9099 matches found
UBUNTU-CVE-2025-37971
In the Linux kernel, the following vulnerability has been resolved: staging: bcm2835-camera: Initialise dev in v4l2dev Commit 42a2f6664e18 "staging: vc04services: Move global gstate to vchiqstate" changed mmalinit to pass dev-v4l2dev.dev to vchiqmmalinit, however nothing iniitialised dev-v4l2dev,...
CVE-2025-37971 staging: bcm2835-camera: Initialise dev in v4l2_dev
In the Linux kernel, the following vulnerability has been resolved: staging: bcm2835-camera: Initialise dev in v4l2dev Commit 42a2f6664e18 "staging: vc04services: Move global gstate to vchiqstate" changed mmalinit to pass dev-v4l2dev.dev to vchiqmmalinit, however nothing iniitialised dev-v4l2dev,...
CVE-2025-37971 staging: bcm2835-camera: Initialise dev in v4l2_dev
In the Linux kernel, the following vulnerability has been resolved: staging: bcm2835-camera: Initialise dev in v4l2dev Commit 42a2f6664e18 "staging: vc04services: Move global gstate to vchiqstate" changed mmalinit to pass dev-v4l2dev.dev to vchiqmmalinit, however nothing iniitialised dev-v4l2dev,...
DEBIAN-CVE-2025-37895
In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix error handling path in bnxtinitchip WARNON is triggered in flushwork if bnxtinitchip fails because we call cancelworksync on dim work that has not been initialized. WARNING: CPU: 37 PID: 5223 at kernel/workqueue.c:420...
UBUNTU-CVE-2025-37895
In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix error handling path in bnxtinitchip WARNON is triggered in flushwork if bnxtinitchip fails because we call cancelworksync on dim work that has not been initialized. WARNING: CPU: 37 PID: 5223 at kernel/workqueue.c:420...
PT-2025-22157 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved, related to the bnxt en driver. The issue occurs when the bnxt init chip function fails, triggering a WARN ON in flush work becaus...
CVE-2025-3908
The configuration initialization tool in OpenVPN 3 Linux v20 through v24 on Linux allows a local attacker to use symlinks pointing at an arbitrary directory which will change the ownership and permissions of that destination directory...
CVE-2025-3908
The configuration initialization tool in OpenVPN 3 Linux v20 through v24 on Linux allows a local attacker to use symlinks pointing at an arbitrary directory which will change the ownership and permissions of that destination directory...
UBUNTU-CVE-2025-3908
The configuration initialization tool in OpenVPN 3 Linux v20 through v24 on Linux allows a local attacker to use symlinks pointing at an arbitrary directory which will change the ownership and permissions of that destination directory...
CVE-2025-3908
OpenVPN 3 Linux affected versions v20–v24 on Linux are vulnerable to a local privilege escalation where a attacker can exploit symlinks to point at an arbitrary directory, changing ownership and permissions of the destination directory. Root cause: configuration initialization tool does not valid...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: s390/cpumf: Fix double free on error in cpumfpmueventinit In PMU event initialization functions - cpumsfpmueventinit - cpumfpmueventinit - cfdiageventinit the partially created event had to be removed when an error was detected...
PT-2025-21991 · Openvpn · Openvpn 3 Linux
Name of the Vulnerable Software and Affected Versions: OpenVPN 3 Linux versions 20 through 24 Description: The configuration initialization tool in OpenVPN 3 Linux allows a local attacker to use symlinks pointing at an arbitrary directory, which will change the ownership and permissions of that...
The vulnerability of programming tools for balancing and managing connections in Pgpool-II and HAProxy for PostgreSQL databases lies in their insecure resource initialization, which allows attackers to gain unauthorized access to the database.
The vulnerabilities of the Pgpool-II and HAProxy software for PostgreSQL databases in terms of connection balancing and management involve insecure resource initialization. Exploiting these vulnerabilities can allow an attacker, operating remotely, to gain unauthorized access to the database with...
The vulnerability of the VLAN (Virtual Local Area Network) technology in the microprogramming-based industrial wireless switches ABB ARG600, ARP600, ARR600, and ARC600 allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the VLAN Virtual Local Area Network technology in the microprogramming-based industrial wireless switches ABB ARG600, ARP600, ARR600, and ARC600 is related to incorrect initialization of resources. Exploiting this vulnerability can allow an attacker to compromise the...
The vulnerability of the AES-128-CBC encryption algorithm in the microprogramming-based router software Tenda RX2 Pro allows a hacker to disclose the protected information.
The vulnerability of the AES-128-CBC encryption algorithm in the microprogramming-based router software Tenda RX2 Pro relates to the repeated use of the Initialization Vector IV during the generation of cryptographic keys. Exploiting this vulnerability could allow a malicious actor to disclose th...
Security Bulletin: Vulnerability in [All] linux (Kernel) affects IBM Integrated Analytics System (Sailfish) [11 CVES].
Summary The All linux Kernel package is used by IBM Integrated Analytics System . IBM Integrated Analytics System has addressed the applicable CVE CVE-2024-41093, CVE-2024-42079, CVE-2024-45018, CVE-2024-40961, CVE-2024-35839, CVE-2024-38608, CVE-2024-38586, CVE-2024-39503, CVE-2024-40984,...
Privacy-Preserving Runtime Verification
Runtime verification offers scalable solutions to improve the safety and reliability of systems. However, systems that require verification or monitoring by a third party to ensure compliance with a specification might contain sensitive information, causing privacy concerns when usual runtime...
CVE-2025-24495
Incorrect initialization of resource in the branch prediction unit for some IntelR Core™ Ultra Processors may allow an authenticated user to potentially enable information disclosure via local access...
CVE-2025-24495
Incorrect initialization of resource in the branch prediction unit for some IntelR Core™ Ultra Processors may allow an authenticated user to potentially enable information disclosure via local access...
CVE-2025-24495
Incorrect initialization of resource in the branch prediction unit for some IntelR Core™ Ultra Processors may allow an authenticated user to potentially enable information disclosure via local access...