026-53352",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53352"
},
{
"name": "CVE-2026-53037",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53037"
},
{
"name": "CVE-2026-53072",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53072"
},
{
"name": "CVE-2026-53068",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53068"
},
{
"name": "CVE-2026-52967",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52967"
},
{
"name": "CVE-2026-52974",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52974"
},
{
"name": "CVE-2026-52933",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52933"
},
{
"name": "CVE-2026-52969",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52969"
},
{
"name": "CVE-2026-53062",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53062"
},
{
"name": "CVE-2026-53032",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53032"
},
{
"name": "CVE-2026-53343",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53343"
},
{
"name": "CVE-2026-53082",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53082"
},
{
"name": "CVE-2026-52977",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52977"
},
{
"name": "CVE-2026-52972",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52972"
},
{
"name": "CVE-2026-53074",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53074"
},
{
"name": "CVE-2026-53036",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53036"
},
{
"name": "CVE-2026-52982",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-52982"
},
{
"name": "CVE-2026-53022",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53022"
}
],
"initial_release_date": "2026-07-10T00:00:00",
"last_revision_date": "2026-07-10T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0866",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-07-10T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Microsoft Azure Linux. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Azure Linux",
"vendor_advisories": [
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53061",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53061"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53032",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53032"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52982",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52982"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52981",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52981"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53064",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53064"
},
{
"published_at": "2026-07-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53223",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53223"
},
{
"published_at": "2026-06-28",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53291",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53291"
},
{
"published_at": "2026-06-28",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53304",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53304"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52998",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52998"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53128",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53128"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53068",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53068"
},
{
"published_at": "2026-06-28",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53293",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53293"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53096",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53096"
},
{
"published_at": "2026-07-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-50722",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-50722"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52977",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52977"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52920",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52920"
},
{
"published_at": "2026-07-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-12413",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-12413"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53034",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53034"
},
{
"published_at": "2026-07-04",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-50721",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-50721"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53021",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53021"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53036",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53036"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53012",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53012"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52974",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52974"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53066",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53066"
},
{
"published_at": "2026-06-28",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53289",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53289"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52993",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52993"
},
{
"published_at": "2026-06-29",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52908",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52908"
},
{
"published_at": "2026-07-02",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53356",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53356"
},
{
"published_at": "2026-07-09",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53269",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53269"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53062",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53062"
},
{
"published_at": "2026-07-02",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53343",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53343"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52925",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52925"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53023",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53023"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52936",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52936"
},
{
"published_at": "2026-06-28",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53295",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53295"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53093",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53093"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52970",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52970"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53094",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53094"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52985",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52985"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53060",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53060"
},
{
"published_at": "2026-07-02",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53349",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53349"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53112",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53112"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53075",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53075"
},
{
"published_at": "2026-07-02",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53337",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53337"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53011",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53011"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53006",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53006"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53076",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53076"
},
{
"published_at": "2026-07-02",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53352",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53352"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52986",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52986"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52984",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52984"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52969",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52969"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53056",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53056"
},
{
"published_at": "2026-06-28",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53287",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53287"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53074",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53074"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53050",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53050"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53072",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53072"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52967",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52967"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53003",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53003"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53047",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53047"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52975",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52975"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53059",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53059"
},
{
"published_at": "2026-07-02",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53347",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53347"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53037",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53037"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53086",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53086"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53073",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53073"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53013",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53013"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53063",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53063"
},
{
"published_at": "2026-07-03",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53357",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53357"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53002",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53002"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52972",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52972"
},
{
"published_at": "2026-07-03",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-14164",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-14164"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52958",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52958"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53082",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53082"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53058",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53058"
},
{
"published_at": "2026-06-29",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52910",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52910"
},
{
"published_at": "2026-07-02",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53355",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53355"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53071",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53071"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53022",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53022"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52963",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52963"
},
{
"published_at": "2026-07-02",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53329",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53329"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53110",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53110"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53111",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53111"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52933",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52933"
},
{
"published_at": "2026-06-28",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53314",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53314"
},
{
"published_at": "2026-07-01",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-42055",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42055"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52968",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52968"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52999",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52999"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53126",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53126"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53088",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53088"
},
{
"published_at": "2026-07-02",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53353",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53353"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53035",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53035"
},
{
"published_at": "2026-07-03",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-12912",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-12912"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-53077",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-53077"
},
{
"published_at": "2026-06-27",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Azure Linux CVE-2026-52989",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-52989"
}
]
}
FKIE_CVE-2026-53058
Vulnerability from fkie_nvd - Published: 2026-06-24 17:17 - Updated: 2026-07-14 15:26| URL | Tags | ||
|---|---|---|---|
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/1af3b42e08a957e53bab8e1897393fe0a27d9fbf | ||
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/43d6508ddbf9fb974fbc359a033154f78c9d4c8b | ||
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/5302015daf26ef6b48e067f2b86c9482ac19e015 | ||
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/a3611554e599d1a24b45fd8415bacb72ce861e4b | ||
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/cf2ac2cac8b319f89b3a3851ca0c5ffb6a549575 |
| Vendor | Product | Version |
|---|
{
"affected": [
{
"affectedData": [
{
"defaultStatus": "unaffected",
"product": "Linux",
"programFiles": [
"drivers/gpu/drm/bridge/cadence/cdns-mhdp8546-core.c",
"drivers/gpu/drm/bridge/cadence/cdns-mhdp8546-core.h",
"drivers/gpu/drm/bridge/cadence/cdns-mhdp8546-hdcp.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"lessThan": "5302015daf26ef6b48e067f2b86c9482ac19e015",
"status": "affected",
"version": "c932ced6b58524eeb948ff252f6512cd6bcb9d9f",
"versionType": "git"
},
{
"lessThan": "a3611554e599d1a24b45fd8415bacb72ce861e4b",
"status": "affected",
"version": "c932ced6b58524eeb948ff252f6512cd6bcb9d9f",
"versionType": "git"
},
{
"lessThan": "cf2ac2cac8b319f89b3a3851ca0c5ffb6a549575",
"status": "affected",
"version": "c932ced6b58524eeb948ff252f6512cd6bcb9d9f",
"versionType": "git"
},
{
"lessThan": "1af3b42e08a957e53bab8e1897393fe0a27d9fbf",
"status": "affected",
"version": "c932ced6b58524eeb948ff252f6512cd6bcb9d9f",
"versionType": "git"
},
{
"lessThan": "43d6508ddbf9fb974fbc359a033154f78c9d4c8b",
"status": "affected",
"version": "c932ced6b58524eeb948ff252f6512cd6bcb9d9f",
"versionType": "git"
}
]
},
{
"defaultStatus": "affected",
"product": "Linux",
"programFiles": [
"drivers/gpu/drm/bridge/cadence/cdns-mhdp8546-core.c",
"drivers/gpu/drm/bridge/cadence/cdns-mhdp8546-core.h",
"drivers/gpu/drm/bridge/cadence/cdns-mhdp8546-hdcp.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"status": "affected",
"version": "6.6"
},
{
"lessThan": "6.6",
"status": "unaffected",
"version": "0",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"version": "6.6.141",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.12.*",
"status": "unaffected",
"version": "6.12.91",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.18.*",
"status": "unaffected",
"version": "6.18.33",
"versionType": "semver"
},
{
"lessThanOrEqual": "7.0.*",
"status": "unaffected",
"version": "7.0.10",
"versionType": "semver"
},
{
"lessThanOrEqual": "*",
"status": "unaffected",
"version": "7.1",
"versionType": "original_commit_for_fix"
}
]
}
],
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable()\n\nIn case if we get errors in cdns_mhdp_link_up() or cdns_mhdp_reg_read()\nin atomic_enable, we will go to cdns_mhdp_modeset_retry_fn() and will hit\nNULL pointer while trying to access the mutex. We need the connector to\nbe set before that. Unlike in legacy cases with flag\n!DRM_BRIDGE_ATTACH_NO_CONNECTOR, we do not have connector initialised\nin bridge_attach(), so add the mhdp-\u003econnector_ptr in device structure\nto handle both cases with DRM_BRIDGE_ATTACH_NO_CONNECTOR and\n!DRM_BRIDGE_ATTACH_NO_CONNECTOR, set it in atomic_enable() earlier to\navoid possible NULL pointer dereference in recovery paths like\nmodeset_retry_fn() with the DRM_BRIDGE_ATTACH_NO_CONNECTOR flag set."
}
],
"id": "CVE-2026-53058",
"lastModified": "2026-07-14T15:26:52.267",
"metrics": {},
"published": "2026-06-24T17:17:18.170",
"references": [
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/1af3b42e08a957e53bab8e1897393fe0a27d9fbf"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/43d6508ddbf9fb974fbc359a033154f78c9d4c8b"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/5302015daf26ef6b48e067f2b86c9482ac19e015"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/a3611554e599d1a24b45fd8415bacb72ce861e4b"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/cf2ac2cac8b319f89b3a3851ca0c5ffb6a549575"
}
],
"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"vulnStatus": "Awaiting Analysis"
}
GHSA-RC9R-G4HP-H8V7
Vulnerability from github – Published: 2026-06-24 18:32 – Updated: 2026-06-24 18:32In the Linux kernel, the following vulnerability has been resolved:
drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable()
In case if we get errors in cdns_mhdp_link_up() or cdns_mhdp_reg_read() in atomic_enable, we will go to cdns_mhdp_modeset_retry_fn() and will hit NULL pointer while trying to access the mutex. We need the connector to be set before that. Unlike in legacy cases with flag !DRM_BRIDGE_ATTACH_NO_CONNECTOR, we do not have connector initialised in bridge_attach(), so add the mhdp->connector_ptr in device structure to handle both cases with DRM_BRIDGE_ATTACH_NO_CONNECTOR and !DRM_BRIDGE_ATTACH_NO_CONNECTOR, set it in atomic_enable() earlier to avoid possible NULL pointer dereference in recovery paths like modeset_retry_fn() with the DRM_BRIDGE_ATTACH_NO_CONNECTOR flag set.
{
"affected": [],
"aliases": [
"CVE-2026-53058"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2026-06-24T17:17:18Z",
"severity": null
},
"details": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable()\n\nIn case if we get errors in cdns_mhdp_link_up() or cdns_mhdp_reg_read()\nin atomic_enable, we will go to cdns_mhdp_modeset_retry_fn() and will hit\nNULL pointer while trying to access the mutex. We need the connector to\nbe set before that. Unlike in legacy cases with flag\n!DRM_BRIDGE_ATTACH_NO_CONNECTOR, we do not have connector initialised\nin bridge_attach(), so add the mhdp-\u003econnector_ptr in device structure\nto handle both cases with DRM_BRIDGE_ATTACH_NO_CONNECTOR and\n!DRM_BRIDGE_ATTACH_NO_CONNECTOR, set it in atomic_enable() earlier to\navoid possible NULL pointer dereference in recovery paths like\nmodeset_retry_fn() with the DRM_BRIDGE_ATTACH_NO_CONNECTOR flag set.",
"id": "GHSA-rc9r-g4hp-h8v7",
"modified": "2026-06-24T18:32:45Z",
"published": "2026-06-24T18:32:45Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-53058"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/1af3b42e08a957e53bab8e1897393fe0a27d9fbf"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/43d6508ddbf9fb974fbc359a033154f78c9d4c8b"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/5302015daf26ef6b48e067f2b86c9482ac19e015"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/a3611554e599d1a24b45fd8415bacb72ce861e4b"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/cf2ac2cac8b319f89b3a3851ca0c5ffb6a549575"
}
],
"schema_version": "1.4.0",
"severity": []
}
MSRC_CVE-2026-53058
Vulnerability from csaf_microsoft - Published: 2026-06-02 00:00 - Updated: 2026-07-09 14:43| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 21344-17084 | — |
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 17084-1 | — |
Vendor Fix
fix
|
| URL | Category |
|---|---|
| https://msrc.microsoft.com/csaf/vex/2026/msrc_cve… | self |
| https://support.microsoft.com/lifecycle | external |
| https://www.first.org/cvss | external |
| https://msrc.microsoft.com/csaf/vex/2026/msrc_cve… | self |
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2026-53058 drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable() - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2026-53058.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable()",
"tracking": {
"current_release_date": "2026-07-09T14:43:23.000Z",
"generator": {
"date": "2026-07-10T07:12:46.858Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2026-53058",
"initial_release_date": "2026-06-02T00:00:00.000Z",
"revision_history": [
{
"date": "2026-06-27T01:17:31.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
},
{
"date": "2026-07-09T14:43:23.000Z",
"legacy_version": "2",
"number": "2",
"summary": "Information published."
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "3.0",
"product": {
"name": "Azure Linux 3.0",
"product_id": "17084"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cazl3 kernel 0:6.6.139.1-1.azl3",
"product": {
"name": "\u003cazl3 kernel 0:6.6.139.1-1.azl3",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "azl3 kernel 0:6.6.139.1-1.azl3",
"product": {
"name": "azl3 kernel 0:6.6.139.1-1.azl3",
"product_id": "21344"
}
}
],
"category": "product_name",
"name": "kernel"
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 kernel 0:6.6.139.1-1.azl3 as a component of Azure Linux 3.0",
"product_id": "17084-1"
},
"product_reference": "1",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 kernel 0:6.6.139.1-1.azl3 as a component of Azure Linux 3.0",
"product_id": "21344-17084"
},
"product_reference": "21344",
"relates_to_product_reference": "17084"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-53058",
"notes": [
{
"category": "general",
"text": "Linux",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"21344-17084"
],
"known_affected": [
"17084-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-53058 drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable() - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2026-53058.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-27T01:17:31.000Z",
"details": "0:6.6.143.1-1.azl3:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17084-1"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"title": "drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable()"
}
]
}
ubuntu-cve-2026-53058
Vulnerability from osv_ubuntu
In the Linux kernel, the following vulnerability has been resolved: drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable() In case if we get errors in cdns_mhdp_link_up() or cdns_mhdp_reg_read() in atomic_enable, we will go to cdns_mhdp_modeset_retry_fn() and will hit NULL pointer while trying to access the mutex. We need the connector to be set before that. Unlike in legacy cases with flag !DRM_BRIDGE_ATTACH_NO_CONNECTOR, we do not have connector initialised in bridge_attach(), so add the mhdp->connector_ptr in device structure to handle both cases with DRM_BRIDGE_ATTACH_NO_CONNECTOR and !DRM_BRIDGE_ATTACH_NO_CONNECTOR, set it in atomic_enable() earlier to avoid possible NULL pointer dereference in recovery paths like modeset_retry_fn() with the DRM_BRIDGE_ATTACH_NO_CONNECTOR flag set.
{
"affected": [
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "block-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "block-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "crypto-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "crypto-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "dasd-extra-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "dasd-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "fat-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "fat-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "fb-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "firewire-core-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "floppy-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "fs-core-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "fs-core-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "fs-secondary-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "fs-secondary-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "input-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "input-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "ipmi-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "ipmi-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "irda-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "irda-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "kernel-image-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "kernel-image-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-cloud-tools-4.15.0-23-generic",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-cloud-tools-4.15.0-23-lowlatency",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-headers-4.15.0-23",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-headers-4.15.0-23-generic",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-headers-4.15.0-23-generic-lpae",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-headers-4.15.0-23-lowlatency",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-hwe-edge-cloud-tools-4.15.0-23",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-hwe-edge-tools-4.15.0-23",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-hwe-edge-udebs-generic",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-hwe-edge-udebs-generic-lpae",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-image-4.15.0-23-generic",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-image-4.15.0-23-generic-lpae",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-image-4.15.0-23-lowlatency",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-image-unsigned-4.15.0-23-generic",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-image-unsigned-4.15.0-23-lowlatency",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-modules-4.15.0-23-generic",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-modules-4.15.0-23-generic-lpae",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-modules-4.15.0-23-lowlatency",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-modules-extra-4.15.0-23-generic",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-source-4.15.0",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-tools-4.15.0-23-generic",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-tools-4.15.0-23-generic-lpae",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "linux-tools-4.15.0-23-lowlatency",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "md-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "md-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "message-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "mouse-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "mouse-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "multipath-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "multipath-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "nfs-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "nfs-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "nic-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "nic-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "nic-pcmcia-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "nic-shared-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "nic-shared-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "nic-usb-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "nic-usb-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "parport-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "parport-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "pata-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "pcmcia-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "pcmcia-storage-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "plip-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "plip-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "ppp-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "ppp-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "sata-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "sata-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "scsi-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "scsi-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "serial-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "storage-core-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "storage-core-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "usb-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "usb-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "virtio-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "vlan-modules-4.15.0-23-generic-di",
"binary_version": "4.15.0-23.25~16.04.1"
},
{
"binary_name": "vlan-modules-4.15.0-23-generic-lpae-di",
"binary_version": "4.15.0-23.25~16.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "linux-hwe-edge",
"purl": "pkg:deb/ubuntu/linux-hwe-edge@4.15.0-23.25~16.04.1?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.8.0-28.30~16.04.1",
"4.8.0-30.32~16.04.1",
"4.8.0-32.34~16.04.1",
"4.8.0-34.36~16.04.1",
"4.10.0-14.16~16.04.1",
"4.10.0-19.21~16.04.1",
"4.10.0-20.22~16.04.1",
"4.10.0-21.23~16.04.1",
"4.10.0-22.24~16.04.1",
"4.10.0-24.28~16.04.1",
"4.10.0-26.30~16.04.1",
"4.11.0-13.19~16.04.1",
"4.11.0-14.20~16.04.1",
"4.13.0-16.19~16.04.3",
"4.13.0-17.20~16.04.1",
"4.13.0-19.22~16.04.1",
"4.13.0-21.24~16.04.1",
"4.13.0-25.29~16.04.2",
"4.15.0-13.14~16.04.1",
"4.15.0-15.16~16.04.1",
"4.15.0-20.21~16.04.1",
"4.15.0-22.24~16.04.1",
"4.15.0-23.25~16.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-aws-5.0-tools-5.0.0-1027",
"binary_version": "5.0.0-1027.30"
},
{
"binary_name": "linux-aws-headers-5.0.0-1027",
"binary_version": "5.0.0-1027.30"
},
{
"binary_name": "linux-buildinfo-5.0.0-1027-aws",
"binary_version": "5.0.0-1027.30"
},
{
"binary_name": "linux-cloud-tools-5.0.0-1027-aws",
"binary_version": "5.0.0-1027.30"
},
{
"binary_name": "linux-headers-5.0.0-1027-aws",
"binary_version": "5.0.0-1027.30"
},
{
"binary_name": "linux-image-5.0.0-1027-aws",
"binary_version": "5.0.0-1027.30"
},
{
"binary_name": "linux-modules-5.0.0-1027-aws",
"binary_version": "5.0.0-1027.30"
},
{
"binary_name": "linux-modules-extra-5.0.0-1027-aws",
"binary_version": "5.0.0-1027.30"
},
{
"binary_name": "linux-tools-5.0.0-1027-aws",
"binary_version": "5.0.0-1027.30"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-aws-5.0",
"purl": "pkg:deb/ubuntu/linux-aws-5.0@5.0.0-1027.30?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.0.0-1021.24~18.04.1",
"5.0.0-1022.25~18.04.1",
"5.0.0-1023.26~18.04.1",
"5.0.0-1024.27~18.04.1",
"5.0.0-1025.28",
"5.0.0-1027.30"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-aws-5.3-cloud-tools-5.3.0-1035",
"binary_version": "5.3.0-1035.37"
},
{
"binary_name": "linux-aws-5.3-headers-5.3.0-1035",
"binary_version": "5.3.0-1035.37"
},
{
"binary_name": "linux-aws-5.3-tools-5.3.0-1035",
"binary_version": "5.3.0-1035.37"
},
{
"binary_name": "linux-buildinfo-5.3.0-1035-aws",
"binary_version": "5.3.0-1035.37"
},
{
"binary_name": "linux-cloud-tools-5.3.0-1035-aws",
"binary_version": "5.3.0-1035.37"
},
{
"binary_name": "linux-headers-5.3.0-1035-aws",
"binary_version": "5.3.0-1035.37"
},
{
"binary_name": "linux-image-5.3.0-1035-aws",
"binary_version": "5.3.0-1035.37"
},
{
"binary_name": "linux-modules-5.3.0-1035-aws",
"binary_version": "5.3.0-1035.37"
},
{
"binary_name": "linux-modules-extra-5.3.0-1035-aws",
"binary_version": "5.3.0-1035.37"
},
{
"binary_name": "linux-tools-5.3.0-1035-aws",
"binary_version": "5.3.0-1035.37"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-aws-5.3",
"purl": "pkg:deb/ubuntu/linux-aws-5.3@5.3.0-1035.37?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.3.0-1016.17~18.04.1",
"5.3.0-1017.18~18.04.1",
"5.3.0-1019.21~18.04.1",
"5.3.0-1023.25~18.04.1",
"5.3.0-1028.30~18.04.1",
"5.3.0-1030.32~18.04.1",
"5.3.0-1032.34~18.04.2",
"5.3.0-1033.35",
"5.3.0-1034.36",
"5.3.0-1035.37"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-cloud-tools-5.0.0-1036",
"binary_version": "5.0.0-1036.38"
},
{
"binary_name": "linux-azure-headers-5.0.0-1036",
"binary_version": "5.0.0-1036.38"
},
{
"binary_name": "linux-azure-tools-5.0.0-1036",
"binary_version": "5.0.0-1036.38"
},
{
"binary_name": "linux-buildinfo-5.0.0-1036-azure",
"binary_version": "5.0.0-1036.38"
},
{
"binary_name": "linux-cloud-tools-5.0.0-1036-azure",
"binary_version": "5.0.0-1036.38"
},
{
"binary_name": "linux-headers-5.0.0-1036-azure",
"binary_version": "5.0.0-1036.38"
},
{
"binary_name": "linux-image-unsigned-5.0.0-1036-azure",
"binary_version": "5.0.0-1036.38"
},
{
"binary_name": "linux-modules-5.0.0-1036-azure",
"binary_version": "5.0.0-1036.38"
},
{
"binary_name": "linux-modules-extra-5.0.0-1036-azure",
"binary_version": "5.0.0-1036.38"
},
{
"binary_name": "linux-tools-5.0.0-1036-azure",
"binary_version": "5.0.0-1036.38"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-azure",
"purl": "pkg:deb/ubuntu/linux-azure@5.0.0-1036.38?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.15.0-1002.2",
"4.15.0-1003.3",
"4.15.0-1004.4",
"4.15.0-1008.8",
"4.15.0-1009.9",
"4.15.0-1012.12",
"4.15.0-1013.13",
"4.15.0-1014.14",
"4.15.0-1018.18",
"4.15.0-1019.19",
"4.15.0-1021.21",
"4.15.0-1022.23",
"4.15.0-1023.24",
"4.15.0-1025.26",
"4.15.0-1028.29",
"4.15.0-1030.31",
"4.15.0-1031.32",
"4.15.0-1032.33",
"4.15.0-1035.36",
"4.15.0-1036.38",
"4.15.0-1037.39",
"4.18.0-1011.11~18.04.1",
"4.18.0-1013.13~18.04.1",
"4.18.0-1014.14~18.04.1",
"4.18.0-1018.18~18.04.1",
"4.18.0-1019.19~18.04.1",
"4.18.0-1020.20~18.04.1",
"4.18.0-1023.24~18.04.1",
"4.18.0-1024.25~18.04.1",
"4.18.0-1025.27~18.04.1",
"5.0.0-1014.14~18.04.1",
"5.0.0-1016.17~18.04.1",
"5.0.0-1018.19~18.04.1",
"5.0.0-1020.21~18.04.1",
"5.0.0-1022.23~18.04.1",
"5.0.0-1023.24~18.04.1",
"5.0.0-1025.27~18.04.1",
"5.0.0-1027.29~18.04.1",
"5.0.0-1028.30~18.04.1",
"5.0.0-1029.31~18.04.1",
"5.0.0-1031.33",
"5.0.0-1032.34",
"5.0.0-1035.37",
"5.0.0-1036.38"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-5.3-cloud-tools-5.3.0-1035",
"binary_version": "5.3.0-1035.36"
},
{
"binary_name": "linux-azure-5.3-headers-5.3.0-1035",
"binary_version": "5.3.0-1035.36"
},
{
"binary_name": "linux-azure-5.3-tools-5.3.0-1035",
"binary_version": "5.3.0-1035.36"
},
{
"binary_name": "linux-buildinfo-5.3.0-1035-azure",
"binary_version": "5.3.0-1035.36"
},
{
"binary_name": "linux-cloud-tools-5.3.0-1035-azure",
"binary_version": "5.3.0-1035.36"
},
{
"binary_name": "linux-headers-5.3.0-1035-azure",
"binary_version": "5.3.0-1035.36"
},
{
"binary_name": "linux-image-unsigned-5.3.0-1035-azure",
"binary_version": "5.3.0-1035.36"
},
{
"binary_name": "linux-modules-5.3.0-1035-azure",
"binary_version": "5.3.0-1035.36"
},
{
"binary_name": "linux-modules-extra-5.3.0-1035-azure",
"binary_version": "5.3.0-1035.36"
},
{
"binary_name": "linux-tools-5.3.0-1035-azure",
"binary_version": "5.3.0-1035.36"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-azure-5.3",
"purl": "pkg:deb/ubuntu/linux-azure-5.3@5.3.0-1035.36?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.3.0-1007.8~18.04.1",
"5.3.0-1008.9~18.04.1",
"5.3.0-1009.10~18.04.1",
"5.3.0-1010.11~18.04.1",
"5.3.0-1012.13~18.04.1",
"5.3.0-1013.14~18.04.1",
"5.3.0-1016.17~18.04.1",
"5.3.0-1018.19~18.04.1",
"5.3.0-1019.20~18.04.1",
"5.3.0-1020.21~18.04.1",
"5.3.0-1022.23~18.04.1",
"5.3.0-1028.29~18.04.1",
"5.3.0-1031.32~18.04.1",
"5.3.0-1032.33~18.04.1",
"5.3.0-1034.35~18.04.1",
"5.3.0-1035.36"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-edge-cloud-tools-5.0.0-1012",
"binary_version": "5.0.0-1012.12~18.04.2"
},
{
"binary_name": "linux-azure-edge-tools-5.0.0-1012",
"binary_version": "5.0.0-1012.12~18.04.2"
},
{
"binary_name": "linux-azure-headers-5.0.0-1012",
"binary_version": "5.0.0-1012.12~18.04.2"
},
{
"binary_name": "linux-buildinfo-5.0.0-1012-azure",
"binary_version": "5.0.0-1012.12~18.04.2"
},
{
"binary_name": "linux-cloud-tools-5.0.0-1012-azure",
"binary_version": "5.0.0-1012.12~18.04.2"
},
{
"binary_name": "linux-headers-5.0.0-1012-azure",
"binary_version": "5.0.0-1012.12~18.04.2"
},
{
"binary_name": "linux-image-unsigned-5.0.0-1012-azure",
"binary_version": "5.0.0-1012.12~18.04.2"
},
{
"binary_name": "linux-modules-5.0.0-1012-azure",
"binary_version": "5.0.0-1012.12~18.04.2"
},
{
"binary_name": "linux-modules-extra-5.0.0-1012-azure",
"binary_version": "5.0.0-1012.12~18.04.2"
},
{
"binary_name": "linux-tools-5.0.0-1012-azure",
"binary_version": "5.0.0-1012.12~18.04.2"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-azure-edge",
"purl": "pkg:deb/ubuntu/linux-azure-edge@5.0.0-1012.12~18.04.2?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.18.0-1006.6~18.04.1",
"4.18.0-1007.7~18.04.1",
"4.18.0-1008.8~18.04.1",
"5.0.0-1012.12~18.04.2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.0.0-1034-gcp",
"binary_version": "5.0.0-1034.35"
},
{
"binary_name": "linux-gcp-headers-5.0.0-1034",
"binary_version": "5.0.0-1034.35"
},
{
"binary_name": "linux-gcp-tools-5.0.0-1034",
"binary_version": "5.0.0-1034.35"
},
{
"binary_name": "linux-headers-5.0.0-1034-gcp",
"binary_version": "5.0.0-1034.35"
},
{
"binary_name": "linux-image-unsigned-5.0.0-1034-gcp",
"binary_version": "5.0.0-1034.35"
},
{
"binary_name": "linux-modules-5.0.0-1034-gcp",
"binary_version": "5.0.0-1034.35"
},
{
"binary_name": "linux-modules-extra-5.0.0-1034-gcp",
"binary_version": "5.0.0-1034.35"
},
{
"binary_name": "linux-tools-5.0.0-1034-gcp",
"binary_version": "5.0.0-1034.35"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-gcp",
"purl": "pkg:deb/ubuntu/linux-gcp@5.0.0-1034.35?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.15.0-1001.1",
"4.15.0-1003.3",
"4.15.0-1005.5",
"4.15.0-1006.6",
"4.15.0-1008.8",
"4.15.0-1009.9",
"4.15.0-1010.10",
"4.15.0-1014.14",
"4.15.0-1015.15",
"4.15.0-1017.18",
"4.15.0-1018.19",
"4.15.0-1019.20",
"4.15.0-1021.22",
"4.15.0-1023.24",
"4.15.0-1024.25",
"4.15.0-1025.26",
"4.15.0-1026.27",
"4.15.0-1027.28",
"4.15.0-1028.29",
"4.15.0-1029.31",
"4.15.0-1030.32",
"4.15.0-1032.34",
"4.15.0-1033.35",
"4.15.0-1034.36",
"4.15.0-1036.38",
"4.15.0-1037.39",
"4.15.0-1040.42",
"4.15.0-1042.45",
"4.15.0-1044.70",
"5.0.0-1020.20~18.04.1",
"5.0.0-1021.21~18.04.1",
"5.0.0-1025.26~18.04.1",
"5.0.0-1026.27~18.04.1",
"5.0.0-1028.29~18.04.1",
"5.0.0-1029.30~18.04.1",
"5.0.0-1031.32",
"5.0.0-1033.34",
"5.0.0-1034.35"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.3.0-1032-gcp",
"binary_version": "5.3.0-1032.34~18.04.1"
},
{
"binary_name": "linux-gcp-5.3-headers-5.3.0-1032",
"binary_version": "5.3.0-1032.34~18.04.1"
},
{
"binary_name": "linux-gcp-5.3-tools-5.3.0-1032",
"binary_version": "5.3.0-1032.34~18.04.1"
},
{
"binary_name": "linux-headers-5.3.0-1032-gcp",
"binary_version": "5.3.0-1032.34~18.04.1"
},
{
"binary_name": "linux-image-unsigned-5.3.0-1032-gcp",
"binary_version": "5.3.0-1032.34~18.04.1"
},
{
"binary_name": "linux-modules-5.3.0-1032-gcp",
"binary_version": "5.3.0-1032.34~18.04.1"
},
{
"binary_name": "linux-modules-extra-5.3.0-1032-gcp",
"binary_version": "5.3.0-1032.34~18.04.1"
},
{
"binary_name": "linux-tools-5.3.0-1032-gcp",
"binary_version": "5.3.0-1032.34~18.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-gcp-5.3",
"purl": "pkg:deb/ubuntu/linux-gcp-5.3@5.3.0-1032.34~18.04.1?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.3.0-1008.9~18.04.1",
"5.3.0-1009.10~18.04.1",
"5.3.0-1010.11~18.04.1",
"5.3.0-1012.13~18.04.1",
"5.3.0-1014.15~18.04.1",
"5.3.0-1016.17~18.04.1",
"5.3.0-1017.18~18.04.1",
"5.3.0-1018.19~18.04.1",
"5.3.0-1020.22~18.04.1",
"5.3.0-1026.28~18.04.1",
"5.3.0-1029.31~18.04.1",
"5.3.0-1030.32~18.04.1",
"5.3.0-1032.34~18.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-4.15.0-1079-gke",
"binary_version": "4.15.0-1079.84"
},
{
"binary_name": "linux-gke-4.15-headers-4.15.0-1079",
"binary_version": "4.15.0-1079.84"
},
{
"binary_name": "linux-gke-4.15-tools-4.15.0-1079",
"binary_version": "4.15.0-1079.84"
},
{
"binary_name": "linux-headers-4.15.0-1079-gke",
"binary_version": "4.15.0-1079.84"
},
{
"binary_name": "linux-image-unsigned-4.15.0-1079-gke",
"binary_version": "4.15.0-1079.84"
},
{
"binary_name": "linux-modules-4.15.0-1079-gke",
"binary_version": "4.15.0-1079.84"
},
{
"binary_name": "linux-modules-extra-4.15.0-1079-gke",
"binary_version": "4.15.0-1079.84"
},
{
"binary_name": "linux-tools-4.15.0-1079-gke",
"binary_version": "4.15.0-1079.84"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-gke-4.15",
"purl": "pkg:deb/ubuntu/linux-gke-4.15@4.15.0-1079.84?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.15.0-1030.32",
"4.15.0-1032.34",
"4.15.0-1033.35",
"4.15.0-1034.36",
"4.15.0-1036.38",
"4.15.0-1037.39",
"4.15.0-1040.42",
"4.15.0-1041.43",
"4.15.0-1042.44",
"4.15.0-1044.46",
"4.15.0-1045.48",
"4.15.0-1046.49",
"4.15.0-1048.51",
"4.15.0-1049.52",
