8 matches found
RockyLinux 10 : kernel (RLSA-2025:14510)
The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:14510 advisory. kernel: netsched: ets: Fix double list add in class with netem as child qdisc CVE-2025-37914 kernel: i40e: fix MMIO write access to an invalid page in...
Oracle Linux 9 : kernel (ELSA-2025-14420)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-14420 advisory. - ice: fix eswitch code memory leak in reset scenario CKI Backport Bot RHEL-108152 CVE-2025-38417 - udp: Fix memory accounting leak. Xin Long...
RHEL 9 : kernel (RHSA-2025:14420)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:14420 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: udp: Fix memory accounting...
ALSA-2025:14510 Important: kernel security update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: netsched: ets: Fix double list add in class with netem as child qdisc CVE-2025-37914 kernel: i40e: fix MMIO write access to an invalid page in i40eclearhw CVE-2025-38200 kernel: ice: fix...
MAL-2025-38417 Malicious code in violet-evergreen-qmo134-project (npm)
The package violet-evergreen-qmo134-project was found to contain malicious code...
BELL-CVE-2025-38417
Bulletin has no description...
CVE-2025-38417 ice: fix eswitch code memory leak in reset scenario
In the Linux kernel, the following vulnerability has been resolved: ice: fix eswitch code memory leak in reset scenario Add simple eswitch mode checker in attaching VF procedure and allocate required port representor memory structures only in switchdev mode. The reset flows triggers VF if present...
CVE-2025-38417
The CVE-2025-38417 issue affects the Linux kernel ice/eswitch path where memory for VF port representors could be allocated during reset and not freed in legacy (non-switchdev) mode. The fix adds a mode check to allocate required port memory only in switchdev mode and prevents blindly allocating ...