Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989342)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989342 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: fix bugon ext4mbuseinodepa Hulk Robot reported a BUGON:...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990342)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990342 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix f2fsbugon when uninstalling filesystem call f2fsevictinode. creating a large files duri...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989778)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989778 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to clear dirty inode in f2fsevictinode As Yanming reported in bugzilla:...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989500)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989500 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: don't walk off the end of ealist Add a check before visiting the members of ea to make sure...

Exploit for CVE-2015-1328

CVE-2015-1328 Proof of Concept A Proof of Concept PoC explo...

Astra Linux - уязвимость в linux-6.12

In the Linux kernel, the following vulnerability has been resolved: loop: Avoid updating block size under exclusive owner Syzbot came up with a reproducer where a loop device block size is changed underneath a mounted filesystem. This causes a mismatch between the block device block size and the...

Astra Linux - уязвимость в u-boot

Das U-Boot versions 2019.07-rc1 through 2019.07-rc4 can double-free a cached block of data when listing files in a crafted ext4 filesystem...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: fs/9p: fix uninitialized values during inode evict If an iget fails due to not being able to retrieve information from the server then the inode structure is only partially initialized. When the inode gets evicted, references to...

EUVD-2022-55676

The Core Config Manager CCM in Nagios XI versions prior to CCM 3.1.6 / Nagios XI 5.8.8 contains a cross-site scripting XSS vulnerability via the search and deletion interfaces. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script ...

SUSE CVE-2025-40089

In the Linux kernel, the following vulnerability has been resolved: cxl/features: Add check for no entries in cxlfeatureinfo cxl EDAC calls cxlfeatureinfo to get the feature information and if the hardware has no Features support, cxlfs may be passed in as NULL. 51.957498 BUG: kernel NULL pointer...

Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-7853-1)

"The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7853-1 advisory. Jean-Claude Graf, Sandro Regge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor...

USN-7854-1 linux-kvm vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

EUVD-2025-36973

In the Linux kernel, the following vulnerability has been resolved: vfs: Don't leak disconnected dentries on umount When user calls openbyhandleat on some inode that is not cached, we will create disconnected dentry for it. If such dentry is a directory, exportfsdecodefhraw will then try to conne...

CVE-2025-40099

In the Linux kernel, the following vulnerability has been resolved: cifs: parsedfsreferrals: prevent oob on malformed input Malicious SMB server can send invalid reply to FSCTLDFSGETREFERRALS - reply smaller than sizeofstruct getdfsreferralrsp - reply with number of referrals smaller than...

CVE-2025-40089 cxl/features: Add check for no entries in cxl_feature_info

In the Linux kernel, the following vulnerability has been resolved: cxl/features: Add check for no entries in cxlfeatureinfo cxl EDAC calls cxlfeatureinfo to get the feature information and if the hardware has no Features support, cxlfs may be passed in as NULL. 51.957498 BUG: kernel NULL pointer...

jfs: add check read-only before truncation in jfs_truncate_nolock()

...

EUVD-2025-36655

Jenkins OpenShift Pipeline Plugin stores authorization tokens unencrypted in job config.xml files...

CVE-2025-64143

The CVE-2025-64143 issue affects the Jenkins OpenShift Pipeline Plugin, version 1.0.57 and earlier, which stores authorization tokens unencrypted in job config.xml on the Jenkins controller. This allows users with Item/Extended Read permission or control‑plane access to view tokens, exposing sens...

fs: udf: fix OOB read in lengthAllocDescs handling

...

f2fs: fix to do sanity check on node footer for non inode dnode

...