9108 matches found
The vulnerability of the nfs_fattr_init() function in the fs/nfs/inode.c module of the Linux kernel allows a hacker to cause a service failure.
The vulnerability of the nfsfattrinit function in the fs/nfs/inode.c module of the Linux kernel is related to the use of an uninitialized resource. Exploiting this vulnerability could allow an attacker to cause a service failure...
microcode_ctl: Improper initialization in UEFI firmware OutOfBandXML module
Improper initialization in UEFI firmware OutOfBandXML module in some IntelR Processors may allow a privileged user to potentially enable information disclosure via local access...
The vulnerability of the `bnxt_rdma_aux_device_init()` function in the `driver/net/ethernet/broadcom/bnxt/bnxt_ulp.c` module of the Linux kernel allows a hacker to cause a service failure.
The vulnerability of the bnxtrdmaauxdeviceinit function in the driver/net/ethernet/broadcom/bnxt/bnxtulp.c file of the Linux kernel is related to code errors. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the p9_fcall_init() function in the net/9p/client.c module of the 9P protocol implementation in the Linux operating system allows a hacker to induce a service failure.
The vulnerability of the p9fcallinit function in the net/9p/client.c module of the 9P protocol implementation in the Linux operating system is related to incorrect initialization of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the pci_epf_test_core_init() function in the drivers/pci/endpoint/functions/pci-epf-test.c module of the Linux kernel allows a hacker to cause a service failure.
The vulnerability of the pciepftestcoreinit function in the drivers/pci/endpoint/functions/pci-epf-test.c module of the Linux kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
SUSE SLES15: kernel-livepatch-5_14_21-150400_24_122-default / etc (SUSE-SU-2025:0920-1)
The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:0920-1 advisory. This update for the Linux Kernel 5.14.21-15040024122 fixes several issues. The following security issues were fixed: - CVE-2024-46818:...
SUSE-SU-2025:0924-1 Security update for the Linux Kernel (Live Patch 61 for SLE 12 SP5)
This update for the Linux Kernel 4.12.14-122231 fixes several issues. The following security issues were fixed: - CVE-2024-46818: drm/amd/display: Check gpioid before used as array index bsc1231204. - CVE-2024-50302: HID: core: zero-initialize the report buffer bsc1233679...
kernel: RDMA/srpt: Do not register event handler until srpt device is fully setup
In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Do not register event handler until srpt device is fully setup Upon rare occasions, KASAN reports a use-after-free Write in srptrefreshport. This seems to be because an event handler is registered before the srpt devic...
Autodesk AutoCAD CATPRODUCT File Parsing Uninitialized Variable Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...
Security update for the Linux Kernel (Live Patch 62 for SLE 12 SP5)
This update for the Linux Kernel 4.12.14-122234 fixes one issue. The following security issue was fixed: CVE-2024-50302: HID: core: zero-initialize the report buffer bsc1233679. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...
Security update for the Linux Kernel RT (Live Patch 5 for SLE 15 SP6)
This update for the Linux Kernel 6.4.0-1506001017 fixes several issues. The following security issues were fixed: CVE-2024-56648: net: hsr: avoid potential out-of-bound access in fillframeinfo bsc1235452. CVE-2024-50302: HID: core: zero-initialize the report buffer bsc1233679. Patch Instructions:...
Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP6)
This update for the Linux Kernel 6.4.0-1506001011 fixes several issues. The following security issues were fixed: CVE-2024-46818: drm/amd/display: Check gpioid before used as array index bsc1231204. CVE-2024-46815: drm/amd/display: Check numvalidsets before accessing readerwmsets bsc1231196...
CVE-2025-2149
A vulnerability was found in PyTorch 2.6.0+cu124. It has been rated as problematic. Affected by this issue is the function nnqSigmoid of the component Quantized Sigmoid Module. The manipulation of the argument scale/zeropoint leads to improper initialization. The attack needs to be approached...
The vulnerability of the nnq_Sigmoid() function in the Quantized Sigmoid Module framework of the PyTorch machine learning library allows attackers to exploit it to compromise the integrity of protected information.
The vulnerability of the nnqSigmoid function in the Quantized Sigmoid Module of the PyTorch machine learning framework is related to incorrect initialization of resources when processing parameters scale and zeropoint. Exploiting this vulnerability can allow attackers to compromise the integrity ...
CVE-2025-1960
CWE-1188: Initialization of a Resource with an Insecure Default vulnerability exists that could cause an attacker to execute unauthorized commands when a system’s default password credentials have not been changed on first use. The default username is not displayed correctly in the WebHMI interfa...
SUSE CVE-2025-21862
In the Linux kernel, the following vulnerability has been resolved: dropmonitor: fix incorrect initialization order Syzkaller reports the following bug: BUG: spinlock bad magic on CPU1, syz-executor.0/7995 lock: 0xffff88805303f3e0, .magic: 00000000, .owner: /-1, .ownercpu: 0 CPU: 1 PID: 7995 Comm...
CVE-2025-2129
A vulnerability was found in Mage AI 0.9.75. It has been classified as problematic. This affects an unknown part. The manipulation leads to insecure default initialization of resource. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability i...
DEBIAN-CVE-2025-21862
In the Linux kernel, the following vulnerability has been resolved: dropmonitor: fix incorrect initialization order Syzkaller reports the following bug: BUG: spinlock bad magic on CPU1, syz-executor.0/7995 lock: 0xffff88805303f3e0, .magic: 00000000, .owner: /-1, .ownercpu: 0 CPU: 1 PID: 7995 Comm...
CVE-2025-21862
In the Linux kernel, the following vulnerability has been resolved: dropmonitor: fix incorrect initialization order Syzkaller reports the following bug: BUG: spinlock bad magic on CPU1, syz-executor.0/7995 lock: 0xffff88805303f3e0, .magic: 00000000, .owner: /-1, .ownercpu: 0 CPU: 1 PID: 7995 Comm...
AZL-58578 CVE-2025-21862 affecting package kernel for versions less than 5.15.179.1-1
In the Linux kernel, the following vulnerability has been resolved: dropmonitor: fix incorrect initialization order Syzkaller reports the following bug: BUG: spinlock bad magic on CPU1, syz-executor.0/7995 lock: 0xffff88805303f3e0, .magic: 00000000, .owner: /-1, .ownercpu: 0 CPU: 1 PID: 7995 Comm...