"4.15.0-1050.53",
"4.15.0-1052.55",
"4.15.0-1055.58",
"4.15.0-1057.60",
"4.15.0-1058.61",
"4.15.0-1059.62",
"4.15.0-1063.66",
"4.15.0-1064.67",
"4.15.0-1066.69",
"4.15.0-1067.70",
"4.15.0-1069.72",
"4.15.0-1070.73",
"4.15.0-1072.76",
"4.15.0-1073.78",
"4.15.0-1074.79",
"4.15.0-1076.81",
"4.15.0-1077.82",
"4.15.0-1078.83",
"4.15.0-1079.84"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.4.0-1080-gke",
"binary_version": "5.4.0-1080.86~18.04.1"
},
{
"binary_name": "linux-gke-5.4-headers-5.4.0-1080",
"binary_version": "5.4.0-1080.86~18.04.1"
},
{
"binary_name": "linux-gke-5.4-tools-5.4.0-1080",
"binary_version": "5.4.0-1080.86~18.04.1"
},
{
"binary_name": "linux-headers-5.4.0-1080-gke",
"binary_version": "5.4.0-1080.86~18.04.1"
},
{
"binary_name": "linux-image-unsigned-5.4.0-1080-gke",
"binary_version": "5.4.0-1080.86~18.04.1"
},
{
"binary_name": "linux-modules-5.4.0-1080-gke",
"binary_version": "5.4.0-1080.86~18.04.1"
},
{
"binary_name": "linux-modules-extra-5.4.0-1080-gke",
"binary_version": "5.4.0-1080.86~18.04.1"
},
{
"binary_name": "linux-tools-5.4.0-1080-gke",
"binary_version": "5.4.0-1080.86~18.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-gke-5.4",
"purl": "pkg:deb/ubuntu/linux-gke-5.4@5.4.0-1080.86~18.04.1?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.4.0-1025.25~18.04.1",
"5.4.0-1027.28~18.04.1",
"5.4.0-1029.31~18.04.1",
"5.4.0-1030.32~18.04.1",
"5.4.0-1032.34~18.04.1",
"5.4.0-1033.35~18.04.1",
"5.4.0-1035.37~18.04.1",
"5.4.0-1036.38~18.04.1",
"5.4.0-1037.39~18.04.1",
"5.4.0-1039.41~18.04.1",
"5.4.0-1040.42~18.04.1",
"5.4.0-1042.44~18.04.1",
"5.4.0-1043.45~18.04.1",
"5.4.0-1044.46~18.04.1",
"5.4.0-1046.48~18.04.1",
"5.4.0-1049.52~18.04.1",
"5.4.0-1051.54~18.04.1",
"5.4.0-1052.55~18.04.1",
"5.4.0-1053.56~18.04.1",
"5.4.0-1054.57~18.04.1",
"5.4.0-1055.58~18.04.1",
"5.4.0-1056.59~18.04.1",
"5.4.0-1057.60~18.04.1",
"5.4.0-1059.62~18.04.1",
"5.4.0-1061.64~18.04.1",
"5.4.0-1062.65~18.04.1",
"5.4.0-1063.66~18.04.1",
"5.4.0-1065.68~18.04.1",
"5.4.0-1066.69~18.04.1",
"5.4.0-1067.70~18.04.1",
"5.4.0-1068.71~18.04.1",
"5.4.0-1071.76~18.04.3",
"5.4.0-1072.77~18.04.1",
"5.4.0-1074.79~18.04.1",
"5.4.0-1076.82~18.04.1",
"5.4.0-1078.84~18.04.1",
"5.4.0-1080.86~18.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.4.0-1051-gkeop",
"binary_version": "5.4.0-1051.54~18.04.1"
},
{
"binary_name": "linux-cloud-tools-5.4.0-1051-gkeop",
"binary_version": "5.4.0-1051.54~18.04.1"
},
{
"binary_name": "linux-gkeop-5.4-cloud-tools-5.4.0-1051",
"binary_version": "5.4.0-1051.54~18.04.1"
},
{
"binary_name": "linux-gkeop-5.4-headers-5.4.0-1051",
"binary_version": "5.4.0-1051.54~18.04.1"
},
{
"binary_name": "linux-gkeop-5.4-source-5.4.0",
"binary_version": "5.4.0-1051.54~18.04.1"
},
{
"binary_name": "linux-gkeop-5.4-tools-5.4.0-1051",
"binary_version": "5.4.0-1051.54~18.04.1"
},
{
"binary_name": "linux-headers-5.4.0-1051-gkeop",
"binary_version": "5.4.0-1051.54~18.04.1"
},
{
"binary_name": "linux-image-unsigned-5.4.0-1051-gkeop",
"binary_version": "5.4.0-1051.54~18.04.1"
},
{
"binary_name": "linux-modules-5.4.0-1051-gkeop",
"binary_version": "5.4.0-1051.54~18.04.1"
},
{
"binary_name": "linux-modules-extra-5.4.0-1051-gkeop",
"binary_version": "5.4.0-1051.54~18.04.1"
},
{
"binary_name": "linux-tools-5.4.0-1051-gkeop",
"binary_version": "5.4.0-1051.54~18.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-gkeop-5.4",
"purl": "pkg:deb/ubuntu/linux-gkeop-5.4@5.4.0-1051.54~18.04.1?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.4.0-1001.1",
"5.4.0-1003.3",
"5.4.0-1004.5",
"5.4.0-1005.6",
"5.4.0-1007.8~18.04.1",
"5.4.0-1008.9~18.04.1",
"5.4.0-1009.10~18.04.1",
"5.4.0-1010.11~18.04.1",
"5.4.0-1011.12~18.04.2",
"5.4.0-1012.13~18.04.1",
"5.4.0-1013.14~18.04.1",
"5.4.0-1014.15~18.04.1",
"5.4.0-1015.16~18.04.1",
"5.4.0-1016.17~18.04.1",
"5.4.0-1018.19~18.04.1",
"5.4.0-1021.22~18.04.1",
"5.4.0-1022.23~18.04.1",
"5.4.0-1023.24~18.04.1",
"5.4.0-1024.25~18.04.1",
"5.4.0-1025.26~18.04.1",
"5.4.0-1026.27~18.04.1",
"5.4.0-1027.28~18.04.1",
"5.4.0-1029.30~18.04.2",
"5.4.0-1031.32~18.04.1",
"5.4.0-1032.33~18.04.1",
"5.4.0-1033.34~18.04.1",
"5.4.0-1034.35~18.04.1",
"5.4.0-1036.37~18.04.1",
"5.4.0-1037.38~18.04.1",
"5.4.0-1038.39~18.04.1",
"5.4.0-1039.40~18.04.1",
"5.4.0-1040.41~18.04.1",
"5.4.0-1043.44~18.04.1",
"5.4.0-1046.48~18.04.1",
"5.4.0-1048.51~18.04.1",
"5.4.0-1049.52~18.04.1",
"5.4.0-1051.54~18.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "block-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "crypto-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "fat-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "fb-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "firewire-core-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "floppy-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "fs-core-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "fs-secondary-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "input-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "ipmi-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "kernel-image-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-buildinfo-5.3.0-76-generic",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-buildinfo-5.3.0-76-lowlatency",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-cloud-tools-5.3.0-76-generic",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-cloud-tools-5.3.0-76-lowlatency",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-headers-5.3.0-76-generic",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-headers-5.3.0-76-lowlatency",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-hwe-cloud-tools-5.3.0-76",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-hwe-headers-5.3.0-76",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-hwe-tools-5.3.0-76",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-hwe-udebs-generic",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-image-5.3.0-76-generic",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-image-5.3.0-76-lowlatency",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-image-unsigned-5.3.0-76-generic",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-image-unsigned-5.3.0-76-lowlatency",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-modules-5.3.0-76-generic",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-modules-5.3.0-76-lowlatency",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-modules-extra-5.3.0-76-generic",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-source-5.3.0",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-tools-5.3.0-76-generic",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "linux-tools-5.3.0-76-lowlatency",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "md-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "message-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "mouse-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "multipath-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "nfs-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "nic-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "nic-pcmcia-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "nic-shared-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "nic-usb-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "parport-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "pata-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "pcmcia-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "pcmcia-storage-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "plip-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "ppp-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "sata-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "scsi-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "serial-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "storage-core-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "usb-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "virtio-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
},
{
"binary_name": "vlan-modules-5.3.0-76-generic-di",
"binary_version": "5.3.0-76.72"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-hwe",
"purl": "pkg:deb/ubuntu/linux-hwe@5.3.0-76.72?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.18.0-13.14~18.04.1",
"4.18.0-14.15~18.04.1",
"4.18.0-15.16~18.04.1",
"4.18.0-16.17~18.04.1",
"4.18.0-17.18~18.04.1",
"4.18.0-18.19~18.04.1",
"4.18.0-20.21~18.04.1",
"4.18.0-21.22~18.04.1",
"4.18.0-22.23~18.04.1",
"4.18.0-24.25~18.04.1",
"4.18.0-25.26~18.04.1",
"5.0.0-23.24~18.04.1",
"5.0.0-25.26~18.04.1",
"5.0.0-27.28~18.04.1",
"5.0.0-29.31~18.04.1",
"5.0.0-31.33~18.04.1",
"5.0.0-32.34~18.04.2",
"5.0.0-35.38~18.04.1",
"5.0.0-36.39~18.04.1",
"5.0.0-37.40~18.04.1",
"5.3.0-26.28~18.04.1",
"5.3.0-28.30~18.04.1",
"5.3.0-40.32~18.04.1",
"5.3.0-42.34~18.04.1",
"5.3.0-45.37~18.04.1",
"5.3.0-46.38~18.04.1",
"5.3.0-51.44~18.04.2",
"5.3.0-53.47~18.04.1",
"5.3.0-59.53~18.04.1",
"5.3.0-61.55~18.04.1",
"5.3.0-62.56~18.04.1",
"5.3.0-64.58~18.04.1",
"5.3.0-65.59",
"5.3.0-66.60",
"5.3.0-67.61",
"5.3.0-68.63",
"5.3.0-69.65",
"5.3.0-70.66",
"5.3.0-72.68",
"5.3.0-73.69",
"5.3.0-74.70",
"5.3.0-75.71",
"5.3.0-76.72"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "block-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "block-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "crypto-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "crypto-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "dasd-extra-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "dasd-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "fat-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "fat-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "fb-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "firewire-core-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "floppy-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "fs-core-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "fs-core-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "fs-secondary-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "fs-secondary-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "input-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "input-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "ipmi-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "ipmi-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "kernel-image-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "kernel-image-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-buildinfo-5.3.0-24-generic",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-buildinfo-5.3.0-24-generic-lpae",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-buildinfo-5.3.0-24-lowlatency",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-cloud-tools-5.3.0-24-generic",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-cloud-tools-5.3.0-24-lowlatency",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-headers-5.3.0-24",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-headers-5.3.0-24-generic",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-headers-5.3.0-24-generic-lpae",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-headers-5.3.0-24-lowlatency",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-hwe-edge-cloud-tools-5.3.0-24",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-hwe-edge-tools-5.3.0-24",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-hwe-edge-udebs-generic",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-hwe-edge-udebs-generic-lpae",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-image-5.3.0-24-generic",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-image-5.3.0-24-generic-lpae",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-image-5.3.0-24-lowlatency",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-image-unsigned-5.3.0-24-generic",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-image-unsigned-5.3.0-24-lowlatency",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-modules-5.3.0-24-generic",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-modules-5.3.0-24-generic-lpae",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-modules-5.3.0-24-lowlatency",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-modules-extra-5.3.0-24-generic",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-source-5.3.0",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-tools-5.3.0-24-generic",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-tools-5.3.0-24-generic-lpae",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "linux-tools-5.3.0-24-lowlatency",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "md-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "md-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "message-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "mouse-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "mouse-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "multipath-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "multipath-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "nfs-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "nfs-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "nic-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "nic-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "nic-pcmcia-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "nic-shared-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "nic-shared-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "nic-usb-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "nic-usb-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "parport-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "parport-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "pata-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "pcmcia-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "pcmcia-storage-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "plip-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "plip-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "ppp-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "ppp-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "sata-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "sata-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "scsi-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "scsi-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "serial-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "storage-core-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "storage-core-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "usb-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "usb-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "virtio-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "vlan-modules-5.3.0-24-generic-di",
"binary_version": "5.3.0-24.26~18.04.2"
},
{
"binary_name": "vlan-modules-5.3.0-24-generic-lpae-di",
"binary_version": "5.3.0-24.26~18.04.2"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-hwe-edge",
"purl": "pkg:deb/ubuntu/linux-hwe-edge@5.3.0-24.26~18.04.2?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.0.0-15.16~18.04.1",
"5.0.0-16.17~18.04.1",
"5.0.0-17.18~18.04.1",
"5.0.0-19.20~18.04.1",
"5.0.0-20.21~18.04.1",
"5.3.0-19.20~18.04.2",
"5.3.0-22.24~18.04.1",
"5.3.0-23.25~18.04.1",
"5.3.0-23.25~18.04.2",
"5.3.0-24.26~18.04.2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "block-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "crypto-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "fat-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "fb-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "firewire-core-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "floppy-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "fs-core-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "fs-secondary-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "input-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "ipmi-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "irda-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "kernel-image-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "linux-buildinfo-4.15.0-1103-oem",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "linux-headers-4.15.0-1103-oem",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "linux-image-unsigned-4.15.0-1103-oem",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "linux-modules-4.15.0-1103-oem",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "linux-oem-headers-4.15.0-1103",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "linux-oem-tools-4.15.0-1103",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "linux-tools-4.15.0-1103-oem",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "linux-udebs-oem",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "md-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "message-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "mouse-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "multipath-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "nfs-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "nic-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "nic-pcmcia-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "nic-shared-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "nic-usb-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "parport-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "pata-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "pcmcia-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "pcmcia-storage-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "plip-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "ppp-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "sata-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "scsi-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "serial-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "storage-core-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "usb-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "virtio-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
},
{
"binary_name": "vlan-modules-4.15.0-1103-oem-di",
"binary_version": "4.15.0-1103.114"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-oem",
"purl": "pkg:deb/ubuntu/linux-oem@4.15.0-1103.114?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.15.0-1002.3",
"4.15.0-1004.5",
"4.15.0-1006.9",
"4.15.0-1008.11",
"4.15.0-1009.12",
"4.15.0-1012.15",
"4.15.0-1013.16",
"4.15.0-1015.18",
"4.15.0-1017.20",
"4.15.0-1018.21",
"4.15.0-1021.24",
"4.15.0-1024.29",
"4.15.0-1026.31",
"4.15.0-1028.33",
"4.15.0-1030.35",
"4.15.0-1033.38",
"4.15.0-1034.39",
"4.15.0-1035.40",
"4.15.0-1036.41",
"4.15.0-1038.43",
"4.15.0-1039.44",
"4.15.0-1043.48",
"4.15.0-1045.50",
"4.15.0-1050.57",
"4.15.0-1056.65",
"4.15.0-1057.66",
"4.15.0-1059.68",
"4.15.0-1063.72",
"4.15.0-1064.73",
"4.15.0-1065.75",
"4.15.0-1066.76",
"4.15.0-1067.77",
"4.15.0-1069.79",
"4.15.0-1073.83",
"4.15.0-1076.86",
"4.15.0-1079.89",
"4.15.0-1080.90",
"4.15.0-1081.91",
"4.15.0-1087.97",
"4.15.0-1090.100",
"4.15.0-1091.101",
"4.15.0-1093.103",
"4.15.0-1094.104",
"4.15.0-1096.106",
"4.15.0-1097.107",
"4.15.0-1099.109",
"4.15.0-1100.110",
"4.15.0-1101.112",
"4.15.0-1102.113",
"4.15.0-1103.114"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.0.0-1014-oracle",
"binary_version": "5.0.0-1014.19"
},
{
"binary_name": "linux-headers-5.0.0-1014-oracle",
"binary_version": "5.0.0-1014.19"
},
{
"binary_name": "linux-image-unsigned-5.0.0-1014-oracle",
"binary_version": "5.0.0-1014.19"
},
{
"binary_name": "linux-modules-5.0.0-1014-oracle",
"binary_version": "5.0.0-1014.19"
},
{
"binary_name": "linux-modules-extra-5.0.0-1014-oracle",
"binary_version": "5.0.0-1014.19"
},
{
"binary_name": "linux-oracle-5.0-headers-5.0.0-1014",
"binary_version": "5.0.0-1014.19"
},
{
"binary_name": "linux-oracle-5.0-tools-5.0.0-1014",
"binary_version": "5.0.0-1014.19"
},
{
"binary_name": "linux-tools-5.0.0-1014-oracle",
"binary_version": "5.0.0-1014.19"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-oracle-5.0",
"purl": "pkg:deb/ubuntu/linux-oracle-5.0@5.0.0-1014.19?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.0.0-1007.12~18.04.1",
"5.0.0-1008.13~18.04.1",
"5.0.0-1009.14~18.04.1",
"5.0.0-1010.15~18.04.1",
"5.0.0-1011.16",
"5.0.0-1013.18",
"5.0.0-1014.19"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.3.0-1030-oracle",
"binary_version": "5.3.0-1030.32~18.04.1"
},
{
"binary_name": "linux-headers-5.3.0-1030-oracle",
"binary_version": "5.3.0-1030.32~18.04.1"
},
{
"binary_name": "linux-image-unsigned-5.3.0-1030-oracle",
"binary_version": "5.3.0-1030.32~18.04.1"
},
{
"binary_name": "linux-modules-5.3.0-1030-oracle",
"binary_version": "5.3.0-1030.32~18.04.1"
},
{
"binary_name": "linux-modules-extra-5.3.0-1030-oracle",
"binary_version": "5.3.0-1030.32~18.04.1"
},
{
"binary_name": "linux-oracle-5.3-headers-5.3.0-1030",
"binary_version": "5.3.0-1030.32~18.04.1"
},
{
"binary_name": "linux-oracle-5.3-tools-5.3.0-1030",
"binary_version": "5.3.0-1030.32~18.04.1"
},
{
"binary_name": "linux-tools-5.3.0-1030-oracle",
"binary_version": "5.3.0-1030.32~18.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "linux-oracle-5.3",
"purl": "pkg:deb/ubuntu/linux-oracle-5.3@5.3.0-1030.32~18.04.1?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.3.0-1011.12~18.04.1",
"5.3.0-1013.14~18.04.1",
"5.3.0-1014.15~18.04.1",
"5.3.0-1016.18~18.04.1",
"5.3.0-1018.20~18.04.1",
"5.3.0-1024.26~18.04.1",
"5.3.0-1027.29~18.04.1",
"5.3.0-1028.30~18.04.1",
"5.3.0-1030.32~18.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-aws-5.11-cloud-tools-5.11.0-1028",
"binary_version": "5.11.0-1028.31~20.04.1"
},
{
"binary_name": "linux-aws-5.11-headers-5.11.0-1028",
"binary_version": "5.11.0-1028.31~20.04.1"
},
{
"binary_name": "linux-aws-5.11-tools-5.11.0-1028",
"binary_version": "5.11.0-1028.31~20.04.1"
},
{
"binary_name": "linux-buildinfo-5.11.0-1028-aws",
"binary_version": "5.11.0-1028.31~20.04.1"
},
{
"binary_name": "linux-cloud-tools-5.11.0-1028-aws",
"binary_version": "5.11.0-1028.31~20.04.1"
},
{
"binary_name": "linux-headers-5.11.0-1028-aws",
"binary_version": "5.11.0-1028.31~20.04.1"
},
{
"binary_name": "linux-image-unsigned-5.11.0-1028-aws",
"binary_version": "5.11.0-1028.31~20.04.1"
},
{
"binary_name": "linux-modules-5.11.0-1028-aws",
"binary_version": "5.11.0-1028.31~20.04.1"
},
{
"binary_name": "linux-modules-extra-5.11.0-1028-aws",
"binary_version": "5.11.0-1028.31~20.04.1"
},
{
"binary_name": "linux-tools-5.11.0-1028-aws",
"binary_version": "5.11.0-1028.31~20.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-aws-5.11",
"purl": "pkg:deb/ubuntu/linux-aws-5.11@5.11.0-1028.31~20.04.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.11.0-1009.9~20.04.2",
"5.11.0-1014.15~20.04.1",
"5.11.0-1016.17~20.04.1",
"5.11.0-1017.18~20.04.1",
"5.11.0-1019.20~20.04.1",
"5.11.0-1020.21~20.04.2",
"5.11.0-1021.22~20.04.2",
"5.11.0-1022.23~20.04.1",
"5.11.0-1023.24~20.04.1",
"5.11.0-1025.27~20.04.1",
"5.11.0-1027.30~20.04.1",
"5.11.0-1028.31~20.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-aws-5.13-cloud-tools-5.13.0-1031",
"binary_version": "5.13.0-1031.35~20.04.1"
},
{
"binary_name": "linux-aws-5.13-headers-5.13.0-1031",
"binary_version": "5.13.0-1031.35~20.04.1"
},
{
"binary_name": "linux-aws-5.13-tools-5.13.0-1031",
"binary_version": "5.13.0-1031.35~20.04.1"
},
{
"binary_name": "linux-buildinfo-5.13.0-1031-aws",
"binary_version": "5.13.0-1031.35~20.04.1"
},
{
"binary_name": "linux-cloud-tools-5.13.0-1031-aws",
"binary_version": "5.13.0-1031.35~20.04.1"
},
{
"binary_name": "linux-headers-5.13.0-1031-aws",
"binary_version": "5.13.0-1031.35~20.04.1"
},
{
"binary_name": "linux-image-unsigned-5.13.0-1031-aws",
"binary_version": "5.13.0-1031.35~20.04.1"
},
{
"binary_name": "linux-modules-5.13.0-1031-aws",
"binary_version": "5.13.0-1031.35~20.04.1"
},
{
"binary_name": "linux-modules-extra-5.13.0-1031-aws",
"binary_version": "5.13.0-1031.35~20.04.1"
},
{
"binary_name": "linux-tools-5.13.0-1031-aws",
"binary_version": "5.13.0-1031.35~20.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-aws-5.13",
"purl": "pkg:deb/ubuntu/linux-aws-5.13@5.13.0-1031.35~20.04.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.13.0-1008.9~20.04.2",
"5.13.0-1011.12~20.04.1",
"5.13.0-1012.13~20.04.1",
"5.13.0-1014.15~20.04.1",
"5.13.0-1017.19~20.04.1",
"5.13.0-1019.21~20.04.1",
"5.13.0-1021.23~20.04.2",
"5.13.0-1022.24~20.04.1",
"5.13.0-1023.25~20.04.1",
"5.13.0-1025.27~20.04.1",
"5.13.0-1028.31~20.04.1",
"5.13.0-1029.32~20.04.1",
"5.13.0-1031.35~20.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-aws-5.8-cloud-tools-5.8.0-1042",
"binary_version": "5.8.0-1042.44~20.04.1"
},
{
"binary_name": "linux-aws-5.8-headers-5.8.0-1042",
"binary_version": "5.8.0-1042.44~20.04.1"
},
{
"binary_name": "linux-aws-5.8-tools-5.8.0-1042",
"binary_version": "5.8.0-1042.44~20.04.1"
},
{
"binary_name": "linux-buildinfo-5.8.0-1042-aws",
"binary_version": "5.8.0-1042.44~20.04.1"
},
{
"binary_name": "linux-cloud-tools-5.8.0-1042-aws",
"binary_version": "5.8.0-1042.44~20.04.1"
},
{
"binary_name": "linux-headers-5.8.0-1042-aws",
"binary_version": "5.8.0-1042.44~20.04.1"
},
{
"binary_name": "linux-image-5.8.0-1042-aws",
"binary_version": "5.8.0-1042.44~20.04.1"
},
{
"binary_name": "linux-modules-5.8.0-1042-aws",
"binary_version": "5.8.0-1042.44~20.04.1"
},
{
"binary_name": "linux-modules-extra-5.8.0-1042-aws",
"binary_version": "5.8.0-1042.44~20.04.1"
},
{
"binary_name": "linux-tools-5.8.0-1042-aws",
"binary_version": "5.8.0-1042.44~20.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-aws-5.8",
"purl": "pkg:deb/ubuntu/linux-aws-5.8@5.8.0-1042.44~20.04.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.8.0-1035.37~20.04.1",
"5.8.0-1038.40~20.04.1",
"5.8.0-1041.43~20.04.1",
"5.8.0-1042.44~20.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-5.11-cloud-tools-5.11.0-1028",
"binary_version": "5.11.0-1028.31~20.04.2"
},
{
"binary_name": "linux-azure-5.11-headers-5.11.0-1028",
"binary_version": "5.11.0-1028.31~20.04.2"
},
{
"binary_name": "linux-azure-5.11-tools-5.11.0-1028",
"binary_version": "5.11.0-1028.31~20.04.2"
},
{
"binary_name": "linux-buildinfo-5.11.0-1028-azure",
"binary_version": "5.11.0-1028.31~20.04.2"
},
{
"binary_name": "linux-cloud-tools-5.11.0-1028-azure",
"binary_version": "5.11.0-1028.31~20.04.2"
},
{
"binary_name": "linux-headers-5.11.0-1028-azure",
"binary_version": "5.11.0-1028.31~20.04.2"
},
{
"binary_name": "linux-image-unsigned-5.11.0-1028-azure",
"binary_version": "5.11.0-1028.31~20.04.2"
},
{
"binary_name": "linux-modules-5.11.0-1028-azure",
"binary_version": "5.11.0-1028.31~20.04.2"
},
{
"binary_name": "linux-modules-extra-5.11.0-1028-azure",
"binary_version": "5.11.0-1028.31~20.04.2"
},
{
"binary_name": "linux-tools-5.11.0-1028-azure",
"binary_version": "5.11.0-1028.31~20.04.2"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-azure-5.11",
"purl": "pkg:deb/ubuntu/linux-azure-5.11@5.11.0-1028.31~20.04.2?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.11.0-1007.7~20.04.2",
"5.11.0-1012.13~20.04.1",
"5.11.0-1013.14~20.04.1",
"5.11.0-1015.16~20.04.1",
"5.11.0-1017.18~20.04.1",
"5.11.0-1019.20~20.04.1",
"5.11.0-1020.21~20.04.1",
"5.11.0-1021.22~20.04.1",
"5.11.0-1022.23~20.04.1",
"5.11.0-1023.24~20.04.1",
"5.11.0-1025.27~20.04.1",
"5.11.0-1027.30~20.04.1",
"5.11.0-1028.31~20.04.2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-5.13-cloud-tools-5.13.0-1031",
"binary_version": "5.13.0-1031.37~20.04.1"
},
{
"binary_name": "linux-azure-5.13-headers-5.13.0-1031",
"binary_version": "5.13.0-1031.37~20.04.1"
},
{
"binary_name": "linux-azure-5.13-tools-5.13.0-1031",
"binary_version": "5.13.0-1031.37~20.04.1"
},
{
"binary_name": "linux-buildinfo-5.13.0-1031-azure",
"binary_version": "5.13.0-1031.37~20.04.1"
},
{
"binary_name": "linux-cloud-tools-5.13.0-1031-azure",
"binary_version": "5.13.0-1031.37~20.04.1"
},
{
"binary_name": "linux-headers-5.13.0-1031-azure",
"binary_version": "5.13.0-1031.37~20.04.1"
},
{
"binary_name": "linux-image-unsigned-5.13.0-1031-azure",
"binary_version": "5.13.0-1031.37~20.04.1"
},
{
"binary_name": "linux-modules-5.13.0-1031-azure",
"binary_version": "5.13.0-1031.37~20.04.1"
},
{
"binary_name": "linux-modules-extra-5.13.0-1031-azure",
"binary_version": "5.13.0-1031.37~20.04.1"
},
{
"binary_name": "linux-tools-5.13.0-1031-azure",
"binary_version": "5.13.0-1031.37~20.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-azure-5.13",
"purl": "pkg:deb/ubuntu/linux-azure-5.13@5.13.0-1031.37~20.04.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.13.0-1009.10~20.04.2",
"5.13.0-1012.14~20.04.1",
"5.13.0-1013.15~20.04.1",
"5.13.0-1014.16~20.04.1",
"5.13.0-1017.19~20.04.1",
"5.13.0-1021.24~20.04.1",
"5.13.0-1022.26~20.04.1",
"5.13.0-1023.27~20.04.1",
"5.13.0-1025.29~20.04.1",
"5.13.0-1028.33~20.04.1",
"5.13.0-1029.34~20.04.1",
"5.13.0-1031.37~20.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-5.8-cloud-tools-5.8.0-1043",
"binary_version": "5.8.0-1043.46~20.04.1"
},
{
"binary_name": "linux-azure-5.8-headers-5.8.0-1043",
"binary_version": "5.8.0-1043.46~20.04.1"
},
{
"binary_name": "linux-azure-5.8-tools-5.8.0-1043",
"binary_version": "5.8.0-1043.46~20.04.1"
},
{
"binary_name": "linux-buildinfo-5.8.0-1043-azure",
"binary_version": "5.8.0-1043.46~20.04.1"
},
{
"binary_name": "linux-cloud-tools-5.8.0-1043-azure",
"binary_version": "5.8.0-1043.46~20.04.1"
},
{
"binary_name": "linux-headers-5.8.0-1043-azure",
"binary_version": "5.8.0-1043.46~20.04.1"
},
{
"binary_name": "linux-image-unsigned-5.8.0-1043-azure",
"binary_version": "5.8.0-1043.46~20.04.1"
},
{
"binary_name": "linux-modules-5.8.0-1043-azure",
"binary_version": "5.8.0-1043.46~20.04.1"
},
{
"binary_name": "linux-modules-extra-5.8.0-1043-azure",
"binary_version": "5.8.0-1043.46~20.04.1"
},
{
"binary_name": "linux-tools-5.8.0-1043-azure",
"binary_version": "5.8.0-1043.46~20.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-azure-5.8",
"purl": "pkg:deb/ubuntu/linux-azure-5.8@5.8.0-1043.46~20.04.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.8.0-1033.35~20.04.1",
"5.8.0-1036.38~20.04.1",
"5.8.0-1039.42~20.04.1",
"5.8.0-1040.43~20.04.1",
"5.8.0-1041.44~20.04.1",
"5.8.0-1042.45~20.04.1",
"5.8.0-1043.46~20.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-image-unsigned-5.4.0-1103-azure-fde",
"binary_version": "5.4.0-1103.109+cvm1.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-azure-fde",
"purl": "pkg:deb/ubuntu/linux-azure-fde@5.4.0-1103.109+cvm1.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.4.0-1063.66+cvm2.2",
"5.4.0-1063.66+cvm3.2",
"5.4.0-1064.67+cvm1.1",
"5.4.0-1065.68+cvm2.1",
"5.4.0-1067.70+cvm1.1",
"5.4.0-1068.71+cvm1.1",
"5.4.0-1069.72+cvm1.1",
"5.4.0-1070.73+cvm1.1",
"5.4.0-1072.75+cvm1.1",
"5.4.0-1073.76+cvm1.1",
"5.4.0-1074.77+cvm1.1",
"5.4.0-1076.79+cvm1.1",
"5.4.0-1078.81+cvm1.1",
"5.4.0-1080.83+cvm1.1",
"5.4.0-1083.87+cvm1.1",
"5.4.0-1085.90+cvm1.1",
"5.4.0-1085.90+cvm2.1",
"5.4.0-1086.91+cvm1.1",
"5.4.0-1089.94+cvm1.2",
"5.4.0-1090.95+cvm1.1",
"5.4.0-1091.96+cvm1.1",
"5.4.0-1092.97+cvm1.1",
"5.4.0-1095.101+cvm1.1",
"5.4.0-1098.104+cvm1.1",
"5.4.0-1100.106+cvm1.1",
"5.4.0-1103.109+cvm1.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.11.0-1029-gcp",
"binary_version": "5.11.0-1029.33~20.04.3"
},
{
"binary_name": "linux-gcp-5.11-headers-5.11.0-1029",
"binary_version": "5.11.0-1029.33~20.04.3"
},
{
"binary_name": "linux-gcp-5.11-tools-5.11.0-1029",
"binary_version": "5.11.0-1029.33~20.04.3"
},
{
"binary_name": "linux-headers-5.11.0-1029-gcp",
"binary_version": "5.11.0-1029.33~20.04.3"
},
{
"binary_name": "linux-image-unsigned-5.11.0-1029-gcp",
"binary_version": "5.11.0-1029.33~20.04.3"
},
{
"binary_name": "linux-modules-5.11.0-1029-gcp",
"binary_version": "5.11.0-1029.33~20.04.3"
},
{
"binary_name": "linux-modules-extra-5.11.0-1029-gcp",
"binary_version": "5.11.0-1029.33~20.04.3"
},
{
"binary_name": "linux-tools-5.11.0-1029-gcp",
"binary_version": "5.11.0-1029.33~20.04.3"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-gcp-5.11",
"purl": "pkg:deb/ubuntu/linux-gcp-5.11@5.11.0-1029.33~20.04.3?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.11.0-1009.10~20.04.1",
"5.11.0-1014.16~20.04.1",
"5.11.0-1017.19~20.04.1",
"5.11.0-1018.20~20.04.2",
"5.11.0-1020.22~20.04.1",
"5.11.0-1021.23~20.04.1",
"5.11.0-1022.24~20.04.1",
"5.11.0-1023.25~20.04.1",
"5.11.0-1024.26~20.04.1",
"5.11.0-1026.29~20.04.1",
"5.11.0-1028.32~20.04.1",
"5.11.0-1029.33~20.04.3"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.13.0-1033-gcp",
"binary_version": "5.13.0-1033.40~20.04.1"
},
{
"binary_name": "linux-gcp-5.13-headers-5.13.0-1033",
"binary_version": "5.13.0-1033.40~20.04.1"
},
{
"binary_name": "linux-gcp-5.13-tools-5.13.0-1033",
"binary_version": "5.13.0-1033.40~20.04.1"
},
{
"binary_name": "linux-headers-5.13.0-1033-gcp",
"binary_version": "5.13.0-1033.40~20.04.1"
},
{
"binary_name": "linux-image-unsigned-5.13.0-1033-gcp",
"binary_version": "5.13.0-1033.40~20.04.1"
},
{
"binary_name": "linux-modules-5.13.0-1033-gcp",
"binary_version": "5.13.0-1033.40~20.04.1"
},
{
"binary_name": "linux-modules-extra-5.13.0-1033-gcp",
"binary_version": "5.13.0-1033.40~20.04.1"
},
{
"binary_name": "linux-tools-5.13.0-1033-gcp",
"binary_version": "5.13.0-1033.40~20.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-gcp-5.13",
"purl": "pkg:deb/ubuntu/linux-gcp-5.13@5.13.0-1033.40~20.04.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.13.0-1008.9~20.04.3",
"5.13.0-1012.15~20.04.1",
"5.13.0-1013.16~20.04.1",
"5.13.0-1015.18~20.04.1",
"5.13.0-1019.23~20.04.1",
"5.13.0-1021.25~20.04.1",
"5.13.0-1023.28~20.04.1",
"5.13.0-1024.29~20.04.1",
"5.13.0-1025.30~20.04.1",
"5.13.0-1027.32~20.04.1",
"5.13.0-1030.36~20.04.1",
"5.13.0-1031.37~20.04.1",
"5.13.0-1033.40~20.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.8.0-1039-gcp",
"binary_version": "5.8.0-1039.41"
},
{
"binary_name": "linux-gcp-5.8-headers-5.8.0-1039",
"binary_version": "5.8.0-1039.41"
},
{
"binary_name": "linux-gcp-5.8-tools-5.8.0-1039",
"binary_version": "5.8.0-1039.41"
},
{
"binary_name": "linux-headers-5.8.0-1039-gcp",
"binary_version": "5.8.0-1039.41"
},
{
"binary_name": "linux-image-unsigned-5.8.0-1039-gcp",
"binary_version": "5.8.0-1039.41"
},
{
"binary_name": "linux-modules-5.8.0-1039-gcp",
"binary_version": "5.8.0-1039.41"
},
{
"binary_name": "linux-modules-extra-5.8.0-1039-gcp",
"binary_version": "5.8.0-1039.41"
},
{
"binary_name": "linux-tools-5.8.0-1039-gcp",
"binary_version": "5.8.0-1039.41"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-gcp-5.8",
"purl": "pkg:deb/ubuntu/linux-gcp-5.8@5.8.0-1039.41?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.8.0-1032.34~20.04.1",
"5.8.0-1035.37~20.04.1",
"5.8.0-1038.40~20.04.1",
"5.8.0-1039.41"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.4.0-1105-gke",
"binary_version": "5.4.0-1105.112"
},
{
"binary_name": "linux-gke-headers-5.4.0-1105",
"binary_version": "5.4.0-1105.112"
},
{
"binary_name": "linux-gke-tools-5.4.0-1105",
"binary_version": "5.4.0-1105.112"
},
{
"binary_name": "linux-headers-5.4.0-1105-gke",
"binary_version": "5.4.0-1105.112"
},
{
"binary_name": "linux-image-unsigned-5.4.0-1105-gke",
"binary_version": "5.4.0-1105.112"
},
{
"binary_name": "linux-modules-5.4.0-1105-gke",
"binary_version": "5.4.0-1105.112"
},
{
"binary_name": "linux-modules-extra-5.4.0-1105-gke",
"binary_version": "5.4.0-1105.112"
},
{
"binary_name": "linux-tools-5.4.0-1105-gke",
"binary_version": "5.4.0-1105.112"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-gke",
"purl": "pkg:deb/ubuntu/linux-gke@5.4.0-1105.112?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.4.0-1033.35",
"5.4.0-1035.37",
"5.4.0-1036.38",
"5.4.0-1037.39",
"5.4.0-1039.41",
"5.4.0-1041.43",
"5.4.0-1042.44",
"5.4.0-1043.45",
"5.4.0-1044.46",
"5.4.0-1046.48",
"5.4.0-1049.52",
"5.4.0-1051.54",
"5.4.0-1052.55",
"5.4.0-1053.56",
"5.4.0-1054.57",
"5.4.0-1055.58",
"5.4.0-1056.59",
"5.4.0-1057.60",
"5.4.0-1059.62",
"5.4.0-1061.64",
"5.4.0-1062.65",
"5.4.0-1063.66",
"5.4.0-1065.68",
"5.4.0-1066.69",
"5.4.0-1067.70",
"5.4.0-1068.71",
"5.4.0-1071.76",
"5.4.0-1072.77",
"5.4.0-1074.79",
"5.4.0-1076.82",
"5.4.0-1078.84",
"5.4.0-1080.86",
"5.4.0-1081.87",
"5.4.0-1083.89",
"5.4.0-1084.90",
"5.4.0-1086.93",
"5.4.0-1087.94",
"5.4.0-1090.97",
"5.4.0-1091.98",
"5.4.0-1094.101",
"5.4.0-1095.102",
"5.4.0-1096.103",
"5.4.0-1097.104",
"5.4.0-1098.105",
"5.4.0-1099.106",
"5.4.0-1100.107",
"5.4.0-1101.108",
"5.4.0-1102.109",
"5.4.0-1103.110",
"5.4.0-1104.111",
"5.4.0-1105.112"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.15.0-1039-gke",
"binary_version": "5.15.0-1039.44~20.04.1"
},
{
"binary_name": "linux-gke-5.15-headers-5.15.0-1039",
"binary_version": "5.15.0-1039.44~20.04.1"
},
{
"binary_name": "linux-gke-5.15-tools-5.15.0-1039",
"binary_version": "5.15.0-1039.44~20.04.1"
},
{
"binary_name": "linux-headers-5.15.0-1039-gke",
"binary_version": "5.15.0-1039.44~20.04.1"
},
{
"binary_name": "linux-image-unsigned-5.15.0-1039-gke",
"binary_version": "5.15.0-1039.44~20.04.1"
},
{
"binary_name": "linux-modules-5.15.0-1039-gke",
"binary_version": "5.15.0-1039.44~20.04.1"
},
{
"binary_name": "linux-modules-extra-5.15.0-1039-gke",
"binary_version": "5.15.0-1039.44~20.04.1"
},
{
"binary_name": "linux-modules-iwlwifi-5.15.0-1039-gke",
"binary_version": "5.15.0-1039.44~20.04.1"
},
{
"binary_name": "linux-tools-5.15.0-1039-gke",
"binary_version": "5.15.0-1039.44~20.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-gke-5.15",
"purl": "pkg:deb/ubuntu/linux-gke-5.15@5.15.0-1039.44~20.04.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.15.0-1011.14~20.04.1",
"5.15.0-1014.17~20.04.1",
"5.15.0-1015.18~20.04.1",
"5.15.0-1016.19~20.04.1",
"5.15.0-1019.23~20.04.1",
"5.15.0-1020.25~20.04.1",
"5.15.0-1023.28~20.04.2",
"5.15.0-1027.32~20.04.1",
"5.15.0-1028.33~20.04.1",
"5.15.0-1029.34~20.04.1",
"5.15.0-1031.36~20.04.1",
"5.15.0-1032.37~20.04.1",
"5.15.0-1033.38~20.04.1",
"5.15.0-1034.39~20.04.1",
"5.15.0-1036.41~20.04.1",
"5.15.0-1037.42~20.04.1",
"5.15.0-1038.43~20.04.1",
"5.15.0-1039.44~20.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.4.0-1102-gkeop",
"binary_version": "5.4.0-1102.106"
},
{
"binary_name": "linux-cloud-tools-5.4.0-1102-gkeop",
"binary_version": "5.4.0-1102.106"
},
{
"binary_name": "linux-gkeop-cloud-tools-5.4.0-1102",
"binary_version": "5.4.0-1102.106"
},
{
"binary_name": "linux-gkeop-headers-5.4.0-1102",
"binary_version": "5.4.0-1102.106"
},
{
"binary_name": "linux-gkeop-source-5.4.0",
"binary_version": "5.4.0-1102.106"
},
{
"binary_name": "linux-gkeop-tools-5.4.0-1102",
"binary_version": "5.4.0-1102.106"
},
{
"binary_name": "linux-headers-5.4.0-1102-gkeop",
"binary_version": "5.4.0-1102.106"
},
{
"binary_name": "linux-image-unsigned-5.4.0-1102-gkeop",
"binary_version": "5.4.0-1102.106"
},
{
"binary_name": "linux-modules-5.4.0-1102-gkeop",
"binary_version": "5.4.0-1102.106"
},
{
"binary_name": "linux-modules-extra-5.4.0-1102-gkeop",
"binary_version": "5.4.0-1102.106"
},
{
"binary_name": "linux-tools-5.4.0-1102-gkeop",
"binary_version": "5.4.0-1102.106"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-gkeop",
"purl": "pkg:deb/ubuntu/linux-gkeop@5.4.0-1102.106?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.4.0-1008.9",
"5.4.0-1009.10",
"5.4.0-1010.11",
"5.4.0-1011.12",
"5.4.0-1012.13",
"5.4.0-1013.14",
"5.4.0-1014.15",
"5.4.0-1015.16",
"5.4.0-1016.17",
"5.4.0-1018.19",
"5.4.0-1021.22",
"5.4.0-1022.23",
"5.4.0-1023.24",
"5.4.0-1024.25",
"5.4.0-1025.26",
"5.4.0-1026.27",
"5.4.0-1027.28",
"5.4.0-1029.30",
"5.4.0-1031.32",
"5.4.0-1032.33",
"5.4.0-1033.34",
"5.4.0-1034.35",
"5.4.0-1036.37",
"5.4.0-1037.38",
"5.4.0-1038.39",
"5.4.0-1039.40",
"5.4.0-1040.41",
"5.4.0-1043.44",
"5.4.0-1046.48",
"5.4.0-1048.51",
"5.4.0-1049.52",
"5.4.0-1051.54",
"5.4.0-1052.55",
"5.4.0-1053.56",
"5.4.0-1054.57",
"5.4.0-1056.60",
"5.4.0-1057.61",
"5.4.0-1060.64",
"5.4.0-1061.65",
"5.4.0-1062.66",
"5.4.0-1064.68",
"5.4.0-1065.69",
"5.4.0-1066.70",
"5.4.0-1067.71",
"5.4.0-1068.72",
"5.4.0-1069.73",
"5.4.0-1070.74",
"5.4.0-1071.75",
"5.4.0-1072.76",
"5.4.0-1073.77",
"5.4.0-1074.78",
"5.4.0-1075.79",
"5.4.0-1076.80",
"5.4.0-1077.81",
"5.4.0-1078.82",
"5.4.0-1079.83",
"5.4.0-1080.84",
"5.4.0-1081.85",
"5.4.0-1083.87",
"5.4.0-1084.88",
"5.4.0-1085.89",
"5.4.0-1086.90",
"5.4.0-1087.91",
"5.4.0-1088.92",
"5.4.0-1089.93",
"5.4.0-1090.94",
"5.4.0-1091.95",
"5.4.0-1092.96",
"5.4.0-1093.97",
"5.4.0-1094.98",
"5.4.0-1095.99",
"5.4.0-1096.100",
"5.4.0-1097.101",
"5.4.0-1098.102",
"5.4.0-1099.103",
"5.4.0-1100.104",
"5.4.0-1101.105",
"5.4.0-1102.106"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.15.0-1055-gkeop",
"binary_version": "5.15.0-1055.62~20.04.1"
},
{
"binary_name": "linux-cloud-tools-5.15.0-1055-gkeop",
"binary_version": "5.15.0-1055.62~20.04.1"
},
{
"binary_name": "linux-gkeop-5.15-cloud-tools-5.15.0-1055",
"binary_version": "5.15.0-1055.62~20.04.1"
},
{
"binary_name": "linux-gkeop-5.15-headers-5.15.0-1055",
"binary_version": "5.15.0-1055.62~20.04.1"
},
{
"binary_name": "linux-gkeop-5.15-tools-5.15.0-1055",
"binary_version": "5.15.0-1055.62~20.04.1"
},
{
"binary_name": "linux-headers-5.15.0-1055-gkeop",
"binary_version": "5.15.0-1055.62~20.04.1"
},
{
"binary_name": "linux-image-unsigned-5.15.0-1055-gkeop",
"binary_version": "5.15.0-1055.62~20.04.1"
},
{
"binary_name": "linux-modules-5.15.0-1055-gkeop",
"binary_version": "5.15.0-1055.62~20.04.1"
},
{
"binary_name": "linux-modules-extra-5.15.0-1055-gkeop",
"binary_version": "5.15.0-1055.62~20.04.1"
},
{
"binary_name": "linux-tools-5.15.0-1055-gkeop",
"binary_version": "5.15.0-1055.62~20.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-gkeop-5.15",
"purl": "pkg:deb/ubuntu/linux-gkeop-5.15@5.15.0-1055.62~20.04.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.15.0-1003.5~20.04.2",
"5.15.0-1005.7~20.04.1",
"5.15.0-1007.10~20.04.1",
"5.15.0-1008.12~20.04.1",
"5.15.0-1011.15~20.04.2",
"5.15.0-1012.16~20.04.1",
"5.15.0-1013.17~20.04.1",
"5.15.0-1015.19~20.04.1",
"5.15.0-1016.21~20.04.1",
"5.15.0-1017.22~20.04.1",
"5.15.0-1018.23~20.04.1",
"5.15.0-1019.24~20.04.1",
"5.15.0-1020.25~20.04.1",
"5.15.0-1021.26~20.04.1",
"5.15.0-1022.27~20.04.1",
