Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: HID: core: Harden s32ton to prevent conversion to 0-bit quantities Testing conducted by the syzbot fuzzer revealed that the HID core encounters a shift-out-of-bounds exception when it attempts to convert a 32-bit quantity to a...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: Wifi: mac80211 – Increase scanieslen for S1G. Currently, the S1G capability element is not taken into consideration when calculating scanieslen, which leads to a buffer length validation failure in the ieee80211prephwscan functio...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Check the untrusted offset in FF-A memory share. Verify the offset to prevent OOB access in the hypervisor. The FF-A buffer contains a value that is too large and potentially untrusted. U32MAX – sizeofstruct...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the asixreadphyaddr function not validating the PHY address, which could lead to invalid address usage...

ROS-20260113-7387

A vulnerability in the bfqchoosereq function of the block/bfq-iosched.c module of the Linux kernel is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected information...

Linux Distros Unpatched Vulnerability : CVE-2025-71072

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: shmem: fix recovery on rename failures mapletree insertions can fail if we are seriously sho...

MiracleLinux 7 : kernel-3.10.0-1160.119.1.0.13.el7.AXS7 (AXSA:2025-10836:65)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10836:65 advisory. can: bcm: Fix UAF in bcmprocshow CVE-2023-52922 udmabuf: fix a buf size overflow issue during udmabuf creation CVE-2025-37803 CVEs: CVE-2023-52922 ...

ROS-20260112-7346

A vulnerability in the ibmvnicxmit function of the drivers/net/ethernet/ibm/ibmvnic.c module of the Linux operating system kernel is related to improper memory release before deleting the last reference "memory leak". Exploitation of the vulnerability could allow an attacker to cause a denial of...

ROS-20260112-7348

A vulnerability in the ieee80211prephwscan function in the net/mac80211/scan.c module of the Linux kernel is related to memory accesses outside the allocated buffer. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected informat...

ROS-20260112-7374

A vulnerability in the isdscneedrecompute function of the drivers/gpu/drm/amd/display/amdgpudm/amdgpudmmsttypes.c module of the Direct Rendering Infrastructure DRI support driver for AMD graphics cards in the Linux operating system kernel is related to pointer dereferencing. Exploitation of the...

ROS-20260112-7376

A vulnerability in the dcn30applyidlepoweroptimizations function of the drivers/gpu/drm/amd/display/dc/dcn30/dcn30hwseq.c module of the Linux operating system kernel is related to pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

CVE-2003-1161

exit.c in Linux kernel 2.6-test9-CVS, as stored on kernel.bkbits.net, was modified to contain a backdoor, which could allow local users to elevate their privileges by passing WCLONE|WALL to the syswait4 function...

Siemens Ruggedcom ROX Exposure of Sensitive Information to an Unauthorized Actor (CVE-2022-0850)

A vulnerability was found in linux kernel, where an information leak occurs via ext4extentheader to userspace. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...

Security Bulletin: Multiple Vulnerabilities in IBM Concert Software.

Summary Multiple vulnerabilities were addressed in IBM Concert Software version 2.2.0 Vulnerability Details CVEID:CVE-2018-16487 DESCRIPTION: A prototype pollution vulnerability was found in lodash 4.17.11 where the functions merge, mergeWith, and defaultsDeep can be tricked into adding or...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000285)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000285 advisory. There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000297)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000297 advisory. Jonathan Looney discovered that the TCPSKBCBskb-tcpgsosegs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000438)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000438 advisory. An issue was discovered in the Linux kernel before 4.20. There is a race condition in smptasktimedout and smptaskdone in drivers/scsi/libsas/sasexpander.c, leading t...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000271)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000271 advisory. drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor. Tenable h...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000323)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000323 advisory. An issue was discovered in the Linux kernel 4.4 through 5.7.1. drivers/tty/vt/keyboard.c has an integer overflow if kascii is called several times in a row, aka...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000525)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000525 advisory. A memory leak in the allocsgtable function in drivers/net/wireless/intel/iwlwifi/fw/dbg.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of...