USN-7408-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - SMB network file system; - Network namespace; - Networking core; CVE-2024-56658, CVE-2024-35864, CVE-2024-26928...

USN-7406-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Network namespace; - Networking core; CVE-2024-26928, CVE-2024-56658,...

SUSE CVE-2025-21900

In the Linux kernel, the following vulnerability has been resolved: NFSv4: Fix a deadlock when recovering state on a sillyrenamed file If the file is sillyrenamed, and slated for delete on close, it is possible for a server reboot to triggeer an open reclaim, with can again race with the...

Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-7408-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7408-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update...

USN-7384-2: Linux kernel (Azure) vulnerabilities

Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 Attila Szász discovered that the HFS+ file system...

AZL-60282 CVE-2025-21963 affecting package kernel for versions less than 6.6.85.1-2

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing acdirmax mount option User-provided mount parameter acdirmax of type u32 is intended to have an upper limit, but before it is validated, the value is converted from seconds to jiffies...

AZL-60316 CVE-2025-21963 affecting package kernel for versions less than 5.15.180.1-1

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing acdirmax mount option User-provided mount parameter acdirmax of type u32 is intended to have an upper limit, but before it is validated, the value is converted from seconds to jiffies...

AZL-60352 CVE-2025-21908 affecting package kernel for versions less than 6.6.85.1-2

In the Linux kernel, the following vulnerability has been resolved: NFS: fix nfsreleasefolio to not deadlock via kcompactd writeback Add PFKCOMPACTD flag and currentiskcompactd helper to check for it so nfsreleasefolio can skip calling nfswbfolio from kcompactd. Otherwise NFS can deadlock waiting...

CVE-2025-21900 NFSv4: Fix a deadlock when recovering state on a sillyrenamed file

In the Linux kernel, the following vulnerability has been resolved: NFSv4: Fix a deadlock when recovering state on a sillyrenamed file If the file is sillyrenamed, and slated for delete on close, it is possible for a server reboot to triggeer an open reclaim, with can again race with the...

The vulnerability of the e_show() function in the fs/nfsd/export.c module of the Linux kernel’s Network File System support module allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the eshow function in the fs/nfsd/export.c module, which is part of the NFS network file system support in Linux kernels, relates to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrit...

USN-7383-2 linux-realtime vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - x86 architecture; - Block layer subsystem; - Drivers core; - Ublk userspace block driver; -...

USN-7383-1 linux, linux-aws, linux-gcp, linux-gcp-6.8, linux-gke, linux-gkeop, linux-lowlatency, linux-lowlatency-hwe-6.8, linux-nvidia, linux-nvidia-6.8, linux-nvidia-lowlatency, linux-oracle, linux-oracle-6.8 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - x86 architecture; - Block layer subsystem; - Drivers core; - Ublk userspace block driver; -...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from cifs not clearing the server-smbdconn pointer on reconnect...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a possible memory leak during cifs session setup...

The vulnerability of the __cld_pipe_inprogress_downcall() function in the fs/nfsd/nfs4recover.c module, which supports the Network File System in Linux kernels, allows a attacker to cause a service failure.

The vulnerability of the cldpipeinprogressdowncall function in the fs/nfsd/nfs4recover.c module, which is part of the NFS network file system support in Linux kernels, involves the dereferencing of a NULL pointer. Exploiting this vulnerability could allow an attacker to cause service failures...

The vulnerability of the nfs_fattr_init() function in the fs/nfs/inode.c module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the nfsfattrinit function in the fs/nfs/inode.c module of the Linux kernel is related to the use of an uninitialized resource. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the nfsd4_copy() function in the fs/nfsd/nfs4proc.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the nfsd4copy function in the fs/nfsd/nfs4proc.c module of the Linux operating system is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause service failures...

cifs-utils 安全漏洞

cifs-utils is a toolkit from the individual developer Pavel Shilovsky. Provides utilities for managing CIFS network file system installations. A security vulnerability exists in cifs-utils that stems from the cifs.upcall program incorrectly invoking namespaces in a container environment, which...

The vulnerability in the nfsd module’s fs/nfsd/vfs.c kernel of the Linux operating system, which allows a intruder to cause a service failure.

The vulnerability of the nfsd module’s fs/nfsd/vfs.c part of the Linux operating system is related to incorrect resource blocking. Exploiting this vulnerability can allow a hacker to cause service failures...

The vulnerability of the nfs4_state_shutdown_net() function in the fs/nfsd/nfs4state.c module of the nfsd component of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the nfs4stateshutdownnet function in the fs/nfsd/nfs4state.c module of the nfsd component of the Linux operating system is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...