CVE-2025-20789

In GPU pdma, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS10117741; Issue ID: MSV-4538...

xen: fix UAF in dmabuf_exp_from_pages()

...

RDMA/hns: Fix double destruction of rsv_qp

...

TencentOS Server 4: kernel (TSSA-2025:0348)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0348 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

USN-7875-1 linux-oracle vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56756)

nvme-pci: vulnerability involves an incorrect size being passed to dmafreecoherent in nvme-pci due to nvmeallochostmem potentially using fewer descriptors than planned, which is fixed by ensuring the correct size is used for freeing the HMB descriptor table. This plugin only works with Tenable.ot...

CVE-2025-40199

In the Linux kernel, the following vulnerability has been resolved: pagepool: Fix PPMAGICMASK to avoid crashing on some 32-bit arches Helge reported that the introduction of PPMAGICMASK let to crashes on boot on his 32-bit parisc machine. The cause of this is the mask is set too wide, so the...

PT-2025-46619

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the ndtest component where a failure of devm kcalloc during memory allocation in the ndtest probe function can lead to a NULL pointer dereference...

Linux Distros Unpatched Vulnerability : CVE-2025-40172

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - accel/qaic: Treat remaining == 0 as error in findandmapuserpages Currently, if findandmapuserpages takes a DMA xfer request from the user with a length field se...

ESXi RDMA driver for Intel 800 Series Ethernet Advisory - Lenovo Support US

No description provided...

USN-7853-3 linux-azure, linux-azure-4.15 vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989749)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989749 advisory. In the Linux kernel, the following vulnerability has been resolved: RDMA/cma: Ensure rdmaaddrcancel happens before issuing more requests The FSM can run in a circle...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989192)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989192 advisory. In the Linux kernel, the following vulnerability has been resolved: ethernet: aeroflex: fix potential skb leak in grethinitrings The grethinitrings function won't fr...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989095)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989095 advisory. In the Linux kernel, the following vulnerability has been resolved: mmc: jz4740: Apply DMA engine limits to maximum segment size Do what is done in other DMA-enabled...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989903)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989903 advisory. In the Linux kernel, the following vulnerability has been resolved: spi: uniphier: fix reference count leak in uniphierspiprobe The issue happens in several error...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989110)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989110 advisory. In the Linux kernel, the following vulnerability has been resolved: comedi: dt9812: fix DMA buffers on stack USB transfer buffers are typically mapped for DMA and mu...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989950)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989950 advisory. In the Linux kernel, the following vulnerability has been resolved: sfc: fix kernel panic when creating VF When creating VFs a kernel panic can happen when calling ...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989422)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989422 advisory. In the Linux kernel, the following vulnerability has been resolved: mmc: jz4740: Apply DMA engine limits to maximum segment size Do what is done in other DMA-enabled...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989162)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989162 advisory. In the Linux kernel, the following vulnerability has been resolved: swiotlb: fix info leak with DMAFROMDEVICE The problem I'm addressing was discovered by the LTP te...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: eth: fbnic: avoid double-free when failing to DMA-map FW msg The semantics are that the caller of fbnicmbxmapmsg retains ownership of the message in case of an error. All existing callers properly free the allocated memory page...