kernel: can: bcm: Fix UAF in bcm_proc_show()

In the Linux kernel, the following vulnerability has been resolved: can: bcm: Fix UAF in bcmprocshow BUG: KASAN: slab-use-after-free in bcmprocshow+0x969/0xa80 Read of size 8 at addr ffff888155846230 by task cat/7862 CPU: 1 PID: 7862 Comm: cat Not tainted 6.5.0-rc1-00153-gc8746099c197 230 Hardwar...

kernel: can: bcm: Fix UAF in bcm_proc_show()

In the Linux kernel, the following vulnerability has been resolved: can: bcm: Fix UAF in bcmprocshow BUG: KASAN: slab-use-after-free in bcmprocshow+0x969/0xa80 Read of size 8 at addr ffff888155846230 by task cat/7862 CPU: 1 PID: 7862 Comm: cat Not tainted 6.5.0-rc1-00153-gc8746099c197 230 Hardwar...

PT-2025-14330

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.14.0-rc2+ 241 Description A vulnerability in the Linux kernel has been resolved, related to the LoongArch architecture. The issue arises when the base address allocated from hugetlbfs is not aligned with the pm...

Linux Distros Unpatched Vulnerability : CVE-2024-49993

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix potential lockup if qisubmitsync called with 0 count If qisubmitsync is...

Linux Distros Unpatched Vulnerability : CVE-2024-53209

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix receive ring space parameters when XDP is active The MTU setting at the time an...

Linux Distros Unpatched Vulnerability : CVE-2024-50208

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Fix a bug while setting up Level-2 PBL pages Avoid memory corruption while...

Linux Distros Unpatched Vulnerability : CVE-2025-21727

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: padata: fix UAF in padatareorder A bug was found when run ltp test: BUG: KASAN:...

Linux Distros Unpatched Vulnerability : CVE-2024-57976

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - btrfs: do proper folio cleanup when cowfilerange failed BUG When testing with COW fixup marked as BUGON this is involved with the new pinuserpages change, which...

Linux Distros Unpatched Vulnerability : CVE-2024-56617

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU Commit 5944ce092b97 archtopology: Build cacheinfo from primary CPU adds...

Linux Distros Unpatched Vulnerability : CVE-2024-50034

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/smc: fix lacks of icsksynmss with IPPROTOSMC Eric report a panic on IPPROTOSMC, and give the facts that when INETPROTOSWICSK was set, icsk-icsksyncmss must ...

Linux Distros Unpatched Vulnerability : CVE-2024-40914

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mm/hugememory: don't unpoison hugezerofolio When I did memory failure tests recently, below...

Linux Distros Unpatched Vulnerability : CVE-2024-45000

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: fs/netfs/fscachecookie: add missing naccesses check This fixes a NULL pointer dereference b...

Linux Distros Unpatched Vulnerability : CVE-2021-4439

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - isdn: cpai: check ctr-cnr to avoid array index out of bound The cmtpaddconnection would add a cmtp session to a controller and run a kernel thread to process...

Linux Distros Unpatched Vulnerability : CVE-2022-28356

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel before 5.17.1, a refcount leak bug was found in net/llc/afllc.c. CVE-2022-28356 Note that Nessus relies on the presence of the package as...

Linux Distros Unpatched Vulnerability : CVE-2021-47572

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net: nexthop: fix null pointer dereference when IPv6 is not enabled When we try to add an IP...

Linux Distros Unpatched Vulnerability : CVE-2023-52784

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bonding: stop the device in bondsetupbyslave Commit 9eed321cde22 net: lapbether: only support ethernet devices has been able to keep syzbot away from net/lapb,...

Linux Distros Unpatched Vulnerability : CVE-2022-49666

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - powerpc/memhotplug: Add addpages override for PPC With commit ffa0b64e3be5 powerpc: Fix virtaddrvalid for 64-bit Book3E & 32-bit the kernel now validate the add...

Linux Distros Unpatched Vulnerability : CVE-2024-39500

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sockmap: avoid race between sockmapclose and skpsockput skpsockget will return NULL if the refcount of psock has gone to 0, which will happen when the last call...

Linux Distros Unpatched Vulnerability : CVE-2022-49361

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - f2fs: fix to do sanity check for inline inode Yanming reported a kernel bug in Bugzilla kernel 1, which can be reproduced. The bug message is: The kernel messag...

Linux Distros Unpatched Vulnerability : CVE-2022-49409

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ext4: fix bugon in estreesearch Hulk Robot reported a BUGON: ================================================================== kernel BUG at...