"5.15.0-1023.28~20.04.1",
"5.15.0-1024.29~20.04.1",
"5.15.0-1025.30~20.04.1",
"5.15.0-1026.31~20.04.1",
"5.15.0-1027.32~20.04.1",
"5.15.0-1028.33~20.04.1",
"5.15.0-1030.35~20.04.1",
"5.15.0-1031.37~20.04.1",
"5.15.0-1032.38~20.04.1",
"5.15.0-1033.39~20.04.1",
"5.15.0-1034.40~20.04.1",
"5.15.0-1035.41~20.04.1",
"5.15.0-1036.42~20.04.1",
"5.15.0-1037.43~20.04.1",
"5.15.0-1038.44~20.04.1",
"5.15.0-1039.45~20.04.1",
"5.15.0-1040.46~20.04.1",
"5.15.0-1043.50~20.04.1",
"5.15.0-1044.51~20.04.1",
"5.15.0-1045.52~20.04.1",
"5.15.0-1046.53~20.04.1",
"5.15.0-1047.54~20.04.1",
"5.15.0-1048.55~20.04.1",
"5.15.0-1049.56~20.04.1",
"5.15.0-1050.57~20.04.1",
"5.15.0-1051.58~20.04.1",
"5.15.0-1052.59~20.04.1",
"5.15.0-1053.60~20.04.1",
"5.15.0-1054.61~20.04.1",
"5.15.0-1055.62~20.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "block-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "block-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "block-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "crypto-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "crypto-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "crypto-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "dasd-extra-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "dasd-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "fat-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "fat-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "fat-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "fb-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "firewire-core-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "floppy-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "fs-core-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "fs-core-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "fs-core-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "fs-secondary-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "fs-secondary-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "fs-secondary-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "input-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "input-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "input-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "ipmi-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "ipmi-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "ipmi-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "kernel-image-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "kernel-image-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "kernel-image-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-buildinfo-5.11.0-46-generic",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-buildinfo-5.11.0-46-generic-64k",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-buildinfo-5.11.0-46-generic-lpae",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-buildinfo-5.11.0-46-lowlatency",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-cloud-tools-5.11.0-46-generic",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-cloud-tools-5.11.0-46-lowlatency",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-headers-5.11.0-46-generic",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-headers-5.11.0-46-generic-64k",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-headers-5.11.0-46-generic-lpae",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-headers-5.11.0-46-lowlatency",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-hwe-5.11-cloud-tools-5.11.0-46",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-hwe-5.11-cloud-tools-common",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-hwe-5.11-headers-5.11.0-46",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-hwe-5.11-source-5.11.0",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-hwe-5.11-tools-5.11.0-46",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-hwe-5.11-tools-common",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-hwe-5.11-tools-host",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-hwe-5.11-udebs-generic",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-hwe-5.11-udebs-generic-64k",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-hwe-5.11-udebs-generic-lpae",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-image-5.11.0-46-generic",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-image-5.11.0-46-generic-lpae",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-image-unsigned-5.11.0-46-generic",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-image-unsigned-5.11.0-46-generic-64k",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-image-unsigned-5.11.0-46-lowlatency",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-modules-5.11.0-46-generic",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-modules-5.11.0-46-generic-64k",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-modules-5.11.0-46-generic-lpae",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-modules-5.11.0-46-lowlatency",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-modules-extra-5.11.0-46-generic",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-tools-5.11.0-46-generic",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-tools-5.11.0-46-generic-64k",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-tools-5.11.0-46-generic-lpae",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "linux-tools-5.11.0-46-lowlatency",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "md-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "md-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "md-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "message-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "message-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "mouse-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "mouse-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "mouse-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "multipath-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "multipath-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "multipath-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "nfs-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "nfs-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "nfs-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "nic-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "nic-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "nic-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "nic-pcmcia-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "nic-shared-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "nic-shared-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "nic-shared-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "nic-usb-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "nic-usb-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "nic-usb-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "parport-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "parport-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "parport-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "pata-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "pcmcia-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "pcmcia-storage-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "plip-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "plip-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "plip-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "ppp-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "ppp-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "ppp-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "sata-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "sata-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "sata-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "scsi-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "scsi-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "scsi-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "serial-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "storage-core-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "storage-core-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "storage-core-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "usb-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "usb-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "usb-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "virtio-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "virtio-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "vlan-modules-5.11.0-46-generic-64k-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "vlan-modules-5.11.0-46-generic-di",
"binary_version": "5.11.0-46.51~20.04.1"
},
{
"binary_name": "vlan-modules-5.11.0-46-generic-lpae-di",
"binary_version": "5.11.0-46.51~20.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-hwe-5.11",
"purl": "pkg:deb/ubuntu/linux-hwe-5.11@5.11.0-46.51~20.04.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.11.0-22.23~20.04.1",
"5.11.0-25.27~20.04.1",
"5.11.0-27.29~20.04.1",
"5.11.0-34.36~20.04.1",
"5.11.0-36.40~20.04.1",
"5.11.0-37.41~20.04.2",
"5.11.0-38.42~20.04.1",
"5.11.0-40.44~20.04.2",
"5.11.0-41.45~20.04.1",
"5.11.0-43.47~20.04.2",
"5.11.0-44.48~20.04.2",
"5.11.0-46.51~20.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "block-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "block-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "block-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "crypto-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "crypto-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "crypto-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "dasd-extra-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "dasd-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "fat-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "fat-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "fat-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "fb-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "firewire-core-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "floppy-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "fs-core-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "fs-core-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "fs-core-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "fs-secondary-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "fs-secondary-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "fs-secondary-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "input-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "input-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "input-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "ipmi-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "ipmi-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "ipmi-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "kernel-image-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "kernel-image-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "kernel-image-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-buildinfo-5.13.0-52-generic",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-buildinfo-5.13.0-52-generic-64k",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-buildinfo-5.13.0-52-generic-lpae",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-buildinfo-5.13.0-52-lowlatency",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-cloud-tools-5.13.0-52-generic",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-cloud-tools-5.13.0-52-lowlatency",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-headers-5.13.0-52-generic",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-headers-5.13.0-52-generic-64k",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-headers-5.13.0-52-generic-lpae",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-headers-5.13.0-52-lowlatency",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-hwe-5.13-cloud-tools-5.13.0-52",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-hwe-5.13-cloud-tools-common",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-hwe-5.13-headers-5.13.0-52",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-hwe-5.13-source-5.13.0",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-hwe-5.13-tools-5.13.0-52",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-hwe-5.13-tools-common",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-hwe-5.13-tools-host",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-hwe-5.13-udebs-generic",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-hwe-5.13-udebs-generic-64k",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-hwe-5.13-udebs-generic-lpae",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-image-5.13.0-52-generic",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-image-5.13.0-52-generic-lpae",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-image-unsigned-5.13.0-52-generic",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-image-unsigned-5.13.0-52-generic-64k",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-image-unsigned-5.13.0-52-lowlatency",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-modules-5.13.0-52-generic",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-modules-5.13.0-52-generic-64k",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-modules-5.13.0-52-generic-lpae",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-modules-5.13.0-52-lowlatency",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-modules-extra-5.13.0-52-generic",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-tools-5.13.0-52-generic",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-tools-5.13.0-52-generic-64k",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-tools-5.13.0-52-generic-lpae",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "linux-tools-5.13.0-52-lowlatency",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "md-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "md-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "md-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "message-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "message-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "mouse-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "mouse-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "mouse-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "multipath-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "multipath-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "multipath-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "nfs-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "nfs-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "nfs-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "nic-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "nic-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "nic-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "nic-pcmcia-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "nic-shared-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "nic-shared-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "nic-shared-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "nic-usb-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "nic-usb-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "nic-usb-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "parport-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "parport-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "parport-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "pata-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "pcmcia-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "pcmcia-storage-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "plip-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "plip-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "plip-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "ppp-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "ppp-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "ppp-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "sata-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "sata-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "sata-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "scsi-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "scsi-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "scsi-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "serial-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "storage-core-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "storage-core-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "storage-core-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "usb-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "usb-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "usb-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "virtio-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "virtio-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "vlan-modules-5.13.0-52-generic-64k-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "vlan-modules-5.13.0-52-generic-di",
"binary_version": "5.13.0-52.59~20.04.1"
},
{
"binary_name": "vlan-modules-5.13.0-52-generic-lpae-di",
"binary_version": "5.13.0-52.59~20.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-hwe-5.13",
"purl": "pkg:deb/ubuntu/linux-hwe-5.13@5.13.0-52.59~20.04.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.13.0-21.21~20.04.1",
"5.13.0-22.22~20.04.1",
"5.13.0-23.23~20.04.2",
"5.13.0-25.26~20.04.1",
"5.13.0-27.29~20.04.1",
"5.13.0-28.31~20.04.1",
"5.13.0-30.33~20.04.1",
"5.13.0-35.40~20.04.1",
"5.13.0-37.42~20.04.1",
"5.13.0-39.44~20.04.1",
"5.13.0-40.45~20.04.1",
"5.13.0-41.46~20.04.1",
"5.13.0-44.49~20.04.1",
"5.13.0-48.54~20.04.1",
"5.13.0-51.58~20.04.1",
"5.13.0-52.59~20.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "block-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "block-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "block-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "crypto-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "crypto-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "crypto-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "dasd-extra-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "dasd-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "fat-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "fat-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "fat-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "fb-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "firewire-core-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "floppy-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "fs-core-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "fs-core-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "fs-core-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "fs-secondary-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "fs-secondary-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "fs-secondary-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "input-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "input-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "input-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "ipmi-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "ipmi-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "ipmi-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "kernel-image-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "kernel-image-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "kernel-image-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-buildinfo-5.8.0-63-generic",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-buildinfo-5.8.0-63-generic-64k",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-buildinfo-5.8.0-63-generic-lpae",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-buildinfo-5.8.0-63-lowlatency",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-cloud-tools-5.8.0-63-generic",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-cloud-tools-5.8.0-63-lowlatency",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-headers-5.8.0-63-generic",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-headers-5.8.0-63-generic-64k",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-headers-5.8.0-63-generic-lpae",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-headers-5.8.0-63-lowlatency",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-hwe-5.8-cloud-tools-5.8.0-63",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-hwe-5.8-cloud-tools-common",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-hwe-5.8-headers-5.8.0-63",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-hwe-5.8-source-5.8.0",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-hwe-5.8-tools-5.8.0-63",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-hwe-5.8-tools-common",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-hwe-5.8-tools-host",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-hwe-5.8-udebs-generic",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-hwe-5.8-udebs-generic-64k",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-hwe-5.8-udebs-generic-lpae",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-image-5.8.0-63-generic",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-image-5.8.0-63-generic-lpae",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-image-unsigned-5.8.0-63-generic",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-image-unsigned-5.8.0-63-generic-64k",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-image-unsigned-5.8.0-63-lowlatency",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-modules-5.8.0-63-generic",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-modules-5.8.0-63-generic-64k",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-modules-5.8.0-63-generic-lpae",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-modules-5.8.0-63-lowlatency",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-modules-extra-5.8.0-63-generic",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-tools-5.8.0-63-generic",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-tools-5.8.0-63-generic-64k",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-tools-5.8.0-63-generic-lpae",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "linux-tools-5.8.0-63-lowlatency",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "md-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "md-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "md-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "message-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "message-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "mouse-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "mouse-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "mouse-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "multipath-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "multipath-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "multipath-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "nfs-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "nfs-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "nfs-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "nic-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "nic-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "nic-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "nic-pcmcia-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "nic-shared-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "nic-shared-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "nic-shared-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "nic-usb-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "nic-usb-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "nic-usb-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "parport-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "parport-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "parport-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "pata-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "pcmcia-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "pcmcia-storage-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "plip-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "plip-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "plip-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "ppp-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "ppp-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "ppp-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "sata-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "sata-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "sata-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "scsi-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "scsi-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "scsi-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "serial-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "storage-core-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "storage-core-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "storage-core-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "usb-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "usb-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "usb-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "virtio-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "virtio-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "vlan-modules-5.8.0-63-generic-64k-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "vlan-modules-5.8.0-63-generic-di",
"binary_version": "5.8.0-63.71~20.04.1"
},
{
"binary_name": "vlan-modules-5.8.0-63-generic-lpae-di",
"binary_version": "5.8.0-63.71~20.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-hwe-5.8",
"purl": "pkg:deb/ubuntu/linux-hwe-5.8@5.8.0-63.71~20.04.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.8.0-23.24~20.04.1",
"5.8.0-25.26~20.04.1",
"5.8.0-28.30~20.04.1",
"5.8.0-29.31~20.04.1",
"5.8.0-31.33~20.04.1",
"5.8.0-33.36~20.04.1",
"5.8.0-34.37~20.04.2",
"5.8.0-36.40~20.04.1",
"5.8.0-38.43~20.04.1",
"5.8.0-40.45~20.04.1",
"5.8.0-41.46~20.04.1",
"5.8.0-43.49~20.04.1",
"5.8.0-44.50~20.04.1",
"5.8.0-45.51~20.04.1",
"5.8.0-48.54~20.04.1",
"5.8.0-49.55~20.04.1",
"5.8.0-50.56~20.04.1",
"5.8.0-53.60~20.04.1",
"5.8.0-55.62~20.04.1",
"5.8.0-59.66~20.04.1",
"5.8.0-63.71~20.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.13.0-1017-intel",
"binary_version": "5.13.0-1017.19"
},
{
"binary_name": "linux-cloud-tools-5.13.0-1017-intel",
"binary_version": "5.13.0-1017.19"
},
{
"binary_name": "linux-headers-5.13.0-1017-intel",
"binary_version": "5.13.0-1017.19"
},
{
"binary_name": "linux-image-unsigned-5.13.0-1017-intel",
"binary_version": "5.13.0-1017.19"
},
{
"binary_name": "linux-intel-5.13-cloud-tools-5.13.0-1017",
"binary_version": "5.13.0-1017.19"
},
{
"binary_name": "linux-intel-5.13-cloud-tools-common",
"binary_version": "5.13.0-1017.19"
},
{
"binary_name": "linux-intel-5.13-headers-5.13.0-1017",
"binary_version": "5.13.0-1017.19"
},
{
"binary_name": "linux-intel-5.13-source-5.13.0",
"binary_version": "5.13.0-1017.19"
},
{
"binary_name": "linux-intel-5.13-tools-5.13.0-1017",
"binary_version": "5.13.0-1017.19"
},
{
"binary_name": "linux-intel-5.13-tools-common",
"binary_version": "5.13.0-1017.19"
},
{
"binary_name": "linux-intel-5.13-tools-host",
"binary_version": "5.13.0-1017.19"
},
{
"binary_name": "linux-modules-5.13.0-1017-intel",
"binary_version": "5.13.0-1017.19"
},
{
"binary_name": "linux-modules-extra-5.13.0-1017-intel",
"binary_version": "5.13.0-1017.19"
},
{
"binary_name": "linux-tools-5.13.0-1017-intel",
"binary_version": "5.13.0-1017.19"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-intel-5.13",
"purl": "pkg:deb/ubuntu/linux-intel-5.13@5.13.0-1017.19?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.13.0-1007.7",
"5.13.0-1008.8",
"5.13.0-1009.9",
"5.13.0-1010.10",
"5.13.0-1011.11",
"5.13.0-1014.15",
"5.13.0-1017.19"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.10.0-1057-oem",
"binary_version": "5.10.0-1057.61"
},
{
"binary_name": "linux-headers-5.10.0-1057-oem",
"binary_version": "5.10.0-1057.61"
},
{
"binary_name": "linux-image-unsigned-5.10.0-1057-oem",
"binary_version": "5.10.0-1057.61"
},
{
"binary_name": "linux-modules-5.10.0-1057-oem",
"binary_version": "5.10.0-1057.61"
},
{
"binary_name": "linux-oem-5.10-headers-5.10.0-1057",
"binary_version": "5.10.0-1057.61"
},
{
"binary_name": "linux-oem-5.10-tools-5.10.0-1057",
"binary_version": "5.10.0-1057.61"
},
{
"binary_name": "linux-oem-5.10-tools-host",
"binary_version": "5.10.0-1057.61"
},
{
"binary_name": "linux-tools-5.10.0-1057-oem",
"binary_version": "5.10.0-1057.61"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-oem-5.10",
"purl": "pkg:deb/ubuntu/linux-oem-5.10@5.10.0-1057.61?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.10.0-1008.9",
"5.10.0-1011.12",
"5.10.0-1013.14",
"5.10.0-1014.15",
"5.10.0-1016.17",
"5.10.0-1017.18",
"5.10.0-1019.20",
"5.10.0-1021.22",
"5.10.0-1022.23",
"5.10.0-1023.24",
"5.10.0-1025.26",
"5.10.0-1026.27",
"5.10.0-1029.30",
"5.10.0-1032.33",
"5.10.0-1033.34",
"5.10.0-1034.35",
"5.10.0-1038.40",
"5.10.0-1044.46",
"5.10.0-1045.47",
"5.10.0-1049.51",
"5.10.0-1050.52",
"5.10.0-1051.53",
"5.10.0-1052.54",
"5.10.0-1053.55",
"5.10.0-1055.58",
"5.10.0-1057.61"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.13.0-1029-oem",
"binary_version": "5.13.0-1029.36"
},
{
"binary_name": "linux-headers-5.13.0-1029-oem",
"binary_version": "5.13.0-1029.36"
},
{
"binary_name": "linux-image-unsigned-5.13.0-1029-oem",
"binary_version": "5.13.0-1029.36"
},
{
"binary_name": "linux-modules-5.13.0-1029-oem",
"binary_version": "5.13.0-1029.36"
},
{
"binary_name": "linux-oem-5.13-headers-5.13.0-1029",
"binary_version": "5.13.0-1029.36"
},
{
"binary_name": "linux-oem-5.13-tools-5.13.0-1029",
"binary_version": "5.13.0-1029.36"
},
{
"binary_name": "linux-oem-5.13-tools-host",
"binary_version": "5.13.0-1029.36"
},
{
"binary_name": "linux-tools-5.13.0-1029-oem",
"binary_version": "5.13.0-1029.36"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-oem-5.13",
"purl": "pkg:deb/ubuntu/linux-oem-5.13@5.13.0-1029.36?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.13.0-1009.10",
"5.13.0-1010.11",
"5.13.0-1012.16",
"5.13.0-1014.18",
"5.13.0-1017.21",
"5.13.0-1019.23",
"5.13.0-1020.24",
"5.13.0-1021.25",
"5.13.0-1022.26",
"5.13.0-1026.32",
"5.13.0-1028.35",
"5.13.0-1029.36"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.14.0-1059-oem",
"binary_version": "5.14.0-1059.67"
},
{
"binary_name": "linux-headers-5.14.0-1059-oem",
"binary_version": "5.14.0-1059.67"
},
{
"binary_name": "linux-image-unsigned-5.14.0-1059-oem",
"binary_version": "5.14.0-1059.67"
},
{
"binary_name": "linux-modules-5.14.0-1059-oem",
"binary_version": "5.14.0-1059.67"
},
{
"binary_name": "linux-modules-iwlwifi-5.14.0-1059-oem",
"binary_version": "5.14.0-1059.67"
},
{
"binary_name": "linux-oem-5.14-headers-5.14.0-1059",
"binary_version": "5.14.0-1059.67"
},
{
"binary_name": "linux-oem-5.14-tools-5.14.0-1059",
"binary_version": "5.14.0-1059.67"
},
{
"binary_name": "linux-oem-5.14-tools-host",
"binary_version": "5.14.0-1059.67"
},
{
"binary_name": "linux-tools-5.14.0-1059-oem",
"binary_version": "5.14.0-1059.67"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-oem-5.14",
"purl": "pkg:deb/ubuntu/linux-oem-5.14@5.14.0-1059.67?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.14.0-1004.4",
"5.14.0-1005.5",
"5.14.0-1007.7",
"5.14.0-1008.8",
"5.14.0-1010.10",
"5.14.0-1011.11",
"5.14.0-1013.13",
"5.14.0-1018.19",
"5.14.0-1020.22",
"5.14.0-1022.24",
"5.14.0-1024.26",
"5.14.0-1027.30",
"5.14.0-1029.32",
"5.14.0-1031.34",
"5.14.0-1032.35",
"5.14.0-1033.36",
"5.14.0-1034.37",
"5.14.0-1036.40",
"5.14.0-1038.42",
"5.14.0-1042.47",
"5.14.0-1044.49",
"5.14.0-1045.51",
"5.14.0-1046.53",
"5.14.0-1047.54",
"5.14.0-1048.55",
"5.14.0-1049.56",
"5.14.0-1050.57",
"5.14.0-1051.58",
"5.14.0-1052.59",
"5.14.0-1054.61",
"5.14.0-1055.62",
"5.14.0-1056.63",
"5.14.0-1057.64",
"5.14.0-1058.66",
"5.14.0-1059.67"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.6.0-1056-oem",
"binary_version": "5.6.0-1056.60"
},
{
"binary_name": "linux-headers-5.6.0-1056-oem",
"binary_version": "5.6.0-1056.60"
},
{
"binary_name": "linux-image-unsigned-5.6.0-1056-oem",
"binary_version": "5.6.0-1056.60"
},
{
"binary_name": "linux-modules-5.6.0-1056-oem",
"binary_version": "5.6.0-1056.60"
},
{
"binary_name": "linux-oem-5.6-headers-5.6.0-1056",
"binary_version": "5.6.0-1056.60"
},
{
"binary_name": "linux-oem-5.6-tools-5.6.0-1056",
"binary_version": "5.6.0-1056.60"
},
{
"binary_name": "linux-oem-5.6-tools-host",
"binary_version": "5.6.0-1056.60"
},
{
"binary_name": "linux-tools-5.6.0-1056-oem",
"binary_version": "5.6.0-1056.60"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-oem-5.6",
"purl": "pkg:deb/ubuntu/linux-oem-5.6@5.6.0-1056.60?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.6.0-1007.7",
"5.6.0-1008.8",
"5.6.0-1010.10",
"5.6.0-1011.11",
"5.6.0-1013.13",
"5.6.0-1017.17",
"5.6.0-1018.18",
"5.6.0-1020.20",
"5.6.0-1021.21",
"5.6.0-1023.23",
"5.6.0-1026.26",
"5.6.0-1027.27",
"5.6.0-1028.28",
"5.6.0-1031.32",
"5.6.0-1032.33",
"5.6.0-1033.35",
"5.6.0-1034.36",
"5.6.0-1035.37",
"5.6.0-1036.39",
"5.6.0-1039.43",
"5.6.0-1042.46",
"5.6.0-1047.51",
"5.6.0-1048.52",
"5.6.0-1050.54",
"5.6.0-1052.56",
"5.6.0-1053.57",
"5.6.0-1054.58",
"5.6.0-1055.59",
"5.6.0-1056.60"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.11.0-1028-oracle",
"binary_version": "5.11.0-1028.31~20.04.1"
},
{
"binary_name": "linux-headers-5.11.0-1028-oracle",
"binary_version": "5.11.0-1028.31~20.04.1"
},
{
"binary_name": "linux-image-unsigned-5.11.0-1028-oracle",
"binary_version": "5.11.0-1028.31~20.04.1"
},
{
"binary_name": "linux-modules-5.11.0-1028-oracle",
"binary_version": "5.11.0-1028.31~20.04.1"
},
{
"binary_name": "linux-modules-extra-5.11.0-1028-oracle",
"binary_version": "5.11.0-1028.31~20.04.1"
},
{
"binary_name": "linux-oracle-5.11-headers-5.11.0-1028",
"binary_version": "5.11.0-1028.31~20.04.1"
},
{
"binary_name": "linux-oracle-5.11-tools-5.11.0-1028",
"binary_version": "5.11.0-1028.31~20.04.1"
},
{
"binary_name": "linux-tools-5.11.0-1028-oracle",
"binary_version": "5.11.0-1028.31~20.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-oracle-5.11",
"purl": "pkg:deb/ubuntu/linux-oracle-5.11@5.11.0-1028.31~20.04.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.11.0-1008.8~20.04.1",
"5.11.0-1013.14~20.04.1",
"5.11.0-1016.17~20.04.1",
"5.11.0-1017.18~20.04.1",
"5.11.0-1019.20~20.04.1",
"5.11.0-1020.21~20.04.1",
"5.11.0-1021.22~20.04.1",
"5.11.0-1022.23~20.04.1",
"5.11.0-1023.24~20.04.1",
"5.11.0-1025.27~20.04.1",
"5.11.0-1027.30~20.04.1",
"5.11.0-1028.31~20.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.13.0-1036-oracle",
"binary_version": "5.13.0-1036.43~20.04.1"
},
{
"binary_name": "linux-headers-5.13.0-1036-oracle",
"binary_version": "5.13.0-1036.43~20.04.1"
},
{
"binary_name": "linux-image-unsigned-5.13.0-1036-oracle",
"binary_version": "5.13.0-1036.43~20.04.1"
},
{
"binary_name": "linux-modules-5.13.0-1036-oracle",
"binary_version": "5.13.0-1036.43~20.04.1"
},
{
"binary_name": "linux-modules-extra-5.13.0-1036-oracle",
"binary_version": "5.13.0-1036.43~20.04.1"
},
{
"binary_name": "linux-oracle-5.13-headers-5.13.0-1036",
"binary_version": "5.13.0-1036.43~20.04.1"
},
{
"binary_name": "linux-oracle-5.13-tools-5.13.0-1036",
"binary_version": "5.13.0-1036.43~20.04.1"
},
{
"binary_name": "linux-tools-5.13.0-1036-oracle",
"binary_version": "5.13.0-1036.43~20.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-oracle-5.13",
"purl": "pkg:deb/ubuntu/linux-oracle-5.13@5.13.0-1036.43~20.04.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.13.0-1011.13~20.04.2",
"5.13.0-1015.19~20.04.1",
"5.13.0-1016.20~20.04.1",
"5.13.0-1018.22~20.04.1",
"5.13.0-1021.26~20.04.1",
"5.13.0-1025.30~20.04.1",
"5.13.0-1027.32~20.04.1",
"5.13.0-1028.33~20.04.1",
"5.13.0-1030.35~20.04.1",
"5.13.0-1033.39~20.04.1",
"5.13.0-1034.40~20.04.1",
"5.13.0-1036.43~20.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.8.0-1038-oracle",
"binary_version": "5.8.0-1038.39~20.04.1"
},
{
"binary_name": "linux-headers-5.8.0-1038-oracle",
"binary_version": "5.8.0-1038.39~20.04.1"
},
{
"binary_name": "linux-image-unsigned-5.8.0-1038-oracle",
"binary_version": "5.8.0-1038.39~20.04.1"
},
{
"binary_name": "linux-modules-5.8.0-1038-oracle",
"binary_version": "5.8.0-1038.39~20.04.1"
},
{
"binary_name": "linux-modules-extra-5.8.0-1038-oracle",
"binary_version": "5.8.0-1038.39~20.04.1"
},
{
"binary_name": "linux-oracle-5.8-headers-5.8.0-1038",
"binary_version": "5.8.0-1038.39~20.04.1"
},
{
"binary_name": "linux-oracle-5.8-tools-5.8.0-1038",
"binary_version": "5.8.0-1038.39~20.04.1"
},
{
"binary_name": "linux-tools-5.8.0-1038-oracle",
"binary_version": "5.8.0-1038.39~20.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-oracle-5.8",
"purl": "pkg:deb/ubuntu/linux-oracle-5.8@5.8.0-1038.39~20.04.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.8.0-1031.32~20.04.2",
"5.8.0-1033.34~20.04.1",
"5.8.0-1034.35~20.04.2",
"5.8.0-1037.38~20.04.1",
"5.8.0-1038.39~20.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.4.0-1006-raspi2",
"binary_version": "5.4.0-1006.6"
},
{
"binary_name": "linux-headers-5.4.0-1006-raspi2",
"binary_version": "5.4.0-1006.6"
},
{
"binary_name": "linux-image-5.4.0-1006-raspi2",
"binary_version": "5.4.0-1006.6"
},
{
"binary_name": "linux-modules-5.4.0-1006-raspi2",
"binary_version": "5.4.0-1006.6"
},
{
"binary_name": "linux-raspi2-headers-5.4.0-1006",
"binary_version": "5.4.0-1006.6"
},
{
"binary_name": "linux-raspi2-tools-5.4.0-1006",
"binary_version": "5.4.0-1006.6"
},
{
"binary_name": "linux-tools-5.4.0-1006-raspi2",
"binary_version": "5.4.0-1006.6"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-raspi2",
"purl": "pkg:deb/ubuntu/linux-raspi2@5.4.0-1006.6?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.3.0-1007.8",
"5.3.0-1014.16",
"5.3.0-1015.17",
"5.3.0-1017.19",
"5.4.0-1004.4",
"5.4.0-1006.6"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "block-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "crypto-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "fat-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "firewire-core-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "fs-core-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "fs-secondary-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "input-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "ipmi-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "kernel-image-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "linux-buildinfo-5.4.0-40-generic",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "linux-headers-5.4.0-40-generic",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "linux-image-5.4.0-40-generic",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "linux-modules-5.4.0-40-generic",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "linux-modules-extra-5.4.0-40-generic",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "linux-riscv-headers-5.4.0-40",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "linux-riscv-tools-5.4.0-40",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "linux-tools-5.4.0-40-generic",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "linux-udebs-generic",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "md-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "message-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "mouse-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "multipath-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "nfs-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "nic-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "nic-shared-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "nic-usb-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "parport-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "pata-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "plip-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "ppp-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "sata-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "scsi-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "storage-core-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "usb-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "virtio-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
},
{
"binary_name": "vlan-modules-5.4.0-40-generic-di",
"binary_version": "5.4.0-40.45"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-riscv",
"purl": "pkg:deb/ubuntu/linux-riscv@5.4.0-40.45?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.4.0-24.28",
"5.4.0-26.30",
"5.4.0-27.31",
"5.4.0-28.32",
"5.4.0-30.34",
"5.4.0-31.35",
"5.4.0-33.37",
"5.4.0-34.38",
"5.4.0-36.41",
"5.4.0-37.42",
"5.4.0-39.44",
"5.4.0-40.45"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.11.0-1031-generic",
"binary_version": "5.11.0-1031.35"
},
{
"binary_name": "linux-headers-5.11.0-1031-generic",
"binary_version": "5.11.0-1031.35"
},
{
"binary_name": "linux-image-5.11.0-1031-generic",
"binary_version": "5.11.0-1031.35"
},
{
"binary_name": "linux-modules-5.11.0-1031-generic",
"binary_version": "5.11.0-1031.35"
},
{
"binary_name": "linux-modules-extra-5.11.0-1031-generic",
"binary_version": "5.11.0-1031.35"
},
{
"binary_name": "linux-riscv-5.11-headers-5.11.0-1031",
"binary_version": "5.11.0-1031.35"
},
{
"binary_name": "linux-riscv-5.11-tools-5.11.0-1031",
"binary_version": "5.11.0-1031.35"
},
{
"binary_name": "linux-tools-5.11.0-1031-generic",
"binary_version": "5.11.0-1031.35"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-riscv-5.11",
"purl": "pkg:deb/ubuntu/linux-riscv-5.11@5.11.0-1031.35?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.11.0-1015.16~20.04.1",
"5.11.0-1017.18~20.04.1",
"5.11.0-1018.19~20.04.2",
"5.11.0-1020.21~20.04.1",
"5.11.0-1021.22~20.04.1",
"5.11.0-1022.23~20.04.1",
