← Back

Baseboard Management Controller Firmware

baseboard_management_controller_firmware

Vendor: Netapp • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-25265
2Linux
Netapp
9Baseboard Management Controller Firmware
H300e FirmwareH300s Firmware+6 more
Nov 21, 2024
Feb 16, 2022
N/A· v4
7.8 HIGH· v3
4.4 MEDIUM· v2
In the Linux kernel through 5.16.10, certain binary files may have the exec-all attribute if they were built in approximately 2003 (e.g., with GCC 3.2.2 and Linux kernel 2.4.20). This can cause execution of bytes located...Show more
In the Linux kernel through 5.16.10, certain binary files may have the exec-all attribute if they were built in approximately 2003 (e.g., with GCC 3.2.2 and Linux kernel 2.4.20). This can cause execution of bytes located in supposedly non-executable regions of a file.Show less
CVE-2019-15902
4Debian
LinuxNetapp+1 more
6Active Iq Performance Analytics Services
Baseboard Management Controller FirmwareDebian Linux+3 more
Nov 21, 2024
Sep 4, 2019
N/A· v4
5.6 MEDIUM· v3
4.7 MEDIUM· v2
A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through 4.14.141, 4.19.x through 4.19.69, and 5.2.x through 5.2.11. Misuse of the upstream "x86/...Show more
A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through 4.14.141, 4.19.x through 4.19.69, and 5.2.x through 5.2.11. Misuse of the upstream "x86/ptrace: Fix possible spectre-v1 in ptrace_get_debugreg()" commit reintroduced the Spectre vulnerability that it aimed to eliminate. This occurred because the backport process depends on cherry picking specific commits, and because two (correctly ordered) code lines were swapped.Show less