AZL-66860 CVE-2025-38687 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: comedi: fix race between polling and detaching syzbot reports a use-after-free in comedi in the below link, which is due to comedi gladly removing the allocated async area even though poll requests are still active on the...

DEBIAN-CVE-2025-38687

In the Linux kernel, the following vulnerability has been resolved: comedi: fix race between polling and detaching syzbot reports a use-after-free in comedi in the below link, which is due to comedi gladly removing the allocated async area even though poll requests are still active on the...

DEBIAN-CVE-2025-23259

NVIDIA Mellanox DPDK contains a vulnerability in Poll Mode Driver PMD, where an attacker on a VM in the system might be able to cause information disclosure and denial of service on the network interface...

CVE-2025-23259

NVIDIA Mellanox DPDK contains a vulnerability in Poll Mode Driver PMD, where an attacker on a VM in the system might be able to cause information disclosure and denial of service on the network interface...

UBUNTU-CVE-2025-23259

NVIDIA Mellanox DPDK contains a vulnerability in Poll Mode Driver PMD, where an attacker on a VM in the system might be able to cause information disclosure and denial of service on the network interface...

CVE-2025-23259

NVIDIA Mellanox DPDK contains a vulnerability in Poll Mode Driver PMD, where an attacker on a VM in the system might be able to cause information disclosure and denial of service on the network interface...

CVE-2025-23259

CVE-2025-23259 affects the DPDK Poll Mode Driver (PMD) used in NVIDIA Mellanox DPDK components. The issue allows a VM-level attacker to leak information and cause denial of service on the network interface. Public advisories from SUSE/openSUSE/Nessus indicate this vulnerability was addressed by u...

CVE-2025-23259

NVIDIA Mellanox DPDK contains a vulnerability in Poll Mode Driver PMD, where an attacker on a VM in the system might be able to cause information disclosure and denial of service on the network interface...

In the OpenSSL compatibility layer implementation, the function RAND_poll() was not behaving as expected and leading to the potential for predictable values returned from RAND_bytes() after fork() is called. This can lead to weak or predictable random numbers generated in applications that are both using RAND_bytes() and doing fork() operations. This only affects applications explicitly calling RAND_bytes() after fork() and does not affect any internal TLS operations. Although RAND_bytes() documentation in OpenSSL calls out not being safe for use with fork() without first calling RAND_poll(), an additional code change was also made in wolfSSL to make RAND_bytes() behave similar to OpenSSL after a fork() call without calling RAND_poll(). Now the Hash-DRBG used gets reseeded after detecting running in a new process. If making use of RAND_bytes() and calling fork() we recommend updating to the latest version of wolfSSL. Thanks to Per Allansson from Appgate for the report.

...

NVIDIA Mellanox DPDK 竞争条件问题漏洞

NVIDIA Mellanox DPDK is a data plane development kit from NVIDIA. NVIDIA Mellanox DPDK suffers from a Competitive Condition Issue vulnerability that stems from the Poll Mode Driver could lead to information disclosure and denial of service attacks...

PT-2025-35949

Name of the Vulnerable Software and Affected Versions NVIDIA Mellanox DPDK affected versions not specified Description NVIDIA Mellanox DPDK contains an issue in the Poll Mode Driver PMD that may allow an attacker on a virtual machine VM within the system to potentially disclose information and...

net: fec: remove .ndo_poll_controller to avoid deadlocks

...

Linux Distros Unpatched Vulnerability : CVE-2023-7152

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability, which was classified as critical, has been found in MicroPython 1.21.0/1.22.0-preview. Affected by this issue is the function pollsetaddfd of t...

CVE-2025-53328

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Opinion Stage Poll, Survey & Quiz Maker Plugin by Opinion Stage social-polls-by-opinionstage allows PHP Local File Inclusion.This issue affects Poll, Survey & Quiz Maker Plugin b...

CVE-2025-53328 WordPress Poll, Survey & Quiz Maker Plugin by Opinion Stage Plugin <= 19.11.0 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Opinion Stage Poll, Survey & Quiz Maker Plugin by Opinion Stage social-polls-by-opinionstage allows PHP Local File Inclusion.This issue affects Poll, Survey & Quiz Maker Plugin b...

CVE-2025-53328 WordPress Poll, Survey & Quiz Maker Plugin by Opinion Stage Plugin <= 19.11.0 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Assaf Parag Poll, Survey & Quiz Maker Plugin by Opinion Stage allows PHP Local File Inclusion. This issue affects Poll, Survey & Quiz Maker Plugin by Opinion Stage: from n/a...

CVE-2025-53328

CVE-2025-53328 is a Local File Inclusion vulnerability in the WordPress plugin Poll, Survey & Quiz Maker Plugin by Opinion Stage (versions up to 19.11.0). Root cause: improper control of filename for include/require in PHP, enabling LFI. Affected: Poll, Survey & Quiz Maker Plugin by Opinion Stage (

WordPress plugin Poll, Survey & Quiz Maker Plugin by Opinion Stage 安全漏洞

WordPress and WordPress plugin are products of the WordPress Foundation, a blogging platform developed in PHP. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A security vulnerability exists in WordPress plugin Poll, Survey & Quiz Maker Plugin...

PT-2025-35057

Name of the Vulnerable Software and Affected Versions: Assaf Parag Poll, Survey & Quiz Maker Plugin by Opinion Stage versions through 19.11.0 Description: The software contains an Improper Control of Filename for Include/Require Statement, also known as a PHP Remote File Inclusion issue. This...

PT-2025-49437

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to the 9p protocol’s handling of file descriptors. Specifically, the p9 fd request function may not correctly kick the receive thread when EPOLL...