"5.11.0-1023.24~20.04.1",
"5.11.0-1024.25~20.04.1",
"5.11.0-1026.28~20.04.1",
"5.11.0-1028.31~20.04.1",
"5.11.0-1029.32~20.04.1",
"5.11.0-1030.34",
"5.11.0-1031.35"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "block-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "crypto-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "fat-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "firewire-core-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "fs-core-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "fs-secondary-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "input-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "ipmi-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "kernel-image-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "linux-buildinfo-5.8.0-29-generic",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "linux-headers-5.8.0-29-generic",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "linux-image-5.8.0-29-generic",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "linux-modules-5.8.0-29-generic",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "linux-modules-extra-5.8.0-29-generic",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "linux-riscv-5.8-headers-5.8.0-29",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "linux-riscv-5.8-tools-5.8.0-29",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "linux-tools-5.8.0-29-generic",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "linux-udebs-generic",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "md-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "message-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "mouse-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "multipath-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "nfs-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "nic-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "nic-shared-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "nic-usb-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "parport-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "pata-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "plip-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "ppp-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "sata-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "scsi-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "storage-core-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "usb-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "virtio-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
},
{
"binary_name": "vlan-modules-5.8.0-29-generic-di",
"binary_version": "5.8.0-29.31~20.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "linux-riscv-5.8",
"purl": "pkg:deb/ubuntu/linux-riscv-5.8@5.8.0-29.31~20.04.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.8.0-14.16~20.04.1",
"5.8.0-14.16~20.04.3",
"5.8.0-16.18~20.04.1",
"5.8.0-17.19~20.04.1",
"5.8.0-18.20~20.04.1",
"5.8.0-20.22~20.04.1",
"5.8.0-22.24~20.04.1",
"5.8.0-25.27~20.04.1",
"5.8.0-26.28~20.04.1",
"5.8.0-29.31~20.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-allwinner-5.19-headers-5.19.0-1015",
"binary_version": "5.19.0-1015.15~22.04.1"
},
{
"binary_name": "linux-allwinner-5.19-tools-5.19.0-1015",
"binary_version": "5.19.0-1015.15~22.04.1"
},
{
"binary_name": "linux-buildinfo-5.19.0-1015-allwinner",
"binary_version": "5.19.0-1015.15~22.04.1"
},
{
"binary_name": "linux-headers-5.19.0-1015-allwinner",
"binary_version": "5.19.0-1015.15~22.04.1"
},
{
"binary_name": "linux-image-5.19.0-1015-allwinner",
"binary_version": "5.19.0-1015.15~22.04.1"
},
{
"binary_name": "linux-modules-5.19.0-1015-allwinner",
"binary_version": "5.19.0-1015.15~22.04.1"
},
{
"binary_name": "linux-modules-extra-5.19.0-1015-allwinner",
"binary_version": "5.19.0-1015.15~22.04.1"
},
{
"binary_name": "linux-tools-5.19.0-1015-allwinner",
"binary_version": "5.19.0-1015.15~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-allwinner-5.19",
"purl": "pkg:deb/ubuntu/linux-allwinner-5.19@5.19.0-1015.15~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.19.0-1007.7~22.04.1",
"5.19.0-1009.9~22.04.1",
"5.19.0-1010.10~22.04.1",
"5.19.0-1011.11~22.04.1",
"5.19.0-1012.12~22.04.1",
"5.19.0-1013.13~22.04.1",
"5.19.0-1014.14~22.04.1",
"5.19.0-1015.15~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-aws-5.19-cloud-tools-5.19.0-1029",
"binary_version": "5.19.0-1029.30~22.04.1"
},
{
"binary_name": "linux-aws-5.19-headers-5.19.0-1029",
"binary_version": "5.19.0-1029.30~22.04.1"
},
{
"binary_name": "linux-aws-5.19-tools-5.19.0-1029",
"binary_version": "5.19.0-1029.30~22.04.1"
},
{
"binary_name": "linux-buildinfo-5.19.0-1029-aws",
"binary_version": "5.19.0-1029.30~22.04.1"
},
{
"binary_name": "linux-cloud-tools-5.19.0-1029-aws",
"binary_version": "5.19.0-1029.30~22.04.1"
},
{
"binary_name": "linux-headers-5.19.0-1029-aws",
"binary_version": "5.19.0-1029.30~22.04.1"
},
{
"binary_name": "linux-image-unsigned-5.19.0-1029-aws",
"binary_version": "5.19.0-1029.30~22.04.1"
},
{
"binary_name": "linux-modules-5.19.0-1029-aws",
"binary_version": "5.19.0-1029.30~22.04.1"
},
{
"binary_name": "linux-modules-extra-5.19.0-1029-aws",
"binary_version": "5.19.0-1029.30~22.04.1"
},
{
"binary_name": "linux-tools-5.19.0-1029-aws",
"binary_version": "5.19.0-1029.30~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-aws-5.19",
"purl": "pkg:deb/ubuntu/linux-aws-5.19@5.19.0-1029.30~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.19.0-1019.20~22.04.1",
"5.19.0-1020.21~22.04.1",
"5.19.0-1022.23~22.04.1",
"5.19.0-1023.24~22.04.1",
"5.19.0-1024.25~22.04.1",
"5.19.0-1025.26~22.04.1",
"5.19.0-1026.27~22.04.1",
"5.19.0-1027.28~22.04.1",
"5.19.0-1028.29~22.04.1",
"5.19.0-1029.30~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-aws-6.2-cloud-tools-6.2.0-1018",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-aws-6.2-headers-6.2.0-1018",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-aws-6.2-tools-6.2.0-1018",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-buildinfo-6.2.0-1018-aws",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-cloud-tools-6.2.0-1018-aws",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-headers-6.2.0-1018-aws",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.2.0-1018-aws",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-modules-6.2.0-1018-aws",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.2.0-1018-aws",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-tools-6.2.0-1018-aws",
"binary_version": "6.2.0-1018.18~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-aws-6.2",
"purl": "pkg:deb/ubuntu/linux-aws-6.2@6.2.0-1018.18~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.2.0-1005.5~22.04.1",
"6.2.0-1006.6~22.04.1",
"6.2.0-1007.7~22.04.1",
"6.2.0-1008.8~22.04.1",
"6.2.0-1009.9~22.04.3",
"6.2.0-1010.10~22.04.1",
"6.2.0-1011.11~22.04.1",
"6.2.0-1012.12~22.04.1",
"6.2.0-1013.13~22.04.1",
"6.2.0-1014.14~22.04.1",
"6.2.0-1015.15~22.04.1",
"6.2.0-1016.16~22.04.1",
"6.2.0-1017.17~22.04.1",
"6.2.0-1018.18~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-aws-6.5-cloud-tools-6.5.0-1024",
"binary_version": "6.5.0-1024.24~22.04.1"
},
{
"binary_name": "linux-aws-6.5-headers-6.5.0-1024",
"binary_version": "6.5.0-1024.24~22.04.1"
},
{
"binary_name": "linux-aws-6.5-tools-6.5.0-1024",
"binary_version": "6.5.0-1024.24~22.04.1"
},
{
"binary_name": "linux-buildinfo-6.5.0-1024-aws",
"binary_version": "6.5.0-1024.24~22.04.1"
},
{
"binary_name": "linux-cloud-tools-6.5.0-1024-aws",
"binary_version": "6.5.0-1024.24~22.04.1"
},
{
"binary_name": "linux-headers-6.5.0-1024-aws",
"binary_version": "6.5.0-1024.24~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.5.0-1024-aws",
"binary_version": "6.5.0-1024.24~22.04.1"
},
{
"binary_name": "linux-modules-6.5.0-1024-aws",
"binary_version": "6.5.0-1024.24~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.5.0-1024-aws",
"binary_version": "6.5.0-1024.24~22.04.1"
},
{
"binary_name": "linux-tools-6.5.0-1024-aws",
"binary_version": "6.5.0-1024.24~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-aws-6.5",
"purl": "pkg:deb/ubuntu/linux-aws-6.5@6.5.0-1024.24~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.5.0-1008.8~22.04.1",
"6.5.0-1010.10~22.04.1",
"6.5.0-1011.11~22.04.1",
"6.5.0-1012.12~22.04.1",
"6.5.0-1014.14~22.04.1",
"6.5.0-1015.15~22.04.1",
"6.5.0-1016.16~22.04.1",
"6.5.0-1017.17~22.04.2",
"6.5.0-1018.18~22.04.1",
"6.5.0-1020.20~22.04.1",
"6.5.0-1021.21~22.04.1",
"6.5.0-1022.22~22.04.1",
"6.5.0-1023.23~22.04.1",
"6.5.0-1024.24~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-aws-6.8-cloud-tools-6.8.0-1060",
"binary_version": "6.8.0-1060.63~22.04.1"
},
{
"binary_name": "linux-aws-6.8-headers-6.8.0-1060",
"binary_version": "6.8.0-1060.63~22.04.1"
},
{
"binary_name": "linux-aws-6.8-tools-6.8.0-1060",
"binary_version": "6.8.0-1060.63~22.04.1"
},
{
"binary_name": "linux-buildinfo-6.8.0-1060-aws",
"binary_version": "6.8.0-1060.63~22.04.1"
},
{
"binary_name": "linux-buildinfo-6.8.0-1060-aws-64k",
"binary_version": "6.8.0-1060.63~22.04.1"
},
{
"binary_name": "linux-cloud-tools-6.8.0-1060-aws",
"binary_version": "6.8.0-1060.63~22.04.1"
},
{
"binary_name": "linux-cloud-tools-6.8.0-1060-aws-64k",
"binary_version": "6.8.0-1060.63~22.04.1"
},
{
"binary_name": "linux-headers-6.8.0-1060-aws",
"binary_version": "6.8.0-1060.63~22.04.1"
},
{
"binary_name": "linux-headers-6.8.0-1060-aws-64k",
"binary_version": "6.8.0-1060.63~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1060-aws",
"binary_version": "6.8.0-1060.63~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1060-aws-64k",
"binary_version": "6.8.0-1060.63~22.04.1"
},
{
"binary_name": "linux-modules-6.8.0-1060-aws",
"binary_version": "6.8.0-1060.63~22.04.1"
},
{
"binary_name": "linux-modules-6.8.0-1060-aws-64k",
"binary_version": "6.8.0-1060.63~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.8.0-1060-aws",
"binary_version": "6.8.0-1060.63~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.8.0-1060-aws-64k",
"binary_version": "6.8.0-1060.63~22.04.1"
},
{
"binary_name": "linux-tools-6.8.0-1060-aws",
"binary_version": "6.8.0-1060.63~22.04.1"
},
{
"binary_name": "linux-tools-6.8.0-1060-aws-64k",
"binary_version": "6.8.0-1060.63~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-aws-6.8",
"purl": "pkg:deb/ubuntu/linux-aws-6.8@6.8.0-1060.63~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1009.9~22.04.2",
"6.8.0-1010.10~22.04.2",
"6.8.0-1011.12~22.04.1",
"6.8.0-1013.14~22.04.1",
"6.8.0-1014.15~22.04.1",
"6.8.0-1015.16~22.04.1",
"6.8.0-1016.17~22.04.2",
"6.8.0-1017.18~22.04.1",
"6.8.0-1018.19~22.04.1",
"6.8.0-1019.21~22.04.1",
"6.8.0-1020.22~22.04.1",
"6.8.0-1021.23~22.04.1",
"6.8.0-1023.25~22.04.1",
"6.8.0-1024.26~22.04.1",
"6.8.0-1027.29~22.04.1",
"6.8.0-1028.30~22.04.1",
"6.8.0-1029.31~22.04.1",
"6.8.0-1030.32~22.04.1",
"6.8.0-1031.33~22.04.1",
"6.8.0-1032.34~22.04.1",
"6.8.0-1033.35~22.04.1",
"6.8.0-1035.37~22.04.1",
"6.8.0-1036.38~22.04.1",
"6.8.0-1039.41~22.04.1",
"6.8.0-1040.42~22.04.1",
"6.8.0-1041.43~22.04.1",
"6.8.0-1042.44~22.04.1",
"6.8.0-1043.45~22.04.1",
"6.8.0-1044.46~22.04.1",
"6.8.0-1045.47~22.04.1",
"6.8.0-1046.49~22.04.1",
"6.8.0-1047.50~22.04.1",
"6.8.0-1050.53~22.04.1",
"6.8.0-1051.54~22.04.1",
"6.8.0-1052.55~22.04.1",
"6.8.0-1053.56~22.04.1",
"6.8.0-1055.58~22.04.1",
"6.8.0-1057.60~22.04.1",
"6.8.0-1060.63~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-5.19-cloud-tools-5.19.0-1027",
"binary_version": "5.19.0-1027.30~22.04.2"
},
{
"binary_name": "linux-azure-5.19-headers-5.19.0-1027",
"binary_version": "5.19.0-1027.30~22.04.2"
},
{
"binary_name": "linux-azure-5.19-tools-5.19.0-1027",
"binary_version": "5.19.0-1027.30~22.04.2"
},
{
"binary_name": "linux-buildinfo-5.19.0-1027-azure",
"binary_version": "5.19.0-1027.30~22.04.2"
},
{
"binary_name": "linux-cloud-tools-5.19.0-1027-azure",
"binary_version": "5.19.0-1027.30~22.04.2"
},
{
"binary_name": "linux-headers-5.19.0-1027-azure",
"binary_version": "5.19.0-1027.30~22.04.2"
},
{
"binary_name": "linux-image-unsigned-5.19.0-1027-azure",
"binary_version": "5.19.0-1027.30~22.04.2"
},
{
"binary_name": "linux-modules-5.19.0-1027-azure",
"binary_version": "5.19.0-1027.30~22.04.2"
},
{
"binary_name": "linux-modules-extra-5.19.0-1027-azure",
"binary_version": "5.19.0-1027.30~22.04.2"
},
{
"binary_name": "linux-tools-5.19.0-1027-azure",
"binary_version": "5.19.0-1027.30~22.04.2"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-azure-5.19",
"purl": "pkg:deb/ubuntu/linux-azure-5.19@5.19.0-1027.30~22.04.2?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.19.0-1020.21~22.04.1",
"5.19.0-1021.22~22.04.1",
"5.19.0-1022.23~22.04.1",
"5.19.0-1023.24~22.04.1",
"5.19.0-1025.28~22.04.1",
"5.19.0-1026.29~22.04.1",
"5.19.0-1027.30~22.04.2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-6.2-cloud-tools-6.2.0-1019",
"binary_version": "6.2.0-1019.19~22.04.1"
},
{
"binary_name": "linux-azure-6.2-headers-6.2.0-1019",
"binary_version": "6.2.0-1019.19~22.04.1"
},
{
"binary_name": "linux-azure-6.2-tools-6.2.0-1019",
"binary_version": "6.2.0-1019.19~22.04.1"
},
{
"binary_name": "linux-buildinfo-6.2.0-1019-azure",
"binary_version": "6.2.0-1019.19~22.04.1"
},
{
"binary_name": "linux-cloud-tools-6.2.0-1019-azure",
"binary_version": "6.2.0-1019.19~22.04.1"
},
{
"binary_name": "linux-headers-6.2.0-1019-azure",
"binary_version": "6.2.0-1019.19~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.2.0-1019-azure",
"binary_version": "6.2.0-1019.19~22.04.1"
},
{
"binary_name": "linux-modules-6.2.0-1019-azure",
"binary_version": "6.2.0-1019.19~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.2.0-1019-azure",
"binary_version": "6.2.0-1019.19~22.04.1"
},
{
"binary_name": "linux-tools-6.2.0-1019-azure",
"binary_version": "6.2.0-1019.19~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-azure-6.2",
"purl": "pkg:deb/ubuntu/linux-azure-6.2@6.2.0-1019.19~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.2.0-1005.5~22.04.1",
"6.2.0-1006.6~22.04.1",
"6.2.0-1007.7~22.04.1",
"6.2.0-1008.8~22.04.1",
"6.2.0-1009.9~22.04.3",
"6.2.0-1011.11~22.04.1",
"6.2.0-1012.12~22.04.1",
"6.2.0-1014.14~22.04.1",
"6.2.0-1015.15~22.04.1",
"6.2.0-1016.16~22.04.1",
"6.2.0-1017.17~22.04.1",
"6.2.0-1018.18~22.04.1",
"6.2.0-1019.19~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-6.5-cloud-tools-6.5.0-1025",
"binary_version": "6.5.0-1025.26~22.04.1"
},
{
"binary_name": "linux-azure-6.5-headers-6.5.0-1025",
"binary_version": "6.5.0-1025.26~22.04.1"
},
{
"binary_name": "linux-azure-6.5-tools-6.5.0-1025",
"binary_version": "6.5.0-1025.26~22.04.1"
},
{
"binary_name": "linux-buildinfo-6.5.0-1025-azure",
"binary_version": "6.5.0-1025.26~22.04.1"
},
{
"binary_name": "linux-cloud-tools-6.5.0-1025-azure",
"binary_version": "6.5.0-1025.26~22.04.1"
},
{
"binary_name": "linux-headers-6.5.0-1025-azure",
"binary_version": "6.5.0-1025.26~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.5.0-1025-azure",
"binary_version": "6.5.0-1025.26~22.04.1"
},
{
"binary_name": "linux-modules-6.5.0-1025-azure",
"binary_version": "6.5.0-1025.26~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.5.0-1025-azure",
"binary_version": "6.5.0-1025.26~22.04.1"
},
{
"binary_name": "linux-tools-6.5.0-1025-azure",
"binary_version": "6.5.0-1025.26~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-azure-6.5",
"purl": "pkg:deb/ubuntu/linux-azure-6.5@6.5.0-1025.26~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.5.0-1007.7~22.04.1",
"6.5.0-1009.9~22.04.1",
"6.5.0-1010.10~22.04.1",
"6.5.0-1011.11~22.04.1",
"6.5.0-1015.15~22.04.1",
"6.5.0-1016.16~22.04.1",
"6.5.0-1017.17~22.04.1",
"6.5.0-1018.19~22.04.2",
"6.5.0-1019.20~22.04.1",
"6.5.0-1021.22~22.04.1",
"6.5.0-1022.23~22.04.1",
"6.5.0-1023.24~22.04.1",
"6.5.0-1024.25~22.04.1",
"6.5.0-1025.26~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-6.8-cloud-tools-6.8.0-1062",
"binary_version": "6.8.0-1062.69~22.04.1"
},
{
"binary_name": "linux-azure-6.8-headers-6.8.0-1062",
"binary_version": "6.8.0-1062.69~22.04.1"
},
{
"binary_name": "linux-azure-6.8-tools-6.8.0-1062",
"binary_version": "6.8.0-1062.69~22.04.1"
},
{
"binary_name": "linux-buildinfo-6.8.0-1062-azure",
"binary_version": "6.8.0-1062.69~22.04.1"
},
{
"binary_name": "linux-cloud-tools-6.8.0-1062-azure",
"binary_version": "6.8.0-1062.69~22.04.1"
},
{
"binary_name": "linux-headers-6.8.0-1062-azure",
"binary_version": "6.8.0-1062.69~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1062-azure",
"binary_version": "6.8.0-1062.69~22.04.1"
},
{
"binary_name": "linux-modules-6.8.0-1062-azure",
"binary_version": "6.8.0-1062.69~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.8.0-1062-azure",
"binary_version": "6.8.0-1062.69~22.04.1"
},
{
"binary_name": "linux-modules-involflt-6.8.0-1062-azure",
"binary_version": "6.8.0-1062.69~22.04.1"
},
{
"binary_name": "linux-modules-iwlwifi-6.8.0-1062-azure",
"binary_version": "6.8.0-1062.69~22.04.1"
},
{
"binary_name": "linux-tools-6.8.0-1062-azure",
"binary_version": "6.8.0-1062.69~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-azure-6.8",
"purl": "pkg:deb/ubuntu/linux-azure-6.8@6.8.0-1062.69~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1008.8~22.04.1",
"6.8.0-1009.9~22.04.1",
"6.8.0-1010.10~22.04.1",
"6.8.0-1012.14~22.04.1",
"6.8.0-1013.15~22.04.1",
"6.8.0-1014.16~22.04.1",
"6.8.0-1015.17~22.04.2",
"6.8.0-1017.20~22.04.1",
"6.8.0-1018.21~22.04.1",
"6.8.0-1020.23~22.04.1",
"6.8.0-1021.25~22.04.1",
"6.8.0-1025.30~22.04.1",
"6.8.0-1026.31~22.04.1",
"6.8.0-1027.32~22.04.1",
"6.8.0-1028.33~22.04.1",
"6.8.0-1029.34~22.04.1",
"6.8.0-1030.35~22.04.1",
"6.8.0-1031.36~22.04.1",
"6.8.0-1034.39~22.04.1",
"6.8.0-1036.42~22.04.1",
"6.8.0-1040.46~22.04.1",
"6.8.0-1041.47~22.04.1",
"6.8.0-1044.50~22.04.1",
"6.8.0-1051.57~22.04.1",
"6.8.0-1052.58~22.04.1",
"6.8.0-1059.65~22.04.1",
"6.8.0-1062.69~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-image-unsigned-5.19.0-1027-azure-fde",
"binary_version": "5.19.0-1027.30~22.04.2.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-azure-fde-5.19",
"purl": "pkg:deb/ubuntu/linux-azure-fde-5.19@5.19.0-1027.30~22.04.2.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.19.0-1025.28~22.04.1.1",
"5.19.0-1026.29~22.04.1.1",
"5.19.0-1027.30~22.04.2.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-image-unsigned-6.2.0-1019-azure-fde",
"binary_version": "6.2.0-1019.19~22.04.1.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-azure-fde-6.2",
"purl": "pkg:deb/ubuntu/linux-azure-fde-6.2@6.2.0-1019.19~22.04.1.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.2.0-1008.8~22.04.1.1",
"6.2.0-1009.9~22.04.3.1",
"6.2.0-1011.11~22.04.1.1",
"6.2.0-1012.12~22.04.1.1",
"6.2.0-1014.14~22.04.1.1",
"6.2.0-1015.15~22.04.1.1",
"6.2.0-1016.16~22.04.1.1",
"6.2.0-1017.17~22.04.1.1",
"6.2.0-1018.18~22.04.1.1",
"6.2.0-1019.19~22.04.1.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-fde-6.8-cloud-tools-6.8.0-1061",
"binary_version": "6.8.0-1061.68~22.04.1"
},
{
"binary_name": "linux-azure-fde-6.8-headers-6.8.0-1061",
"binary_version": "6.8.0-1061.68~22.04.1"
},
{
"binary_name": "linux-azure-fde-6.8-tools-6.8.0-1061",
"binary_version": "6.8.0-1061.68~22.04.1"
},
{
"binary_name": "linux-buildinfo-6.8.0-1061-azure-fde",
"binary_version": "6.8.0-1061.68~22.04.1"
},
{
"binary_name": "linux-cloud-tools-6.8.0-1061-azure-fde",
"binary_version": "6.8.0-1061.68~22.04.1"
},
{
"binary_name": "linux-headers-6.8.0-1061-azure-fde",
"binary_version": "6.8.0-1061.68~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1061-azure-fde",
"binary_version": "6.8.0-1061.68~22.04.1"
},
{
"binary_name": "linux-modules-6.8.0-1061-azure-fde",
"binary_version": "6.8.0-1061.68~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.8.0-1061-azure-fde",
"binary_version": "6.8.0-1061.68~22.04.1"
},
{
"binary_name": "linux-modules-involflt-6.8.0-1061-azure-fde",
"binary_version": "6.8.0-1061.68~22.04.1"
},
{
"binary_name": "linux-modules-iwlwifi-6.8.0-1061-azure-fde",
"binary_version": "6.8.0-1061.68~22.04.1"
},
{
"binary_name": "linux-tools-6.8.0-1061-azure-fde",
"binary_version": "6.8.0-1061.68~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-azure-fde-6.8",
"purl": "pkg:deb/ubuntu/linux-azure-fde-6.8@6.8.0-1061.68~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1041.48~22.04.1",
"6.8.0-1042.49~22.04.1",
"6.8.0-1044.51~22.04.1",
"6.8.0-1046.53~22.04.1",
"6.8.0-1053.60~22.04.1",
"6.8.0-1058.65~22.04.1",
"6.8.0-1061.68~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.19.0-1030-gcp",
"binary_version": "5.19.0-1030.32~22.04.1"
},
{
"binary_name": "linux-gcp-5.19-headers-5.19.0-1030",
"binary_version": "5.19.0-1030.32~22.04.1"
},
{
"binary_name": "linux-gcp-5.19-tools-5.19.0-1030",
"binary_version": "5.19.0-1030.32~22.04.1"
},
{
"binary_name": "linux-headers-5.19.0-1030-gcp",
"binary_version": "5.19.0-1030.32~22.04.1"
},
{
"binary_name": "linux-image-unsigned-5.19.0-1030-gcp",
"binary_version": "5.19.0-1030.32~22.04.1"
},
{
"binary_name": "linux-modules-5.19.0-1030-gcp",
"binary_version": "5.19.0-1030.32~22.04.1"
},
{
"binary_name": "linux-modules-extra-5.19.0-1030-gcp",
"binary_version": "5.19.0-1030.32~22.04.1"
},
{
"binary_name": "linux-tools-5.19.0-1030-gcp",
"binary_version": "5.19.0-1030.32~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-gcp-5.19",
"purl": "pkg:deb/ubuntu/linux-gcp-5.19@5.19.0-1030.32~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.19.0-1020.22~22.04.2",
"5.19.0-1021.23~22.04.1",
"5.19.0-1022.24~22.04.1",
"5.19.0-1024.26~22.04.1",
"5.19.0-1025.27~22.04.1",
"5.19.0-1026.28~22.04.1",
"5.19.0-1027.29~22.04.1",
"5.19.0-1030.32~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.2.0-1021-gcp",
"binary_version": "6.2.0-1021.23~22.04.1"
},
{
"binary_name": "linux-gcp-6.2-headers-6.2.0-1021",
"binary_version": "6.2.0-1021.23~22.04.1"
},
{
"binary_name": "linux-gcp-6.2-tools-6.2.0-1021",
"binary_version": "6.2.0-1021.23~22.04.1"
},
{
"binary_name": "linux-headers-6.2.0-1021-gcp",
"binary_version": "6.2.0-1021.23~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.2.0-1021-gcp",
"binary_version": "6.2.0-1021.23~22.04.1"
},
{
"binary_name": "linux-modules-6.2.0-1021-gcp",
"binary_version": "6.2.0-1021.23~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.2.0-1021-gcp",
"binary_version": "6.2.0-1021.23~22.04.1"
},
{
"binary_name": "linux-tools-6.2.0-1021-gcp",
"binary_version": "6.2.0-1021.23~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-gcp-6.2",
"purl": "pkg:deb/ubuntu/linux-gcp-6.2@6.2.0-1021.23~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.2.0-1009.9~22.04.3",
"6.2.0-1010.10~22.04.1",
"6.2.0-1011.11~22.04.1",
"6.2.0-1011.11~22.04.3",
"6.2.0-1012.12~22.04.1",
"6.2.0-1013.13~22.04.1",
"6.2.0-1014.14~22.04.1",
"6.2.0-1016.18~22.04.1",
"6.2.0-1017.19~22.04.1",
"6.2.0-1018.20~22.04.1",
"6.2.0-1019.21~22.04.1",
"6.2.0-1021.23~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.5.0-1025-gcp",
"binary_version": "6.5.0-1025.27~22.04.1"
},
{
"binary_name": "linux-gcp-6.5-headers-6.5.0-1025",
"binary_version": "6.5.0-1025.27~22.04.1"
},
{
"binary_name": "linux-gcp-6.5-tools-6.5.0-1025",
"binary_version": "6.5.0-1025.27~22.04.1"
},
{
"binary_name": "linux-headers-6.5.0-1025-gcp",
"binary_version": "6.5.0-1025.27~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.5.0-1025-gcp",
"binary_version": "6.5.0-1025.27~22.04.1"
},
{
"binary_name": "linux-modules-6.5.0-1025-gcp",
"binary_version": "6.5.0-1025.27~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.5.0-1025-gcp",
"binary_version": "6.5.0-1025.27~22.04.1"
},
{
"binary_name": "linux-modules-iwlwifi-6.5.0-1025-gcp",
"binary_version": "6.5.0-1025.27~22.04.1"
},
{
"binary_name": "linux-tools-6.5.0-1025-gcp",
"binary_version": "6.5.0-1025.27~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-gcp-6.5",
"purl": "pkg:deb/ubuntu/linux-gcp-6.5@6.5.0-1025.27~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.5.0-1010.10~22.04.3",
"6.5.0-1011.11~22.04.1",
"6.5.0-1013.13~22.04.1",
"6.5.0-1014.14~22.04.1",
"6.5.0-1015.15~22.04.1",
"6.5.0-1016.16~22.04.1",
"6.5.0-1017.17~22.04.1",
"6.5.0-1018.18~22.04.1",
"6.5.0-1020.20~22.04.1",
"6.5.0-1022.24~22.04.1",
"6.5.0-1023.25~22.04.1",
"6.5.0-1024.26~22.04.1",
"6.5.0-1025.27~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-1064-gcp",
"binary_version": "6.8.0-1064.72~22.04.1"
},
{
"binary_name": "linux-buildinfo-6.8.0-1064-gcp-64k",
"binary_version": "6.8.0-1064.72~22.04.1"
},
{
"binary_name": "linux-gcp-6.8-headers-6.8.0-1064",
"binary_version": "6.8.0-1064.72~22.04.1"
},
{
"binary_name": "linux-gcp-6.8-tools-6.8.0-1064",
"binary_version": "6.8.0-1064.72~22.04.1"
},
{
"binary_name": "linux-headers-6.8.0-1064-gcp",
"binary_version": "6.8.0-1064.72~22.04.1"
},
{
"binary_name": "linux-headers-6.8.0-1064-gcp-64k",
"binary_version": "6.8.0-1064.72~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1064-gcp",
"binary_version": "6.8.0-1064.72~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1064-gcp-64k",
"binary_version": "6.8.0-1064.72~22.04.1"
},
{
"binary_name": "linux-modules-6.8.0-1064-gcp",
"binary_version": "6.8.0-1064.72~22.04.1"
},
{
"binary_name": "linux-modules-6.8.0-1064-gcp-64k",
"binary_version": "6.8.0-1064.72~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.8.0-1064-gcp",
"binary_version": "6.8.0-1064.72~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.8.0-1064-gcp-64k",
"binary_version": "6.8.0-1064.72~22.04.1"
},
{
"binary_name": "linux-tools-6.8.0-1064-gcp",
"binary_version": "6.8.0-1064.72~22.04.1"
},
{
"binary_name": "linux-tools-6.8.0-1064-gcp-64k",
"binary_version": "6.8.0-1064.72~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-gcp-6.8",
"purl": "pkg:deb/ubuntu/linux-gcp-6.8@6.8.0-1064.72~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1010.11~22.04.1",
"6.8.0-1011.12~22.04.1",
"6.8.0-1012.13~22.04.1",
"6.8.0-1013.14~22.04.1",
"6.8.0-1014.16~22.04.1",
"6.8.0-1015.17~22.04.1",
"6.8.0-1016.18~22.04.1",
"6.8.0-1017.19~22.04.1",
"6.8.0-1018.20~22.04.1",
"6.8.0-1019.21~22.04.1",
"6.8.0-1020.22~22.04.1",
"6.8.0-1021.23~22.04.1",
"6.8.0-1024.26~22.04.1",
"6.8.0-1025.27~22.04.1",
"6.8.0-1026.28~22.04.1",
"6.8.0-1027.29~22.04.1",
"6.8.0-1028.30~22.04.1",
"6.8.0-1029.31~22.04.1",
"6.8.0-1030.32~22.04.1",
"6.8.0-1031.33~22.04.1",
"6.8.0-1032.34~22.04.1",
"6.8.0-1033.35~22.04.1",
"6.8.0-1034.36~22.04.2",
"6.8.0-1036.38~22.04.1",
"6.8.0-1037.39~22.04.1",
"6.8.0-1040.42~22.04.1",
"6.8.0-1041.43~22.04.1",
"6.8.0-1042.45~22.04.1",
"6.8.0-1043.46~22.04.1",
"6.8.0-1044.47~22.04.1",
"6.8.0-1045.48~22.04.1",
"6.8.0-1046.49~22.04.1",
"6.8.0-1047.50~22.04.2",
"6.8.0-1048.51~22.04.1",
"6.8.0-1052.55~22.04.1",
"6.8.0-1053.56~22.04.1",
"6.8.0-1054.57~22.04.1",
"6.8.0-1058.61~22.04.1",
"6.8.0-1060.63~22.04.1",
"6.8.0-1063.69~22.04.1",
"6.8.0-1064.72~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.19.0-50-generic",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-buildinfo-5.19.0-50-generic-64k",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-buildinfo-5.19.0-50-generic-lpae",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-cloud-tools-5.19.0-50-generic",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-headers-5.19.0-50-generic",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-headers-5.19.0-50-generic-64k",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-headers-5.19.0-50-generic-lpae",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-hwe-5.19-cloud-tools-5.19.0-50",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-hwe-5.19-cloud-tools-common",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-hwe-5.19-headers-5.19.0-50",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-hwe-5.19-tools-5.19.0-50",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-hwe-5.19-tools-common",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-hwe-5.19-tools-host",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-image-5.19.0-50-generic",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-image-5.19.0-50-generic-lpae",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-image-unsigned-5.19.0-50-generic",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-image-unsigned-5.19.0-50-generic-64k",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-modules-5.19.0-50-generic",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-modules-5.19.0-50-generic-64k",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-modules-5.19.0-50-generic-lpae",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-modules-extra-5.19.0-50-generic",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-modules-ipu6-5.19.0-50-generic",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-modules-ivsc-5.19.0-50-generic",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-modules-iwlwifi-5.19.0-50-generic",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-source-5.19.0",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-tools-5.19.0-50-generic",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-tools-5.19.0-50-generic-64k",
"binary_version": "5.19.0-50.50"
},
{
"binary_name": "linux-tools-5.19.0-50-generic-lpae",
"binary_version": "5.19.0-50.50"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-hwe-5.19",
"purl": "pkg:deb/ubuntu/linux-hwe-5.19@5.19.0-50.50?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.19.0-28.29~22.04.1",
"5.19.0-32.33~22.04.1",
"5.19.0-35.36~22.04.1",
"5.19.0-38.39~22.04.1",
"5.19.0-40.41~22.04.1",
"5.19.0-41.42~22.04.1",
"5.19.0-42.43~22.04.1",
"5.19.0-43.44~22.04.1",
"5.19.0-45.46~22.04.1",
"5.19.0-46.47~22.04.1",
"5.19.0-50.50"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.2.0-39-generic",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-buildinfo-6.2.0-39-generic-64k",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-buildinfo-6.2.0-39-generic-lpae",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-cloud-tools-6.2.0-39-generic",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-headers-6.2.0-39-generic",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-headers-6.2.0-39-generic-64k",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-headers-6.2.0-39-generic-lpae",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-hwe-6.2-cloud-tools-6.2.0-39",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-hwe-6.2-cloud-tools-common",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-hwe-6.2-headers-6.2.0-39",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-hwe-6.2-tools-6.2.0-39",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-hwe-6.2-tools-common",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-hwe-6.2-tools-host",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-image-6.2.0-39-generic",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-image-6.2.0-39-generic-lpae",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.2.0-39-generic",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.2.0-39-generic-64k",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-modules-6.2.0-39-generic",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-modules-6.2.0-39-generic-64k",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-modules-6.2.0-39-generic-lpae",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.2.0-39-generic",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-modules-ipu6-6.2.0-39-generic",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-modules-ivsc-6.2.0-39-generic",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-modules-iwlwifi-6.2.0-39-generic",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-source-6.2.0",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-tools-6.2.0-39-generic",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-tools-6.2.0-39-generic-64k",
"binary_version": "6.2.0-39.40~22.04.1"
},
{
"binary_name": "linux-tools-6.2.0-39-generic-lpae",
"binary_version": "6.2.0-39.40~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-hwe-6.2",
"purl": "pkg:deb/ubuntu/linux-hwe-6.2@6.2.0-39.40~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.2.0-25.25~22.04.2",
"6.2.0-26.26~22.04.1",
"6.2.0-31.31~22.04.1",
"6.2.0-32.32~22.04.1",
"6.2.0-33.33~22.04.1",
"6.2.0-34.34~22.04.1",
"6.2.0-35.35~22.04.1",
"6.2.0-36.37~22.04.1",
"6.2.0-37.38~22.04.1",
"6.2.0-39.40~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.5.0-45-generic",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-buildinfo-6.5.0-45-generic-64k",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-cloud-tools-6.5.0-45-generic",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-headers-6.5.0-45-generic",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-headers-6.5.0-45-generic-64k",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-hwe-6.5-cloud-tools-6.5.0-45",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-hwe-6.5-cloud-tools-common",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-hwe-6.5-headers-6.5.0-45",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-hwe-6.5-tools-6.5.0-45",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-hwe-6.5-tools-common",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-hwe-6.5-tools-host",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-image-6.5.0-45-generic",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.5.0-45-generic",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.5.0-45-generic-64k",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-modules-6.5.0-45-generic",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-modules-6.5.0-45-generic-64k",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.5.0-45-generic",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-modules-ipu6-6.5.0-45-generic",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-modules-ivsc-6.5.0-45-generic",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-modules-iwlwifi-6.5.0-45-generic",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-source-6.5.0",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-tools-6.5.0-45-generic",
"binary_version": "6.5.0-45.45~22.04.1"
},
{
"binary_name": "linux-tools-6.5.0-45-generic-64k",
"binary_version": "6.5.0-45.45~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-hwe-6.5",
"purl": "pkg:deb/ubuntu/linux-hwe-6.5@6.5.0-45.45~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.5.0-14.14~22.04.1",
"6.5.0-15.15~22.04.1",
"6.5.0-17.17~22.04.1",
"6.5.0-18.18~22.04.1",
"6.5.0-21.21~22.04.1",
"6.5.0-25.25~22.04.1",
"6.5.0-26.26~22.04.1",
"6.5.0-27.28~22.04.1",
"6.5.0-28.29~22.04.1",
"6.5.0-35.35~22.04.1",
"6.5.0-41.41~22.04.2",
"6.5.0-44.44~22.04.1",
"6.5.0-45.45~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-134-generic",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-buildinfo-6.8.0-134-generic-64k",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-cloud-tools-6.8.0-134-generic",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-headers-6.8.0-134-generic",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-headers-6.8.0-134-generic-64k",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-hwe-6.8-cloud-tools-6.8.0-134",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-hwe-6.8-headers-6.8.0-134",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-hwe-6.8-tools-6.8.0-134",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-image-6.8.0-134-generic",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-134-generic",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-134-generic-64k",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-modules-6.8.0-134-generic",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-modules-6.8.0-134-generic-64k",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.8.0-134-generic",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-modules-ipu6-6.8.0-134-generic",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-modules-iwlwifi-6.8.0-134-generic",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-modules-usbio-6.8.0-134-generic",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-tools-6.8.0-134-generic",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-tools-6.8.0-134-generic-64k",
"binary_version": "6.8.0-134.134~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-hwe-6.8",
"purl": "pkg:deb/ubuntu/linux-hwe-6.8@6.8.0-134.134~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-38.38~22.04.1",
"6.8.0-39.39~22.04.1",
"6.8.0-40.40~22.04.3",
"6.8.0-45.45~22.04.1",
"6.8.0-47.47~22.04.1",
"6.8.0-48.48~22.04.1",
"6.8.0-49.49~22.04.1",
"6.8.0-50.51~22.04.1",
"6.8.0-51.52~22.04.1",
"6.8.0-52.53~22.04.1",
"6.8.0-57.59~22.04.1",
"6.8.0-58.60~22.04.1",
"6.8.0-59.61~22.04.1",
"6.8.0-60.63~22.04.1",
"6.8.0-64.67~22.04.1",
"6.8.0-65.68~22.04.1",
"6.8.0-78.78~22.04.1",
"6.8.0-79.79~22.04.1",
"6.8.0-83.83~22.04.1",
"6.8.0-84.84~22.04.1",
"6.8.0-85.85~22.04.1",
"6.8.0-86.87~22.04.1",
"6.8.0-87.88~22.04.1",
"6.8.0-88.89~22.04.2",
"6.8.0-90.91~22.04.1",
"6.8.0-94.96~22.04.1",
"6.8.0-100.100~22.04.1",
"6.8.0-101.101~22.04.1",
"6.8.0-106.106~22.04.1",
"6.8.0-107.107~22.04.1",
"6.8.0-110.110~22.04.1",
"6.8.0-111.111~22.04.1",
"6.8.0-117.117~22.04.1",
"6.8.0-124.124~22.04.1",
"6.8.0-134.134~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-1060-ibm",
"binary_version": "6.8.0-1060.61~22.04.1"
},
{
"binary_name": "linux-headers-6.8.0-1060-ibm",
"binary_version": "6.8.0-1060.61~22.04.1"
},
{
"binary_name": "linux-ibm-6.8-headers-6.8.0-1060",
"binary_version": "6.8.0-1060.61~22.04.1"
},
{
"binary_name": "linux-ibm-6.8-tools-6.8.0-1060",
"binary_version": "6.8.0-1060.61~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1060-ibm",
"binary_version": "6.8.0-1060.61~22.04.1"
},
{
"binary_name": "linux-modules-6.8.0-1060-ibm",
"binary_version": "6.8.0-1060.61~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.8.0-1060-ibm",
"binary_version": "6.8.0-1060.61~22.04.1"
},
{
"binary_name": "linux-modules-iwlwifi-6.8.0-1060-ibm",
"binary_version": "6.8.0-1060.61~22.04.1"
},
{
"binary_name": "linux-tools-6.8.0-1060-ibm",
"binary_version": "6.8.0-1060.61~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-ibm-6.8",
"purl": "pkg:deb/ubuntu/linux-ibm-6.8@6.8.0-1060.61~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1008.8~22.04.1",
"6.8.0-1010.10~22.04.1",
"6.8.0-1011.11~22.04.1",
"6.8.0-1012.12~22.04.1",
"6.8.0-1013.13~22.04.1",
"6.8.0-1014.14~22.04.1",
"6.8.0-1015.15~22.04.1",
"6.8.0-1016.16~22.04.1",
"6.8.0-1017.17~22.04.1",
"6.8.0-1018.18~22.04.1",
"6.8.0-1019.19~22.04.1",
"6.8.0-1023.23~22.04.1",
"6.8.0-1024.24~22.04.1",
"6.8.0-1025.25~22.04.1",
"6.8.0-1026.26~22.04.1",
"6.8.0-1027.27~22.04.1",
"6.8.0-1028.28~22.04.1",
"6.8.0-1029.29~22.04.1",
"6.8.0-1030.30~22.04.1",
"6.8.0-1033.33~22.04.1",
"6.8.0-1036.36~22.04.1",
"6.8.0-1037.37~22.04.1",
"6.8.0-1038.38~22.04.1",
"6.8.0-1039.39~22.04.1",
"6.8.0-1040.40~22.04.1",
"6.8.0-1041.41~22.04.1",
"6.8.0-1042.42~22.04.1",
"6.8.0-1043.43~22.04.1",
"6.8.0-1044.44~22.04.1",
"6.8.0-1045.45~22.04.1",
"6.8.0-1049.49~22.04.1",
"6.8.0-1050.50~22.04.1",
"6.8.0-1051.51~22.04.1",
"6.8.0-1052.52~22.04.1",
"6.8.0-1055.56~22.04.1",
"6.8.0-1057.58~22.04.1",
"6.8.0-1060.61~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.15.0-1073-intel-iot-realtime",
"binary_version": "5.15.0-1073.75"
},
{
"binary_name": "linux-cloud-tools-5.15.0-1073-intel-iot-realtime",
"binary_version": "5.15.0-1073.75"
},
{
"binary_name": "linux-headers-5.15.0-1073-intel-iot-realtime",
"binary_version": "5.15.0-1073.75"
},
{
"binary_name": "linux-image-unsigned-5.15.0-1073-intel-iot-realtime",
"binary_version": "5.15.0-1073.75"
},
{
"binary_name": "linux-intel-iot-realtime-cloud-tools-5.15.0-1073",
"binary_version": "5.15.0-1073.75"
},
{
"binary_name": "linux-intel-iot-realtime-cloud-tools-common",
"binary_version": "5.15.0-1073.75"
},
{
"binary_name": "linux-intel-iot-realtime-headers-5.15.0-1073",
"binary_version": "5.15.0-1073.75"
},
{
"binary_name": "linux-intel-iot-realtime-tools-5.15.0-1073",
"binary_version": "5.15.0-1073.75"
},
{
"binary_name": "linux-intel-iot-realtime-tools-common",
"binary_version": "5.15.0-1073.75"
},
{
"binary_name": "linux-intel-iot-realtime-tools-host",
"binary_version": "5.15.0-1073.75"
},
{
"binary_name": "linux-modules-5.15.0-1073-intel-iot-realtime",
"binary_version": "5.15.0-1073.75"
},
{
"binary_name": "linux-modules-extra-5.15.0-1073-intel-iot-realtime",
"binary_version": "5.15.0-1073.75"
},
{
"binary_name": "linux-tools-5.15.0-1073-intel-iot-realtime",
"binary_version": "5.15.0-1073.75"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-intel-iot-realtime",
"purl": "pkg:deb/ubuntu/linux-intel-iot-realtime@5.15.0-1073.75?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.15.0-1073.75"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.19.0-1030-lowlatency",
"binary_version": "5.19.0-1030.30"
},
{
"binary_name": "linux-buildinfo-5.19.0-1030-lowlatency-64k",
"binary_version": "5.19.0-1030.30"
},
{
"binary_name": "linux-cloud-tools-5.19.0-1030-lowlatency",
"binary_version": "5.19.0-1030.30"
},
{
"binary_name": "linux-headers-5.19.0-1030-lowlatency",
"binary_version": "5.19.0-1030.30"
},
{
"binary_name": "linux-headers-5.19.0-1030-lowlatency-64k",
"binary_version": "5.19.0-1030.30"
},
{
"binary_name": "linux-image-unsigned-5.19.0-1030-lowlatency",
"binary_version": "5.19.0-1030.30"
},
{
"binary_name": "linux-image-unsigned-5.19.0-1030-lowlatency-64k",
"binary_version": "5.19.0-1030.30"
},
{
"binary_name": "linux-lowlatency-hwe-5.19-cloud-tools-5.19.0-1030",
"binary_version": "5.19.0-1030.30"
},
{
"binary_name": "linux-lowlatency-hwe-5.19-cloud-tools-common",
"binary_version": "5.19.0-1030.30"
},
{
"binary_name": "linux-lowlatency-hwe-5.19-headers-5.19.0-1030",
"binary_version": "5.19.0-1030.30"
},
{
"binary_name": "linux-lowlatency-hwe-5.19-tools-5.19.0-1030",
"binary_version": "5.19.0-1030.30"
},
{
"binary_name": "linux-lowlatency-hwe-5.19-tools-common",
"binary_version": "5.19.0-1030.30"
},
{
"binary_name": "linux-lowlatency-hwe-5.19-tools-host",
"binary_version": "5.19.0-1030.30"
},
{
"binary_name": "linux-modules-5.19.0-1030-lowlatency",
"binary_version": "5.19.0-1030.30"
},
{
"binary_name": "linux-modules-5.19.0-1030-lowlatency-64k",
"binary_version": "5.19.0-1030.30"
},
{
"binary_name": "linux-modules-ipu6-5.19.0-1030-lowlatency",
