CVE-2025-46637

Dell Encryption, versions prior to 11.12.1, contain an Improper Link Resolution Before File Access 'Link Following' vulnerability. A local malicious user could potentially exploit this vulnerability, leading to Elevation of privileges...

CVE-2025-46637

Dell Encryption (pre-11.12.1) contains an Improper Link Resolution Before File Access (Link Following) vulnerability that could allow a local attacker to achieve Elevation of Privileges. Affected component: Dell Encryption software; vulnerable version range: prior to 11.12.1. Exploit details are ...

CVE-2025-46637

Dell Encryption, versions prior to 11.12.1, contain an Improper Link Resolution Before File Access 'Link Following' vulnerability. A local malicious user could potentially exploit this vulnerability, leading to Elevation of privileges...

EUVD-2025-202266

Dell Encryption, versions prior to 11.12.1, contain an Improper Link Resolution Before File Access 'Link Following' vulnerability. A local malicious user could potentially exploit this vulnerability, leading to Elevation of privileges...

kernel: cifs: fix oops during encryption

An out-of-bounds memory access vulnerability exists in the linux kernel, such that A stack-allocated buffer backed by vmalloc was passed into crypto code scatterwalkmapandcopy → memcpy where a cross-page write occurred. This ended up hitting a read-only mapping, causing a page-level fault and...

Moderate: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

kernel: cifs: fix oops during encryption

An out-of-bounds memory access vulnerability exists in the linux kernel, such that A stack-allocated buffer backed by vmalloc was passed into crypto code scatterwalkmapandcopy → memcpy where a cross-page write occurred. This ended up hitting a read-only mapping, causing a page-level fault and...

Goodbye, dark Telegram: Blocks are pushing the underground out

Telegram has won over users worldwide, and cybercriminals are no exception. While the average user chooses a messaging app based on convenience, user experience and stability and perhaps, cool stickers, cybercriminals evaluate platforms through a different lens. When it comes to anonymity, privac...

EUVD-2023-60096

In the Linux kernel, the following vulnerability has been resolved: blk-mq: release crypto keyslot before reporting I/O complete Once all I/O using a blkcryptokey has completed, filesystems can call blkcryptoevictkey. However, the block layer currently doesn't call blkcryptoputkeyslot until the...

CVE-2023-53810

In the Linux kernel, the following vulnerability has been resolved: blk-mq: release crypto keyslot before reporting I/O complete Once all I/O using a blkcryptokey has completed, filesystems can call blkcryptoevictkey. However, the block layer currently doesn't call blkcryptoputkeyslot until the...

CVE-2023-53810 blk-mq: release crypto keyslot before reporting I/O complete

In the Linux kernel, the following vulnerability has been resolved: blk-mq: release crypto keyslot before reporting I/O complete Once all I/O using a blkcryptokey has completed, filesystems can call blkcryptoevictkey. However, the block layer currently doesn't call blkcryptoputkeyslot until the...

CVE-2023-53810 blk-mq: release crypto keyslot before reporting I/O complete

In the Linux kernel, the following vulnerability has been resolved: blk-mq: release crypto keyslot before reporting I/O complete Once all I/O using a blkcryptokey has completed, filesystems can call blkcryptoevictkey. However, the block layer currently doesn't call blkcryptoputkeyslot until the...

Unity Linux 20.1070e Security Update: luksmeta (UTSA-2025-991100)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991100 advisory. A data corruption vulnerability has been identified in the luksmeta utility when used with the LUKS1 disk encryption format. An attacker with the necessary permissio...

Dell Encryption 后置链接漏洞

Dell Encryption is a suite of data protection solutions from Dell USA. The product includes features such as compliance management, authentication, disk data encryption, and port encryption. A backlink vulnerability exists in Dell Encryption versions prior to 11.12.1, which stems from improper li...

PCI-SIG PCI Express Integrity and Data Encryption 安全漏洞

PCI-SIG PCI Express Integrity and Data Encryption is a data encryption software from PCI-SIG, USA. A security vulnerability exists in PCI-SIG PCI Express Integrity and Data Encryption that stems from insufficient guidance on packet ordering and label uniqueness at the transaction layer, which cou...

PT-2025-50112

Name of the Vulnerable Software and Affected Versions Dell Encryption versions prior to 11.12.1 Description Dell Encryption contains an Improper Link Resolution Before File Access 'Link Following' issue. A local malicious user could potentially exploit this, leading to Elevation of privileges...

RHEL 7 : kernel (RHSA-2025:22910)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:22910 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use after free flaw in...

PCI-SIG PCI Express Integrity and Data Encryption 安全漏洞

PCI-SIG PCI Express Integrity and Data Encryption is a data encryption software from PCI-SIG, USA. A security vulnerability exists in PCI-SIG PCI Express Integrity and Data Encryption that stems from insufficient guidance for label reuse after a completion timeout, which could result in multiple...

Dell Encryption 后置链接漏洞

Dell Encryption is a suite of data protection solutions from Dell USA. The product includes features such as compliance management, authentication, disk data encryption, and port encryption. A backlink vulnerability exists in Dell Encryption versions prior to 11.12.1, which stems from improper li...