1339 matches found
PT-2025-28008 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel versions 6.14.0 and later Description: The issue is related to the powerpc64/ftrace component of the Linux kernel, where the register r15 is clobbered during livepatching and not restored, leading to potential kernel crashes. Thi...
CVE-2025-22092
In the Linux kernel, the following vulnerability has been resolved: PCI: Fix NULL dereference in SR-IOV VF creation error path Clean up when virtfn setup fails to prevent NULL pointer dereference during device removal. The kernel oops below occurred due to incorrect error handling flow when...
CVE-2025-22073
In the Linux kernel, the following vulnerability has been resolved: spufs: fix a leak on spufsnewfile failure It's called from spufsfilldir, and caller of that will do spufsrmdir in case of failure. That does remove everything we'd managed to create, but... the problem dentry is still negative...
CVE-2025-22127
CVE-2025-22127 affects the Linux kernel F2FS. The issue could cause a kernel hang when a compressed file system operation triggers IO errors during load of the error table to a dm device, while f2fs_write_data_pages holds the writepages lock. Root cause described: IO error looping in f2fs_prepare...
CVE-2025-22123
CVE-2025-22123 relates to the Linux kernel’s F2FS filesystem. The issue arises when a faulty allocator path introduced by a commit (FAULT_NO_SEGMENT) may set curseg->segno to NULL_SEGNO while CP_ERROR_FLAG is set. This can lead to a page fault path where f2fs_write_inode() traverses a sequence...
CVE-2025-22115 btrfs: fix block group refcount race in btrfs_create_pending_block_groups()
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix block group refcount race in btrfscreatependingblockgroups Block group creation is done in two phases, which results in a slightly unintuitive property: a block group can be allocated/deallocated from after...
CVE-2025-22089 RDMA/core: Don't expose hw_counters outside of init net namespace
In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Don't expose hwcounters outside of init net namespace Commit 467f432a521a "RDMA/core: Split port and device counter sysfs attributes" accidentally almost exposed hw counters to non-init net namespaces. It didn't expose...
CVE-2025-22085
CVE-2025-22085 affects the Linux kernel RDMA/core. The description documents a use-after-free (slab) in the netlink/name rename path, caused by a use-after-free in nla_put during device-name rename handling. The issue manifests as a slab-use-after-free Read in nla_put, traced through netlink/nlde...
CVE-2025-22077
CVE-2025-22077 relates to the Linux kernel CIFS/SMB client TCP timer deadlock fix. The description explains that a prior patch intended to fix a null-pointer dereference (related to CVE-2024-54680) was reverted, which in turn revived a real issue with TCP sockets for CIFS connections. The root ca...
CVE-2025-22072 spufs: fix gang directory lifetimes
In the Linux kernel, the following vulnerability has been resolved: spufs: fix gang directory lifetimes prior to "POWERPC spufs: Fix gang destroy leaks" we used to have a problem with gang lifetimes - creation of a gang returns opened gang directory, which normally gets removed when that gets...
CVE-2025-22064 netfilter: nf_tables: don't unregister hook when table is dormant
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: don't unregister hook when table is dormant When nftablesupdchain encounters an error, hook registration needs to be rolled back. This should only be done if the hook has been registered, which won't happen...
CVE-2025-22057
CVE-2025-22057 : In the Linux kernel, the fix for an issue with decreasing cached dst counters in dst_release was incomplete when CONFIG_DST_CACHE is enabled and OvS tunnels are used, potentially leading to a kernel NULL page fault during dst cache destruction. The upstream patch moves the decrem...
CVE-2025-22037 ksmbd: fix null pointer dereference in alloc_preauth_hash()
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix null pointer dereference in allocpreauthhash The Client send malformed smb2 negotiate request. ksmbd return error response. Subsequently, the client can send smb2 session setup even thought conn-preauthinfo is not...
CVE-2024-58095
CVE-2024-58095 (jfs: add check read-only before txBeginAnon() call) is confirmed as a concrete kernel fix. The patch introduces a read-only check prior to txBeginAnon() in extAlloc and extRecord within the JFS code path. This prevents write attempts on a read-only mounted filesystem, avoiding pot...
CVE-2024-58092
In CVE-2024-58092, the Linux kernel NFS server (nfsd) fix removes a duplicate init path: check_for_legacy_methods() no longer calls nfsd4_legacy_tracking_ops->init(), delegating init to nfsd4_client_tracking_init() to avoid triggering BUG_ON() in nfsd4_init_recdir(). The description confirms t...
SUSE-SU-2025:1276-1 Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP5)
This update for the Linux Kernel 5.14.21-1505005580 fixes one issue. The following security issue was fixed: - CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6create bsc1235218...
SUSE-SU-2025:1241-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-49053: scsi: target: tcmu: Fix possible page UAF bsc1237918. - CVE-2022-49465: blk-throttle: Set BIOTHROTTLED when bio has been throttled bsc1238919. -...
SUSE-SU-2025:1238-1 Security update for the Linux Kernel (Live Patch 6 for SLE 15 SP6)
This update for the Linux Kernel 6.4.0-1506002330 fixes one issue. The following security issue was fixed: - CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6create bsc1235218...
Vulnerability of the intel_iommu_probe_device() function in the drivers/iommu/intel/iommu.c module – This is a Linux kernel IOMMU driver that allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
Vulnerability of the inteliommuprobedevice function in the drivers/iommu/intel/iommu.c module – The Linux kernel’s IOMMU support driver contains errors in its code. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected...
The vulnerability of the poe_set() function in the arch/arm64/kernel/ptrace.c module, which is part of the ARM 64-bit kernel support in the Linux operating system, allows a attacker to gain access to protected information or cause service interruptions.
The vulnerability of the poeset function in the arch/arm64/kernel/ptrace.c module, which is part of the ARM 64-bit kernel support for the Linux operating system, relates to the use of uninitialized resources. Exploiting this vulnerability could allow an attacker to access protected information or...