"binary_version": "5.19.0-1030.30"
},
{
"binary_name": "linux-modules-ivsc-5.19.0-1030-lowlatency",
"binary_version": "5.19.0-1030.30"
},
{
"binary_name": "linux-modules-iwlwifi-5.19.0-1030-lowlatency",
"binary_version": "5.19.0-1030.30"
},
{
"binary_name": "linux-tools-5.19.0-1030-lowlatency",
"binary_version": "5.19.0-1030.30"
},
{
"binary_name": "linux-tools-5.19.0-1030-lowlatency-64k",
"binary_version": "5.19.0-1030.30"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-lowlatency-hwe-5.19",
"purl": "pkg:deb/ubuntu/linux-lowlatency-hwe-5.19@5.19.0-1030.30?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.19.0-1017.18~22.04.1",
"5.19.0-1018.19~22.04.1",
"5.19.0-1021.22~22.04.1",
"5.19.0-1022.23~22.04.1",
"5.19.0-1023.24~22.04.1",
"5.19.0-1024.25~22.04.1",
"5.19.0-1025.26~22.04.1",
"5.19.0-1027.28~22.04.1",
"5.19.0-1028.29~22.04.1",
"5.19.0-1030.30"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.2.0-1018-lowlatency",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-buildinfo-6.2.0-1018-lowlatency-64k",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-cloud-tools-6.2.0-1018-lowlatency",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-headers-6.2.0-1018-lowlatency",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-headers-6.2.0-1018-lowlatency-64k",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.2.0-1018-lowlatency",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.2.0-1018-lowlatency-64k",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.2-cloud-tools-6.2.0-1018",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.2-cloud-tools-common",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.2-headers-6.2.0-1018",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.2-tools-6.2.0-1018",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.2-tools-common",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.2-tools-host",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-modules-6.2.0-1018-lowlatency",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-modules-6.2.0-1018-lowlatency-64k",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-modules-ipu6-6.2.0-1018-lowlatency",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-modules-ivsc-6.2.0-1018-lowlatency",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-modules-iwlwifi-6.2.0-1018-lowlatency",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-tools-6.2.0-1018-lowlatency",
"binary_version": "6.2.0-1018.18~22.04.1"
},
{
"binary_name": "linux-tools-6.2.0-1018-lowlatency-64k",
"binary_version": "6.2.0-1018.18~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-lowlatency-hwe-6.2",
"purl": "pkg:deb/ubuntu/linux-lowlatency-hwe-6.2@6.2.0-1018.18~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.2.0-1008.8~22.04.1",
"6.2.0-1009.9~22.04.1",
"6.2.0-1011.11~22.04.1",
"6.2.0-1012.12~22.04.1",
"6.2.0-1013.13~22.04.1",
"6.2.0-1014.14~22.04.1",
"6.2.0-1015.15~22.04.1",
"6.2.0-1016.16~22.04.1",
"6.2.0-1017.17~22.04.1",
"6.2.0-1018.18~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.5.0-45-lowlatency",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-buildinfo-6.5.0-45-lowlatency-64k",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-cloud-tools-6.5.0-45-lowlatency",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-headers-6.5.0-45-lowlatency",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-headers-6.5.0-45-lowlatency-64k",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.5.0-45-lowlatency",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.5.0-45-lowlatency-64k",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.5-cloud-tools-6.5.0-45",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.5-cloud-tools-common",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.5-headers-6.5.0-45",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.5-lib-rust-6.5.0-45-lowlatency",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.5-tools-6.5.0-45",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.5-tools-common",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.5-tools-host",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-modules-6.5.0-45-lowlatency",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-modules-6.5.0-45-lowlatency-64k",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-modules-iwlwifi-6.5.0-45-lowlatency",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-tools-6.5.0-45-lowlatency",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-tools-6.5.0-45-lowlatency-64k",
"binary_version": "6.5.0-45.45.1~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-lowlatency-hwe-6.5",
"purl": "pkg:deb/ubuntu/linux-lowlatency-hwe-6.5@6.5.0-45.45.1~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.5.0-14.14.1~22.04.1",
"6.5.0-15.15.1.1~22.04.1",
"6.5.0-17.17.1.1.1~22.04.1",
"6.5.0-21.21.1~22.04.1",
"6.5.0-25.25.1~22.04.1",
"6.5.0-26.26.1~22.04.1",
"6.5.0-27.28.1~22.04.1",
"6.5.0-28.29.1~22.04.1",
"6.5.0-35.35.1~22.04.1",
"6.5.0-41.41.1~22.04.1",
"6.5.0-42.42.1~22.04.1",
"6.5.0-44.44.1~22.04.1",
"6.5.0-45.45.1~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-134-lowlatency",
"binary_version": "6.8.0-134.134.1~22.04.1"
},
{
"binary_name": "linux-buildinfo-6.8.0-134-lowlatency-64k",
"binary_version": "6.8.0-134.134.1~22.04.1"
},
{
"binary_name": "linux-cloud-tools-6.8.0-134-lowlatency",
"binary_version": "6.8.0-134.134.1~22.04.1"
},
{
"binary_name": "linux-headers-6.8.0-134-lowlatency",
"binary_version": "6.8.0-134.134.1~22.04.1"
},
{
"binary_name": "linux-headers-6.8.0-134-lowlatency-64k",
"binary_version": "6.8.0-134.134.1~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-134-lowlatency",
"binary_version": "6.8.0-134.134.1~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-134-lowlatency-64k",
"binary_version": "6.8.0-134.134.1~22.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.8-cloud-tools-6.8.0-134",
"binary_version": "6.8.0-134.134.1~22.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.8-headers-6.8.0-134",
"binary_version": "6.8.0-134.134.1~22.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.8-lib-rust-6.8.0-134-lowlatency",
"binary_version": "6.8.0-134.134.1~22.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.8-tools-6.8.0-134",
"binary_version": "6.8.0-134.134.1~22.04.1"
},
{
"binary_name": "linux-modules-6.8.0-134-lowlatency",
"binary_version": "6.8.0-134.134.1~22.04.1"
},
{
"binary_name": "linux-modules-6.8.0-134-lowlatency-64k",
"binary_version": "6.8.0-134.134.1~22.04.1"
},
{
"binary_name": "linux-modules-iwlwifi-6.8.0-134-lowlatency",
"binary_version": "6.8.0-134.134.1~22.04.1"
},
{
"binary_name": "linux-tools-6.8.0-134-lowlatency",
"binary_version": "6.8.0-134.134.1~22.04.1"
},
{
"binary_name": "linux-tools-6.8.0-134-lowlatency-64k",
"binary_version": "6.8.0-134.134.1~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-lowlatency-hwe-6.8",
"purl": "pkg:deb/ubuntu/linux-lowlatency-hwe-6.8@6.8.0-134.134.1~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-38.38.1~22.04.2",
"6.8.0-40.40.1~22.04.1",
"6.8.0-44.44.1~22.04.1",
"6.8.0-45.45.1~22.04.1",
"6.8.0-47.47.1~22.04.1",
"6.8.0-48.48.3~22.04.1",
"6.8.0-49.49.1~22.04.1",
"6.8.0-50.51.1~22.04.1",
"6.8.0-51.52.1~22.04.1",
"6.8.0-52.53.1~22.04.1",
"6.8.0-54.56.1~22.04.1",
"6.8.0-55.57.1~22.04.1",
"6.8.0-56.58.1~22.04.1",
"6.8.0-57.59.1~22.04.1",
"6.8.0-58.60.1~22.04.1",
"6.8.0-59.61.1~22.04.1",
"6.8.0-60.63.1~22.04.1",
"6.8.0-62.65.1~22.04.1",
"6.8.0-63.66.1~22.04.1",
"6.8.0-64.67.1~22.04.1",
"6.8.0-65.68.1~22.04.1",
"6.8.0-78.78.1~22.04.1",
"6.8.0-79.79.1~22.04.1",
"6.8.0-83.83.1~22.04.1",
"6.8.0-84.84.1~22.04.1",
"6.8.0-85.85.1~22.04.1",
"6.8.0-86.87.1~22.04.1",
"6.8.0-87.88.1~22.04.1",
"6.8.0-88.89.1~22.04.1",
"6.8.0-90.91.1~22.04.1",
"6.8.0-94.96.1~22.04.1",
"6.8.0-100.100.1~22.04.1",
"6.8.0-101.101.1~22.04.1",
"6.8.0-106.106.1~22.04.1",
"6.8.0-107.107.1~22.04.1",
"6.8.0-110.110.1~22.04.1",
"6.8.0-111.111.1~22.04.1",
"6.8.0-117.117.1~22.04.1",
"6.8.0-134.134.1~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.2.0-1015-nvidia",
"binary_version": "6.2.0-1015.15"
},
{
"binary_name": "linux-buildinfo-6.2.0-1015-nvidia-64k",
"binary_version": "6.2.0-1015.15"
},
{
"binary_name": "linux-headers-6.2.0-1015-nvidia",
"binary_version": "6.2.0-1015.15"
},
{
"binary_name": "linux-headers-6.2.0-1015-nvidia-64k",
"binary_version": "6.2.0-1015.15"
},
{
"binary_name": "linux-image-unsigned-6.2.0-1015-nvidia",
"binary_version": "6.2.0-1015.15"
},
{
"binary_name": "linux-image-unsigned-6.2.0-1015-nvidia-64k",
"binary_version": "6.2.0-1015.15"
},
{
"binary_name": "linux-modules-6.2.0-1015-nvidia",
"binary_version": "6.2.0-1015.15"
},
{
"binary_name": "linux-modules-6.2.0-1015-nvidia-64k",
"binary_version": "6.2.0-1015.15"
},
{
"binary_name": "linux-modules-extra-6.2.0-1015-nvidia",
"binary_version": "6.2.0-1015.15"
},
{
"binary_name": "linux-modules-nvidia-fs-6.2.0-1015-nvidia",
"binary_version": "6.2.0-1015.15"
},
{
"binary_name": "linux-modules-nvidia-fs-6.2.0-1015-nvidia-64k",
"binary_version": "6.2.0-1015.15"
},
{
"binary_name": "linux-nvidia-6.2-headers-6.2.0-1015",
"binary_version": "6.2.0-1015.15"
},
{
"binary_name": "linux-nvidia-6.2-tools-6.2.0-1015",
"binary_version": "6.2.0-1015.15"
},
{
"binary_name": "linux-nvidia-6.2-tools-host",
"binary_version": "6.2.0-1015.15"
},
{
"binary_name": "linux-tools-6.2.0-1015-nvidia",
"binary_version": "6.2.0-1015.15"
},
{
"binary_name": "linux-tools-6.2.0-1015-nvidia-64k",
"binary_version": "6.2.0-1015.15"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-nvidia-6.2",
"purl": "pkg:deb/ubuntu/linux-nvidia-6.2@6.2.0-1015.15?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.2.0-1003.3~22.04.1",
"6.2.0-1009.9",
"6.2.0-1010.10",
"6.2.0-1011.11",
"6.2.0-1012.12",
"6.2.0-1013.13",
"6.2.0-1015.15"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.5.0-1024-nvidia",
"binary_version": "6.5.0-1024.25"
},
{
"binary_name": "linux-buildinfo-6.5.0-1024-nvidia-64k",
"binary_version": "6.5.0-1024.25"
},
{
"binary_name": "linux-headers-6.5.0-1024-nvidia",
"binary_version": "6.5.0-1024.25"
},
{
"binary_name": "linux-headers-6.5.0-1024-nvidia-64k",
"binary_version": "6.5.0-1024.25"
},
{
"binary_name": "linux-image-unsigned-6.5.0-1024-nvidia",
"binary_version": "6.5.0-1024.25"
},
{
"binary_name": "linux-image-unsigned-6.5.0-1024-nvidia-64k",
"binary_version": "6.5.0-1024.25"
},
{
"binary_name": "linux-modules-6.5.0-1024-nvidia",
"binary_version": "6.5.0-1024.25"
},
{
"binary_name": "linux-modules-6.5.0-1024-nvidia-64k",
"binary_version": "6.5.0-1024.25"
},
{
"binary_name": "linux-modules-extra-6.5.0-1024-nvidia",
"binary_version": "6.5.0-1024.25"
},
{
"binary_name": "linux-modules-nvidia-fs-6.5.0-1024-nvidia",
"binary_version": "6.5.0-1024.25"
},
{
"binary_name": "linux-modules-nvidia-fs-6.5.0-1024-nvidia-64k",
"binary_version": "6.5.0-1024.25"
},
{
"binary_name": "linux-nvidia-6.5-headers-6.5.0-1024",
"binary_version": "6.5.0-1024.25"
},
{
"binary_name": "linux-nvidia-6.5-tools-6.5.0-1024",
"binary_version": "6.5.0-1024.25"
},
{
"binary_name": "linux-nvidia-6.5-tools-host",
"binary_version": "6.5.0-1024.25"
},
{
"binary_name": "linux-tools-6.5.0-1024-nvidia",
"binary_version": "6.5.0-1024.25"
},
{
"binary_name": "linux-tools-6.5.0-1024-nvidia-64k",
"binary_version": "6.5.0-1024.25"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-nvidia-6.5",
"purl": "pkg:deb/ubuntu/linux-nvidia-6.5@6.5.0-1024.25?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.5.0-1004.4",
"6.5.0-1007.7",
"6.5.0-1013.13",
"6.5.0-1014.14",
"6.5.0-1015.15",
"6.5.0-1018.18",
"6.5.0-1019.19",
"6.5.0-1021.22",
"6.5.0-1022.23",
"6.5.0-1023.24",
"6.5.0-1024.25"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-1058-nvidia",
"binary_version": "6.8.0-1058.61~22.04.1"
},
{
"binary_name": "linux-buildinfo-6.8.0-1058-nvidia-64k",
"binary_version": "6.8.0-1058.61~22.04.1"
},
{
"binary_name": "linux-headers-6.8.0-1058-nvidia",
"binary_version": "6.8.0-1058.61~22.04.1"
},
{
"binary_name": "linux-headers-6.8.0-1058-nvidia-64k",
"binary_version": "6.8.0-1058.61~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1058-nvidia",
"binary_version": "6.8.0-1058.61~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1058-nvidia-64k",
"binary_version": "6.8.0-1058.61~22.04.1"
},
{
"binary_name": "linux-modules-6.8.0-1058-nvidia",
"binary_version": "6.8.0-1058.61~22.04.1"
},
{
"binary_name": "linux-modules-6.8.0-1058-nvidia-64k",
"binary_version": "6.8.0-1058.61~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.8.0-1058-nvidia",
"binary_version": "6.8.0-1058.61~22.04.1"
},
{
"binary_name": "linux-modules-nvidia-fs-6.8.0-1058-nvidia",
"binary_version": "6.8.0-1058.61~22.04.1"
},
{
"binary_name": "linux-modules-nvidia-fs-6.8.0-1058-nvidia-64k",
"binary_version": "6.8.0-1058.61~22.04.1"
},
{
"binary_name": "linux-nvidia-6.8-headers-6.8.0-1058",
"binary_version": "6.8.0-1058.61~22.04.1"
},
{
"binary_name": "linux-nvidia-6.8-tools-6.8.0-1058",
"binary_version": "6.8.0-1058.61~22.04.1"
},
{
"binary_name": "linux-tools-6.8.0-1058-nvidia",
"binary_version": "6.8.0-1058.61~22.04.1"
},
{
"binary_name": "linux-tools-6.8.0-1058-nvidia-64k",
"binary_version": "6.8.0-1058.61~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-nvidia-6.8",
"purl": "pkg:deb/ubuntu/linux-nvidia-6.8@6.8.0-1058.61~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1008.8~22.04.1",
"6.8.0-1009.9~22.04.1",
"6.8.0-1010.10~22.04.1",
"6.8.0-1011.11~22.04.1",
"6.8.0-1012.12~22.04.1",
"6.8.0-1013.14~22.04.1",
"6.8.0-1014.15~22.04.1",
"6.8.0-1015.16~22.04.1",
"6.8.0-1017.19~22.04.1",
"6.8.0-1018.20~22.04.1",
"6.8.0-1019.21~22.04.1",
"6.8.0-1020.22~22.04.1",
"6.8.0-1021.23~22.04.1",
"6.8.0-1022.25~22.04.2",
"6.8.0-1023.26~22.04.1",
"6.8.0-1024.27~22.04.1",
"6.8.0-1025.28~22.04.1",
"6.8.0-1026.29~22.04.1",
"6.8.0-1027.30~22.04.1",
"6.8.0-1028.31~22.04.1",
"6.8.0-1029.32~22.04.1",
"6.8.0-1030.33~22.04.1",
"6.8.0-1031.34~22.04.1",
"6.8.0-1032.35~22.04.1",
"6.8.0-1035.38~22.04.1",
"6.8.0-1036.39~22.04.1",
"6.8.0-1038.41~22.04.1",
"6.8.0-1039.42~22.04.1",
"6.8.0-1040.43~22.04.1",
"6.8.0-1041.44~22.04.2",
"6.8.0-1042.45~22.04.1",
"6.8.0-1043.46~22.04.1",
"6.8.0-1044.47~22.04.1",
"6.8.0-1045.48~22.04.1",
"6.8.0-1046.49~22.04.1",
"6.8.0-1047.50~22.04.1",
"6.8.0-1049.52~22.04.1",
"6.8.0-1050.53~22.04.1",
"6.8.0-1051.54~22.04.1",
"6.8.0-1052.55~22.04.1",
"6.8.0-1054.57~22.04.1",
"6.8.0-1055.58~22.04.1",
"6.8.0-1058.61~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.17.0-1035-oem",
"binary_version": "5.17.0-1035.36"
},
{
"binary_name": "linux-headers-5.17.0-1035-oem",
"binary_version": "5.17.0-1035.36"
},
{
"binary_name": "linux-image-unsigned-5.17.0-1035-oem",
"binary_version": "5.17.0-1035.36"
},
{
"binary_name": "linux-modules-5.17.0-1035-oem",
"binary_version": "5.17.0-1035.36"
},
{
"binary_name": "linux-modules-ipu6-5.17.0-1035-oem",
"binary_version": "5.17.0-1035.36"
},
{
"binary_name": "linux-modules-ivsc-5.17.0-1035-oem",
"binary_version": "5.17.0-1035.36"
},
{
"binary_name": "linux-modules-iwlwifi-5.17.0-1035-oem",
"binary_version": "5.17.0-1035.36"
},
{
"binary_name": "linux-oem-5.17-headers-5.17.0-1035",
"binary_version": "5.17.0-1035.36"
},
{
"binary_name": "linux-oem-5.17-tools-5.17.0-1035",
"binary_version": "5.17.0-1035.36"
},
{
"binary_name": "linux-oem-5.17-tools-host",
"binary_version": "5.17.0-1035.36"
},
{
"binary_name": "linux-tools-5.17.0-1035-oem",
"binary_version": "5.17.0-1035.36"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-oem-5.17",
"purl": "pkg:deb/ubuntu/linux-oem-5.17@5.17.0-1035.36?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.17.0-1003.3",
"5.17.0-1004.4",
"5.17.0-1006.6",
"5.17.0-1011.12",
"5.17.0-1012.13",
"5.17.0-1013.14",
"5.17.0-1014.15",
"5.17.0-1015.16",
"5.17.0-1016.17",
"5.17.0-1017.18",
"5.17.0-1018.19",
"5.17.0-1019.20",
"5.17.0-1020.21",
"5.17.0-1021.22",
"5.17.0-1024.25",
"5.17.0-1025.26",
"5.17.0-1026.27",
"5.17.0-1027.28",
"5.17.0-1028.29",
"5.17.0-1029.30",
"5.17.0-1030.31",
"5.17.0-1031.32",
"5.17.0-1032.33",
"5.17.0-1033.34",
"5.17.0-1034.35",
"5.17.0-1035.36"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.0.0-1021-oem",
"binary_version": "6.0.0-1021.21"
},
{
"binary_name": "linux-headers-6.0.0-1021-oem",
"binary_version": "6.0.0-1021.21"
},
{
"binary_name": "linux-image-unsigned-6.0.0-1021-oem",
"binary_version": "6.0.0-1021.21"
},
{
"binary_name": "linux-modules-6.0.0-1021-oem",
"binary_version": "6.0.0-1021.21"
},
{
"binary_name": "linux-modules-ipu6-6.0.0-1021-oem",
"binary_version": "6.0.0-1021.21"
},
{
"binary_name": "linux-modules-ivsc-6.0.0-1021-oem",
"binary_version": "6.0.0-1021.21"
},
{
"binary_name": "linux-modules-iwlwifi-6.0.0-1021-oem",
"binary_version": "6.0.0-1021.21"
},
{
"binary_name": "linux-oem-6.0-headers-6.0.0-1021",
"binary_version": "6.0.0-1021.21"
},
{
"binary_name": "linux-oem-6.0-tools-6.0.0-1021",
"binary_version": "6.0.0-1021.21"
},
{
"binary_name": "linux-oem-6.0-tools-host",
"binary_version": "6.0.0-1021.21"
},
{
"binary_name": "linux-tools-6.0.0-1021-oem",
"binary_version": "6.0.0-1021.21"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-oem-6.0",
"purl": "pkg:deb/ubuntu/linux-oem-6.0@6.0.0-1021.21?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.0.0-1006.6",
"6.0.0-1007.7",
"6.0.0-1008.8",
"6.0.0-1009.9",
"6.0.0-1010.10",
"6.0.0-1011.11",
"6.0.0-1012.12",
"6.0.0-1013.13",
"6.0.0-1014.14",
"6.0.0-1015.15",
"6.0.0-1016.16",
"6.0.0-1017.17",
"6.0.0-1018.18",
"6.0.0-1019.19",
"6.0.0-1020.20",
"6.0.0-1021.21"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.1.0-1036-oem",
"binary_version": "6.1.0-1036.36"
},
{
"binary_name": "linux-headers-6.1.0-1036-oem",
"binary_version": "6.1.0-1036.36"
},
{
"binary_name": "linux-image-unsigned-6.1.0-1036-oem",
"binary_version": "6.1.0-1036.36"
},
{
"binary_name": "linux-modules-6.1.0-1036-oem",
"binary_version": "6.1.0-1036.36"
},
{
"binary_name": "linux-modules-ipu6-6.1.0-1036-oem",
"binary_version": "6.1.0-1036.36"
},
{
"binary_name": "linux-modules-ivsc-6.1.0-1036-oem",
"binary_version": "6.1.0-1036.36"
},
{
"binary_name": "linux-modules-iwlwifi-6.1.0-1036-oem",
"binary_version": "6.1.0-1036.36"
},
{
"binary_name": "linux-oem-6.1-headers-6.1.0-1036",
"binary_version": "6.1.0-1036.36"
},
{
"binary_name": "linux-oem-6.1-tools-6.1.0-1036",
"binary_version": "6.1.0-1036.36"
},
{
"binary_name": "linux-oem-6.1-tools-host",
"binary_version": "6.1.0-1036.36"
},
{
"binary_name": "linux-tools-6.1.0-1036-oem",
"binary_version": "6.1.0-1036.36"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-oem-6.1",
"purl": "pkg:deb/ubuntu/linux-oem-6.1@6.1.0-1036.36?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.1.0-1004.4",
"6.1.0-1006.6",
"6.1.0-1007.7",
"6.1.0-1008.8",
"6.1.0-1009.9",
"6.1.0-1010.10",
"6.1.0-1012.12",
"6.1.0-1013.13",
"6.1.0-1014.14",
"6.1.0-1015.15",
"6.1.0-1016.16",
"6.1.0-1017.17",
"6.1.0-1019.19",
"6.1.0-1020.20",
"6.1.0-1021.21",
"6.1.0-1022.22",
"6.1.0-1023.23",
"6.1.0-1024.24",
"6.1.0-1025.25",
"6.1.0-1026.26",
"6.1.0-1027.27",
"6.1.0-1028.28",
"6.1.0-1029.29",
"6.1.0-1033.33",
"6.1.0-1034.34",
"6.1.0-1035.35",
"6.1.0-1036.36"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.5.0-1027-oem",
"binary_version": "6.5.0-1027.28"
},
{
"binary_name": "linux-headers-6.5.0-1027-oem",
"binary_version": "6.5.0-1027.28"
},
{
"binary_name": "linux-image-unsigned-6.5.0-1027-oem",
"binary_version": "6.5.0-1027.28"
},
{
"binary_name": "linux-modules-6.5.0-1027-oem",
"binary_version": "6.5.0-1027.28"
},
{
"binary_name": "linux-modules-ipu6-6.5.0-1027-oem",
"binary_version": "6.5.0-1027.28"
},
{
"binary_name": "linux-modules-ivsc-6.5.0-1027-oem",
"binary_version": "6.5.0-1027.28"
},
{
"binary_name": "linux-modules-iwlwifi-6.5.0-1027-oem",
"binary_version": "6.5.0-1027.28"
},
{
"binary_name": "linux-modules-usbio-6.5.0-1027-oem",
"binary_version": "6.5.0-1027.28"
},
{
"binary_name": "linux-oem-6.5-headers-6.5.0-1027",
"binary_version": "6.5.0-1027.28"
},
{
"binary_name": "linux-oem-6.5-lib-rust-6.5.0-1027-oem",
"binary_version": "6.5.0-1027.28"
},
{
"binary_name": "linux-oem-6.5-tools-6.5.0-1027",
"binary_version": "6.5.0-1027.28"
},
{
"binary_name": "linux-oem-6.5-tools-host",
"binary_version": "6.5.0-1027.28"
},
{
"binary_name": "linux-tools-6.5.0-1027-oem",
"binary_version": "6.5.0-1027.28"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-oem-6.5",
"purl": "pkg:deb/ubuntu/linux-oem-6.5@6.5.0-1027.28?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.5.0-1003.3",
"6.5.0-1004.4",
"6.5.0-1006.6",
"6.5.0-1007.7",
"6.5.0-1008.8",
"6.5.0-1009.10",
"6.5.0-1011.12",
"6.5.0-1013.14",
"6.5.0-1014.15",
"6.5.0-1015.16",
"6.5.0-1016.17",
"6.5.0-1018.19",
"6.5.0-1019.20",
"6.5.0-1020.21",
"6.5.0-1022.23",
"6.5.0-1023.24",
"6.5.0-1024.25",
"6.5.0-1025.26",
"6.5.0-1027.28"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.5.0-1027-oracle",
"binary_version": "6.5.0-1027.27~22.04.1"
},
{
"binary_name": "linux-buildinfo-6.5.0-1027-oracle-64k",
"binary_version": "6.5.0-1027.27~22.04.1"
},
{
"binary_name": "linux-headers-6.5.0-1027-oracle",
"binary_version": "6.5.0-1027.27~22.04.1"
},
{
"binary_name": "linux-headers-6.5.0-1027-oracle-64k",
"binary_version": "6.5.0-1027.27~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.5.0-1027-oracle",
"binary_version": "6.5.0-1027.27~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.5.0-1027-oracle-64k",
"binary_version": "6.5.0-1027.27~22.04.1"
},
{
"binary_name": "linux-modules-6.5.0-1027-oracle",
"binary_version": "6.5.0-1027.27~22.04.1"
},
{
"binary_name": "linux-modules-6.5.0-1027-oracle-64k",
"binary_version": "6.5.0-1027.27~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.5.0-1027-oracle",
"binary_version": "6.5.0-1027.27~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.5.0-1027-oracle-64k",
"binary_version": "6.5.0-1027.27~22.04.1"
},
{
"binary_name": "linux-oracle-6.5-headers-6.5.0-1027",
"binary_version": "6.5.0-1027.27~22.04.1"
},
{
"binary_name": "linux-oracle-6.5-tools-6.5.0-1027",
"binary_version": "6.5.0-1027.27~22.04.1"
},
{
"binary_name": "linux-tools-6.5.0-1027-oracle",
"binary_version": "6.5.0-1027.27~22.04.1"
},
{
"binary_name": "linux-tools-6.5.0-1027-oracle-64k",
"binary_version": "6.5.0-1027.27~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-oracle-6.5",
"purl": "pkg:deb/ubuntu/linux-oracle-6.5@6.5.0-1027.27~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.5.0-1013.13~22.04.4",
"6.5.0-1014.14~22.04.1",
"6.5.0-1015.15~22.04.1",
"6.5.0-1016.16~22.04.1",
"6.5.0-1018.18~22.04.1",
"6.5.0-1019.19~22.04.1",
"6.5.0-1020.20~22.04.1",
"6.5.0-1021.21~22.04.1",
"6.5.0-1023.23~22.04.1",
"6.5.0-1024.24~22.04.1",
"6.5.0-1025.25~22.04.1",
"6.5.0-1026.26~22.04.1",
"6.5.0-1027.27~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-1057-oracle",
"binary_version": "6.8.0-1057.58~22.04.1"
},
{
"binary_name": "linux-buildinfo-6.8.0-1057-oracle-64k",
"binary_version": "6.8.0-1057.58~22.04.1"
},
{
"binary_name": "linux-headers-6.8.0-1057-oracle",
"binary_version": "6.8.0-1057.58~22.04.1"
},
{
"binary_name": "linux-headers-6.8.0-1057-oracle-64k",
"binary_version": "6.8.0-1057.58~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1057-oracle",
"binary_version": "6.8.0-1057.58~22.04.1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1057-oracle-64k",
"binary_version": "6.8.0-1057.58~22.04.1"
},
{
"binary_name": "linux-modules-6.8.0-1057-oracle",
"binary_version": "6.8.0-1057.58~22.04.1"
},
{
"binary_name": "linux-modules-6.8.0-1057-oracle-64k",
"binary_version": "6.8.0-1057.58~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.8.0-1057-oracle",
"binary_version": "6.8.0-1057.58~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.8.0-1057-oracle-64k",
"binary_version": "6.8.0-1057.58~22.04.1"
},
{
"binary_name": "linux-oracle-6.8-headers-6.8.0-1057",
"binary_version": "6.8.0-1057.58~22.04.1"
},
{
"binary_name": "linux-oracle-6.8-tools-6.8.0-1057",
"binary_version": "6.8.0-1057.58~22.04.1"
},
{
"binary_name": "linux-tools-6.8.0-1057-oracle",
"binary_version": "6.8.0-1057.58~22.04.1"
},
{
"binary_name": "linux-tools-6.8.0-1057-oracle-64k",
"binary_version": "6.8.0-1057.58~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-oracle-6.8",
"purl": "pkg:deb/ubuntu/linux-oracle-6.8@6.8.0-1057.58~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1006.6~22.04.3",
"6.8.0-1008.8~22.04.1",
"6.8.0-1010.10~22.04.1",
"6.8.0-1011.11~22.04.1",
"6.8.0-1012.12~22.04.1",
"6.8.0-1013.13~22.04.1",
"6.8.0-1014.14~22.04.1",
"6.8.0-1015.15~22.04.1",
"6.8.0-1016.17~22.04.1",
"6.8.0-1017.18~22.04.1",
"6.8.0-1018.19~22.04.1",
"6.8.0-1019.20~22.04.1",
"6.8.0-1020.21~22.04.1",
"6.8.0-1021.22~22.04.1",
"6.8.0-1022.23~22.04.1",
"6.8.0-1023.24~22.04.1",
"6.8.0-1024.25~22.04.1",
"6.8.0-1025.26~22.04.1",
"6.8.0-1026.27~22.04.1",
"6.8.0-1027.28~22.04.1",
"6.8.0-1028.29~22.04.1",
"6.8.0-1029.30~22.04.1",
"6.8.0-1030.31~22.04.1",
"6.8.0-1032.33~22.04.1",
"6.8.0-1033.34~22.04.1",
"6.8.0-1035.36~22.04.1",
"6.8.0-1037.38~22.04.1",
"6.8.0-1038.39~22.04.1",
"6.8.0-1039.40~22.04.1",
"6.8.0-1040.41~22.04.1",
"6.8.0-1041.42~22.04.1",
"6.8.0-1042.43~22.04.1",
"6.8.0-1043.44~22.04.1",
"6.8.0-1044.45~22.04.1",
"6.8.0-1047.48~22.04.1",
"6.8.0-1049.50~22.04.1",
"6.8.0-1050.51~22.04.1",
"6.8.0-1052.53~22.04.1",
"6.8.0-1054.55~22.04.1",
"6.8.0-1057.58~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.15.0-1032-realtime",
"binary_version": "5.15.0-1032.35"
},
{
"binary_name": "linux-cloud-tools-5.15.0-1032-realtime",
"binary_version": "5.15.0-1032.35"
},
{
"binary_name": "linux-headers-5.15.0-1032-realtime",
"binary_version": "5.15.0-1032.35"
},
{
"binary_name": "linux-image-unsigned-5.15.0-1032-realtime",
"binary_version": "5.15.0-1032.35"
},
{
"binary_name": "linux-modules-5.15.0-1032-realtime",
"binary_version": "5.15.0-1032.35"
},
{
"binary_name": "linux-modules-extra-5.15.0-1032-realtime",
"binary_version": "5.15.0-1032.35"
},
{
"binary_name": "linux-realtime-cloud-tools-5.15.0-1032",
"binary_version": "5.15.0-1032.35"
},
{
"binary_name": "linux-realtime-cloud-tools-common",
"binary_version": "5.15.0-1032.35"
},
{
"binary_name": "linux-realtime-headers-5.15.0-1032",
"binary_version": "5.15.0-1032.35"
},
{
"binary_name": "linux-realtime-tools-5.15.0-1032",
"binary_version": "5.15.0-1032.35"
},
{
"binary_name": "linux-realtime-tools-common",
"binary_version": "5.15.0-1032.35"
},
{
"binary_name": "linux-realtime-tools-host",
"binary_version": "5.15.0-1032.35"
},
{
"binary_name": "linux-tools-5.15.0-1032-realtime",
"binary_version": "5.15.0-1032.35"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-realtime",
"purl": "pkg:deb/ubuntu/linux-realtime@5.15.0-1032.35?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.15.0-1032.35"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.15.0-1028-generic",
"binary_version": "5.15.0-1028.32"
},
{
"binary_name": "linux-headers-5.15.0-1028-generic",
"binary_version": "5.15.0-1028.32"
},
{
"binary_name": "linux-image-5.15.0-1028-generic",
"binary_version": "5.15.0-1028.32"
},
{
"binary_name": "linux-modules-5.15.0-1028-generic",
"binary_version": "5.15.0-1028.32"
},
{
"binary_name": "linux-modules-extra-5.15.0-1028-generic",
"binary_version": "5.15.0-1028.32"
},
{
"binary_name": "linux-riscv-headers-5.15.0-1028",
"binary_version": "5.15.0-1028.32"
},
{
"binary_name": "linux-riscv-tools-5.15.0-1028",
"binary_version": "5.15.0-1028.32"
},
{
"binary_name": "linux-tools-5.15.0-1028-generic",
"binary_version": "5.15.0-1028.32"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-riscv",
"purl": "pkg:deb/ubuntu/linux-riscv@5.15.0-1028.32?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.13.0-1004.4",
"5.13.0-1006.6+22.04.1",
"5.13.0-1007.7+22.04.1",
"5.13.0-1010.11+22.04.1",
"5.15.0-1004.4",
"5.15.0-1005.5",
"5.15.0-1006.6",
"5.15.0-1007.7",
"5.15.0-1008.8",
"5.15.0-1011.12",
"5.15.0-1012.13",
"5.15.0-1014.16",
"5.15.0-1015.17",
"5.15.0-1016.18",
"5.15.0-1017.19",
"5.15.0-1018.21",
"5.15.0-1019.22",
"5.15.0-1020.23",
"5.15.0-1022.26",
"5.15.0-1023.27",
"5.15.0-1026.30",
"5.15.0-1027.31",
"5.15.0-1028.32"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.19.0-1021-generic",
"binary_version": "5.19.0-1021.23~22.04.1"
},
{
"binary_name": "linux-headers-5.19.0-1021-generic",
"binary_version": "5.19.0-1021.23~22.04.1"
},
{
"binary_name": "linux-image-5.19.0-1021-generic",
"binary_version": "5.19.0-1021.23~22.04.1"
},
{
"binary_name": "linux-modules-5.19.0-1021-generic",
"binary_version": "5.19.0-1021.23~22.04.1"
},
{
"binary_name": "linux-modules-extra-5.19.0-1021-generic",
"binary_version": "5.19.0-1021.23~22.04.1"
},
{
"binary_name": "linux-riscv-5.19-headers-5.19.0-1021",
"binary_version": "5.19.0-1021.23~22.04.1"
},
{
"binary_name": "linux-riscv-5.19-tools-5.19.0-1021",
"binary_version": "5.19.0-1021.23~22.04.1"
},
{
"binary_name": "linux-tools-5.19.0-1021-generic",
"binary_version": "5.19.0-1021.23~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-riscv-5.19",
"purl": "pkg:deb/ubuntu/linux-riscv-5.19@5.19.0-1021.23~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.19.0-1012.13~22.04.1",
"5.19.0-1015.16~22.04.1",
"5.19.0-1016.17~22.04.1",
"5.19.0-1017.18~22.04.1",
"5.19.0-1018.19~22.04.1",
"5.19.0-1019.21~22.04.1",
"5.19.0-1020.22~22.04.1",
"5.19.0-1021.23~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.5.0-45-generic",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-headers-6.5.0-45-generic",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-image-6.5.0-45-generic",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-modules-6.5.0-45-generic",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.5.0-45-generic",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-riscv-6.5-headers-6.5.0-45",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-riscv-6.5-tools-6.5.0-45",
"binary_version": "6.5.0-45.45.1~22.04.1"
},
{
"binary_name": "linux-tools-6.5.0-45-generic",
"binary_version": "6.5.0-45.45.1~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-riscv-6.5",
"purl": "pkg:deb/ubuntu/linux-riscv-6.5@6.5.0-45.45.1~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.5.0-17.17.1.1~22.04.1",
"6.5.0-21.21.1~22.04.1",
"6.5.0-25.25.1~22.04.1",
"6.5.0-26.26.1~22.04.1",
"6.5.0-27.28.1~22.04.1",
"6.5.0-28.29.1~22.04.1",
"6.5.0-35.35.1~22.04.1",
"6.5.0-40.40.1~22.04.1",
"6.5.0-42.42.1~22.04.1",
"6.5.0-45.45.1~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-134-generic",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-headers-6.8.0-134-generic",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-image-6.8.0-134-generic",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-modules-6.8.0-134-generic",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-riscv-6.8-headers-6.8.0-134",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-riscv-6.8-tools-6.8.0-134",
"binary_version": "6.8.0-134.134~22.04.1"
},
{
"binary_name": "linux-tools-6.8.0-134-generic",
"binary_version": "6.8.0-134.134~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-riscv-6.8",
"purl": "pkg:deb/ubuntu/linux-riscv-6.8@6.8.0-134.134~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-38.38.1~22.04.1",
"6.8.0-39.39.1~22.04.1",
"6.8.0-40.40.1~22.04.1",
"6.8.0-41.41.1~22.04.1",
"6.8.0-44.44.1~22.04.1",
"6.8.0-47.47.1~22.04.1",
"6.8.0-48.48.1~22.04.2",
"6.8.0-49.49.1~22.04.1",
"6.8.0-50.51.1~22.04.1",
"6.8.0-51.52.1~22.04.1",
"6.8.0-52.53.1~22.04.1",
"6.8.0-53.55.1~22.04.1",
"6.8.0-55.57.1~22.04.1",
"6.8.0-56.58.1~22.04.1",
"6.8.0-57.59.1~22.04.1",
"6.8.0-58.60.1~22.04.1",
"6.8.0-59.61.1~22.04.1",
"6.8.0-62.65~22.04.1",
"6.8.0-63.66~22.04.1",
"6.8.0-64.67~22.04.1",
"6.8.0-71.71~22.04.1",
"6.8.0-78.78~22.04.1",
"6.8.0-79.79~22.04.1",
"6.8.0-83.83~22.04.1",
"6.8.0-84.84~22.04.1",
"6.8.0-86.87~22.04.1",
"6.8.0-87.88~22.04.1",
"6.8.0-88.89~22.04.1",
"6.8.0-90.91~22.04.1",
"6.8.0-94.96~22.04.1",
"6.8.0-100.100~22.04.1",
"6.8.0-101.101~22.04.1",
"6.8.0-106.106~22.04.1",
"6.8.0-107.107~22.04.1",
"6.8.0-110.110~22.04.1",
"6.8.0-111.111~22.04.1",
"6.8.0-117.117~22.04.1",
"6.8.0-124.124~22.04.1",
"6.8.0-134.134~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-5.19.0-1020-starfive",
"binary_version": "5.19.0-1020.22~22.04.1"
},
{
"binary_name": "linux-headers-5.19.0-1020-starfive",
"binary_version": "5.19.0-1020.22~22.04.1"
},
{
"binary_name": "linux-image-5.19.0-1020-starfive",
"binary_version": "5.19.0-1020.22~22.04.1"
},
{
"binary_name": "linux-modules-5.19.0-1020-starfive",
"binary_version": "5.19.0-1020.22~22.04.1"
},
{
"binary_name": "linux-modules-extra-5.19.0-1020-starfive",
"binary_version": "5.19.0-1020.22~22.04.1"
},
{
"binary_name": "linux-starfive-5.19-headers-5.19.0-1020",
"binary_version": "5.19.0-1020.22~22.04.1"
},
{
"binary_name": "linux-starfive-5.19-tools-5.19.0-1020",
"binary_version": "5.19.0-1020.22~22.04.1"
},
{
"binary_name": "linux-tools-5.19.0-1020-starfive",
"binary_version": "5.19.0-1020.22~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-starfive-5.19",
"purl": "pkg:deb/ubuntu/linux-starfive-5.19@5.19.0-1020.22~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.19.0-1014.16~22.04.1",
"5.19.0-1015.17~22.04.1",
"5.19.0-1016.18~22.04.1",
"5.19.0-1017.19~22.04.1",
"5.19.0-1018.20~22.04.1",
"5.19.0-1019.21~22.04.1",
"5.19.0-1020.22~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.2.0-1009-starfive",
"binary_version": "6.2.0-1009.10~22.04.1"
},
{
"binary_name": "linux-headers-6.2.0-1009-starfive",
"binary_version": "6.2.0-1009.10~22.04.1"
},
{
"binary_name": "linux-image-6.2.0-1009-starfive",
"binary_version": "6.2.0-1009.10~22.04.1"
},
{
"binary_name": "linux-modules-6.2.0-1009-starfive",
"binary_version": "6.2.0-1009.10~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.2.0-1009-starfive",
"binary_version": "6.2.0-1009.10~22.04.1"
},
{
"binary_name": "linux-starfive-6.2-headers-6.2.0-1009",
"binary_version": "6.2.0-1009.10~22.04.1"
},
{
"binary_name": "linux-starfive-6.2-tools-6.2.0-1009",
"binary_version": "6.2.0-1009.10~22.04.1"
},
{
"binary_name": "linux-tools-6.2.0-1009-starfive",
"binary_version": "6.2.0-1009.10~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-starfive-6.2",
"purl": "pkg:deb/ubuntu/linux-starfive-6.2@6.2.0-1009.10~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.2.0-1006.7~22.04.1",
"6.2.0-1007.8~22.04.1",
"6.2.0-1009.10~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.5.0-1018-starfive",
"binary_version": "6.5.0-1018.19~22.04.1"
},
{
"binary_name": "linux-headers-6.5.0-1018-starfive",
"binary_version": "6.5.0-1018.19~22.04.1"
},
{
"binary_name": "linux-image-6.5.0-1018-starfive",
"binary_version": "6.5.0-1018.19~22.04.1"
},
{
"binary_name": "linux-modules-6.5.0-1018-starfive",
"binary_version": "6.5.0-1018.19~22.04.1"
},
{
"binary_name": "linux-modules-extra-6.5.0-1018-starfive",
"binary_version": "6.5.0-1018.19~22.04.1"
},
{
"binary_name": "linux-starfive-6.5-headers-6.5.0-1018",
"binary_version": "6.5.0-1018.19~22.04.1"
},
{
"binary_name": "linux-starfive-6.5-tools-6.5.0-1018",
"binary_version": "6.5.0-1018.19~22.04.1"
},
{
"binary_name": "linux-tools-6.5.0-1018-starfive",
"binary_version": "6.5.0-1018.19~22.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "linux-starfive-6.5",
"purl": "pkg:deb/ubuntu/linux-starfive-6.5@6.5.0-1018.19~22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.5.0-1007.8~22.04.1",
"6.5.0-1008.9~22.04.1",
"6.5.0-1009.10~22.04.1",
"6.5.0-1010.11~22.04.1",
"6.5.0-1011.12~22.04.1",
"6.5.0-1012.13~22.04.1",
"6.5.0-1014.15~22.04.1",
"6.5.0-1015.16~22.04.1",
"6.5.0-1016.17~22.04.1",
"6.5.0-1017.18~22.04.1",
"6.5.0-1018.19~22.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.1-1056-realtime",
"binary_version": "6.8.1-1056.57~22.04.2"
},
{
"binary_name": "linux-cloud-tools-6.8.1-1056-realtime",
"binary_version": "6.8.1-1056.57~22.04.2"
},
{
"binary_name": "linux-headers-6.8.1-1056-realtime",
"binary_version": "6.8.1-1056.57~22.04.2"
},
{
"binary_name": "linux-image-unsigned-6.8.1-1056-realtime",
"binary_version": "6.8.1-1056.57~22.04.2"
},
{
"binary_name": "linux-modules-6.8.1-1056-realtime",
"binary_version": "6.8.1-1056.57~22.04.2"
},
{
"binary_name": "linux-modules-extra-6.8.1-1056-realtime",
"binary_version": "6.8.1-1056.57~22.04.2"
},
{
"binary_name": "linux-modules-iwlwifi-6.8.1-1056-realtime",
"binary_version": "6.8.1-1056.57~22.04.2"
},
{
"binary_name": "linux-realtime-6.8-cloud-tools-6.8.1-1056",
"binary_version": "6.8.1-1056.57~22.04.2"
},
{
"binary_name": "linux-realtime-6.8-headers-6.8.1-1056",
"binary_version": "6.8.1-1056.57~22.04.2"
},
{
"binary_name": "linux-realtime-6.8-tools-6.8.1-1056",
"binary_version": "6.8.1-1056.57~22.04.2"
},
{
"binary_name": "linux-tools-6.8.1-1056-realtime",
"binary_version": "6.8.1-1056.57~22.04.2"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:Pro:Realtime:22.04:LTS",
"name": "linux-realtime-6.8",
"purl": "pkg:deb/ubuntu/linux-realtime-6.8@6.8.1-1056.57~22.04.2?arch=source\u0026distro=realtime/jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.1-1004.4~22.04.1",
"6.8.1-1005.5~22.04.2",
"6.8.1-1006.6~22.04.1",
"6.8.1-1007.7~22.04.1",
"6.8.1-1008.8~22.04.1",
"6.8.1-1009.9~22.04.1",
"6.8.1-1010.10~22.04.1",
"6.8.1-1011.11~22.04.1",
"6.8.1-1012.12~22.04.1",
"6.8.1-1013.14~22.04.1",
"6.8.1-1014.15~22.04.1",
"6.8.1-1015.16~22.04.1",
"6.8.1-1016.17~22.04.1",
"6.8.1-1017.18~22.04.1",
"6.8.1-1018.19~22.04.1",
"6.8.1-1019.20~22.04.1",
"6.8.1-1020.21~22.04.1",
"6.8.1-1021.22~22.04.1",
"6.8.1-1022.23~22.04.1",
"6.8.1-1023.24~22.04.1",
"6.8.1-1024.25~22.04.1",
"6.8.1-1025.26~22.04.1",
"6.8.1-1026.27~22.04.1",
"6.8.1-1030.31~22.04.1",
"6.8.1-1031.32~22.04.1",
"6.8.1-1034.35~22.04.1",
"6.8.1-1035.36~22.04.1",
"6.8.1-1036.37~22.04.1",
"6.8.1-1037.38~22.04.1",
"6.8.1-1038.39~22.04.1",
"6.8.1-1039.40~22.04.1",
"6.8.1-1040.41~22.04.1",
"6.8.1-1041.42~22.04.1",
"6.8.1-1042.43~22.04.1",
"6.8.1-1045.46~22.04.1",
"6.8.1-1046.47~22.04.2",
"6.8.1-1047.48~22.04.1",
"6.8.1-1048.49~22.04.1",
"6.8.1-1051.52~22.04.1",
"6.8.1-1052.53~22.04.1",
"6.8.1-1055.56~22.04.1",
"6.8.1-1056.57~22.04.2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-134-generic",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-buildinfo-6.8.0-134-generic-64k",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-cloud-tools-6.8.0-134",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-cloud-tools-6.8.0-134-generic",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-cloud-tools-common",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-headers-6.8.0-134",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-headers-6.8.0-134-generic",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-headers-6.8.0-134-generic-64k",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-image-6.8.0-134-generic",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-image-unsigned-6.8.0-134-generic",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-image-unsigned-6.8.0-134-generic-64k",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-lib-rust-6.8.0-134-generic",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-modules-6.8.0-134-generic",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-modules-6.8.0-134-generic-64k",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-modules-extra-6.8.0-134-generic",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-modules-ipu6-6.8.0-134-generic",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-modules-iwlwifi-6.8.0-134-generic",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-modules-usbio-6.8.0-134-generic",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-source-6.8.0",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-tools-6.8.0-134",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-tools-6.8.0-134-generic",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-tools-6.8.0-134-generic-64k",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-tools-common",
"binary_version": "6.8.0-134.134"
},
{
"binary_name": "linux-tools-host",
"binary_version": "6.8.0-134.134"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux",
"purl": "pkg:deb/ubuntu/linux@6.8.0-134.134?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.5.0-9.9",
"6.6.0-14.14",
"6.8.0-11.11",
"6.8.0-20.20",
"6.8.0-22.22",
"6.8.0-28.28",
"6.8.0-31.31",
"6.8.0-35.35",
"6.8.0-36.36",
"6.8.0-38.38",
"6.8.0-39.39",
"6.8.0-40.40",
"6.8.0-41.41",
"6.8.0-44.44",
"6.8.0-45.45",
"6.8.0-47.47",
"6.8.0-48.48",
"6.8.0-49.49",
"6.8.0-50.51",
"6.8.0-51.52",
"6.8.0-52.53",
"6.8.0-53.55",
"6.8.0-54.56",
"6.8.0-55.57",
"6.8.0-56.58",
"6.8.0-57.59",
"6.8.0-58.60",
"6.8.0-59.61",
"6.8.0-60.63",
"6.8.0-62.65",
"6.8.0-63.66",
"6.8.0-64.67",
"6.8.0-71.71",
"6.8.0-78.78",
"6.8.0-79.79",
"6.8.0-83.83",
"6.8.0-84.84",
"6.8.0-85.85",
"6.8.0-86.87",
"6.8.0-87.88",
"6.8.0-88.89",
"6.8.0-90.91",
"6.8.0-94.96",
"6.8.0-100.100",
"6.8.0-101.101",
"6.8.0-106.106",
"6.8.0-107.107",
"6.8.0-110.110",
"6.8.0-111.111",
"6.8.0-117.117",
"6.8.0-124.124",
"6.8.0-134.134"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-aws-cloud-tools-6.8.0-1060",
"binary_version": "6.8.0-1060.63"
},
{
"binary_name": "linux-aws-headers-6.8.0-1060",
"binary_version": "6.8.0-1060.63"
},
{
"binary_name": "linux-aws-tools-6.8.0-1060",
"binary_version": "6.8.0-1060.63"
},
{
"binary_name": "linux-buildinfo-6.8.0-1060-aws",
"binary_version": "6.8.0-1060.63"
},
{
"binary_name": "linux-buildinfo-6.8.0-1060-aws-64k",
"binary_version": "6.8.0-1060.63"
},
{
"binary_name": "linux-cloud-tools-6.8.0-1060-aws",
"binary_version": "6.8.0-1060.63"
},
{
"binary_name": "linux-cloud-tools-6.8.0-1060-aws-64k",
"binary_version": "6.8.0-1060.63"
},
{
"binary_name": "linux-headers-6.8.0-1060-aws",
"binary_version": "6.8.0-1060.63"
},
{
"binary_name": "linux-headers-6.8.0-1060-aws-64k",
"binary_version": "6.8.0-1060.63"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1060-aws",
"binary_version": "6.8.0-1060.63"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1060-aws-64k",
"binary_version": "6.8.0-1060.63"
},
{
"binary_name": "linux-modules-6.8.0-1060-aws",
"binary_version": "6.8.0-1060.63"
},
{
"binary_name": "linux-modules-6.8.0-1060-aws-64k",
"binary_version": "6.8.0-1060.63"
},
{
"binary_name": "linux-modules-extra-6.8.0-1060-aws",
"binary_version": "6.8.0-1060.63"
},
{
"binary_name": "linux-modules-extra-6.8.0-1060-aws-64k",
"binary_version": "6.8.0-1060.63"
