17 matches found
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013550)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013550 advisory. In the Linux kernel, the following vulnerability has been resolved: mrp: introduce active flags to prevent UAF when applicant uninit The caller of deltimersync must...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006733)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006733 advisory. In the Linux kernel, the following vulnerability has been resolved: ARM: tegra: Use I/O memcpy to write to IRAM Kasan crashes the kernel trying to check boundaries...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993057)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993057 advisory. In the Linux kernel, the following vulnerability has been resolved: jffs2: prevent xattr node from overflowing the eraseblock Add a check to make sure that the...
CVE-2025-40349
CVE-2025-40349 affects the Linux kernel’s hfs/hfsplus_bmap_alloc path. The bug occurs when hfsplus_bmap_alloc retrieves a bitmap using node info and an offset/length that may exceed node_size, risking slab-out-of-bounds page access. The referenced patch adds validation for both offset and length ...
Linux Distros Unpatched Vulnerability : CVE-2025-40284
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bluetooth: MGMT: cancel mesh send timer when hdev removed meshsenddone timer is not canceled when hdev is removed, which causes crash if the timer triggers afte...
EUVD-2024-51880
Malicious code in bioql PyPI...
SUSE CVE-2025-39794
In the Linux kernel, the following vulnerability has been resolved: ARM: tegra: Use I/O memcpy to write to IRAM Kasan crashes the kernel trying to check boundaries when using the normal memcpy...
AZL-67350 CVE-2025-39794 affecting package kernel for versions less than 6.6.104.2-1
In the Linux kernel, the following vulnerability has been resolved: ARM: tegra: Use I/O memcpy to write to IRAM Kasan crashes the kernel trying to check boundaries when using the normal memcpy...
CVE-2025-39794 ARM: tegra: Use I/O memcpy to write to IRAM
In the Linux kernel, the following vulnerability has been resolved: ARM: tegra: Use I/O memcpy to write to IRAM Kasan crashes the kernel trying to check boundaries when using the normal memcpy...
CVE-2025-39794
CVE-2025-39794 affects the Linux kernel on ARM Tegra platforms. The root cause is an incorrect use of memcpy when writing to IRAM, causing Kasan to crash due to boundary checks failing under normal memcpy. The vulnerability is local with a high impact on availability, and the description notes th...
CVE-2025-39794 ARM: tegra: Use I/O memcpy to write to IRAM
In the Linux kernel, the following vulnerability has been resolved: ARM: tegra: Use I/O memcpy to write to IRAM Kasan crashes the kernel trying to check boundaries when using the normal memcpy...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: jffs2: Prevent the xattr node from overflowing the eraseblock. A check has been added to ensure that the requested xattr node size is not larger than the eraseblock minus the cleanmarker. Unlike the usual inode nodes, the xatt...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: HID: amdsfh: “Free driverdata after destroying hid device” Driver callbacks are no longer called after the hiddestroydevice function is called. Therefore, the driverdata should only be freed after the hiddestroydevice function...
SUSE CVE-2024-46746
In the Linux kernel, the following vulnerability has been resolved: HID: amdsfh: free driverdata after destroying hid device HID driver callbacks aren't called anymore once hiddestroydevice has been called. Hence, hid driverdata should be freed only after the hiddestroydevice function returned as...
SUSE CVE-2024-38599
In the Linux kernel, the following vulnerability has been resolved: jffs2: prevent xattr node from overflowing the eraseblock Add a check to make sure that the requested xattr node size is no larger than the eraseblock minus the cleanmarker. Unlike the usual inode nodes, the xattr nodes aren't...
AZL-42825 CVE-2024-36288 affecting package kernel for versions less than 6.6.43.1-7
In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fix loop termination condition in gssfreeintokenpages The intoken-pages array is not NULL terminated. This results in the following KASAN splat: KASAN: maybe wild-memory-access in range 0x04a2013400000008-0x04a20134000000...
Linux kernel security vulnerabilities
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel. An attacker exploiting this vulnerability could corrupt the file system and cause KASAN to crash...