},
{
"binary_name": "linux-tools-6.8.0-1060-aws",
"binary_version": "6.8.0-1060.63"
},
{
"binary_name": "linux-tools-6.8.0-1060-aws-64k",
"binary_version": "6.8.0-1060.63"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-aws",
"purl": "pkg:deb/ubuntu/linux-aws@6.8.0-1060.63?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.5.0-1008.8",
"6.6.0-1001.1",
"6.8.0-1001.1",
"6.8.0-1006.6",
"6.8.0-1008.8",
"6.8.0-1009.9",
"6.8.0-1010.10",
"6.8.0-1011.12",
"6.8.0-1012.13",
"6.8.0-1013.14",
"6.8.0-1014.15",
"6.8.0-1015.16",
"6.8.0-1016.17",
"6.8.0-1017.18",
"6.8.0-1018.20",
"6.8.0-1019.21",
"6.8.0-1020.22",
"6.8.0-1021.23",
"6.8.0-1023.25",
"6.8.0-1024.26",
"6.8.0-1025.27",
"6.8.0-1026.28",
"6.8.0-1027.29",
"6.8.0-1028.30",
"6.8.0-1029.31",
"6.8.0-1030.32",
"6.8.0-1031.33",
"6.8.0-1032.34",
"6.8.0-1033.35",
"6.8.0-1035.37",
"6.8.0-1036.38",
"6.8.0-1038.40",
"6.8.0-1039.41",
"6.8.0-1040.42",
"6.8.0-1041.43",
"6.8.0-1042.44",
"6.8.0-1043.45",
"6.8.0-1044.46",
"6.8.0-1045.47",
"6.8.0-1046.49",
"6.8.0-1047.50",
"6.8.0-1050.53",
"6.8.0-1051.54",
"6.8.0-1052.55",
"6.8.0-1053.56",
"6.8.0-1055.58",
"6.8.0-1057.60",
"6.8.0-1060.63"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-aws-6.14-cloud-tools-6.14.0-1018",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-aws-6.14-headers-6.14.0-1018",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-aws-6.14-tools-6.14.0-1018",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-buildinfo-6.14.0-1018-aws",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-buildinfo-6.14.0-1018-aws-64k",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-cloud-tools-6.14.0-1018-aws",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-cloud-tools-6.14.0-1018-aws-64k",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-headers-6.14.0-1018-aws",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-headers-6.14.0-1018-aws-64k",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.14.0-1018-aws",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.14.0-1018-aws-64k",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-modules-6.14.0-1018-aws",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-modules-6.14.0-1018-aws-64k",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.14.0-1018-aws",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.14.0-1018-aws-64k",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-tools-6.14.0-1018-aws",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-tools-6.14.0-1018-aws-64k",
"binary_version": "6.14.0-1018.18~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-aws-6.14",
"purl": "pkg:deb/ubuntu/linux-aws-6.14@6.14.0-1018.18~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.14.0-1007.7~24.04.1",
"6.14.0-1009.9~24.04.1",
"6.14.0-1010.10~24.04.1",
"6.14.0-1011.11~24.04.1",
"6.14.0-1012.12~24.04.1",
"6.14.0-1013.13~24.04.1",
"6.14.0-1014.14~24.04.1",
"6.14.0-1015.15~24.04.1",
"6.14.0-1016.16~24.04.1",
"6.14.0-1017.17~24.04.1",
"6.14.0-1018.18~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-aws-6.17-cloud-tools-6.17.0-1019",
"binary_version": "6.17.0-1019.19~24.04.1"
},
{
"binary_name": "linux-aws-6.17-headers-6.17.0-1019",
"binary_version": "6.17.0-1019.19~24.04.1"
},
{
"binary_name": "linux-aws-6.17-tools-6.17.0-1019",
"binary_version": "6.17.0-1019.19~24.04.1"
},
{
"binary_name": "linux-buildinfo-6.17.0-1019-aws",
"binary_version": "6.17.0-1019.19~24.04.1"
},
{
"binary_name": "linux-buildinfo-6.17.0-1019-aws-64k",
"binary_version": "6.17.0-1019.19~24.04.1"
},
{
"binary_name": "linux-cloud-tools-6.17.0-1019-aws",
"binary_version": "6.17.0-1019.19~24.04.1"
},
{
"binary_name": "linux-cloud-tools-6.17.0-1019-aws-64k",
"binary_version": "6.17.0-1019.19~24.04.1"
},
{
"binary_name": "linux-headers-6.17.0-1019-aws",
"binary_version": "6.17.0-1019.19~24.04.1"
},
{
"binary_name": "linux-headers-6.17.0-1019-aws-64k",
"binary_version": "6.17.0-1019.19~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1019-aws",
"binary_version": "6.17.0-1019.19~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1019-aws-64k",
"binary_version": "6.17.0-1019.19~24.04.1"
},
{
"binary_name": "linux-modules-6.17.0-1019-aws",
"binary_version": "6.17.0-1019.19~24.04.1"
},
{
"binary_name": "linux-modules-6.17.0-1019-aws-64k",
"binary_version": "6.17.0-1019.19~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.17.0-1019-aws",
"binary_version": "6.17.0-1019.19~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.17.0-1019-aws-64k",
"binary_version": "6.17.0-1019.19~24.04.1"
},
{
"binary_name": "linux-tools-6.17.0-1019-aws",
"binary_version": "6.17.0-1019.19~24.04.1"
},
{
"binary_name": "linux-tools-6.17.0-1019-aws-64k",
"binary_version": "6.17.0-1019.19~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-aws-6.17",
"purl": "pkg:deb/ubuntu/linux-aws-6.17@6.17.0-1019.19~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.17.0-1005.5~24.04.2",
"6.17.0-1007.7~24.04.1",
"6.17.0-1009.9~24.04.2",
"6.17.0-1010.10~24.04.1",
"6.17.0-1012.12~24.04.1",
"6.17.0-1013.13~24.04.1",
"6.17.0-1015.15~24.04.1",
"6.17.0-1017.17~24.04.1",
"6.17.0-1019.19~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-cloud-tools-6.8.0-1062",
"binary_version": "6.8.0-1062.69"
},
{
"binary_name": "linux-azure-headers-6.8.0-1062",
"binary_version": "6.8.0-1062.69"
},
{
"binary_name": "linux-azure-tools-6.8.0-1062",
"binary_version": "6.8.0-1062.69"
},
{
"binary_name": "linux-buildinfo-6.8.0-1062-azure",
"binary_version": "6.8.0-1062.69"
},
{
"binary_name": "linux-cloud-tools-6.8.0-1062-azure",
"binary_version": "6.8.0-1062.69"
},
{
"binary_name": "linux-headers-6.8.0-1062-azure",
"binary_version": "6.8.0-1062.69"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1062-azure",
"binary_version": "6.8.0-1062.69"
},
{
"binary_name": "linux-modules-6.8.0-1062-azure",
"binary_version": "6.8.0-1062.69"
},
{
"binary_name": "linux-modules-extra-6.8.0-1062-azure",
"binary_version": "6.8.0-1062.69"
},
{
"binary_name": "linux-modules-involflt-6.8.0-1062-azure",
"binary_version": "6.8.0-1062.69"
},
{
"binary_name": "linux-modules-iwlwifi-6.8.0-1062-azure",
"binary_version": "6.8.0-1062.69"
},
{
"binary_name": "linux-tools-6.8.0-1062-azure",
"binary_version": "6.8.0-1062.69"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-azure",
"purl": "pkg:deb/ubuntu/linux-azure@6.8.0-1062.69?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.5.0-1007.7",
"6.6.0-1001.1",
"6.8.0-1001.1",
"6.8.0-1005.5",
"6.8.0-1006.6",
"6.8.0-1007.7",
"6.8.0-1008.8",
"6.8.0-1009.9",
"6.8.0-1010.10",
"6.8.0-1012.14",
"6.8.0-1013.15",
"6.8.0-1014.16",
"6.8.0-1015.17",
"6.8.0-1016.18",
"6.8.0-1017.20",
"6.8.0-1018.21",
"6.8.0-1020.23",
"6.8.0-1021.25",
"6.8.0-1025.30",
"6.8.0-1026.31",
"6.8.0-1027.32",
"6.8.0-1028.33",
"6.8.0-1029.34",
"6.8.0-1030.35",
"6.8.0-1031.36",
"6.8.0-1034.39",
"6.8.0-1038.44",
"6.8.0-1040.46",
"6.8.0-1041.47",
"6.8.0-1042.48",
"6.8.0-1044.50",
"6.8.0-1046.52",
"6.8.0-1051.57",
"6.8.0-1052.58",
"6.8.0-1054.60",
"6.8.0-1056.62",
"6.8.0-1058.64",
"6.8.0-1059.65",
"6.8.0-1062.69"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-6.11-cloud-tools-6.11.0-1018",
"binary_version": "6.11.0-1018.18~24.04.1"
},
{
"binary_name": "linux-azure-6.11-headers-6.11.0-1018",
"binary_version": "6.11.0-1018.18~24.04.1"
},
{
"binary_name": "linux-azure-6.11-tools-6.11.0-1018",
"binary_version": "6.11.0-1018.18~24.04.1"
},
{
"binary_name": "linux-buildinfo-6.11.0-1018-azure",
"binary_version": "6.11.0-1018.18~24.04.1"
},
{
"binary_name": "linux-cloud-tools-6.11.0-1018-azure",
"binary_version": "6.11.0-1018.18~24.04.1"
},
{
"binary_name": "linux-headers-6.11.0-1018-azure",
"binary_version": "6.11.0-1018.18~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.11.0-1018-azure",
"binary_version": "6.11.0-1018.18~24.04.1"
},
{
"binary_name": "linux-modules-6.11.0-1018-azure",
"binary_version": "6.11.0-1018.18~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.11.0-1018-azure",
"binary_version": "6.11.0-1018.18~24.04.1"
},
{
"binary_name": "linux-modules-iwlwifi-6.11.0-1018-azure",
"binary_version": "6.11.0-1018.18~24.04.1"
},
{
"binary_name": "linux-tools-6.11.0-1018-azure",
"binary_version": "6.11.0-1018.18~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-azure-6.11",
"purl": "pkg:deb/ubuntu/linux-azure-6.11@6.11.0-1018.18~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.11.0-1008.8~24.04.1",
"6.11.0-1012.12~24.04.1",
"6.11.0-1013.13~24.04.1",
"6.11.0-1014.14~24.04.1",
"6.11.0-1015.15~24.04.1",
"6.11.0-1017.17~24.04.1",
"6.11.0-1018.18~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-6.14-cloud-tools-6.14.0-1017",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-azure-6.14-headers-6.14.0-1017",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-azure-6.14-tools-6.14.0-1017",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-buildinfo-6.14.0-1017-azure",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-cloud-tools-6.14.0-1017-azure",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-headers-6.14.0-1017-azure",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.14.0-1017-azure",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-modules-6.14.0-1017-azure",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.14.0-1017-azure",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-tools-6.14.0-1017-azure",
"binary_version": "6.14.0-1017.17~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-azure-6.14",
"purl": "pkg:deb/ubuntu/linux-azure-6.14@6.14.0-1017.17~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.14.0-1010.10~24.04.1",
"6.14.0-1012.12~24.04.1",
"6.14.0-1013.13~24.04.1",
"6.14.0-1014.14~24.04.1",
"6.14.0-1017.17~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-6.17-cloud-tools-6.17.0-1020",
"binary_version": "6.17.0-1020.20~24.04.1"
},
{
"binary_name": "linux-azure-6.17-headers-6.17.0-1020",
"binary_version": "6.17.0-1020.20~24.04.1"
},
{
"binary_name": "linux-azure-6.17-tools-6.17.0-1020",
"binary_version": "6.17.0-1020.20~24.04.1"
},
{
"binary_name": "linux-buildinfo-6.17.0-1020-azure",
"binary_version": "6.17.0-1020.20~24.04.1"
},
{
"binary_name": "linux-cloud-tools-6.17.0-1020-azure",
"binary_version": "6.17.0-1020.20~24.04.1"
},
{
"binary_name": "linux-headers-6.17.0-1020-azure",
"binary_version": "6.17.0-1020.20~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1020-azure",
"binary_version": "6.17.0-1020.20~24.04.1"
},
{
"binary_name": "linux-modules-6.17.0-1020-azure",
"binary_version": "6.17.0-1020.20~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.17.0-1020-azure",
"binary_version": "6.17.0-1020.20~24.04.1"
},
{
"binary_name": "linux-tools-6.17.0-1020-azure",
"binary_version": "6.17.0-1020.20~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-azure-6.17",
"purl": "pkg:deb/ubuntu/linux-azure-6.17@6.17.0-1020.20~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.17.0-1008.8~24.04.1",
"6.17.0-1010.10~24.04.1",
"6.17.0-1011.11~24.04.2",
"6.17.0-1013.13~24.04.1",
"6.17.0-1015.15~24.04.1",
"6.17.0-1017.17~24.04.1",
"6.17.0-1018.18~24.04.1",
"6.17.0-1020.20~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-fde-cloud-tools-6.8.0-1061",
"binary_version": "6.8.0-1061.68"
},
{
"binary_name": "linux-azure-fde-headers-6.8.0-1061",
"binary_version": "6.8.0-1061.68"
},
{
"binary_name": "linux-azure-fde-tools-6.8.0-1061",
"binary_version": "6.8.0-1061.68"
},
{
"binary_name": "linux-buildinfo-6.8.0-1061-azure-fde",
"binary_version": "6.8.0-1061.68"
},
{
"binary_name": "linux-cloud-tools-6.8.0-1061-azure-fde",
"binary_version": "6.8.0-1061.68"
},
{
"binary_name": "linux-headers-6.8.0-1061-azure-fde",
"binary_version": "6.8.0-1061.68"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1061-azure-fde",
"binary_version": "6.8.0-1061.68"
},
{
"binary_name": "linux-modules-6.8.0-1061-azure-fde",
"binary_version": "6.8.0-1061.68"
},
{
"binary_name": "linux-modules-extra-6.8.0-1061-azure-fde",
"binary_version": "6.8.0-1061.68"
},
{
"binary_name": "linux-modules-involflt-6.8.0-1061-azure-fde",
"binary_version": "6.8.0-1061.68"
},
{
"binary_name": "linux-modules-iwlwifi-6.8.0-1061-azure-fde",
"binary_version": "6.8.0-1061.68"
},
{
"binary_name": "linux-tools-6.8.0-1061-azure-fde",
"binary_version": "6.8.0-1061.68"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-azure-fde",
"purl": "pkg:deb/ubuntu/linux-azure-fde@6.8.0-1061.68?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1041.48",
"6.8.0-1044.51",
"6.8.0-1046.53",
"6.8.0-1053.60",
"6.8.0-1058.65",
"6.8.0-1061.68"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-fde-6.14-cloud-tools-6.14.0-1017",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-azure-fde-6.14-headers-6.14.0-1017",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-azure-fde-6.14-tools-6.14.0-1017",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-buildinfo-6.14.0-1017-azure-fde",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-cloud-tools-6.14.0-1017-azure-fde",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-headers-6.14.0-1017-azure-fde",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.14.0-1017-azure-fde",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-modules-6.14.0-1017-azure-fde",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.14.0-1017-azure-fde",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-tools-6.14.0-1017-azure-fde",
"binary_version": "6.14.0-1017.17~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-azure-fde-6.14",
"purl": "pkg:deb/ubuntu/linux-azure-fde-6.14@6.14.0-1017.17~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.14.0-1012.12~24.04.1",
"6.14.0-1013.13~24.04.1",
"6.14.0-1014.14~24.04.1",
"6.14.0-1015.15~24.04.1",
"6.14.0-1017.17~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-fde-6.17-cloud-tools-6.17.0-1017",
"binary_version": "6.17.0-1017.17~24.04.1"
},
{
"binary_name": "linux-azure-fde-6.17-headers-6.17.0-1017",
"binary_version": "6.17.0-1017.17~24.04.1"
},
{
"binary_name": "linux-azure-fde-6.17-tools-6.17.0-1017",
"binary_version": "6.17.0-1017.17~24.04.1"
},
{
"binary_name": "linux-buildinfo-6.17.0-1017-azure-fde",
"binary_version": "6.17.0-1017.17~24.04.1"
},
{
"binary_name": "linux-cloud-tools-6.17.0-1017-azure-fde",
"binary_version": "6.17.0-1017.17~24.04.1"
},
{
"binary_name": "linux-headers-6.17.0-1017-azure-fde",
"binary_version": "6.17.0-1017.17~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1017-azure-fde",
"binary_version": "6.17.0-1017.17~24.04.1"
},
{
"binary_name": "linux-modules-6.17.0-1017-azure-fde",
"binary_version": "6.17.0-1017.17~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.17.0-1017-azure-fde",
"binary_version": "6.17.0-1017.17~24.04.1"
},
{
"binary_name": "linux-tools-6.17.0-1017-azure-fde",
"binary_version": "6.17.0-1017.17~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-azure-fde-6.17",
"purl": "pkg:deb/ubuntu/linux-azure-fde-6.17@6.17.0-1017.17~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.17.0-1005.5~24.04.1",
"6.17.0-1010.10~24.04.1",
"6.17.0-1015.15~24.04.1",
"6.17.0-1017.17~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-nvidia-cloud-tools-6.8.0-1029",
"binary_version": "6.8.0-1029.32"
},
{
"binary_name": "linux-azure-nvidia-headers-6.8.0-1029",
"binary_version": "6.8.0-1029.32"
},
{
"binary_name": "linux-azure-nvidia-tools-6.8.0-1029",
"binary_version": "6.8.0-1029.32"
},
{
"binary_name": "linux-buildinfo-6.8.0-1029-azure-nvidia",
"binary_version": "6.8.0-1029.32"
},
{
"binary_name": "linux-cloud-tools-6.8.0-1029-azure-nvidia",
"binary_version": "6.8.0-1029.32"
},
{
"binary_name": "linux-headers-6.8.0-1029-azure-nvidia",
"binary_version": "6.8.0-1029.32"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1029-azure-nvidia",
"binary_version": "6.8.0-1029.32"
},
{
"binary_name": "linux-modules-6.8.0-1029-azure-nvidia",
"binary_version": "6.8.0-1029.32"
},
{
"binary_name": "linux-modules-extra-6.8.0-1029-azure-nvidia",
"binary_version": "6.8.0-1029.32"
},
{
"binary_name": "linux-tools-6.8.0-1029-azure-nvidia",
"binary_version": "6.8.0-1029.32"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-azure-nvidia",
"purl": "pkg:deb/ubuntu/linux-azure-nvidia@6.8.0-1029.32?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1013.14",
"6.8.0-1014.15",
"6.8.0-1016.17",
"6.8.0-1018.19",
"6.8.0-1019.20",
"6.8.0-1022.23",
"6.8.0-1025.27",
"6.8.0-1027.30",
"6.8.0-1029.32"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-nvidia-6.14-cloud-tools-6.14.0-1007",
"binary_version": "6.14.0-1007.7"
},
{
"binary_name": "linux-azure-nvidia-6.14-headers-6.14.0-1007",
"binary_version": "6.14.0-1007.7"
},
{
"binary_name": "linux-azure-nvidia-6.14-tools-6.14.0-1007",
"binary_version": "6.14.0-1007.7"
},
{
"binary_name": "linux-buildinfo-6.14.0-1007-azure-nvidia",
"binary_version": "6.14.0-1007.7"
},
{
"binary_name": "linux-cloud-tools-6.14.0-1007-azure-nvidia",
"binary_version": "6.14.0-1007.7"
},
{
"binary_name": "linux-headers-6.14.0-1007-azure-nvidia",
"binary_version": "6.14.0-1007.7"
},
{
"binary_name": "linux-image-unsigned-6.14.0-1007-azure-nvidia",
"binary_version": "6.14.0-1007.7"
},
{
"binary_name": "linux-modules-6.14.0-1007-azure-nvidia",
"binary_version": "6.14.0-1007.7"
},
{
"binary_name": "linux-modules-extra-6.14.0-1007-azure-nvidia",
"binary_version": "6.14.0-1007.7"
},
{
"binary_name": "linux-tools-6.14.0-1007-azure-nvidia",
"binary_version": "6.14.0-1007.7"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-azure-nvidia-6.14",
"purl": "pkg:deb/ubuntu/linux-azure-nvidia-6.14@6.14.0-1007.7?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.14.0-1003.3",
"6.14.0-1006.6",
"6.14.0-1007.7"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-1064-gcp",
"binary_version": "6.8.0-1064.72"
},
{
"binary_name": "linux-buildinfo-6.8.0-1064-gcp-64k",
"binary_version": "6.8.0-1064.72"
},
{
"binary_name": "linux-gcp-headers-6.8.0-1064",
"binary_version": "6.8.0-1064.72"
},
{
"binary_name": "linux-gcp-tools-6.8.0-1064",
"binary_version": "6.8.0-1064.72"
},
{
"binary_name": "linux-headers-6.8.0-1064-gcp",
"binary_version": "6.8.0-1064.72"
},
{
"binary_name": "linux-headers-6.8.0-1064-gcp-64k",
"binary_version": "6.8.0-1064.72"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1064-gcp",
"binary_version": "6.8.0-1064.72"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1064-gcp-64k",
"binary_version": "6.8.0-1064.72"
},
{
"binary_name": "linux-modules-6.8.0-1064-gcp",
"binary_version": "6.8.0-1064.72"
},
{
"binary_name": "linux-modules-6.8.0-1064-gcp-64k",
"binary_version": "6.8.0-1064.72"
},
{
"binary_name": "linux-modules-extra-6.8.0-1064-gcp",
"binary_version": "6.8.0-1064.72"
},
{
"binary_name": "linux-modules-extra-6.8.0-1064-gcp-64k",
"binary_version": "6.8.0-1064.72"
},
{
"binary_name": "linux-tools-6.8.0-1064-gcp",
"binary_version": "6.8.0-1064.72"
},
{
"binary_name": "linux-tools-6.8.0-1064-gcp-64k",
"binary_version": "6.8.0-1064.72"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-gcp",
"purl": "pkg:deb/ubuntu/linux-gcp@6.8.0-1064.72?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.5.0-1007.7",
"6.6.0-1001.1",
"6.8.0-1002.2",
"6.8.0-1005.5",
"6.8.0-1006.6",
"6.8.0-1007.7",
"6.8.0-1008.9",
"6.8.0-1009.10",
"6.8.0-1010.11",
"6.8.0-1011.12",
"6.8.0-1012.13",
"6.8.0-1013.14",
"6.8.0-1014.16",
"6.8.0-1015.17",
"6.8.0-1016.18",
"6.8.0-1017.19",
"6.8.0-1018.20",
"6.8.0-1019.21",
"6.8.0-1020.22",
"6.8.0-1021.23",
"6.8.0-1024.26",
"6.8.0-1025.27",
"6.8.0-1026.28",
"6.8.0-1027.29",
"6.8.0-1028.30",
"6.8.0-1029.31",
"6.8.0-1030.32",
"6.8.0-1031.33",
"6.8.0-1032.34",
"6.8.0-1033.35",
"6.8.0-1034.36",
"6.8.0-1036.38",
"6.8.0-1037.39",
"6.8.0-1039.41",
"6.8.0-1040.42",
"6.8.0-1041.43",
"6.8.0-1042.45",
"6.8.0-1043.46",
"6.8.0-1044.47",
"6.8.0-1045.48",
"6.8.0-1046.49",
"6.8.0-1047.50",
"6.8.0-1048.51",
"6.8.0-1052.55",
"6.8.0-1053.56",
"6.8.0-1054.57",
"6.8.0-1055.58",
"6.8.0-1058.61",
"6.8.0-1060.63",
"6.8.0-1063.69",
"6.8.0-1064.72"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.11.0-1017-gcp",
"binary_version": "6.11.0-1017.17~24.04.1"
},
{
"binary_name": "linux-buildinfo-6.11.0-1017-gcp-64k",
"binary_version": "6.11.0-1017.17~24.04.1"
},
{
"binary_name": "linux-gcp-6.11-headers-6.11.0-1017",
"binary_version": "6.11.0-1017.17~24.04.1"
},
{
"binary_name": "linux-gcp-6.11-lib-rust-6.11.0-1017-gcp",
"binary_version": "6.11.0-1017.17~24.04.1"
},
{
"binary_name": "linux-gcp-6.11-tools-6.11.0-1017",
"binary_version": "6.11.0-1017.17~24.04.1"
},
{
"binary_name": "linux-headers-6.11.0-1017-gcp",
"binary_version": "6.11.0-1017.17~24.04.1"
},
{
"binary_name": "linux-headers-6.11.0-1017-gcp-64k",
"binary_version": "6.11.0-1017.17~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.11.0-1017-gcp",
"binary_version": "6.11.0-1017.17~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.11.0-1017-gcp-64k",
"binary_version": "6.11.0-1017.17~24.04.1"
},
{
"binary_name": "linux-modules-6.11.0-1017-gcp",
"binary_version": "6.11.0-1017.17~24.04.1"
},
{
"binary_name": "linux-modules-6.11.0-1017-gcp-64k",
"binary_version": "6.11.0-1017.17~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.11.0-1017-gcp",
"binary_version": "6.11.0-1017.17~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.11.0-1017-gcp-64k",
"binary_version": "6.11.0-1017.17~24.04.1"
},
{
"binary_name": "linux-tools-6.11.0-1017-gcp",
"binary_version": "6.11.0-1017.17~24.04.1"
},
{
"binary_name": "linux-tools-6.11.0-1017-gcp-64k",
"binary_version": "6.11.0-1017.17~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-gcp-6.11",
"purl": "pkg:deb/ubuntu/linux-gcp-6.11@6.11.0-1017.17~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.11.0-1006.6~24.04.2",
"6.11.0-1011.11~24.04.1",
"6.11.0-1013.13~24.04.1",
"6.11.0-1014.14~24.04.1",
"6.11.0-1015.15~24.04.1",
"6.11.0-1016.16~24.04.1",
"6.11.0-1017.17~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.14.0-1021-gcp",
"binary_version": "6.14.0-1021.22~24.04.1"
},
{
"binary_name": "linux-buildinfo-6.14.0-1021-gcp-64k",
"binary_version": "6.14.0-1021.22~24.04.1"
},
{
"binary_name": "linux-gcp-6.14-headers-6.14.0-1021",
"binary_version": "6.14.0-1021.22~24.04.1"
},
{
"binary_name": "linux-gcp-6.14-tools-6.14.0-1021",
"binary_version": "6.14.0-1021.22~24.04.1"
},
{
"binary_name": "linux-headers-6.14.0-1021-gcp",
"binary_version": "6.14.0-1021.22~24.04.1"
},
{
"binary_name": "linux-headers-6.14.0-1021-gcp-64k",
"binary_version": "6.14.0-1021.22~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.14.0-1021-gcp",
"binary_version": "6.14.0-1021.22~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.14.0-1021-gcp-64k",
"binary_version": "6.14.0-1021.22~24.04.1"
},
{
"binary_name": "linux-lib-rust-6.14.0-1021-gcp",
"binary_version": "6.14.0-1021.22~24.04.1"
},
{
"binary_name": "linux-modules-6.14.0-1021-gcp",
"binary_version": "6.14.0-1021.22~24.04.1"
},
{
"binary_name": "linux-modules-6.14.0-1021-gcp-64k",
"binary_version": "6.14.0-1021.22~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.14.0-1021-gcp",
"binary_version": "6.14.0-1021.22~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.14.0-1021-gcp-64k",
"binary_version": "6.14.0-1021.22~24.04.1"
},
{
"binary_name": "linux-tools-6.14.0-1021-gcp",
"binary_version": "6.14.0-1021.22~24.04.1"
},
{
"binary_name": "linux-tools-6.14.0-1021-gcp-64k",
"binary_version": "6.14.0-1021.22~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-gcp-6.14",
"purl": "pkg:deb/ubuntu/linux-gcp-6.14@6.14.0-1021.22~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.14.0-1007.7~24.04.1",
"6.14.0-1011.11~24.04.1",
"6.14.0-1012.12~24.04.1",
"6.14.0-1014.15~24.04.1",
"6.14.0-1015.16~24.04.1",
"6.14.0-1016.17~24.04.1",
"6.14.0-1017.18~24.04.1",
"6.14.0-1018.19~24.04.1",
"6.14.0-1019.20~24.04.1",
"6.14.0-1020.21~24.04.1",
"6.14.0-1021.22~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.17.0-1021-gcp",
"binary_version": "6.17.0-1021.24~24.04.1"
},
{
"binary_name": "linux-buildinfo-6.17.0-1021-gcp-64k",
"binary_version": "6.17.0-1021.24~24.04.1"
},
{
"binary_name": "linux-gcp-6.17-headers-6.17.0-1021",
"binary_version": "6.17.0-1021.24~24.04.1"
},
{
"binary_name": "linux-gcp-6.17-tools-6.17.0-1021",
"binary_version": "6.17.0-1021.24~24.04.1"
},
{
"binary_name": "linux-headers-6.17.0-1021-gcp",
"binary_version": "6.17.0-1021.24~24.04.1"
},
{
"binary_name": "linux-headers-6.17.0-1021-gcp-64k",
"binary_version": "6.17.0-1021.24~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1021-gcp",
"binary_version": "6.17.0-1021.24~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1021-gcp-64k",
"binary_version": "6.17.0-1021.24~24.04.1"
},
{
"binary_name": "linux-lib-rust-6.17.0-1021-gcp",
"binary_version": "6.17.0-1021.24~24.04.1"
},
{
"binary_name": "linux-modules-6.17.0-1021-gcp",
"binary_version": "6.17.0-1021.24~24.04.1"
},
{
"binary_name": "linux-modules-6.17.0-1021-gcp-64k",
"binary_version": "6.17.0-1021.24~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.17.0-1021-gcp",
"binary_version": "6.17.0-1021.24~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.17.0-1021-gcp-64k",
"binary_version": "6.17.0-1021.24~24.04.1"
},
{
"binary_name": "linux-tools-6.17.0-1021-gcp",
"binary_version": "6.17.0-1021.24~24.04.1"
},
{
"binary_name": "linux-tools-6.17.0-1021-gcp-64k",
"binary_version": "6.17.0-1021.24~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-gcp-6.17",
"purl": "pkg:deb/ubuntu/linux-gcp-6.17@6.17.0-1021.24~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.17.0-1004.4~24.04.3",
"6.17.0-1008.8~24.04.1",
"6.17.0-1009.9~24.04.3",
"6.17.0-1010.10~24.04.1",
"6.17.0-1012.12~24.04.1",
"6.17.0-1013.13~24.04.1",
"6.17.0-1016.17~24.04.1",
"6.17.0-1018.19~24.04.1",
"6.17.0-1020.22~24.04.1",
"6.17.0-1021.24~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-1059-gke",
"binary_version": "6.8.0-1059.67"
},
{
"binary_name": "linux-buildinfo-6.8.0-1059-gke-64k",
"binary_version": "6.8.0-1059.67"
},
{
"binary_name": "linux-gke-headers-6.8.0-1059",
"binary_version": "6.8.0-1059.67"
},
{
"binary_name": "linux-gke-tools-6.8.0-1059",
"binary_version": "6.8.0-1059.67"
},
{
"binary_name": "linux-headers-6.8.0-1059-gke",
"binary_version": "6.8.0-1059.67"
},
{
"binary_name": "linux-headers-6.8.0-1059-gke-64k",
"binary_version": "6.8.0-1059.67"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1059-gke",
"binary_version": "6.8.0-1059.67"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1059-gke-64k",
"binary_version": "6.8.0-1059.67"
},
{
"binary_name": "linux-modules-6.8.0-1059-gke",
"binary_version": "6.8.0-1059.67"
},
{
"binary_name": "linux-modules-6.8.0-1059-gke-64k",
"binary_version": "6.8.0-1059.67"
},
{
"binary_name": "linux-modules-extra-6.8.0-1059-gke",
"binary_version": "6.8.0-1059.67"
},
{
"binary_name": "linux-modules-extra-6.8.0-1059-gke-64k",
"binary_version": "6.8.0-1059.67"
},
{
"binary_name": "linux-modules-iwlwifi-6.8.0-1059-gke",
"binary_version": "6.8.0-1059.67"
},
{
"binary_name": "linux-tools-6.8.0-1059-gke",
"binary_version": "6.8.0-1059.67"
},
{
"binary_name": "linux-tools-6.8.0-1059-gke-64k",
"binary_version": "6.8.0-1059.67"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-gke",
"purl": "pkg:deb/ubuntu/linux-gke@6.8.0-1059.67?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1003.5",
"6.8.0-1004.7",
"6.8.0-1005.8",
"6.8.0-1006.9",
"6.8.0-1007.10",
"6.8.0-1008.11",
"6.8.0-1009.12",
"6.8.0-1010.13",
"6.8.0-1011.14",
"6.8.0-1012.15",
"6.8.0-1013.17",
"6.8.0-1014.18",
"6.8.0-1015.19",
"6.8.0-1016.20",
"6.8.0-1017.21",
"6.8.0-1019.23",
"6.8.0-1020.24",
"6.8.0-1021.25",
"6.8.0-1022.26",
"6.8.0-1023.27",
"6.8.0-1024.28",
"6.8.0-1025.29",
"6.8.0-1026.30",
"6.8.0-1027.31",
"6.8.0-1028.32",
"6.8.0-1029.33",
"6.8.0-1032.36",
"6.8.0-1033.37",
"6.8.0-1035.39",
"6.8.0-1036.40",
"6.8.0-1037.41",
"6.8.0-1038.43",
"6.8.0-1039.44",
"6.8.0-1040.45",
"6.8.0-1041.46",
"6.8.0-1042.47",
"6.8.0-1043.48",
"6.8.0-1044.49",
"6.8.0-1048.53",
"6.8.0-1049.54",
"6.8.0-1050.56",
"6.8.0-1051.57",
"6.8.0-1054.60",
"6.8.0-1055.61",
"6.8.0-1058.64",
"6.8.0-1059.67"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-1046-gkeop",
"binary_version": "6.8.0-1046.50"
},
{
"binary_name": "linux-cloud-tools-6.8.0-1046-gkeop",
"binary_version": "6.8.0-1046.50"
},
{
"binary_name": "linux-gkeop-cloud-tools-6.8.0-1046",
"binary_version": "6.8.0-1046.50"
},
{
"binary_name": "linux-gkeop-headers-6.8.0-1046",
"binary_version": "6.8.0-1046.50"
},
{
"binary_name": "linux-gkeop-tools-6.8.0-1046",
"binary_version": "6.8.0-1046.50"
},
{
"binary_name": "linux-headers-6.8.0-1046-gkeop",
"binary_version": "6.8.0-1046.50"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1046-gkeop",
"binary_version": "6.8.0-1046.50"
},
{
"binary_name": "linux-modules-6.8.0-1046-gkeop",
"binary_version": "6.8.0-1046.50"
},
{
"binary_name": "linux-modules-extra-6.8.0-1046-gkeop",
"binary_version": "6.8.0-1046.50"
},
{
"binary_name": "linux-tools-6.8.0-1046-gkeop",
"binary_version": "6.8.0-1046.50"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-gkeop",
"purl": "pkg:deb/ubuntu/linux-gkeop@6.8.0-1046.50?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1001.3",
"6.8.0-1002.4",
"6.8.0-1003.5",
"6.8.0-1004.6",
"6.8.0-1006.8",
"6.8.0-1007.9",
"6.8.0-1008.10",
"6.8.0-1009.11",
"6.8.0-1010.12",
"6.8.0-1011.13",
"6.8.0-1012.14",
"6.8.0-1013.15",
"6.8.0-1014.16",
"6.8.0-1015.17",
"6.8.0-1016.18",
"6.8.0-1019.21",
"6.8.0-1020.22",
"6.8.0-1022.24",
"6.8.0-1023.25",
"6.8.0-1024.26",
"6.8.0-1025.28",
"6.8.0-1026.29",
"6.8.0-1027.30",
"6.8.0-1028.31",
"6.8.0-1029.32",
"6.8.0-1030.33",
"6.8.0-1031.34",
"6.8.0-1035.38",
"6.8.0-1036.39",
"6.8.0-1037.40",
"6.8.0-1038.41",
"6.8.0-1041.44",
"6.8.0-1042.45",
"6.8.0-1045.48",
"6.8.0-1046.50"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.11.0-29-generic",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-buildinfo-6.11.0-29-generic-64k",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-cloud-tools-6.11.0-29-generic",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-headers-6.11.0-29-generic",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-headers-6.11.0-29-generic-64k",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-hwe-6.11-cloud-tools-6.11.0-29",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-hwe-6.11-headers-6.11.0-29",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-hwe-6.11-lib-rust-6.11.0-29-generic",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-hwe-6.11-tools-6.11.0-29",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-image-6.11.0-29-generic",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.11.0-29-generic",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.11.0-29-generic-64k",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-modules-6.11.0-29-generic",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-modules-6.11.0-29-generic-64k",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.11.0-29-generic",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-modules-ipu6-6.11.0-29-generic",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-modules-ipu7-6.11.0-29-generic",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-modules-iwlwifi-6.11.0-29-generic",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-modules-usbio-6.11.0-29-generic",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-modules-vision-6.11.0-29-generic",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-tools-6.11.0-29-generic",
"binary_version": "6.11.0-29.29~24.04.1"
},
{
"binary_name": "linux-tools-6.11.0-29-generic-64k",
"binary_version": "6.11.0-29.29~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-hwe-6.11",
"purl": "pkg:deb/ubuntu/linux-hwe-6.11@6.11.0-29.29~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.11.0-17.17~24.04.2",
"6.11.0-19.19~24.04.1",
"6.11.0-21.21~24.04.1",
"6.11.0-24.24~24.04.1",
"6.11.0-25.25~24.04.1",
"6.11.0-26.26~24.04.1",
"6.11.0-28.28~24.04.1",
"6.11.0-29.29~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.14.0-37-generic",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-buildinfo-6.14.0-37-generic-64k",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-cloud-tools-6.14.0-37-generic",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-headers-6.14.0-37-generic",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-headers-6.14.0-37-generic-64k",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-hwe-6.14-cloud-tools-6.14.0-37",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-hwe-6.14-headers-6.14.0-37",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-hwe-6.14-tools-6.14.0-37",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-image-6.14.0-37-generic",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.14.0-37-generic",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.14.0-37-generic-64k",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-lib-rust-6.14.0-37-generic",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-modules-6.14.0-37-generic",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-modules-6.14.0-37-generic-64k",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.14.0-37-generic",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-modules-ipu6-6.14.0-37-generic",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-modules-ipu7-6.14.0-37-generic",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-modules-iwlwifi-6.14.0-37-generic",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-modules-usbio-6.14.0-37-generic",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-modules-vision-6.14.0-37-generic",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-tools-6.14.0-37-generic",
"binary_version": "6.14.0-37.37~24.04.1"
},
{
"binary_name": "linux-tools-6.14.0-37-generic-64k",
"binary_version": "6.14.0-37.37~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-hwe-6.14",
"purl": "pkg:deb/ubuntu/linux-hwe-6.14@6.14.0-37.37~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.14.0-24.24~24.04.3",
"6.14.0-27.27~24.04.1",
"6.14.0-28.28~24.04.1",
"6.14.0-29.29~24.04.1",
"6.14.0-32.32~24.04.1",
"6.14.0-33.33~24.04.1",
"6.14.0-34.34~24.04.1",
"6.14.0-35.35~24.04.1",
"6.14.0-36.36~24.04.1",
"6.14.0-37.37~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.17.0-40-generic",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-buildinfo-6.17.0-40-generic-64k",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-cloud-tools-6.17.0-40-generic",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-headers-6.17.0-40-generic",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-headers-6.17.0-40-generic-64k",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-hwe-6.17-cloud-tools-6.17.0-40",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-hwe-6.17-headers-6.17.0-40",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-hwe-6.17-tools-6.17.0-40",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-image-6.17.0-40-generic",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.17.0-40-generic",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.17.0-40-generic-64k",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-lib-rust-6.17.0-40-generic",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-modules-6.17.0-40-generic",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-modules-6.17.0-40-generic-64k",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.17.0-40-generic",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-modules-ipu6-6.17.0-40-generic",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-modules-ipu7-6.17.0-40-generic",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-modules-iwlwifi-6.17.0-40-generic",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-modules-usbio-6.17.0-40-generic",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-modules-vision-6.17.0-40-generic",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-tools-6.17.0-40-generic",
"binary_version": "6.17.0-40.40~24.04.1"
},
{
"binary_name": "linux-tools-6.17.0-40-generic-64k",
"binary_version": "6.17.0-40.40~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-hwe-6.17",
"purl": "pkg:deb/ubuntu/linux-hwe-6.17@6.17.0-40.40~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.17.0-14.14~24.04.1",
"6.17.0-19.19~24.04.2",
"6.17.0-20.20~24.04.1",
"6.17.0-22.22~24.04.1",
"6.17.0-23.23~24.04.1",
"6.17.0-29.29~24.04.1",
"6.17.0-35.35~24.04.1",
"6.17.0-40.40~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-7.0.0-28-generic",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-buildinfo-7.0.0-28-generic-64k",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-cloud-tools-7.0.0-28-generic",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-headers-7.0.0-28-generic",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-headers-7.0.0-28-generic-64k",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-hwe-7.0-cloud-tools-7.0.0-28",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-hwe-7.0-headers-7.0.0-28",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-hwe-7.0-tools-7.0.0-28",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-image-7.0.0-28-generic",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-image-unsigned-7.0.0-28-generic",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-image-unsigned-7.0.0-28-generic-64k",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-lib-rust-7.0.0-28-generic",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-modules-7.0.0-28-generic",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-modules-7.0.0-28-generic-64k",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-modules-evdi-7.0.0-28-generic",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-modules-ipu6-7.0.0-28-generic",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-modules-ipu7-7.0.0-28-generic",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-modules-iwlwifi-7.0.0-28-generic",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-modules-usbio-7.0.0-28-generic",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-modules-vision-7.0.0-28-generic",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-tools-7.0.0-28-generic",
"binary_version": "7.0.0-28.28~24.04.1"
},
{
"binary_name": "linux-tools-7.0.0-28-generic-64k",
"binary_version": "7.0.0-28.28~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-hwe-7.0",
"purl": "pkg:deb/ubuntu/linux-hwe-7.0@7.0.0-28.28~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.0-14.14~24.04.3",
"7.0.0-28.28~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-1060-ibm",
"binary_version": "6.8.0-1060.61"
},
{
"binary_name": "linux-headers-6.8.0-1060-ibm",
"binary_version": "6.8.0-1060.61"
},
{
"binary_name": "linux-ibm-headers-6.8.0-1060",
"binary_version": "6.8.0-1060.61"
},
{
"binary_name": "linux-ibm-tools-6.8.0-1060",
"binary_version": "6.8.0-1060.61"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1060-ibm",
"binary_version": "6.8.0-1060.61"
},
{
"binary_name": "linux-modules-6.8.0-1060-ibm",
"binary_version": "6.8.0-1060.61"
},
{
"binary_name": "linux-modules-extra-6.8.0-1060-ibm",
"binary_version": "6.8.0-1060.61"
},
{
"binary_name": "linux-modules-iwlwifi-6.8.0-1060-ibm",
"binary_version": "6.8.0-1060.61"
},
{
"binary_name": "linux-tools-6.8.0-1060-ibm",
"binary_version": "6.8.0-1060.61"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-ibm",
"purl": "pkg:deb/ubuntu/linux-ibm@6.8.0-1060.61?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.5.0-1009.9",
"6.8.0-1001.1",
"6.8.0-1003.3",
"6.8.0-1004.4",
"6.8.0-1005.5",
"6.8.0-1006.6",
"6.8.0-1007.7",
"6.8.0-1008.8",
"6.8.0-1009.9",
"6.8.0-1010.10",
"6.8.0-1011.11",
"6.8.0-1012.12",
"6.8.0-1013.13",
"6.8.0-1014.14",
"6.8.0-1015.15",
"6.8.0-1016.16",
"6.8.0-1017.17",
"6.8.0-1018.18",
"6.8.0-1019.19",
"6.8.0-1022.22",
"6.8.0-1023.23",
"6.8.0-1024.24",
"6.8.0-1025.25",
"6.8.0-1026.26",
"6.8.0-1027.27",
"6.8.0-1028.28",
"6.8.0-1029.29",
"6.8.0-1030.30",
"6.8.0-1033.33",
"6.8.0-1036.36",
"6.8.0-1037.37",
"6.8.0-1038.38",
"6.8.0-1039.39",
"6.8.0-1040.40",
"6.8.0-1041.41",
"6.8.0-1042.42",
"6.8.0-1043.43",
"6.8.0-1044.44",
"6.8.0-1045.45",
"6.8.0-1049.49",
"6.8.0-1050.50",
"6.8.0-1051.51",
"6.8.0-1052.52",
"6.8.0-1055.56",
"6.8.0-1057.58",
"6.8.0-1060.61"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-134-lowlatency",
"binary_version": "6.8.0-134.134.1"
},
{
"binary_name": "linux-buildinfo-6.8.0-134-lowlatency-64k",
"binary_version": "6.8.0-134.134.1"
},
{
"binary_name": "linux-cloud-tools-6.8.0-134-lowlatency",
"binary_version": "6.8.0-134.134.1"
},
{
"binary_name": "linux-headers-6.8.0-134-lowlatency",
"binary_version": "6.8.0-134.134.1"
},
{
"binary_name": "linux-headers-6.8.0-134-lowlatency-64k",
"binary_version": "6.8.0-134.134.1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-134-lowlatency",
"binary_version": "6.8.0-134.134.1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-134-lowlatency-64k",
"binary_version": "6.8.0-134.134.1"
},
{
"binary_name": "linux-lowlatency-cloud-tools-6.8.0-134",
"binary_version": "6.8.0-134.134.1"
},
{
"binary_name": "linux-lowlatency-headers-6.8.0-134",
"binary_version": "6.8.0-134.134.1"
},
{
"binary_name": "linux-lowlatency-lib-rust-6.8.0-134-lowlatency",
"binary_version": "6.8.0-134.134.1"
},
{
"binary_name": "linux-lowlatency-tools-6.8.0-134",
"binary_version": "6.8.0-134.134.1"
},
{
"binary_name": "linux-modules-6.8.0-134-lowlatency",
"binary_version": "6.8.0-134.134.1"
},
{
"binary_name": "linux-modules-6.8.0-134-lowlatency-64k",
"binary_version": "6.8.0-134.134.1"
},
{
"binary_name": "linux-modules-iwlwifi-6.8.0-134-lowlatency",
"binary_version": "6.8.0-134.134.1"
},
{
"binary_name": "linux-tools-6.8.0-134-lowlatency",
"binary_version": "6.8.0-134.134.1"
},
{
"binary_name": "linux-tools-6.8.0-134-lowlatency-64k",
"binary_version": "6.8.0-134.134.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-lowlatency",
"purl": "pkg:deb/ubuntu/linux-lowlatency@6.8.0-134.134.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.5.0-9.9.1",
"6.6.0-14.14.1",
"6.8.0-7.7.1",
"6.8.0-25.25.3",
"6.8.0-28.28.1",
"6.8.0-31.31.1",
"6.8.0-35.35.1",
"6.8.0-36.36.1",
"6.8.0-38.38.1",
"6.8.0-39.39.1",
"6.8.0-40.40.1",
"6.8.0-41.41.1",
"6.8.0-44.44.1",
"6.8.0-45.45.1",
"6.8.0-47.47.1",
"6.8.0-48.48.3",
"6.8.0-49.49.1",
"6.8.0-50.51.1",
"6.8.0-51.52.1",
"6.8.0-52.53.1",
"6.8.0-53.55.2",
"6.8.0-54.56.1",
"6.8.0-55.57.1",
"6.8.0-56.58.1",
"6.8.0-57.59.1",
"6.8.0-58.60.1",
"6.8.0-59.61.1",
"6.8.0-60.63.1",
"6.8.0-62.65.1",
"6.8.0-63.66.1",
"6.8.0-64.67.1",
"6.8.0-65.68.1",
"6.8.0-78.78.1",
"6.8.0-79.79.1",
"6.8.0-83.83.1",
"6.8.0-84.84.1",
"6.8.0-85.85.1",
"6.8.0-86.87.1",
"6.8.0-87.88.1",
"6.8.0-88.89.1",
"6.8.0-90.91.1",
"6.8.0-94.96.1",
"6.8.0-100.100.1",
"6.8.0-101.101.1",
"6.8.0-106.106.1",
"6.8.0-107.107.1",
"6.8.0-110.110.1",
"6.8.0-111.111.1",
"6.8.0-117.117.1",
"6.8.0-134.134.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.11.0-1016-lowlatency",
"binary_version": "6.11.0-1016.17~24.04.1"
},
{
"binary_name": "linux-buildinfo-6.11.0-1016-lowlatency-64k",
"binary_version": "6.11.0-1016.17~24.04.1"
},
{
"binary_name": "linux-cloud-tools-6.11.0-1016-lowlatency",
"binary_version": "6.11.0-1016.17~24.04.1"
},
{
"binary_name": "linux-headers-6.11.0-1016-lowlatency",
"binary_version": "6.11.0-1016.17~24.04.1"
},
{
"binary_name": "linux-headers-6.11.0-1016-lowlatency-64k",
"binary_version": "6.11.0-1016.17~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.11.0-1016-lowlatency",
"binary_version": "6.11.0-1016.17~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.11.0-1016-lowlatency-64k",
"binary_version": "6.11.0-1016.17~24.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.11-cloud-tools-6.11.0-1016",
"binary_version": "6.11.0-1016.17~24.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.11-headers-6.11.0-1016",
"binary_version": "6.11.0-1016.17~24.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.11-lib-rust-6.11.0-1016-lowlatency",
"binary_version": "6.11.0-1016.17~24.04.1"
},
{
"binary_name": "linux-lowlatency-hwe-6.11-tools-6.11.0-1016",
"binary_version": "6.11.0-1016.17~24.04.1"
},
{
"binary_name": "linux-modules-6.11.0-1016-lowlatency",
"binary_version": "6.11.0-1016.17~24.04.1"
},
{
"binary_name": "linux-modules-6.11.0-1016-lowlatency-64k",
"binary_version": "6.11.0-1016.17~24.04.1"
},
{
"binary_name": "linux-modules-iwlwifi-6.11.0-1016-lowlatency",
"binary_version": "6.11.0-1016.17~24.04.1"
},
{
"binary_name": "linux-tools-6.11.0-1016-lowlatency",
"binary_version": "6.11.0-1016.17~24.04.1"
},
{
"binary_name": "linux-tools-6.11.0-1016-lowlatency-64k",
"binary_version": "6.11.0-1016.17~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-lowlatency-hwe-6.11",
"purl": "pkg:deb/ubuntu/linux-lowlatency-hwe-6.11@6.11.0-1016.17~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.11.0-1009.10~24.04.1",
"6.11.0-1011.12~24.04.1",
"6.11.0-1012.13~24.04.1",
"6.11.0-1013.14~24.04.1",
"6.11.0-1014.15~24.04.1",
"6.11.0-1015.16~24.04.2",
"6.11.0-1016.17~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-1058-nvidia",
"binary_version": "6.8.0-1058.61"
},
{
"binary_name": "linux-buildinfo-6.8.0-1058-nvidia-64k",
"binary_version": "6.8.0-1058.61"
},
{
"binary_name": "linux-headers-6.8.0-1058-nvidia",
"binary_version": "6.8.0-1058.61"
},
{
"binary_name": "linux-headers-6.8.0-1058-nvidia-64k",
"binary_version": "6.8.0-1058.61"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1058-nvidia",
"binary_version": "6.8.0-1058.61"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1058-nvidia-64k",
"binary_version": "6.8.0-1058.61"
},
{
"binary_name": "linux-modules-6.8.0-1058-nvidia",
"binary_version": "6.8.0-1058.61"
},
{
"binary_name": "linux-modules-6.8.0-1058-nvidia-64k",
"binary_version": "6.8.0-1058.61"
},
{
"binary_name": "linux-modules-nvidia-fs-6.8.0-1058-nvidia",
"binary_version": "6.8.0-1058.61"
},
{
"binary_name": "linux-modules-nvidia-fs-6.8.0-1058-nvidia-64k",
"binary_version": "6.8.0-1058.61"
},
{
"binary_name": "linux-nvidia-headers-6.8.0-1058",
"binary_version": "6.8.0-1058.61"
},
{
"binary_name": "linux-nvidia-tools-6.8.0-1058",
"binary_version": "6.8.0-1058.61"
},
{
"binary_name": "linux-tools-6.8.0-1058-nvidia",
"binary_version": "6.8.0-1058.61"
},
{
"binary_name": "linux-tools-6.8.0-1058-nvidia-64k",
"binary_version": "6.8.0-1058.61"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-nvidia",
"purl": "pkg:deb/ubuntu/linux-nvidia@6.8.0-1058.61?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1007.7",
"6.8.0-1008.8",
"6.8.0-1009.9",
"6.8.0-1010.10",
"6.8.0-1011.11",
"6.8.0-1012.12",
"6.8.0-1013.14",
"6.8.0-1014.15",
"6.8.0-1015.16",
"6.8.0-1017.19",
"6.8.0-1018.20",
"6.8.0-1019.21",
"6.8.0-1020.22",
"6.8.0-1021.23",
"6.8.0-1022.25",
"6.8.0-1023.26",
"6.8.0-1024.27",
"6.8.0-1025.28",
"6.8.0-1026.29",
"6.8.0-1027.30",
"6.8.0-1028.31",
"6.8.0-1029.32",
"6.8.0-1030.33",
"6.8.0-1031.34",
"6.8.0-1032.35",
"6.8.0-1035.38",
"6.8.0-1036.39",
"6.8.0-1038.41",
"6.8.0-1039.42",
"6.8.0-1040.43",
"6.8.0-1041.44",
"6.8.0-1042.45",
"6.8.0-1043.46",
"6.8.0-1044.47",
"6.8.0-1045.48",
"6.8.0-1046.49",
"6.8.0-1047.50",
"6.8.0-1049.52",
"6.8.0-1050.53",
"6.8.0-1051.54",
"6.8.0-1052.55",
"6.8.0-1054.57",
"6.8.0-1055.58",
"6.8.0-1058.61"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.11.0-1016-nvidia",
"binary_version": "6.11.0-1016.16"
},
{
"binary_name": "linux-buildinfo-6.11.0-1016-nvidia-64k",
"binary_version": "6.11.0-1016.16"
},
{
"binary_name": "linux-headers-6.11.0-1016-nvidia",
"binary_version": "6.11.0-1016.16"
},
{
"binary_name": "linux-headers-6.11.0-1016-nvidia-64k",
"binary_version": "6.11.0-1016.16"
},
{
"binary_name": "linux-image-unsigned-6.11.0-1016-nvidia",
"binary_version": "6.11.0-1016.16"
},
{
"binary_name": "linux-image-unsigned-6.11.0-1016-nvidia-64k",
"binary_version": "6.11.0-1016.16"
},
{
"binary_name": "linux-modules-6.11.0-1016-nvidia",
"binary_version": "6.11.0-1016.16"
},
{
"binary_name": "linux-modules-6.11.0-1016-nvidia-64k",
"binary_version": "6.11.0-1016.16"
},
{
"binary_name": "linux-modules-extra-6.11.0-1016-nvidia",
"binary_version": "6.11.0-1016.16"
},
{
"binary_name": "linux-modules-extra-6.11.0-1016-nvidia-64k",
"binary_version": "6.11.0-1016.16"
},
{
"binary_name": "linux-modules-nvidia-fs-6.11.0-1016-nvidia",
"binary_version": "6.11.0-1016.16"
},
{
"binary_name": "linux-modules-nvidia-fs-6.11.0-1016-nvidia-64k",
"binary_version": "6.11.0-1016.16"
},
{
"binary_name": "linux-nvidia-6.11-headers-6.11.0-1016",
"binary_version": "6.11.0-1016.16"
},
{
"binary_name": "linux-nvidia-6.11-lib-rust-6.11.0-1016-nvidia",
"binary_version": "6.11.0-1016.16"
},
{
"binary_name": "linux-nvidia-6.11-tools-6.11.0-1016",
"binary_version": "6.11.0-1016.16"
},
{
"binary_name": "linux-tools-6.11.0-1016-nvidia",
"binary_version": "6.11.0-1016.16"
},
{
"binary_name": "linux-tools-6.11.0-1016-nvidia-64k",
"binary_version": "6.11.0-1016.16"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-nvidia-6.11",
"purl": "pkg:deb/ubuntu/linux-nvidia-6.11@6.11.0-1016.16?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.11.0-1002.2",
"6.11.0-1003.3",
"6.11.0-1007.7",
"6.11.0-1010.10",
"6.11.0-1011.11",
"6.11.0-1012.12",
"6.11.0-1013.13",
"6.11.0-1016.16"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.17.0-1026-nvidia",
"binary_version": "6.17.0-1026.26"
},
{
"binary_name": "linux-buildinfo-6.17.0-1026-nvidia-64k",
"binary_version": "6.17.0-1026.26"
},
{
"binary_name": "linux-headers-6.17.0-1026-nvidia",
"binary_version": "6.17.0-1026.26"
},
{
"binary_name": "linux-headers-6.17.0-1026-nvidia-64k",
"binary_version": "6.17.0-1026.26"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1026-nvidia",
"binary_version": "6.17.0-1026.26"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1026-nvidia-64k",
"binary_version": "6.17.0-1026.26"
},
{
"binary_name": "linux-modules-6.17.0-1026-nvidia",
"binary_version": "6.17.0-1026.26"
},
{
"binary_name": "linux-modules-6.17.0-1026-nvidia-64k",
"binary_version": "6.17.0-1026.26"
},
{
"binary_name": "linux-modules-nvidia-fs-6.17.0-1026-nvidia",
"binary_version": "6.17.0-1026.26"
},
{
"binary_name": "linux-modules-nvidia-fs-6.17.0-1026-nvidia-64k",
"binary_version": "6.17.0-1026.26"
},
{
"binary_name": "linux-nvidia-6.17-headers-6.17.0-1026",
"binary_version": "6.17.0-1026.26"
},
{
"binary_name": "linux-nvidia-6.17-tools-6.17.0-1026",
"binary_version": "6.17.0-1026.26"
},
{
"binary_name": "linux-tools-6.17.0-1026-nvidia",
"binary_version": "6.17.0-1026.26"
},
{
"binary_name": "linux-tools-6.17.0-1026-nvidia-64k",
"binary_version": "6.17.0-1026.26"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-nvidia-6.17",
"purl": "pkg:deb/ubuntu/linux-nvidia-6.17@6.17.0-1026.26?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.17.0-1004.4",
"6.17.0-1008.8",
"6.17.0-1014.14",
"6.17.0-1018.18",
"6.17.0-1021.21",
"6.17.0-1026.26"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-7.0.0-1013-nvidia",
"binary_version": "7.0.0-1013.13~24.04.1"
},
{
"binary_name": "linux-buildinfo-7.0.0-1013-nvidia-64k",
"binary_version": "7.0.0-1013.13~24.04.1"
},
{
"binary_name": "linux-headers-7.0.0-1013-nvidia",
"binary_version": "7.0.0-1013.13~24.04.1"
},
{
"binary_name": "linux-headers-7.0.0-1013-nvidia-64k",
"binary_version": "7.0.0-1013.13~24.04.1"
},
{
"binary_name": "linux-image-unsigned-7.0.0-1013-nvidia",
"binary_version": "7.0.0-1013.13~24.04.1"
},
{
"binary_name": "linux-image-unsigned-7.0.0-1013-nvidia-64k",
"binary_version": "7.0.0-1013.13~24.04.1"
},
{
"binary_name": "linux-modules-7.0.0-1013-nvidia",
"binary_version": "7.0.0-1013.13~24.04.1"
},
{
"binary_name": "linux-modules-7.0.0-1013-nvidia-64k",
"binary_version": "7.0.0-1013.13~24.04.1"
},
{
"binary_name": "linux-nvidia-7.0-headers-7.0.0-1013",
"binary_version": "7.0.0-1013.13~24.04.1"
},
{
"binary_name": "linux-nvidia-7.0-tools-7.0.0-1013",
"binary_version": "7.0.0-1013.13~24.04.1"
},
{
"binary_name": "linux-tools-7.0.0-1013-nvidia",
"binary_version": "7.0.0-1013.13~24.04.1"
},
{
"binary_name": "linux-tools-7.0.0-1013-nvidia-64k",
"binary_version": "7.0.0-1013.13~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-nvidia-7.0",
"purl": "pkg:deb/ubuntu/linux-nvidia-7.0@7.0.0-1013.13~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.0-1013.13~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-1058-nvidia-lowlatency",
"binary_version": "6.8.0-1058.61.1"
},
{
"binary_name": "linux-buildinfo-6.8.0-1058-nvidia-lowlatency-64k",
"binary_version": "6.8.0-1058.61.1"
},
{
"binary_name": "linux-headers-6.8.0-1058-nvidia-lowlatency",
"binary_version": "6.8.0-1058.61.1"
},
{
"binary_name": "linux-headers-6.8.0-1058-nvidia-lowlatency-64k",
"binary_version": "6.8.0-1058.61.1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1058-nvidia-lowlatency",
"binary_version": "6.8.0-1058.61.1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1058-nvidia-lowlatency-64k",
"binary_version": "6.8.0-1058.61.1"
},
{
"binary_name": "linux-modules-6.8.0-1058-nvidia-lowlatency",
"binary_version": "6.8.0-1058.61.1"
},
{
"binary_name": "linux-modules-6.8.0-1058-nvidia-lowlatency-64k",
"binary_version": "6.8.0-1058.61.1"
},
{
"binary_name": "linux-modules-extra-6.8.0-1058-nvidia-lowlatency",
"binary_version": "6.8.0-1058.61.1"
},
{
"binary_name": "linux-modules-nvidia-fs-6.8.0-1058-nvidia-lowlatency",
"binary_version": "6.8.0-1058.61.1"
},
{
"binary_name": "linux-modules-nvidia-fs-6.8.0-1058-nvidia-lowlatency-64k",
"binary_version": "6.8.0-1058.61.1"
},
{
"binary_name": "linux-nvidia-lowlatency-headers-6.8.0-1058",
"binary_version": "6.8.0-1058.61.1"
},
{
"binary_name": "linux-nvidia-lowlatency-tools-6.8.0-1058",
"binary_version": "6.8.0-1058.61.1"
},
{
"binary_name": "linux-tools-6.8.0-1058-nvidia-lowlatency",
"binary_version": "6.8.0-1058.61.1"
},
{
"binary_name": "linux-tools-6.8.0-1058-nvidia-lowlatency-64k",
"binary_version": "6.8.0-1058.61.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-nvidia-lowlatency",
"purl": "pkg:deb/ubuntu/linux-nvidia-lowlatency@6.8.0-1058.61.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1009.9.1",
"6.8.0-1011.11.1",
"6.8.0-1012.12.1",
"6.8.0-1013.14.1",
"6.8.0-1014.15.1",
"6.8.0-1015.16.1",
"6.8.0-1017.19.1",
"6.8.0-1018.20.1",
"6.8.0-1019.21.1",
"6.8.0-1020.22.1",
"6.8.0-1021.23.1",
"6.8.0-1022.25.2",
"6.8.0-1023.26.1",
"6.8.0-1024.27.1",
"6.8.0-1025.28.1",
"6.8.0-1026.29.1",
"6.8.0-1027.30.1",
"6.8.0-1028.31.1",
"6.8.0-1029.32.1",
"6.8.0-1030.33.1",
"6.8.0-1031.34.1",
"6.8.0-1032.35.1",
"6.8.0-1035.38.1",
"6.8.0-1036.39.1",
"6.8.0-1038.41.1",
"6.8.0-1039.42.1",
"6.8.0-1040.43.1",
"6.8.0-1041.44.1",
"6.8.0-1042.45.1",
"6.8.0-1043.46.1",
"6.8.0-1044.47.1",
"6.8.0-1045.48.1",
"6.8.0-1046.49.1",
"6.8.0-1047.50.1",
"6.8.0-1049.52.1",
"6.8.0-1050.53.1",
"6.8.0-1051.54.1",
"6.8.0-1052.55.1",
"6.8.0-1054.57.1",
"6.8.0-1055.58.1",
"6.8.0-1058.61.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-1029-nvidia-tegra",
"binary_version": "6.8.0-1029.30"
},
{
"binary_name": "linux-buildinfo-6.8.0-1029-nvidia-tegra-rt",
"binary_version": "6.8.0-1029.30"
},
{
"binary_name": "linux-headers-6.8.0-1029-nvidia-tegra",
"binary_version": "6.8.0-1029.30"
},
{
"binary_name": "linux-headers-6.8.0-1029-nvidia-tegra-rt",
"binary_version": "6.8.0-1029.30"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1029-nvidia-tegra",
"binary_version": "6.8.0-1029.30"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1029-nvidia-tegra-rt",
"binary_version": "6.8.0-1029.30"
},
{
"binary_name": "linux-modules-6.8.0-1029-nvidia-tegra",
"binary_version": "6.8.0-1029.30"
},
{
"binary_name": "linux-modules-6.8.0-1029-nvidia-tegra-rt",
"binary_version": "6.8.0-1029.30"
},
{
"binary_name": "linux-modules-extra-6.8.0-1029-nvidia-tegra",
"binary_version": "6.8.0-1029.30"
},
{
"binary_name": "linux-modules-extra-6.8.0-1029-nvidia-tegra-rt",
"binary_version": "6.8.0-1029.30"
},
{
"binary_name": "linux-nvidia-tegra-headers-6.8.0-1029",
"binary_version": "6.8.0-1029.30"
},
{
"binary_name": "linux-nvidia-tegra-tools-6.8.0-1029",
"binary_version": "6.8.0-1029.30"
},
{
"binary_name": "linux-tools-6.8.0-1029-nvidia-tegra",
"binary_version": "6.8.0-1029.30"
},
{
"binary_name": "linux-tools-6.8.0-1029-nvidia-tegra-rt",
"binary_version": "6.8.0-1029.30"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-nvidia-tegra",
"purl": "pkg:deb/ubuntu/linux-nvidia-tegra@6.8.0-1029.30?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1003.3",
"6.8.0-1004.4",
"6.8.0-1008.8",
"6.8.0-1009.9",
"6.8.0-1010.10",
"6.8.0-1012.12",
"6.8.0-1013.13",
"6.8.0-1016.16",
"6.8.0-1019.19",
"6.8.0-1020.20",
"6.8.0-1021.21",
"6.8.0-1022.22",
"6.8.0-1023.23",
"6.8.0-1024.24",
"6.8.0-1025.25",
"6.8.0-1026.26",
"6.8.0-1029.30"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.11.0-1027-oem",
"binary_version": "6.11.0-1027.27"
},
{
"binary_name": "linux-headers-6.11.0-1027-oem",
"binary_version": "6.11.0-1027.27"
},
{
"binary_name": "linux-image-unsigned-6.11.0-1027-oem",
"binary_version": "6.11.0-1027.27"
},
{
"binary_name": "linux-modules-6.11.0-1027-oem",
"binary_version": "6.11.0-1027.27"
},
{
"binary_name": "linux-modules-ipu6-6.11.0-1027-oem",
"binary_version": "6.11.0-1027.27"
},
{
"binary_name": "linux-modules-ipu7-6.11.0-1027-oem",
"binary_version": "6.11.0-1027.27"
},
{
"binary_name": "linux-modules-iwlwifi-6.11.0-1027-oem",
"binary_version": "6.11.0-1027.27"
},
{
"binary_name": "linux-modules-usbio-6.11.0-1027-oem",
"binary_version": "6.11.0-1027.27"
},
{
"binary_name": "linux-modules-vision-6.11.0-1027-oem",
"binary_version": "6.11.0-1027.27"
},
{
"binary_name": "linux-oem-6.11-headers-6.11.0-1027",
"binary_version": "6.11.0-1027.27"
},
{
"binary_name": "linux-oem-6.11-tools-6.11.0-1027",
"binary_version": "6.11.0-1027.27"
},
{
"binary_name": "linux-tools-6.11.0-1027-oem",
"binary_version": "6.11.0-1027.27"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-oem-6.11",
"purl": "pkg:deb/ubuntu/linux-oem-6.11@6.11.0-1027.27?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.11.0-1007.7",
"6.11.0-1008.8",
"6.11.0-1009.9",
"6.11.0-1010.10",
"6.11.0-1011.11",
"6.11.0-1012.12",
"6.11.0-1013.13",
"6.11.0-1015.15",
"6.11.0-1016.16",
"6.11.0-1017.17",
"6.11.0-1018.18",
"6.11.0-1020.20",
"6.11.0-1021.21",
"6.11.0-1022.22",
"6.11.0-1023.23",
"6.11.0-1024.24",
"6.11.0-1025.25",
"6.11.0-1027.27"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.14.0-1020-oem",
"binary_version": "6.14.0-1020.20"
},
{
"binary_name": "linux-headers-6.14.0-1020-oem",
"binary_version": "6.14.0-1020.20"
},
{
"binary_name": "linux-image-unsigned-6.14.0-1020-oem",
"binary_version": "6.14.0-1020.20"
},
{
"binary_name": "linux-modules-6.14.0-1020-oem",
"binary_version": "6.14.0-1020.20"
},
{
"binary_name": "linux-modules-ipu6-6.14.0-1020-oem",
"binary_version": "6.14.0-1020.20"
},
{
"binary_name": "linux-modules-ipu7-6.14.0-1020-oem",
"binary_version": "6.14.0-1020.20"
},
{
"binary_name": "linux-modules-iwlwifi-6.14.0-1020-oem",
"binary_version": "6.14.0-1020.20"
},
{
"binary_name": "linux-modules-usbio-6.14.0-1020-oem",
"binary_version": "6.14.0-1020.20"
},
{
"binary_name": "linux-modules-vision-6.14.0-1020-oem",
"binary_version": "6.14.0-1020.20"
},
{
"binary_name": "linux-oem-6.14-headers-6.14.0-1020",
"binary_version": "6.14.0-1020.20"
},
{
"binary_name": "linux-oem-6.14-tools-6.14.0-1020",
"binary_version": "6.14.0-1020.20"
},
{
"binary_name": "linux-tools-6.14.0-1020-oem",
"binary_version": "6.14.0-1020.20"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-oem-6.14",
"purl": "pkg:deb/ubuntu/linux-oem-6.14@6.14.0-1020.20?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.14.0-1004.4",
"6.14.0-1005.5",
"6.14.0-1006.6",
"6.14.0-1007.7",
"6.14.0-1008.8",
"6.14.0-1010.10",
"6.14.0-1011.11",
"6.14.0-1012.12",
"6.14.0-1013.13",
"6.14.0-1014.14",
"6.14.0-1015.15",
"6.14.0-1016.16",
"6.14.0-1017.17",
"6.14.0-1018.18",
"6.14.0-1019.19",
"6.14.0-1020.20"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.17.0-1028-oem",
"binary_version": "6.17.0-1028.28"
},
{
"binary_name": "linux-headers-6.17.0-1028-oem",
"binary_version": "6.17.0-1028.28"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1028-oem",
"binary_version": "6.17.0-1028.28"
},
{
"binary_name": "linux-modules-6.17.0-1028-oem",
"binary_version": "6.17.0-1028.28"
},
{
"binary_name": "linux-modules-evdi-6.17.0-1028-oem",
"binary_version": "6.17.0-1028.28"
},
{
"binary_name": "linux-modules-ipu6-6.17.0-1028-oem",
"binary_version": "6.17.0-1028.28"
},
{
"binary_name": "linux-modules-ipu7-6.17.0-1028-oem",
"binary_version": "6.17.0-1028.28"
},
{
"binary_name": "linux-modules-iwlwifi-6.17.0-1028-oem",
"binary_version": "6.17.0-1028.28"
},
{
"binary_name": "linux-modules-usbio-6.17.0-1028-oem",
"binary_version": "6.17.0-1028.28"
},
{
"binary_name": "linux-modules-vision-6.17.0-1028-oem",
"binary_version": "6.17.0-1028.28"
},
{
"binary_name": "linux-oem-6.17-headers-6.17.0-1028",
"binary_version": "6.17.0-1028.28"
},
{
"binary_name": "linux-oem-6.17-tools-6.17.0-1028",
"binary_version": "6.17.0-1028.28"
},
{
"binary_name": "linux-tools-6.17.0-1028-oem",
"binary_version": "6.17.0-1028.28"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-oem-6.17",
"purl": "pkg:deb/ubuntu/linux-oem-6.17@6.17.0-1028.28?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.17.0-1005.5",
"6.17.0-1006.6",
"6.17.0-1007.7",
"6.17.0-1008.8",
"6.17.0-1009.9",
"6.17.0-1010.10",
"6.17.0-1011.11",
"6.17.0-1012.12",
"6.17.0-1017.17",
"6.17.0-1020.20",
"6.17.0-1023.23",
"6.17.0-1024.24",
"6.17.0-1025.25",
"6.17.0-1028.28"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-1032-oem",
"binary_version": "6.8.0-1032.32"
},
{
"binary_name": "linux-headers-6.8.0-1032-oem",
"binary_version": "6.8.0-1032.32"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1032-oem",
"binary_version": "6.8.0-1032.32"
},
{
"binary_name": "linux-modules-6.8.0-1032-oem",
"binary_version": "6.8.0-1032.32"
},
{
"binary_name": "linux-modules-ipu6-6.8.0-1032-oem",
"binary_version": "6.8.0-1032.32"
},
{
"binary_name": "linux-modules-iwlwifi-6.8.0-1032-oem",
"binary_version": "6.8.0-1032.32"
},
{
"binary_name": "linux-modules-usbio-6.8.0-1032-oem",
"binary_version": "6.8.0-1032.32"
},
{
"binary_name": "linux-oem-6.8-headers-6.8.0-1032",
"binary_version": "6.8.0-1032.32"
},
{
"binary_name": "linux-oem-6.8-tools-6.8.0-1032",
"binary_version": "6.8.0-1032.32"
},
{
"binary_name": "linux-tools-6.8.0-1032-oem",
"binary_version": "6.8.0-1032.32"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-oem-6.8",
"purl": "pkg:deb/ubuntu/linux-oem-6.8@6.8.0-1032.32?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1003.3",
"6.8.0-1004.4",
"6.8.0-1005.5",
"6.8.0-1006.6",
"6.8.0-1007.7",
"6.8.0-1008.8",
"6.8.0-1009.9",
"6.8.0-1010.10",
"6.8.0-1011.11",
"6.8.0-1012.12",
"6.8.0-1013.13",
"6.8.0-1014.14",
"6.8.0-1016.16",
"6.8.0-1017.17",
"6.8.0-1018.18",
"6.8.0-1019.19",
"6.8.0-1020.20",
"6.8.0-1024.24",
"6.8.0-1025.25",
"6.8.0-1026.26",
"6.8.0-1027.27",
"6.8.0-1028.28",
"6.8.0-1029.29",
"6.8.0-1030.30",
"6.8.0-1031.31",
"6.8.0-1032.32"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-1057-oracle",
"binary_version": "6.8.0-1057.58"
},
{
"binary_name": "linux-buildinfo-6.8.0-1057-oracle-64k",
"binary_version": "6.8.0-1057.58"
},
{
"binary_name": "linux-headers-6.8.0-1057-oracle",
"binary_version": "6.8.0-1057.58"
},
{
"binary_name": "linux-headers-6.8.0-1057-oracle-64k",
"binary_version": "6.8.0-1057.58"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1057-oracle",
"binary_version": "6.8.0-1057.58"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1057-oracle-64k",
"binary_version": "6.8.0-1057.58"
},
{
"binary_name": "linux-modules-6.8.0-1057-oracle",
"binary_version": "6.8.0-1057.58"
},
{
"binary_name": "linux-modules-6.8.0-1057-oracle-64k",
"binary_version": "6.8.0-1057.58"
},
{
"binary_name": "linux-modules-extra-6.8.0-1057-oracle",
"binary_version": "6.8.0-1057.58"
},
{
"binary_name": "linux-modules-extra-6.8.0-1057-oracle-64k",
"binary_version": "6.8.0-1057.58"
},
{
"binary_name": "linux-oracle-headers-6.8.0-1057",
"binary_version": "6.8.0-1057.58"
},
{
"binary_name": "linux-oracle-tools-6.8.0-1057",
"binary_version": "6.8.0-1057.58"
},
{
"binary_name": "linux-tools-6.8.0-1057-oracle",
"binary_version": "6.8.0-1057.58"
},
{
"binary_name": "linux-tools-6.8.0-1057-oracle-64k",
"binary_version": "6.8.0-1057.58"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-oracle",
"purl": "pkg:deb/ubuntu/linux-oracle@6.8.0-1057.58?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.5.0-1010.10",
"6.6.0-1001.1",
"6.8.0-1001.1",
"6.8.0-1004.4",
"6.8.0-1005.5",
"6.8.0-1006.6",
"6.8.0-1008.8",
"6.8.0-1010.10",
"6.8.0-1011.11",
"6.8.0-1012.12",
"6.8.0-1013.13",
"6.8.0-1014.14",
"6.8.0-1015.16",
"6.8.0-1016.17",
"6.8.0-1017.18",
"6.8.0-1018.19",
"6.8.0-1019.20",
"6.8.0-1020.21",
"6.8.0-1021.22",
"6.8.0-1022.23",
"6.8.0-1023.24",
"6.8.0-1024.25",
"6.8.0-1025.26",
"6.8.0-1026.27",
"6.8.0-1027.28",
"6.8.0-1028.29",
"6.8.0-1029.30",
"6.8.0-1030.31",
"6.8.0-1032.33",
"6.8.0-1033.34",
"6.8.0-1035.36",
"6.8.0-1037.38",
"6.8.0-1038.39",
"6.8.0-1039.40",
"6.8.0-1040.41",
"6.8.0-1041.42",
"6.8.0-1042.43",
"6.8.0-1043.44",
"6.8.0-1044.45",
"6.8.0-1047.48",
"6.8.0-1049.50",
"6.8.0-1050.51",
"6.8.0-1052.53",
"6.8.0-1054.55",
"6.8.0-1057.58"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.14.0-1018-oracle",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-buildinfo-6.14.0-1018-oracle-64k",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-headers-6.14.0-1018-oracle",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-headers-6.14.0-1018-oracle-64k",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.14.0-1018-oracle",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.14.0-1018-oracle-64k",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-modules-6.14.0-1018-oracle",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-modules-6.14.0-1018-oracle-64k",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.14.0-1018-oracle",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.14.0-1018-oracle-64k",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-oracle-6.14-headers-6.14.0-1018",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-oracle-6.14-tools-6.14.0-1018",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-tools-6.14.0-1018-oracle",
"binary_version": "6.14.0-1018.18~24.04.1"
},
{
"binary_name": "linux-tools-6.14.0-1018-oracle-64k",
"binary_version": "6.14.0-1018.18~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-oracle-6.14",
"purl": "pkg:deb/ubuntu/linux-oracle-6.14@6.14.0-1018.18~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.14.0-1007.7~24.04.1",
"6.14.0-1009.9~24.04.1",
"6.14.0-1010.10~24.04.1",
"6.14.0-1011.11~24.04.1",
"6.14.0-1012.12~24.04.1",
"6.14.0-1013.13~24.04.1",
"6.14.0-1014.14~24.04.1",
"6.14.0-1015.15~24.04.1",
"6.14.0-1016.16~24.04.1",
"6.14.0-1017.17~24.04.1",
"6.14.0-1018.18~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.17.0-1018-oracle",
"binary_version": "6.17.0-1018.18~24.04.1"
},
{
"binary_name": "linux-buildinfo-6.17.0-1018-oracle-64k",
"binary_version": "6.17.0-1018.18~24.04.1"
},
{
"binary_name": "linux-headers-6.17.0-1018-oracle",
"binary_version": "6.17.0-1018.18~24.04.1"
},
{
"binary_name": "linux-headers-6.17.0-1018-oracle-64k",
"binary_version": "6.17.0-1018.18~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1018-oracle",
"binary_version": "6.17.0-1018.18~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1018-oracle-64k",
"binary_version": "6.17.0-1018.18~24.04.1"
},
{
"binary_name": "linux-modules-6.17.0-1018-oracle",
"binary_version": "6.17.0-1018.18~24.04.1"
},
{
"binary_name": "linux-modules-6.17.0-1018-oracle-64k",
"binary_version": "6.17.0-1018.18~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.17.0-1018-oracle",
"binary_version": "6.17.0-1018.18~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.17.0-1018-oracle-64k",
"binary_version": "6.17.0-1018.18~24.04.1"
},
{
"binary_name": "linux-oracle-6.17-headers-6.17.0-1018",
"binary_version": "6.17.0-1018.18~24.04.1"
},
{
"binary_name": "linux-oracle-6.17-tools-6.17.0-1018",
"binary_version": "6.17.0-1018.18~24.04.1"
},
{
"binary_name": "linux-tools-6.17.0-1018-oracle",
"binary_version": "6.17.0-1018.18~24.04.1"
},
{
"binary_name": "linux-tools-6.17.0-1018-oracle-64k",
"binary_version": "6.17.0-1018.18~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-oracle-6.17",
"purl": "pkg:deb/ubuntu/linux-oracle-6.17@6.17.0-1018.18~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.17.0-1004.4~24.04.2",
"6.17.0-1007.7~24.04.1",
"6.17.0-1009.9~24.04.1",
"6.17.0-1010.10~24.04.1",
"6.17.0-1011.11~24.04.1",
"6.17.0-1014.14~24.04.1",
"6.17.0-1016.16~24.04.1",
"6.17.0-1018.18~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-1060-raspi",
"binary_version": "6.8.0-1060.64"
},
{
"binary_name": "linux-headers-6.8.0-1060-raspi",
"binary_version": "6.8.0-1060.64"
},
{
"binary_name": "linux-image-6.8.0-1060-raspi",
"binary_version": "6.8.0-1060.64"
},
{
"binary_name": "linux-modules-6.8.0-1060-raspi",
"binary_version": "6.8.0-1060.64"
},
{
"binary_name": "linux-raspi-headers-6.8.0-1060",
"binary_version": "6.8.0-1060.64"
},
{
"binary_name": "linux-raspi-tools-6.8.0-1060",
"binary_version": "6.8.0-1060.64"
},
{
"binary_name": "linux-tools-6.8.0-1060-raspi",
"binary_version": "6.8.0-1060.64"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-raspi",
"purl": "pkg:deb/ubuntu/linux-raspi@6.8.0-1060.64?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.5.0-1005.7",
"6.7.0-1001.1",
"6.8.0-1001.1",
"6.8.0-1002.2",
"6.8.0-1003.3",
"6.8.0-1004.4",
"6.8.0-1005.5",
"6.8.0-1006.6",
"6.8.0-1007.7",
"6.8.0-1008.8",
"6.8.0-1009.10",
"6.8.0-1010.11",
"6.8.0-1011.12",
"6.8.0-1012.13",
"6.8.0-1013.14",
"6.8.0-1014.16",
"6.8.0-1015.17",
"6.8.0-1016.18",
"6.8.0-1017.19",
"6.8.0-1018.20",
"6.8.0-1019.23",
"6.8.0-1020.24",
"6.8.0-1024.28",
"6.8.0-1028.32",
"6.8.0-1029.33",
"6.8.0-1030.34",
"6.8.0-1031.35",
"6.8.0-1032.36",
"6.8.0-1035.39",
"6.8.0-1036.40",
"6.8.0-1038.42",
"6.8.0-1039.43",
"6.8.0-1040.44",
"6.8.0-1041.45",
"6.8.0-1042.46",
"6.8.0-1043.47",
"6.8.0-1044.48",
"6.8.0-1045.49",
"6.8.0-1047.51",
"6.8.0-1048.52",
"6.8.0-1050.54",
"6.8.0-1051.55",
"6.8.0-1052.56",
"6.8.0-1053.57",
"6.8.0-1056.60",
"6.8.0-1057.61",
"6.8.0-1060.64"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-2019-raspi-realtime",
"binary_version": "6.8.0-2019.20"
},
{
"binary_name": "linux-headers-6.8.0-2019-raspi-realtime",
"binary_version": "6.8.0-2019.20"
},
{
"binary_name": "linux-image-6.8.0-2019-raspi-realtime",
"binary_version": "6.8.0-2019.20"
},
{
"binary_name": "linux-modules-6.8.0-2019-raspi-realtime",
"binary_version": "6.8.0-2019.20"
},
{
"binary_name": "linux-raspi-realtime-headers-6.8.0-2019",
"binary_version": "6.8.0-2019.20"
},
{
"binary_name": "linux-raspi-realtime-tools-6.8.0-2019",
"binary_version": "6.8.0-2019.20"
},
{
"binary_name": "linux-tools-6.8.0-2019-raspi-realtime",
"binary_version": "6.8.0-2019.20"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-raspi-realtime",
"purl": "pkg:deb/ubuntu/linux-raspi-realtime@6.8.0-2019.20?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-2019.20"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.1-1015-realtime",
"binary_version": "6.8.1-1015.16"
},
{
"binary_name": "linux-cloud-tools-6.8.1-1015-realtime",
"binary_version": "6.8.1-1015.16"
},
{
"binary_name": "linux-headers-6.8.1-1015-realtime",
"binary_version": "6.8.1-1015.16"
},
{
"binary_name": "linux-image-unsigned-6.8.1-1015-realtime",
"binary_version": "6.8.1-1015.16"
},
{
"binary_name": "linux-modules-6.8.1-1015-realtime",
"binary_version": "6.8.1-1015.16"
},
{
"binary_name": "linux-modules-extra-6.8.1-1015-realtime",
"binary_version": "6.8.1-1015.16"
},
{
"binary_name": "linux-modules-iwlwifi-6.8.1-1015-realtime",
"binary_version": "6.8.1-1015.16"
},
{
"binary_name": "linux-realtime-cloud-tools-6.8.1-1015",
"binary_version": "6.8.1-1015.16"
},
{
"binary_name": "linux-realtime-headers-6.8.1-1015",
"binary_version": "6.8.1-1015.16"
},
{
"binary_name": "linux-realtime-tools-6.8.1-1015",
"binary_version": "6.8.1-1015.16"
},
{
"binary_name": "linux-tools-6.8.1-1015-realtime",
"binary_version": "6.8.1-1015.16"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-realtime",
"purl": "pkg:deb/ubuntu/linux-realtime@6.8.1-1015.16?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.1-1015.16"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-60-generic",
"binary_version": "6.8.0-60.63.1"
},
{
"binary_name": "linux-headers-6.8.0-60-generic",
"binary_version": "6.8.0-60.63.1"
},
{
"binary_name": "linux-image-6.8.0-60-generic",
"binary_version": "6.8.0-60.63.1"
},
{
"binary_name": "linux-modules-6.8.0-60-generic",
"binary_version": "6.8.0-60.63.1"
},
{
"binary_name": "linux-riscv-headers-6.8.0-60",
"binary_version": "6.8.0-60.63.1"
},
{
"binary_name": "linux-riscv-tools-6.8.0-60",
"binary_version": "6.8.0-60.63.1"
},
{
"binary_name": "linux-tools-6.8.0-60-generic",
"binary_version": "6.8.0-60.63.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-riscv",
"purl": "pkg:deb/ubuntu/linux-riscv@6.8.0-60.63.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.5.0-9.9.1",
"6.8.0-20.20.1",
"6.8.0-28.28.1",
"6.8.0-31.31.1",
"6.8.0-35.35.1",
"6.8.0-36.36.1",
"6.8.0-38.38.1",
"6.8.0-39.39.1",
"6.8.0-40.40.1",
"6.8.0-41.41.1",
"6.8.0-44.44.1",
"6.8.0-47.47.1",
"6.8.0-48.48.1",
"6.8.0-49.49.1",
"6.8.0-50.51.1",
"6.8.0-51.52.1",
"6.8.0-52.53.1",
"6.8.0-53.55.1",
"6.8.0-55.57.1",
"6.8.0-56.58.1",
"6.8.0-57.59.1",
"6.8.0-58.60.1",
"6.8.0-59.61.1",
"6.8.0-60.63.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.14.0-37-generic",
"binary_version": "6.14.0-37.37.1~24.04.1"
},
{
"binary_name": "linux-headers-6.14.0-37-generic",
"binary_version": "6.14.0-37.37.1~24.04.1"
},
{
"binary_name": "linux-image-6.14.0-37-generic",
"binary_version": "6.14.0-37.37.1~24.04.1"
},
{
"binary_name": "linux-modules-6.14.0-37-generic",
"binary_version": "6.14.0-37.37.1~24.04.1"
},
{
"binary_name": "linux-riscv-6.14-headers-6.14.0-37",
"binary_version": "6.14.0-37.37.1~24.04.1"
},
{
"binary_name": "linux-riscv-6.14-tools-6.14.0-37",
"binary_version": "6.14.0-37.37.1~24.04.1"
},
{
"binary_name": "linux-tools-6.14.0-37-generic",
"binary_version": "6.14.0-37.37.1~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-riscv-6.14",
"purl": "pkg:deb/ubuntu/linux-riscv-6.14@6.14.0-37.37.1~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.14.0-22.22.1~24.04.1",
"6.14.0-23.23.1~24.04.1",
"6.14.0-24.24.1~24.04.1",
"6.14.0-27.27.1~24.04.1",
"6.14.0-28.28.1~24.04.1",
"6.14.0-29.29.1~24.04.1",
"6.14.0-32.32.1~24.04.1",
"6.14.0-33.33.1~24.04.1",
"6.14.0-34.34.1~24.04.1",
"6.14.0-35.35.1~24.04.1",
"6.14.0-36.36.1~24.04.1",
"6.14.0-37.37.1~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.17.0-38-generic",
"binary_version": "6.17.0-38.38.1~24.04.1"
},
{
"binary_name": "linux-headers-6.17.0-38-generic",
"binary_version": "6.17.0-38.38.1~24.04.1"
},
{
"binary_name": "linux-image-6.17.0-38-generic",
"binary_version": "6.17.0-38.38.1~24.04.1"
},
{
"binary_name": "linux-modules-6.17.0-38-generic",
"binary_version": "6.17.0-38.38.1~24.04.1"
},
{
"binary_name": "linux-riscv-6.17-headers-6.17.0-38",
"binary_version": "6.17.0-38.38.1~24.04.1"
},
{
"binary_name": "linux-riscv-6.17-tools-6.17.0-38",
"binary_version": "6.17.0-38.38.1~24.04.1"
},
{
"binary_name": "linux-tools-6.17.0-38-generic",
"binary_version": "6.17.0-38.38.1~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-riscv-6.17",
"purl": "pkg:deb/ubuntu/linux-riscv-6.17@6.17.0-38.38.1~24.04.1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.17.0-14.14.1~24.04.1",
"6.17.0-19.19.1~24.04.1",
"6.17.0-20.20.1~24.04.1",
"6.17.0-22.22.1~24.04.1",
"6.17.0-23.23.1~24.04.1",
"6.17.0-29.29.1~24.04.1",
"6.17.0-35.35.1~24.04.1",
"6.17.0-38.38.1~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-1032-xilinx",
"binary_version": "6.8.0-1032.33"
},
{
"binary_name": "linux-headers-6.8.0-1032-xilinx",
"binary_version": "6.8.0-1032.33"
},
{
"binary_name": "linux-image-6.8.0-1032-xilinx",
"binary_version": "6.8.0-1032.33"
},
{
"binary_name": "linux-modules-6.8.0-1032-xilinx",
"binary_version": "6.8.0-1032.33"
},
{
"binary_name": "linux-tools-6.8.0-1032-xilinx",
"binary_version": "6.8.0-1032.33"
},
{
"binary_name": "linux-xilinx-headers-6.8.0-1032",
"binary_version": "6.8.0-1032.33"
},
{
"binary_name": "linux-xilinx-tools-6.8.0-1032",
"binary_version": "6.8.0-1032.33"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "linux-xilinx",
"purl": "pkg:deb/ubuntu/linux-xilinx@6.8.0-1032.33?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1008.9",
"6.8.0-1009.10",
"6.8.0-1011.12",
"6.8.0-1012.13",
"6.8.0-1013.14",
"6.8.0-1014.15",
"6.8.0-1015.16",
"6.8.0-1017.18",
"6.8.0-1018.19",
"6.8.0-1019.20",
"6.8.0-1020.21",
"6.8.0-1021.22",
"6.8.0-1022.23",
"6.8.0-1023.24",
"6.8.0-1024.25",
"6.8.0-1028.29",
"6.8.0-1029.30",
"6.8.0-1032.33"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-bluefield-headers-6.8.0-1026",
"binary_version": "6.8.0-1026.30"
},
{
"binary_name": "linux-bluefield-tools-6.8.0-1026",
"binary_version": "6.8.0-1026.30"
},
{
"binary_name": "linux-buildinfo-6.8.0-1026-bluefield",
"binary_version": "6.8.0-1026.30"
},
{
"binary_name": "linux-buildinfo-6.8.0-1026-bluefield-64k",
"binary_version": "6.8.0-1026.30"
},
{
"binary_name": "linux-headers-6.8.0-1026-bluefield",
"binary_version": "6.8.0-1026.30"
},
{
"binary_name": "linux-headers-6.8.0-1026-bluefield-64k",
"binary_version": "6.8.0-1026.30"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1026-bluefield",
"binary_version": "6.8.0-1026.30"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1026-bluefield-64k",
"binary_version": "6.8.0-1026.30"
},
{
"binary_name": "linux-modules-6.8.0-1026-bluefield",
"binary_version": "6.8.0-1026.30"
},
{
"binary_name": "linux-modules-6.8.0-1026-bluefield-64k",
"binary_version": "6.8.0-1026.30"
},
{
"binary_name": "linux-modules-extra-6.8.0-1026-bluefield",
"binary_version": "6.8.0-1026.30"
},
{
"binary_name": "linux-modules-extra-6.8.0-1026-bluefield-64k",
"binary_version": "6.8.0-1026.30"
},
{
"binary_name": "linux-tools-6.8.0-1026-bluefield",
"binary_version": "6.8.0-1026.30"
},
{
"binary_name": "linux-tools-6.8.0-1026-bluefield-64k",
"binary_version": "6.8.0-1026.30"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:Nvidia-BlueField:24.04:LTS",
"name": "linux-bluefield",
"purl": "pkg:deb/ubuntu/linux-bluefield@6.8.0-1026.30?arch=source\u0026distro=bluefield/noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1011.15",
"6.8.0-1012.16",
"6.8.0-1013.17",
"6.8.0-1014.18",
"6.8.0-1016.20",
"6.8.0-1017.21",
"6.8.0-1022.26",
"6.8.0-1023.27",
"6.8.0-1026.30"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-aws-fips-cloud-tools-6.8.0-1060",
"binary_version": "6.8.0-1060.63+fips1"
},
{
"binary_name": "linux-aws-fips-headers-6.8.0-1060",
"binary_version": "6.8.0-1060.63+fips1"
},
{
"binary_name": "linux-aws-fips-tools-6.8.0-1060",
"binary_version": "6.8.0-1060.63+fips1"
},
{
"binary_name": "linux-buildinfo-6.8.0-1060-aws-fips",
"binary_version": "6.8.0-1060.63+fips1"
},
{
"binary_name": "linux-cloud-tools-6.8.0-1060-aws-fips",
"binary_version": "6.8.0-1060.63+fips1"
},
{
"binary_name": "linux-headers-6.8.0-1060-aws-fips",
"binary_version": "6.8.0-1060.63+fips1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1060-aws-fips",
"binary_version": "6.8.0-1060.63+fips1"
},
{
"binary_name": "linux-image-unsigned-hmac-6.8.0-1060-aws-fips",
"binary_version": "6.8.0-1060.63+fips1"
},
{
"binary_name": "linux-modules-6.8.0-1060-aws-fips",
"binary_version": "6.8.0-1060.63+fips1"
},
{
"binary_name": "linux-modules-extra-6.8.0-1060-aws-fips",
"binary_version": "6.8.0-1060.63+fips1"
},
{
"binary_name": "linux-tools-6.8.0-1060-aws-fips",
"binary_version": "6.8.0-1060.63+fips1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:Pro:FIPS-updates:24.04:LTS",
"name": "linux-aws-fips",
"purl": "pkg:deb/ubuntu/linux-aws-fips@6.8.0-1060.63+fips1?arch=source\u0026distro=fips-updates/noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1035.37+fips1",
"6.8.0-1036.38+fips1",
"6.8.0-1038.40+fips1",
"6.8.0-1039.41+fips1",
"6.8.0-1040.42+fips1",
"6.8.0-1041.43+fips1",
"6.8.0-1042.44+fips1",
"6.8.0-1043.45+fips1",
"6.8.0-1044.46+fips1",
"6.8.0-1045.47+fips1",
"6.8.0-1046.49+fips1",
"6.8.0-1047.50+fips1",
"6.8.0-1050.53+fips1",
"6.8.0-1051.54+fips1",
"6.8.0-1052.55+fips1",
"6.8.0-1053.56+fips1",
"6.8.0-1055.58+fips1",
"6.8.0-1057.60+fips1",
"6.8.0-1060.63+fips1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-fips-cloud-tools-6.8.0-1062",
"binary_version": "6.8.0-1062.69+fips1"
},
{
"binary_name": "linux-azure-fips-headers-6.8.0-1062",
"binary_version": "6.8.0-1062.69+fips1"
},
{
"binary_name": "linux-azure-fips-tools-6.8.0-1062",
"binary_version": "6.8.0-1062.69+fips1"
},
{
"binary_name": "linux-buildinfo-6.8.0-1062-azure-fips",
"binary_version": "6.8.0-1062.69+fips1"
},
{
"binary_name": "linux-cloud-tools-6.8.0-1062-azure-fips",
"binary_version": "6.8.0-1062.69+fips1"
},
{
"binary_name": "linux-headers-6.8.0-1062-azure-fips",
"binary_version": "6.8.0-1062.69+fips1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1062-azure-fips",
"binary_version": "6.8.0-1062.69+fips1"
},
{
"binary_name": "linux-image-unsigned-hmac-6.8.0-1062-azure-fips",
"binary_version": "6.8.0-1062.69+fips1"
},
{
"binary_name": "linux-modules-6.8.0-1062-azure-fips",
"binary_version": "6.8.0-1062.69+fips1"
},
{
"binary_name": "linux-modules-extra-6.8.0-1062-azure-fips",
"binary_version": "6.8.0-1062.69+fips1"
},
{
"binary_name": "linux-modules-involflt-6.8.0-1062-azure-fips",
"binary_version": "6.8.0-1062.69+fips1"
},
{
"binary_name": "linux-modules-iwlwifi-6.8.0-1062-azure-fips",
"binary_version": "6.8.0-1062.69+fips1"
},
{
"binary_name": "linux-tools-6.8.0-1062-azure-fips",
"binary_version": "6.8.0-1062.69+fips1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:Pro:FIPS-updates:24.04:LTS",
"name": "linux-azure-fips",
"purl": "pkg:deb/ubuntu/linux-azure-fips@6.8.0-1062.69+fips1?arch=source\u0026distro=fips-updates/noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1034.39+fips1",
"6.8.0-1040.46+fips1",
"6.8.0-1044.50+fips1",
"6.8.0-1046.52+fips1",
"6.8.0-1047.53+fips1",
"6.8.0-1052.58+fips1",
"6.8.0-1053.59+fips1",
"6.8.0-1054.60+fips1",
"6.8.0-1059.65+fips1",
"6.8.0-1062.69+fips1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-134-fips",
"binary_version": "6.8.0-134.134+fips1"
},
{
"binary_name": "linux-cloud-tools-6.8.0-134-fips",
"binary_version": "6.8.0-134.134+fips1"
},
{
"binary_name": "linux-fips-cloud-tools-6.8.0-134",
"binary_version": "6.8.0-134.134+fips1"
},
{
"binary_name": "linux-fips-headers-6.8.0-134",
"binary_version": "6.8.0-134.134+fips1"
},
{
"binary_name": "linux-fips-lib-rust-6.8.0-134-fips",
"binary_version": "6.8.0-134.134+fips1"
},
{
"binary_name": "linux-fips-tools-6.8.0-134",
"binary_version": "6.8.0-134.134+fips1"
},
{
"binary_name": "linux-headers-6.8.0-134-fips",
"binary_version": "6.8.0-134.134+fips1"
},
{
"binary_name": "linux-image-6.8.0-134-fips",
"binary_version": "6.8.0-134.134+fips1"
},
{
"binary_name": "linux-image-hmac-6.8.0-134-fips",
"binary_version": "6.8.0-134.134+fips1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-134-fips",
"binary_version": "6.8.0-134.134+fips1"
},
{
"binary_name": "linux-image-unsigned-hmac-6.8.0-134-fips",
"binary_version": "6.8.0-134.134+fips1"
},
{
"binary_name": "linux-modules-6.8.0-134-fips",
"binary_version": "6.8.0-134.134+fips1"
},
{
"binary_name": "linux-modules-extra-6.8.0-134-fips",
"binary_version": "6.8.0-134.134+fips1"
},
{
"binary_name": "linux-modules-ipu6-6.8.0-134-fips",
"binary_version": "6.8.0-134.134+fips1"
},
{
"binary_name": "linux-modules-iwlwifi-6.8.0-134-fips",
"binary_version": "6.8.0-134.134+fips1"
},
{
"binary_name": "linux-modules-usbio-6.8.0-134-fips",
"binary_version": "6.8.0-134.134+fips1"
},
{
"binary_name": "linux-tools-6.8.0-134-fips",
"binary_version": "6.8.0-134.134+fips1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:Pro:FIPS-updates:24.04:LTS",
"name": "linux-fips",
"purl": "pkg:deb/ubuntu/linux-fips@6.8.0-134.134+fips1?arch=source\u0026distro=fips-updates/noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-38.38+fips4",
"6.8.0-78.78+fips1",
"6.8.0-79.79+fips1",
"6.8.0-83.83+fips1",
"6.8.0-84.84+fips1",
"6.8.0-85.85+fips1",
"6.8.0-86.87+fips1",
"6.8.0-87.88+fips1",
"6.8.0-88.89+fips1",
"6.8.0-90.91+fips1",
"6.8.0-94.96+fips1",
"6.8.0-100.100+fips1",
"6.8.0-101.101+fips1",
"6.8.0-106.106+fips1",
"6.8.0-107.107+fips1",
"6.8.0-110.110+fips2",
"6.8.0-111.111+fips1",
"6.8.0-116.116+fips1",
"6.8.0-124.124+fips1",
"6.8.0-134.134+fips1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-1063-gcp-fips",
"binary_version": "6.8.0-1063.69+fips1"
},
{
"binary_name": "linux-gcp-fips-headers-6.8.0-1063",
"binary_version": "6.8.0-1063.69+fips1"
},
{
"binary_name": "linux-gcp-fips-tools-6.8.0-1063",
"binary_version": "6.8.0-1063.69+fips1"
},
{
"binary_name": "linux-headers-6.8.0-1063-gcp-fips",
"binary_version": "6.8.0-1063.69+fips1"
},
{
"binary_name": "linux-image-unsigned-6.8.0-1063-gcp-fips",
"binary_version": "6.8.0-1063.69+fips1"
},
{
"binary_name": "linux-image-unsigned-hmac-6.8.0-1063-gcp-fips",
"binary_version": "6.8.0-1063.69+fips1"
},
{
"binary_name": "linux-modules-6.8.0-1063-gcp-fips",
"binary_version": "6.8.0-1063.69+fips1"
},
{
"binary_name": "linux-modules-extra-6.8.0-1063-gcp-fips",
"binary_version": "6.8.0-1063.69+fips1"
},
{
"binary_name": "linux-tools-6.8.0-1063-gcp-fips",
"binary_version": "6.8.0-1063.69+fips1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:Pro:FIPS-updates:24.04:LTS",
"name": "linux-gcp-fips",
"purl": "pkg:deb/ubuntu/linux-gcp-fips@6.8.0-1063.69+fips1?arch=source\u0026distro=fips-updates/noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1036.38+fips1",
"6.8.0-1037.39+fips1",
"6.8.0-1039.41+fips1",
"6.8.0-1040.42+fips1",
"6.8.0-1041.43+fips1",
"6.8.0-1042.45+fips1",
"6.8.0-1043.46+fips1",
"6.8.0-1044.47+fips1",
"6.8.0-1045.48+fips1",
"6.8.0-1046.49+fips1",
"6.8.0-1047.50+fips1",
"6.8.0-1048.51+fips1",
"6.8.0-1052.55+fips1",
"6.8.0-1053.56+fips1",
"6.8.0-1054.57+fips1",
"6.8.0-1055.58+fips1",
"6.8.0-1058.61+fips1",
"6.8.0-1060.63+fips1",
"6.8.0-1063.69+fips1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.0-2049-raspi-realtime",
"binary_version": "6.8.0-2049.50"
},
{
"binary_name": "linux-headers-6.8.0-2049-raspi-realtime",
"binary_version": "6.8.0-2049.50"
},
{
"binary_name": "linux-image-6.8.0-2049-raspi-realtime",
"binary_version": "6.8.0-2049.50"
},
{
"binary_name": "linux-modules-6.8.0-2049-raspi-realtime",
"binary_version": "6.8.0-2049.50"
},
{
"binary_name": "linux-raspi-realtime-headers-6.8.0-2049",
"binary_version": "6.8.0-2049.50"
},
{
"binary_name": "linux-raspi-realtime-tools-6.8.0-2049",
"binary_version": "6.8.0-2049.50"
},
{
"binary_name": "linux-tools-6.8.0-2049-raspi-realtime",
"binary_version": "6.8.0-2049.50"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:Pro:Realtime:24.04:LTS",
"name": "linux-raspi-realtime",
"purl": "pkg:deb/ubuntu/linux-raspi-realtime@6.8.0-2049.50?arch=source\u0026distro=realtime/noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.7.0-2001.1",
"6.8.0-2001.1",
"6.8.0-2002.2",
"6.8.0-2004.4",
"6.8.0-2005.5",
"6.8.0-2006.6",
"6.8.0-2007.7",
"6.8.0-2008.8",
"6.8.0-2009.9",
"6.8.0-2010.10",
"6.8.0-2011.11",
"6.8.0-2012.12",
"6.8.0-2013.14",
"6.8.0-2014.15",
"6.8.0-2015.16",
"6.8.0-2016.17",
"6.8.0-2017.18",
"6.8.0-2018.19",
"6.8.0-2019.20",
"6.8.0-2022.23",
"6.8.0-2023.24",
"6.8.0-2024.25",
"6.8.0-2025.26",
"6.8.0-2026.27",
"6.8.0-2028.29",
"6.8.0-2029.30",
"6.8.0-2030.31",
"6.8.0-2031.32",
"6.8.0-2032.33",
"6.8.0-2033.34",
"6.8.0-2034.35",
"6.8.0-2035.36",
"6.8.0-2036.37",
"6.8.0-2037.38",
"6.8.0-2038.39",
"6.8.0-2040.41",
"6.8.0-2041.42",
"6.8.0-2042.43",
"6.8.0-2043.44",
"6.8.0-2045.46",
"6.8.0-2046.47",
"6.8.0-2049.50"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.8.1-1056-realtime",
"binary_version": "6.8.1-1056.57"
},
{
"binary_name": "linux-cloud-tools-6.8.1-1056-realtime",
"binary_version": "6.8.1-1056.57"
},
{
"binary_name": "linux-headers-6.8.1-1056-realtime",
"binary_version": "6.8.1-1056.57"
},
{
"binary_name": "linux-image-unsigned-6.8.1-1056-realtime",
"binary_version": "6.8.1-1056.57"
},
{
"binary_name": "linux-modules-6.8.1-1056-realtime",
"binary_version": "6.8.1-1056.57"
},
{
"binary_name": "linux-modules-extra-6.8.1-1056-realtime",
"binary_version": "6.8.1-1056.57"
},
{
"binary_name": "linux-modules-iwlwifi-6.8.1-1056-realtime",
"binary_version": "6.8.1-1056.57"
},
{
"binary_name": "linux-realtime-cloud-tools-6.8.1-1056",
"binary_version": "6.8.1-1056.57"
},
{
"binary_name": "linux-realtime-headers-6.8.1-1056",
"binary_version": "6.8.1-1056.57"
},
{
"binary_name": "linux-realtime-tools-6.8.1-1056",
"binary_version": "6.8.1-1056.57"
},
{
"binary_name": "linux-tools-6.8.1-1056-realtime",
"binary_version": "6.8.1-1056.57"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:Pro:Realtime:24.04:LTS",
"name": "linux-realtime",
"purl": "pkg:deb/ubuntu/linux-realtime@6.8.1-1056.57?arch=source\u0026distro=realtime/noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.8.0-1008.19",
"6.8.1-1001.1",
"6.8.1-1002.2",
"6.8.1-1003.3",
"6.8.1-1004.4",
"6.8.1-1005.5",
"6.8.1-1006.6",
"6.8.1-1007.7",
"6.8.1-1008.8",
"6.8.1-1009.9",
"6.8.1-1010.10",
"6.8.1-1011.11",
"6.8.1-1012.12",
"6.8.1-1013.14",
"6.8.1-1014.15",
"6.8.1-1015.16",
"6.8.1-1016.17",
"6.8.1-1017.18",
"6.8.1-1018.19",
"6.8.1-1019.20",
"6.8.1-1020.21",
"6.8.1-1021.22",
"6.8.1-1022.23",
"6.8.1-1023.24",
"6.8.1-1024.25",
"6.8.1-1025.26",
"6.8.1-1026.27",
"6.8.1-1030.31",
"6.8.1-1031.32",
"6.8.1-1033.34",
"6.8.1-1034.35",
"6.8.1-1035.36",
"6.8.1-1036.37",
"6.8.1-1037.38",
"6.8.1-1038.39",
"6.8.1-1039.40",
"6.8.1-1040.41",
"6.8.1-1041.42",
"6.8.1-1042.43",
"6.8.1-1045.46",
"6.8.1-1046.47",
"6.8.1-1047.48",
"6.8.1-1048.49",
"6.8.1-1051.52",
"6.8.1-1052.53",
"6.8.1-1055.56",
"6.8.1-1056.57"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.14.0-1017-realtime",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-cloud-tools-6.14.0-1017-realtime",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-headers-6.14.0-1017-realtime",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.14.0-1017-realtime",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-modules-6.14.0-1017-realtime",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.14.0-1017-realtime",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-modules-iwlwifi-6.14.0-1017-realtime",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-realtime-6.14-cloud-tools-6.14.0-1017",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-realtime-6.14-headers-6.14.0-1017",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-realtime-6.14-tools-6.14.0-1017",
"binary_version": "6.14.0-1017.17~24.04.1"
},
{
"binary_name": "linux-tools-6.14.0-1017-realtime",
"binary_version": "6.14.0-1017.17~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:Pro:Realtime:24.04:LTS",
"name": "linux-realtime-6.14",
"purl": "pkg:deb/ubuntu/linux-realtime-6.14@6.14.0-1017.17~24.04.1?arch=source\u0026distro=realtime/noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.14.0-1003.3~24.04.3",
"6.14.0-1010.10~24.04.1",
"6.14.0-1011.11~24.04.1",
"6.14.0-1012.12~24.04.1",
"6.14.0-1013.13~24.04.1",
"6.14.0-1014.14~24.04.1",
"6.14.0-1015.15~24.04.1",
"6.14.0-1016.16~24.04.1",
"6.14.0-1017.17~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.17.0-1018-realtime",
"binary_version": "6.17.0-1018.20~24.04.1"
},
{
"binary_name": "linux-cloud-tools-6.17.0-1018-realtime",
"binary_version": "6.17.0-1018.20~24.04.1"
},
{
"binary_name": "linux-headers-6.17.0-1018-realtime",
"binary_version": "6.17.0-1018.20~24.04.1"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1018-realtime",
"binary_version": "6.17.0-1018.20~24.04.1"
},
{
"binary_name": "linux-modules-6.17.0-1018-realtime",
"binary_version": "6.17.0-1018.20~24.04.1"
},
{
"binary_name": "linux-modules-extra-6.17.0-1018-realtime",
"binary_version": "6.17.0-1018.20~24.04.1"
},
{
"binary_name": "linux-modules-iwlwifi-6.17.0-1018-realtime",
"binary_version": "6.17.0-1018.20~24.04.1"
},
{
"binary_name": "linux-realtime-6.17-cloud-tools-6.17.0-1018",
"binary_version": "6.17.0-1018.20~24.04.1"
},
{
"binary_name": "linux-realtime-6.17-headers-6.17.0-1018",
"binary_version": "6.17.0-1018.20~24.04.1"
},
{
"binary_name": "linux-realtime-6.17-tools-6.17.0-1018",
"binary_version": "6.17.0-1018.20~24.04.1"
},
{
"binary_name": "linux-tools-6.17.0-1018-realtime",
"binary_version": "6.17.0-1018.20~24.04.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:Pro:Realtime:24.04:LTS",
"name": "linux-realtime-6.17",
"purl": "pkg:deb/ubuntu/linux-realtime-6.17@6.17.0-1018.20~24.04.1?arch=source\u0026distro=realtime/noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.17.0-1004.5~24.04.2",
"6.17.0-1006.7~24.04.1",
"6.17.0-1008.9~24.04.1",
"6.17.0-1009.10~24.04.1",
"6.17.0-1010.11~24.04.1",
"6.17.0-1011.12~24.04.1",
"6.17.0-1013.15~24.04.1",
"6.17.0-1014.16~24.04.1",
"6.17.0-1017.19~24.04.1",
"6.17.0-1018.20~24.04.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "bpftool",
"binary_version": "7.7.0+6.17.0-40.40"
},
{
"binary_name": "linux-buildinfo-6.17.0-40-generic",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-buildinfo-6.17.0-40-generic-64k",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-cloud-tools-6.17.0-40",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-cloud-tools-6.17.0-40-generic",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-cloud-tools-common",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-headers-6.17.0-40",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-headers-6.17.0-40-generic",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-headers-6.17.0-40-generic-64k",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-image-6.17.0-40-generic",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-image-unsigned-6.17.0-40-generic",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-image-unsigned-6.17.0-40-generic-64k",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-lib-rust-6.17.0-40-generic",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-modules-6.17.0-40-generic",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-modules-6.17.0-40-generic-64k",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-modules-ipu6-6.17.0-40-generic",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-modules-ipu7-6.17.0-40-generic",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-modules-iwlwifi-6.17.0-40-generic",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-modules-usbio-6.17.0-40-generic",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-modules-vision-6.17.0-40-generic",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-perf",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-source-6.17.0",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-tools-6.17.0-40",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-tools-6.17.0-40-generic",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-tools-6.17.0-40-generic-64k",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-tools-common",
"binary_version": "6.17.0-40.40"
},
{
"binary_name": "linux-tools-host",
"binary_version": "6.17.0-40.40"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "linux",
"purl": "pkg:deb/ubuntu/linux@6.17.0-40.40?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.14.0-15.15",
"6.15.0-3.3",
"6.15.0-4.4",
"6.16.0-13.13",
"6.16.0-16.16",
"6.17.0-3.3",
"6.17.0-4.4",
"6.17.0-5.5",
"6.17.0-6.6",
"6.17.0-7.7",
"6.17.0-8.8",
"6.17.0-12.12",
"6.17.0-14.14",
"6.17.0-19.19",
"6.17.0-20.20",
"6.17.0-22.22",
"6.17.0-23.23",
"6.17.0-29.29",
"6.17.0-35.35",
"6.17.0-40.40"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-aws-cloud-tools-6.17.0-1019",
"binary_version": "6.17.0-1019.19"
},
{
"binary_name": "linux-aws-headers-6.17.0-1019",
"binary_version": "6.17.0-1019.19"
},
{
"binary_name": "linux-aws-tools-6.17.0-1019",
"binary_version": "6.17.0-1019.19"
},
{
"binary_name": "linux-buildinfo-6.17.0-1019-aws",
"binary_version": "6.17.0-1019.19"
},
{
"binary_name": "linux-buildinfo-6.17.0-1019-aws-64k",
"binary_version": "6.17.0-1019.19"
},
{
"binary_name": "linux-cloud-tools-6.17.0-1019-aws",
"binary_version": "6.17.0-1019.19"
},
{
"binary_name": "linux-cloud-tools-6.17.0-1019-aws-64k",
"binary_version": "6.17.0-1019.19"
},
{
"binary_name": "linux-headers-6.17.0-1019-aws",
"binary_version": "6.17.0-1019.19"
},
{
"binary_name": "linux-headers-6.17.0-1019-aws-64k",
"binary_version": "6.17.0-1019.19"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1019-aws",
"binary_version": "6.17.0-1019.19"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1019-aws-64k",
"binary_version": "6.17.0-1019.19"
},
{
"binary_name": "linux-modules-6.17.0-1019-aws",
"binary_version": "6.17.0-1019.19"
},
{
"binary_name": "linux-modules-6.17.0-1019-aws-64k",
"binary_version": "6.17.0-1019.19"
},
{
"binary_name": "linux-tools-6.17.0-1019-aws",
"binary_version": "6.17.0-1019.19"
},
{
"binary_name": "linux-tools-6.17.0-1019-aws-64k",
"binary_version": "6.17.0-1019.19"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "linux-aws",
"purl": "pkg:deb/ubuntu/linux-aws@6.17.0-1019.19?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.14.0-1005.5",
"6.14.0-1007.7+25.10.2",
"6.16.0-1001.1",
"6.17.0-1001.1",
"6.17.0-1002.2",
"6.17.0-1003.3",
"6.17.0-1004.4",
"6.17.0-1005.5",
"6.17.0-1006.6",
"6.17.0-1007.7",
"6.17.0-1009.9",
"6.17.0-1010.10",
"6.17.0-1012.12",
"6.17.0-1013.13",
"6.17.0-1015.15",
"6.17.0-1017.17",
"6.17.0-1019.19"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-cloud-tools-6.17.0-1020",
"binary_version": "6.17.0-1020.20"
},
{
"binary_name": "linux-azure-headers-6.17.0-1020",
"binary_version": "6.17.0-1020.20"
},
{
"binary_name": "linux-azure-tools-6.17.0-1020",
"binary_version": "6.17.0-1020.20"
},
{
"binary_name": "linux-buildinfo-6.17.0-1020-azure",
"binary_version": "6.17.0-1020.20"
},
{
"binary_name": "linux-cloud-tools-6.17.0-1020-azure",
"binary_version": "6.17.0-1020.20"
},
{
"binary_name": "linux-headers-6.17.0-1020-azure",
"binary_version": "6.17.0-1020.20"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1020-azure",
"binary_version": "6.17.0-1020.20"
},
{
"binary_name": "linux-modules-6.17.0-1020-azure",
"binary_version": "6.17.0-1020.20"
},
{
"binary_name": "linux-tools-6.17.0-1020-azure",
"binary_version": "6.17.0-1020.20"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "linux-azure",
"purl": "pkg:deb/ubuntu/linux-azure@6.17.0-1020.20?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.14.0-1004.4",
"6.14.0-1007.7+25.10.1",
"6.16.0-1001.1",
"6.17.0-1002.2",
"6.17.0-1003.3",
"6.17.0-1004.4",
"6.17.0-1006.6",
"6.17.0-1007.7",
"6.17.0-1008.8",
"6.17.0-1010.10",
"6.17.0-1011.11",
"6.17.0-1013.13",
"6.17.0-1015.15",
"6.17.0-1017.17",
"6.17.0-1018.18",
"6.17.0-1020.20"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-fde-cloud-tools-6.17.0-1017",
"binary_version": "6.17.0-1017.17"
},
{
"binary_name": "linux-azure-fde-headers-6.17.0-1017",
"binary_version": "6.17.0-1017.17"
},
{
"binary_name": "linux-azure-fde-tools-6.17.0-1017",
"binary_version": "6.17.0-1017.17"
},
{
"binary_name": "linux-buildinfo-6.17.0-1017-azure-fde",
"binary_version": "6.17.0-1017.17"
},
{
"binary_name": "linux-cloud-tools-6.17.0-1017-azure-fde",
"binary_version": "6.17.0-1017.17"
},
{
"binary_name": "linux-headers-6.17.0-1017-azure-fde",
"binary_version": "6.17.0-1017.17"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1017-azure-fde",
"binary_version": "6.17.0-1017.17"
},
{
"binary_name": "linux-modules-6.17.0-1017-azure-fde",
"binary_version": "6.17.0-1017.17"
},
{
"binary_name": "linux-tools-6.17.0-1017-azure-fde",
"binary_version": "6.17.0-1017.17"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "linux-azure-fde",
"purl": "pkg:deb/ubuntu/linux-azure-fde@6.17.0-1017.17?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.17.0-1003.3",
"6.17.0-1004.4",
"6.17.0-1005.5",
"6.17.0-1007.7",
"6.17.0-1008.8",
"6.17.0-1010.10",
"6.17.0-1012.12",
"6.17.0-1014.14",
"6.17.0-1015.15",
"6.17.0-1017.17"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.17.0-1020-gcp",
"binary_version": "6.17.0-1020.22"
},
{
"binary_name": "linux-buildinfo-6.17.0-1020-gcp-64k",
"binary_version": "6.17.0-1020.22"
},
{
"binary_name": "linux-gcp-headers-6.17.0-1020",
"binary_version": "6.17.0-1020.22"
},
{
"binary_name": "linux-gcp-tools-6.17.0-1020",
"binary_version": "6.17.0-1020.22"
},
{
"binary_name": "linux-headers-6.17.0-1020-gcp",
"binary_version": "6.17.0-1020.22"
},
{
"binary_name": "linux-headers-6.17.0-1020-gcp-64k",
"binary_version": "6.17.0-1020.22"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1020-gcp",
"binary_version": "6.17.0-1020.22"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1020-gcp-64k",
"binary_version": "6.17.0-1020.22"
},
{
"binary_name": "linux-modules-6.17.0-1020-gcp",
"binary_version": "6.17.0-1020.22"
},
{
"binary_name": "linux-modules-6.17.0-1020-gcp-64k",
"binary_version": "6.17.0-1020.22"
},
{
"binary_name": "linux-tools-6.17.0-1020-gcp",
"binary_version": "6.17.0-1020.22"
},
{
"binary_name": "linux-tools-6.17.0-1020-gcp-64k",
"binary_version": "6.17.0-1020.22"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "linux-gcp",
"purl": "pkg:deb/ubuntu/linux-gcp@6.17.0-1020.22?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.14.0-1006.6",
"6.14.0-1009.9+25.10.1",
"6.16.0-1001.1",
"6.17.0-1001.1",
"6.17.0-1002.2",
"6.17.0-1003.3",
"6.17.0-1004.4",
"6.17.0-1005.5",
"6.17.0-1006.6",
"6.17.0-1007.7",
"6.17.0-1009.9",
"6.17.0-1010.10",
"6.17.0-1012.12",
"6.17.0-1013.13",
"6.17.0-1016.17",
"6.17.0-1018.19",
"6.17.0-1020.22"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.17.0-1018-oracle",
"binary_version": "6.17.0-1018.18"
},
{
"binary_name": "linux-buildinfo-6.17.0-1018-oracle-64k",
"binary_version": "6.17.0-1018.18"
},
{
"binary_name": "linux-headers-6.17.0-1018-oracle",
"binary_version": "6.17.0-1018.18"
},
{
"binary_name": "linux-headers-6.17.0-1018-oracle-64k",
"binary_version": "6.17.0-1018.18"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1018-oracle",
"binary_version": "6.17.0-1018.18"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1018-oracle-64k",
"binary_version": "6.17.0-1018.18"
},
{
"binary_name": "linux-modules-6.17.0-1018-oracle",
"binary_version": "6.17.0-1018.18"
},
{
"binary_name": "linux-modules-6.17.0-1018-oracle-64k",
"binary_version": "6.17.0-1018.18"
},
{
"binary_name": "linux-oracle-headers-6.17.0-1018",
"binary_version": "6.17.0-1018.18"
},
{
"binary_name": "linux-oracle-tools-6.17.0-1018",
"binary_version": "6.17.0-1018.18"
},
{
"binary_name": "linux-tools-6.17.0-1018-oracle",
"binary_version": "6.17.0-1018.18"
},
{
"binary_name": "linux-tools-6.17.0-1018-oracle-64k",
"binary_version": "6.17.0-1018.18"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "linux-oracle",
"purl": "pkg:deb/ubuntu/linux-oracle@6.17.0-1018.18?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.14.0-1005.5",
"6.14.0-1007.7+25.10.1",
"6.16.0-1001.1",
"6.17.0-1001.1",
"6.17.0-1002.2",
"6.17.0-1003.3",
"6.17.0-1005.5",
"6.17.0-1006.6",
"6.17.0-1007.7",
"6.17.0-1009.9",
"6.17.0-1010.10",
"6.17.0-1011.11",
"6.17.0-1012.12",
"6.17.0-1014.14",
"6.17.0-1016.16",
"6.17.0-1018.18"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.17.0-1021-raspi",
"binary_version": "6.17.0-1021.21"
},
{
"binary_name": "linux-headers-6.17.0-1021-raspi",
"binary_version": "6.17.0-1021.21"
},
{
"binary_name": "linux-image-6.17.0-1021-raspi",
"binary_version": "6.17.0-1021.21"
},
{
"binary_name": "linux-modules-6.17.0-1021-raspi",
"binary_version": "6.17.0-1021.21"
},
{
"binary_name": "linux-raspi-headers-6.17.0-1021",
"binary_version": "6.17.0-1021.21"
},
{
"binary_name": "linux-raspi-tools-6.17.0-1021",
"binary_version": "6.17.0-1021.21"
},
{
"binary_name": "linux-tools-6.17.0-1021-raspi",
"binary_version": "6.17.0-1021.21"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "linux-raspi",
"purl": "pkg:deb/ubuntu/linux-raspi@6.17.0-1021.21?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.14.0-1005.5",
"6.17.0-1003.3",
"6.17.0-1004.4",
"6.17.0-1005.5",
"6.17.0-1006.6",
"6.17.0-1007.7",
"6.17.0-1008.8",
"6.17.0-1010.10",
"6.17.0-1011.11",
"6.17.0-1013.13",
"6.17.0-1014.14",
"6.17.0-1017.17",
"6.17.0-1018.18",
"6.17.0-1021.21"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.17.0-1017-realtime",
"binary_version": "6.17.0-1017.19"
},
{
"binary_name": "linux-cloud-tools-6.17.0-1017-realtime",
"binary_version": "6.17.0-1017.19"
},
{
"binary_name": "linux-headers-6.17.0-1017-realtime",
"binary_version": "6.17.0-1017.19"
},
{
"binary_name": "linux-image-unsigned-6.17.0-1017-realtime",
"binary_version": "6.17.0-1017.19"
},
{
"binary_name": "linux-modules-6.17.0-1017-realtime",
"binary_version": "6.17.0-1017.19"
},
{
"binary_name": "linux-modules-iwlwifi-6.17.0-1017-realtime",
"binary_version": "6.17.0-1017.19"
},
{
"binary_name": "linux-realtime-cloud-tools-6.17.0-1017",
"binary_version": "6.17.0-1017.19"
},
{
"binary_name": "linux-realtime-headers-6.17.0-1017",
"binary_version": "6.17.0-1017.19"
},
{
"binary_name": "linux-realtime-tools-6.17.0-1017",
"binary_version": "6.17.0-1017.19"
},
{
"binary_name": "linux-tools-6.17.0-1017-realtime",
"binary_version": "6.17.0-1017.19"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "linux-realtime",
"purl": "pkg:deb/ubuntu/linux-realtime@6.17.0-1017.19?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.14.0-1002.2",
"6.17.0-1001.2",
"6.17.0-1002.3",
"6.17.0-1003.4",
"6.17.0-1004.5",
"6.17.0-1005.6",
"6.17.0-1006.7",
"6.17.0-1008.9",
"6.17.0-1009.10",
"6.17.0-1010.11",
"6.17.0-1011.12",
"6.17.0-1013.15",
"6.17.0-1014.16",
"6.17.0-1017.19"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-6.17.0-40-generic",
"binary_version": "6.17.0-40.40.1"
},
{
"binary_name": "linux-headers-6.17.0-40-generic",
"binary_version": "6.17.0-40.40.1"
},
{
"binary_name": "linux-image-6.17.0-40-generic",
"binary_version": "6.17.0-40.40.1"
},
{
"binary_name": "linux-modules-6.17.0-40-generic",
"binary_version": "6.17.0-40.40.1"
},
{
"binary_name": "linux-riscv-headers-6.17.0-40",
"binary_version": "6.17.0-40.40.1"
},
{
"binary_name": "linux-riscv-tools-6.17.0-40",
"binary_version": "6.17.0-40.40.1"
},
{
"binary_name": "linux-tools-6.17.0-40-generic",
"binary_version": "6.17.0-40.40.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "linux-riscv",
"purl": "pkg:deb/ubuntu/linux-riscv@6.17.0-40.40.1?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.14.0-13.13.2",
"6.17.0-4.4.1",
"6.17.0-5.5.1",
"6.17.0-6.6.1",
"6.17.0-7.7.1",
"6.17.0-8.8.1",
"6.17.0-12.12.1",
"6.17.0-14.14.1",
"6.17.0-19.19.1",
"6.17.0-20.20.1",
"6.17.0-22.22.1",
"6.17.0-23.23.1",
"6.17.0-29.29.1",
"6.17.0-35.35.1",
"6.17.0-40.40.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "bpftool",
"binary_version": "7.7.0+7.0.0-27.27"
},
{
"binary_name": "linux-buildinfo-7.0.0-27-generic",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-buildinfo-7.0.0-27-generic-64k",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-cloud-tools-7.0.0-27",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-cloud-tools-7.0.0-27-generic",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-cloud-tools-common",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-headers-7.0.0-27",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-headers-7.0.0-27-generic",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-headers-7.0.0-27-generic-64k",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-image-7.0.0-27-generic",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-image-unsigned-7.0.0-27-generic",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-image-unsigned-7.0.0-27-generic-64k",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-lib-rust-7.0.0-27-generic",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-modules-7.0.0-27-generic",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-modules-7.0.0-27-generic-64k",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-perf",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-source-7.0.0",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-tools-7.0.0-27",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-tools-7.0.0-27-generic",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-tools-7.0.0-27-generic-64k",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-tools-common",
"binary_version": "7.0.0-27.27"
},
{
"binary_name": "linux-tools-host",
"binary_version": "7.0.0-27.27"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "linux",
"purl": "pkg:deb/ubuntu/linux@7.0.0-27.27?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.17.0-5.5",
"6.17.0-6.6",
"6.17.0-8.8",
"6.18.0-8.8",
"6.18.0-9.9",
"6.19.0-3.3",
"6.19.0-5.5",
"6.19.0-6.6",
"6.19.0-9.9",
"7.0.0-7.7",
"7.0.0-10.10",
"7.0.0-12.12",
"7.0.0-13.13",
"7.0.0-14.14",
"7.0.0-15.15",
"7.0.0-22.22",
"7.0.0-27.27"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-aws-cloud-tools-7.0.0-1008",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-aws-headers-7.0.0-1008",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-aws-tools-7.0.0-1008",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-buildinfo-7.0.0-1008-aws",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-buildinfo-7.0.0-1008-aws-64k",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-cloud-tools-7.0.0-1008-aws",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-cloud-tools-7.0.0-1008-aws-64k",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-headers-7.0.0-1008-aws",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-headers-7.0.0-1008-aws-64k",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-image-unsigned-7.0.0-1008-aws",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-image-unsigned-7.0.0-1008-aws-64k",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-modules-7.0.0-1008-aws",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-modules-7.0.0-1008-aws-64k",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-tools-7.0.0-1008-aws",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-tools-7.0.0-1008-aws-64k",
"binary_version": "7.0.0-1008.8"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "linux-aws",
"purl": "pkg:deb/ubuntu/linux-aws@7.0.0-1008.8?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.17.0-1002.2",
"6.17.0-1003.3",
"6.19.0-1002.2",
"6.19.0-1003.3",
"7.0.0-1001.1",
"7.0.0-1003.3",
"7.0.0-1004.4",
"7.0.0-1006.6",
"7.0.0-1008.8"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-cloud-tools-7.0.0-1009",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-azure-headers-7.0.0-1009",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-azure-tools-7.0.0-1009",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-buildinfo-7.0.0-1009-azure",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-cloud-tools-7.0.0-1009-azure",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-headers-7.0.0-1009-azure",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-image-unsigned-7.0.0-1009-azure",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-modules-7.0.0-1009-azure",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-tools-7.0.0-1009-azure",
"binary_version": "7.0.0-1009.9"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "linux-azure",
"purl": "pkg:deb/ubuntu/linux-azure@7.0.0-1009.9?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.17.0-1003.3",
"6.17.0-1004.4",
"6.19.0-1001.1",
"6.19.0-1002.2",
"7.0.0-1001.1",
"7.0.0-1002.2",
"7.0.0-1003.3",
"7.0.0-1004.4",
"7.0.0-1007.7",
"7.0.0-1009.9"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-azure-fde-cloud-tools-7.0.0-1008",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-azure-fde-headers-7.0.0-1008",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-azure-fde-tools-7.0.0-1008",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-buildinfo-7.0.0-1008-azure-fde",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-cloud-tools-7.0.0-1008-azure-fde",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-headers-7.0.0-1008-azure-fde",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-image-unsigned-7.0.0-1008-azure-fde",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-modules-7.0.0-1008-azure-fde",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-tools-7.0.0-1008-azure-fde",
"binary_version": "7.0.0-1008.8"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "linux-azure-fde",
"purl": "pkg:deb/ubuntu/linux-azure-fde@7.0.0-1008.8?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.0-1003.3",
"7.0.0-1004.4",
"7.0.0-1006.6",
"7.0.0-1008.8"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-7.0.0-1008-gcp",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-buildinfo-7.0.0-1008-gcp-64k",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-gcp-headers-7.0.0-1008",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-gcp-tools-7.0.0-1008",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-headers-7.0.0-1008-gcp",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-headers-7.0.0-1008-gcp-64k",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-image-unsigned-7.0.0-1008-gcp",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-image-unsigned-7.0.0-1008-gcp-64k",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-modules-7.0.0-1008-gcp",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-modules-7.0.0-1008-gcp-64k",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-tools-7.0.0-1008-gcp",
"binary_version": "7.0.0-1008.8"
},
{
"binary_name": "linux-tools-7.0.0-1008-gcp-64k",
"binary_version": "7.0.0-1008.8"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "linux-gcp",
"purl": "pkg:deb/ubuntu/linux-gcp@7.0.0-1008.8?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.17.0-1002.2",
"6.17.0-1003.3",
"6.19.0-1001.1",
"7.0.0-1001.1",
"7.0.0-1002.2",
"7.0.0-1003.3",
"7.0.0-1005.5",
"7.0.0-1007.7",
"7.0.0-1008.8"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-7.0.0-1003-gke",
"binary_version": "7.0.0-1003.4"
},
{
"binary_name": "linux-buildinfo-7.0.0-1003-gke-64k",
"binary_version": "7.0.0-1003.4"
},
{
"binary_name": "linux-gke-headers-7.0.0-1003",
"binary_version": "7.0.0-1003.4"
},
{
"binary_name": "linux-gke-tools-7.0.0-1003",
"binary_version": "7.0.0-1003.4"
},
{
"binary_name": "linux-headers-7.0.0-1003-gke",
"binary_version": "7.0.0-1003.4"
},
{
"binary_name": "linux-headers-7.0.0-1003-gke-64k",
"binary_version": "7.0.0-1003.4"
},
{
"binary_name": "linux-image-unsigned-7.0.0-1003-gke",
"binary_version": "7.0.0-1003.4"
},
{
"binary_name": "linux-image-unsigned-7.0.0-1003-gke-64k",
"binary_version": "7.0.0-1003.4"
},
{
"binary_name": "linux-modules-7.0.0-1003-gke",
"binary_version": "7.0.0-1003.4"
},
{
"binary_name": "linux-modules-7.0.0-1003-gke-64k",
"binary_version": "7.0.0-1003.4"
},
{
"binary_name": "linux-tools-7.0.0-1003-gke",
"binary_version": "7.0.0-1003.4"
},
{
"binary_name": "linux-tools-7.0.0-1003-gke-64k",
"binary_version": "7.0.0-1003.4"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "linux-gke",
"purl": "pkg:deb/ubuntu/linux-gke@7.0.0-1003.4?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.0-1002.3",
"7.0.0-1003.4"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-7.0.0-1009-ibm",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-headers-7.0.0-1009-ibm",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-ibm-headers-7.0.0-1009",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-ibm-tools-7.0.0-1009",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-image-unsigned-7.0.0-1009-ibm",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-modules-7.0.0-1009-ibm",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-tools-7.0.0-1009-ibm",
"binary_version": "7.0.0-1009.9"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "linux-ibm",
"purl": "pkg:deb/ubuntu/linux-ibm@7.0.0-1009.9?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.19.0-1002.2",
"6.19.0-1003.3",
"7.0.0-1002.2",
"7.0.0-1004.4",
"7.0.0-1005.5",
"7.0.0-1007.7",
"7.0.0-1009.9"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-7.0.0-1013-nvidia",
"binary_version": "7.0.0-1013.13"
},
{
"binary_name": "linux-buildinfo-7.0.0-1013-nvidia-64k",
"binary_version": "7.0.0-1013.13"
},
{
"binary_name": "linux-headers-7.0.0-1013-nvidia",
"binary_version": "7.0.0-1013.13"
},
{
"binary_name": "linux-headers-7.0.0-1013-nvidia-64k",
"binary_version": "7.0.0-1013.13"
},
{
"binary_name": "linux-image-unsigned-7.0.0-1013-nvidia",
"binary_version": "7.0.0-1013.13"
},
{
"binary_name": "linux-image-unsigned-7.0.0-1013-nvidia-64k",
"binary_version": "7.0.0-1013.13"
},
{
"binary_name": "linux-modules-7.0.0-1013-nvidia",
"binary_version": "7.0.0-1013.13"
},
{
"binary_name": "linux-modules-7.0.0-1013-nvidia-64k",
"binary_version": "7.0.0-1013.13"
},
{
"binary_name": "linux-nvidia-headers-7.0.0-1013",
"binary_version": "7.0.0-1013.13"
},
{
"binary_name": "linux-nvidia-tools-7.0.0-1013",
"binary_version": "7.0.0-1013.13"
},
{
"binary_name": "linux-tools-7.0.0-1013-nvidia",
"binary_version": "7.0.0-1013.13"
},
{
"binary_name": "linux-tools-7.0.0-1013-nvidia-64k",
"binary_version": "7.0.0-1013.13"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "linux-nvidia",
"purl": "pkg:deb/ubuntu/linux-nvidia@7.0.0-1013.13?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.0-1005.5",
"7.0.0-1006.6",
"7.0.0-1009.9",
"7.0.0-1013.13"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-7.0.0-2012-nvidia-bos",
"binary_version": "7.0.0-2012.12"
},
{
"binary_name": "linux-buildinfo-7.0.0-2012-nvidia-bos-64k",
"binary_version": "7.0.0-2012.12"
},
{
"binary_name": "linux-headers-7.0.0-2012-nvidia-bos",
"binary_version": "7.0.0-2012.12"
},
{
"binary_name": "linux-headers-7.0.0-2012-nvidia-bos-64k",
"binary_version": "7.0.0-2012.12"
},
{
"binary_name": "linux-image-unsigned-7.0.0-2012-nvidia-bos",
"binary_version": "7.0.0-2012.12"
},
{
"binary_name": "linux-image-unsigned-7.0.0-2012-nvidia-bos-64k",
"binary_version": "7.0.0-2012.12"
},
{
"binary_name": "linux-modules-7.0.0-2012-nvidia-bos",
"binary_version": "7.0.0-2012.12"
},
{
"binary_name": "linux-modules-7.0.0-2012-nvidia-bos-64k",
"binary_version": "7.0.0-2012.12"
},
{
"binary_name": "linux-modules-nvidia-fs-7.0.0-2012-nvidia-bos",
"binary_version": "7.0.0-2012.12"
},
{
"binary_name": "linux-modules-nvidia-fs-7.0.0-2012-nvidia-bos-64k",
"binary_version": "7.0.0-2012.12"
},
{
"binary_name": "linux-nvidia-bos-headers-7.0.0-2012",
"binary_version": "7.0.0-2012.12"
},
{
"binary_name": "linux-nvidia-bos-tools-7.0.0-2012",
"binary_version": "7.0.0-2012.12"
},
{
"binary_name": "linux-tools-7.0.0-2012-nvidia-bos",
"binary_version": "7.0.0-2012.12"
},
{
"binary_name": "linux-tools-7.0.0-2012-nvidia-bos-64k",
"binary_version": "7.0.0-2012.12"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "linux-nvidia-bos",
"purl": "pkg:deb/ubuntu/linux-nvidia-bos@7.0.0-2012.12?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.0-2012.12"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-7.0.0-1009-oem",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-headers-7.0.0-1009-oem",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-image-unsigned-7.0.0-1009-oem",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-modules-7.0.0-1009-oem",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-oem-7.0-headers-7.0.0-1009",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-oem-7.0-tools-7.0.0-1009",
"binary_version": "7.0.0-1009.9"
},
{
"binary_name": "linux-tools-7.0.0-1009-oem",
"binary_version": "7.0.0-1009.9"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "linux-oem-7.0",
"purl": "pkg:deb/ubuntu/linux-oem-7.0@7.0.0-1009.9?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"7.0.0-1005.5",
"7.0.0-1008.8",
"7.0.0-1009.9"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-7.0.0-1007-oracle",
"binary_version": "7.0.0-1007.7"
},
{
"binary_name": "linux-buildinfo-7.0.0-1007-oracle-64k",
"binary_version": "7.0.0-1007.7"
},
{
"binary_name": "linux-headers-7.0.0-1007-oracle",
"binary_version": "7.0.0-1007.7"
},
{
"binary_name": "linux-headers-7.0.0-1007-oracle-64k",
"binary_version": "7.0.0-1007.7"
},
{
"binary_name": "linux-image-unsigned-7.0.0-1007-oracle",
"binary_version": "7.0.0-1007.7"
},
{
"binary_name": "linux-image-unsigned-7.0.0-1007-oracle-64k",
"binary_version": "7.0.0-1007.7"
},
{
"binary_name": "linux-modules-7.0.0-1007-oracle",
"binary_version": "7.0.0-1007.7"
},
{
"binary_name": "linux-modules-7.0.0-1007-oracle-64k",
"binary_version": "7.0.0-1007.7"
},
{
"binary_name": "linux-oracle-headers-7.0.0-1007",
"binary_version": "7.0.0-1007.7"
},
{
"binary_name": "linux-oracle-tools-7.0.0-1007",
"binary_version": "7.0.0-1007.7"
},
{
"binary_name": "linux-tools-7.0.0-1007-oracle",
"binary_version": "7.0.0-1007.7"
},
{
"binary_name": "linux-tools-7.0.0-1007-oracle-64k",
"binary_version": "7.0.0-1007.7"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "linux-oracle",
"purl": "pkg:deb/ubuntu/linux-oracle@7.0.0-1007.7?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.17.0-1002.2",
"6.17.0-1003.3",
"6.19.0-1001.1",
"6.19.0-1002.2",
"7.0.0-1001.1",
"7.0.0-1002.2",
"7.0.0-1003.3",
"7.0.0-1005.5",
"7.0.0-1007.7"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-7.0.0-1014-raspi",
"binary_version": "7.0.0-1014.14"
},
{
"binary_name": "linux-buildinfo-7.0.0-1014-raspi-realtime",
"binary_version": "7.0.0-1014.14"
},
{
"binary_name": "linux-headers-7.0.0-1014-raspi",
"binary_version": "7.0.0-1014.14"
},
{
"binary_name": "linux-headers-7.0.0-1014-raspi-realtime",
"binary_version": "7.0.0-1014.14"
},
{
"binary_name": "linux-image-7.0.0-1014-raspi",
"binary_version": "7.0.0-1014.14"
},
{
"binary_name": "linux-image-7.0.0-1014-raspi-realtime",
"binary_version": "7.0.0-1014.14"
},
{
"binary_name": "linux-modules-7.0.0-1014-raspi",
"binary_version": "7.0.0-1014.14"
},
{
"binary_name": "linux-modules-7.0.0-1014-raspi-realtime",
"binary_version": "7.0.0-1014.14"
},
{
"binary_name": "linux-raspi-headers-7.0.0-1014",
"binary_version": "7.0.0-1014.14"
},
{
"binary_name": "linux-raspi-tools-7.0.0-1014",
"binary_version": "7.0.0-1014.14"
},
{
"binary_name": "linux-tools-7.0.0-1014-raspi",
"binary_version": "7.0.0-1014.14"
},
{
"binary_name": "linux-tools-7.0.0-1014-raspi-realtime",
"binary_version": "7.0.0-1014.14"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "linux-raspi",
"purl": "pkg:deb/ubuntu/linux-raspi@7.0.0-1014.14?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.17.0-1003.3",
"7.0.0-1004.4",
"7.0.0-1008.8",
"7.0.0-1009.9",
"7.0.0-1010.10",
"7.0.0-1011.11",
"7.0.0-1014.14"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-7.0.0-27-realtime",
"binary_version": "7.0.0-27.27.1"
},
{
"binary_name": "linux-buildinfo-7.0.0-27-realtime-64k",
"binary_version": "7.0.0-27.27.1"
},
{
"binary_name": "linux-cloud-tools-7.0.0-27-realtime",
"binary_version": "7.0.0-27.27.1"
},
{
"binary_name": "linux-headers-7.0.0-27-realtime",
"binary_version": "7.0.0-27.27.1"
},
{
"binary_name": "linux-headers-7.0.0-27-realtime-64k",
"binary_version": "7.0.0-27.27.1"
},
{
"binary_name": "linux-image-unsigned-7.0.0-27-realtime",
"binary_version": "7.0.0-27.27.1"
},
{
"binary_name": "linux-image-unsigned-7.0.0-27-realtime-64k",
"binary_version": "7.0.0-27.27.1"
},
{
"binary_name": "linux-modules-7.0.0-27-realtime",
"binary_version": "7.0.0-27.27.1"
},
{
"binary_name": "linux-modules-7.0.0-27-realtime-64k",
"binary_version": "7.0.0-27.27.1"
},
{
"binary_name": "linux-realtime-cloud-tools-7.0.0-27",
"binary_version": "7.0.0-27.27.1"
},
{
"binary_name": "linux-realtime-headers-7.0.0-27",
"binary_version": "7.0.0-27.27.1"
},
{
"binary_name": "linux-realtime-tools-7.0.0-27",
"binary_version": "7.0.0-27.27.1"
},
{
"binary_name": "linux-tools-7.0.0-27-realtime",
"binary_version": "7.0.0-27.27.1"
},
{
"binary_name": "linux-tools-7.0.0-27-realtime-64k",
"binary_version": "7.0.0-27.27.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "linux-realtime",
"purl": "pkg:deb/ubuntu/linux-realtime@7.0.0-27.27.1?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.17.0-1001.2",
"7.0.0-10.10.3",
"7.0.0-12.12.1",
"7.0.0-14.14.1",
"7.0.0-22.22.1",
"7.0.0-27.27.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "linux-buildinfo-7.0.0-28-generic",
"binary_version": "7.0.0-28.28.1"
},
{
"binary_name": "linux-headers-7.0.0-28-generic",
"binary_version": "7.0.0-28.28.1"
},
{
"binary_name": "linux-image-7.0.0-28-generic",
"binary_version": "7.0.0-28.28.1"
},
{
"binary_name": "linux-modules-7.0.0-28-generic",
"binary_version": "7.0.0-28.28.1"
},
{
"binary_name": "linux-riscv-headers-7.0.0-28",
"binary_version": "7.0.0-28.28.1"
},
{
"binary_name": "linux-riscv-tools-7.0.0-28",
"binary_version": "7.0.0-28.28.1"
},
{
"binary_name": "linux-tools-7.0.0-28-generic",
"binary_version": "7.0.0-28.28.1"
}
],
"priority_reason": "The vulnerability depends on DisplayPort link training failure (cdns_mhdp_link_up() returning an error), a hardware condition the attacker can neither invoke nor influence from software, making the vulnerability not reliably triggerable."
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "linux-riscv",
"purl": "pkg:deb/ubuntu/linux-riscv@7.0.0-28.28.1?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.17.0-5.5.1",
"7.0.0-7.7.1",
"7.0.0-12.12.1",
"7.0.0-14.14.2",
"7.0.0-22.22.1",
"7.0.0-27.27.1",
"7.0.0-28.28.1"
]
}
],
"aliases": [],
"details": "In the Linux kernel, the following vulnerability has been resolved: drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable() In case if we get errors in cdns_mhdp_link_up() or cdns_mhdp_reg_read() in atomic_enable, we will go to cdns_mhdp_modeset_retry_fn() and will hit NULL pointer while trying to access the mutex. We need the connector to be set before that. Unlike in legacy cases with flag !DRM_BRIDGE_ATTACH_NO_CONNECTOR, we do not have connector initialised in bridge_attach(), so add the mhdp-\u003econnector_ptr in device structure to handle both cases with DRM_BRIDGE_ATTACH_NO_CONNECTOR and !DRM_BRIDGE_ATTACH_NO_CONNECTOR, set it in atomic_enable() earlier to avoid possible NULL pointer dereference in recovery paths like modeset_retry_fn() with the DRM_BRIDGE_ATTACH_NO_CONNECTOR flag set.",
"id": "UBUNTU-CVE-2026-53058",
"modified": "2026-07-16T18:28:22Z",
"published": "2026-06-24T17:17:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2026-53058"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-53058"
},
{
"type": "REPORT",
"url": "https://git.kernel.org/linus/43d6508ddbf9fb974fbc359a033154f78c9d4c8b"
}
],
"related": [],
"schema_version": "1.7.0",
"severity": [
{
"score": "low",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2026-53058"
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.